Compliance Training That Changes Behaviour
Interactive scenarios where your people make real decisions — as HR directors, compliance analysts, CTOs, and team leads. Not slide decks. Not quizzes. Decisions with consequences.
Browse CoursesHow It Works
Try a free demo
Every course has a free playable scenario. Experience the quality before you buy.
Buy and download
Choose your licence tier, check out online, and download SCORM packages instantly.
Deploy to your LMS
Upload to Moodle, TalentLMS, Cornerstone, or any SCORM-compatible LMS. Your team can start today.
Our Courses
Interactive scenario-based training for compliance and decision-making
Every course is reviewed and signed off by qualified counsel in its jurisdiction — UK employment, EU data protection, US labour, AU corporate, NZ workplace safety, and Ecuadorian labour law. Statutes, citations, and decision logic verified against primary legal sources before ship.
Anti-Bribery & Corruption: AU Criminal Code Div 70
Post-Sept-2024 facilitation defence abolition
The Australian variant of Meridian Engineering's bribery saga. Adjudicated under the Criminal Code Act 1995 (Cth) Division 70 — including the s.70.5A 'failure to prevent foreign bribery' offence in force from 8 September 2024. The facilitation-payment defence is gone. Every payment is in scope.
- › Four scenarios under the post-September-2024 regime — AFL Grand Final hospitality, port-stuck shipment with the facilitation defence gone, PID Act whistleblower, 15% middleman with Ministry connection
- › Covers Division 141 + Division 70 + new s.70.5A 'failure to prevent foreign bribery' offence
- › AFP / NACC compulsory powers response
- › UK Bribery Act and US FCPA variants also available
Anti-Bribery & Corruption: UK Bribery Act 2010
Hospitality. Grease. Tender. Middleman.
Four cinematic scenarios inside Meridian Engineering — a mid-size UK company expanding internationally. You play Alexa Reeves, Compliance Manager. Each module is three branching decisions grounded in the Bribery Act 2010 and the MoJ's six adequate-procedures principles. Drawn from real SFO enforcement cases.
- › Four scenarios drawn from real SFO enforcement cases — Wimbledon hospitality, a port-stuck shipment with a $2,000 customs ask, a procurement whistleblower, a 15% middleman commission
- › Covers Bribery Act s.1 / s.2 / s.6 / s.7 + the MoJ adequate-procedures defence
- › US FCPA and Australian variants also available — same scenario depth, different statute
- › 75% mastery threshold for compliance certificate
Anti-Bribery & Corruption: US FCPA
Same scenario. FCPA layer.
The US FCPA variant of Meridian Engineering's bribery saga. Same four scenarios — corporate hospitality, facilitation payment, supplier gifts, third-party intermediary — adjudicated under the Foreign Corrupt Practices Act 1977, the DOJ/SEC FCPA Resource Guide, and the DOJ Evaluation of Corporate Compliance Programs (2024).
- › Four scenarios drawn from real DOJ and SEC FCPA enforcement — Masters Tournament hospitality, port-stuck shipment, Dodd-Frank whistleblower, 15% middleman commission
- › Covers 15 USC §§78dd-1, 78dd-2, 78dd-3 + DOJ Evaluation of Corporate Compliance Programs (2024)
- › Includes a DOJ grand-jury subpoena response simulation
- › UK Bribery Act and Australian variants also available
DORA ICT Resilience
Month-End
Five scenarios covering the full DORA lifecycle — from a month-end outage to an ESA examination. Incident classification, vendor dependencies, red team exercises, exit strategies, and a CEO who must prove resilience to a regulator with the register on the table.
- › Five different chairs across the DORA lifecycle — CISO, Head of Risk, CTO, CEO, and the regulator's examiner
- › In force since January 2025 — the four-hour ICT notification clock is already running
- › Live system-status board degrades in real time while you decide
- › German translation in progress — register interest below
Employment Rights Act 2025: Manager Essentials
Three difficulty modes. One SCORM package.
Five noir scenarios across the Employment Rights Act 2025 — SSP from day one, paternity as a day-one right, fire-and-rehire restrictions, the 9-month initial period, and flexible working as a day-one entitlement. Switch between Guided, Base, and Expert difficulty modes per module — same scenario, three rigour levels — so you deploy ONE SCORM package to junior managers, senior HR directors, and refresher cohorts and each cohort gets the right depth.
- › Three difficulty modes — Guided, Base, Expert — selectable per module. One package, three audiences.
- › Practice the new statutory clocks: SSP from day one, paternity notice timing, fire-and-rehire risk, flexible-working consultation
- › Day-one rights: paternity (s.15), flexible working (s.12), unfair dismissal protection (s.103A)
- › Includes the collective-consultation thresholds + Form HR1 notification triggers
EU AI Act Compliance (English)
Shortlisted
Five interactive scenarios covering Articles 4-50 of the EU AI Act. Your people make decisions as HR directors, marketing leads, risk officers, CX directors, and CTOs — across the shortlist algorithm, the AI-disclosure deadline, the credit-line redline, the customer chatbot complaint, and the August 2026 audit.
- › Five real-world scenarios — HR's hiring algorithm, marketing's chatbot, risk's credit decision, CX's complaint, IT's August audit
- › Every choice cites a specific Article — 4, 6, 14, 26, 50
- › Regulatory deadline: 2 August 2026 — train before enforcement begins
- › Available in English, German, French, and Spanish — same scenarios, fully localised
EU Cyber Resilience Act
Zero Day
A critical vulnerability in your connected product is being actively exploited. You have 24 hours to notify ENISA, 72 hours to notify users, and your DevOps lead is pushing to patch silently. Navigate the CRA's mandatory reporting obligations before the deadline hits.
- › Race the 24-hour ENISA notification clock with an actively-exploited vulnerability
- › Conformity assessment and CE marking decisions
- › Supply chain vulnerability disclosure
- › Demo playable now — no login required
EU Pay Transparency
22%
Five scenarios spanning 18 months — from a candidate's salary question to a tribunal where the burden of proof is reversed. Build the methodology, produce the report, negotiate with the Works Council, and defend it all in court.
- › Five roles across eighteen months — HR Director, Total Rewards, People Analytics, CEO, and General Counsel each face a different test
- › From a candidate's salary question to a tribunal where the burden of proof is reversed
- › Transposition deadline: 7 June 2026 — only 9% of EU employers have a strategy
- › Includes the joint pay assessment template (the 5% gap that triggers it)
EU Whistleblower Protection (English)
The Regulator's Verdict
Every module is a flashback narrated FROM the BfJ hearing room. Five modules of cross-border investigation under the EU Whistleblower Directive 2019/1937 + German HinSchG + French Loi Sapin II — and on Day 186, the regulator asks six questions. Your decisions across the report, the manager response, the reporter's POV, the investigation, and the boardroom route to one of six verdicts: Win, Pyrrhic, Cost, Departure, Silence, or Aftermath. The ending is the regulator's read on you.
- › Six different verdicts — Win, Pyrrhic, Cost, Departure, Silence, or Aftermath — depending on the choices you actually made
- › Play four roles in turn — line manager, the reporter herself, investigator, board
- › Covers EU Directive 2019/1937 + German HinSchG + French Loi Sapin II cross-border
- › Also available in German
EU-Cyberresilienzgesetz (Deutsch)
Praktische Compliance für IoT-Hersteller
Deutsche Lokalisierung der CRA-Schulung — vier Ops-Center-Szenarien zu 24-Stunden-ENISA-Meldepflicht, secure-by-default, technischer Dokumentation (Anhang VII), Lieferketten-Sorgfaltspflicht und Marktüberwachungs-Inspektionen.
- › Vollständige deutsche Lokalisierung der CRA-Englisch-Version
- › TTS, UI und Fallbeispiele auf Deutsch
- › Geplant für Q3 2026
EU-Hinweisgeberschutz (Deutsch)
Das Urteil der BfJ
Deutsche Lokalisierung des EU-Hinweisgeberschutz-Kurses — fünf Module einer grenzüberschreitenden Untersuchung unter der Hinweisgeberschutz-Richtlinie 2019/1937 und HinSchG. Am Tag 186 stellt die BfJ sechs Fragen, und Ihre Entscheidungen führen zu einem von sechs Urteilen.
- › Übungen: 3-Fragen-Interview-Composer, Beweistafel mit Pin-Animation, Feedback-Brief-Rubrik, Slider-Zonenkalibrierung, BfJ-Hot-Seat
- › 6 deterministische Endings — Win / Pyrrhic / Cost / Departure / Silence / Aftermath
- › Multi-POV über 5 Module: Linienmanager → Hinweisgeberin → Ermittler → Vorstand
- › Auch auf Englisch verfügbar
EU-KI-Verordnung — Compliance (Deutsch)
Die Auswahlliste
Fünf interaktive Szenarien zur EU-KI-Verordnung, vollständig auf Deutsch — vom Recruiting-Algorithmus bis zum 1.-August-2026-Audit. Ihre Mitarbeitenden treffen Entscheidungen als HR-Leitung, Marketing-Verantwortliche, Risikomanager:innen und CTOs.
- › Fünf reale Szenarien — Recruiting-Algorithmus, Marketing-Chatbot, Kreditentscheidung, Kundenbeschwerde, August-Audit
- › Jede Entscheidung zitiert einen konkreten Artikel — 4, 6, 14, 26, 50
- › Regulatorischer Stichtag: 2. August 2026
- › Vollständig auf Deutsch — Stimmen, Bildschirme und Beispiele lokalisiert, nicht nur Untertitel
Failure to Prevent Fraud (ECCTA)
Standard Reconciliation
A routine reconciliation flags a rounding error. By Friday, you'll discover it's a £180k fraud — and a junior employee was manipulated into enabling it. Navigate the ECCTA 2023 Failure to Prevent Fraud offence and the reasonable procedures defence.
- › A routine reconciliation hides a £180k fraud — investigate the email trail, sequence the priorities, build the reasonable-procedures defence
- › In force September 2025 — no revenue threshold
- › Reasonable procedures defence framework
- › Third-party facilitation liability
FCA Non-Financial Misconduct
The Reference — 3 endings
Priya filed a harassment complaint six months ago — and then withdrew it. Now a reference request arrives for the senior trader she named. You must decide what goes in the reference: protect the firm, the regulator, or the truth. Three different futures — Reconstruction, Letter, or Compromise — depending on which you prioritise.
- › Watch a video testimony, replay the same scene from two perspectives, then defend yourself in the FCA hot seat
- › Three different endings — Reconstruction, Letter, or Compromise — depending on whether you protect the firm, the regulator, or the truth
- › FCA PS25/5 in force May 2025 — duty to disclose in regulatory references
- › Fitness and propriety assessments
GDPR — A Year in the Chair (EU)
Six crises, twelve months, one DPO
Not a policy-read. A year in the chair of a real DPO. Six escalating crises over twelve months — a SAR on Article 9 health data, a 16:10 Friday breach with a 72-hour clock, a pre-launch DPIA, a Schrems-II transfer decision, a cookie-banner consent trap, and an Irish DPC examination where every prior decision becomes evidence.
- › A year in the chair of a real DPO — six escalating crises across twelve months
- › Eighteen voiced characters and four visual styles — the most cinematic compliance training your team has seen
- › Includes the methodology the Irish DPC actually uses to calculate your fine
- › For DPOs, Heads of Compliance, and CISOs at 250-2,500 employee firms
GDPR / UK Data Protection — A Year in the Chair
ICO edition
The UK variant of A Year in the Chair — same six escalating crises, but adjudicated under the UK GDPR, DPA 2018, and the Data (Use and Access) Act 2025. The capstone is an ICO Notice of Intent hearing. Every decision Aisha made over 12 months returns as evidence.
- › A year in the chair of a real DPO — adjudicated under UK GDPR + DPA 2018 + DUAA 2025
- › Eighteen voiced characters and four visual styles — the most cinematic compliance training your team has seen
- › Includes the Article 83(2) methodology the ICO uses to calculate your fine — calibrate yours before they do
- › EU variant also available — same DPO, different jurisdiction
Harassment Complaint Handling: AI Simulation
The Report
AI-powered sandbox training for HR teams. Handle live harassment complaints by typing your own responses — AI evaluates every message against the legal framework you choose. 3 scenarios, 3 jurisdictions, real-time coaching, and team analytics.
- › Your team types real responses — AI evaluates each message against the legal framework you choose
- › Three jurisdictions, three scenarios — handle the same case under UK, US, and EU rules
- › Upload your company grievance procedure — AI calibrates to YOUR policy, not a generic rubric
- › Free demo: one scenario, all three jurisdictions — try it before you buy
Igualdad Salarial 40H
MDT-2025-006 Compliance (Ecuador)
40 hours of mandatory training under Ecuador's MDT-2025-006. Interactive scenarios covering salary equality, harassment prevention, and labour rights. Includes LMS + compliance certificates.
- › 40 horas de capacitación obligatoria — la única forma de cumplir con MDT-2025-006
- › Módulo 4 con pistas separadas para líderes y empleados — mismo incidente, distintas responsabilidades
- › Plazo: 30 de noviembre de 2026
- › Desde $28/empleado/año (incluye LMS) — revisado por abogada laboralista ecuatoriana
Martyn's Law (Protect Duty)
The Alert
A suspicious bag appears near the south entrance during a sold-out event. You have 90 seconds. Navigate the Terrorism (Protection of Premises) Act 2025 as a venue security manager — triage, escalate, and protect 2,000 people.
- › A suspicious bag, 90 seconds, 2,000 lives — your team's decisions under live ops pressure
- › Enforcement begins April 2027
- › 3 tracks: all staff, managers, annual refresher
- › 16 modules across 8 visual styles
Modern Slavery: Supply Chain
The Tier-2 Problem
Your Tier-1 supplier passed the audit. Your Tier-2 didn't. A letter arrives from a migrant worker advocacy group citing passport confiscation and debt bondage at a factory two levels down. Navigate the Modern Slavery Act 2015 and your Section 54 obligations.
- › Your Tier-1 passed the audit. Your Tier-2 didn't. Now what?
- › Spot the warning words in the migrant-worker letter — then decide between remediation and disengagement
- › Covers Section 54 Transparency Statement obligations + Tier-2/3 due diligence
- › Free demo — no login required
NIS2 Cybersecurity (English)
The Breach
Five scenarios across one ransomware crisis — from the CISO's server room to the board chair's audit. Personal liability, 24-hour deadlines, supply chain compromise, and a regulatory examination where everything you signed is on the table.
- › Three different chairs — your CISO, DPO, and board chair each face the regulator with different liability
- › Already in force — board members are personally liable under Article 20
- › Sanctions up to €10M or 2% of annual turnover
- › Also available in German
NIS2-Compliance (Deutsch)
Der Einbruch, Die Uhr, Die Abrechnung
Drei zusammenhängende Szenarien, die einen Cyberangriff vom ersten Alarm bis zur behördlichen Prüfung begleiten. Spielen Sie den CISO während der Erkennung und Reaktion, den DSB im 72-Stunden-Meldefenster und den Board Chair während einer Vor-Ort-Prüfung. Unter der persönlichen Haftung nach NIS2 ist Vorbereitung die einzige Verteidigung.
- › Drei Rollen vor der Aufsichtsbehörde — CISO, DSB und Vorstandsvorsitz mit unterschiedlicher Haftung
- › Bereits in Kraft — persönliche Haftung des Leitungsorgans nach Artikel 20
- › Sanktionen bis zu 10 Mio. EUR oder 2 % des Jahresumsatzes
- › Auch auf Englisch verfügbar
NYC Local Law 144 (AEDT)
Screened Out
An HR Business Partner at Meridian Group discovers their AI hiring tool has never been audited — and candidates weren't notified. Navigate NYC Local Law 144, bias audit requirements, and DCWP enforcement across four high-stakes decisions, including a live watch-and-flag of an AEDT interview clip in real time.
- › Watch a real AEDT interview clip and flag the moments where age-bias creeps in
- › Includes the four-fifths rule math the DCWP will check at audit
- › In force since July 2023 — bias audit mandatory for NYC roles
- › Title VII / NYCHRL disparate impact liability covered
OSHA HazCom / GHS Revision 7
The Inspection
OSHA arrives unannounced. Two containers of unlabelled solvent are sitting next to the loading dock, and your SDS library hasn't been updated since GHS Revision 6. Navigate OSHA 29 CFR 1910.1200 and the new Revision 7 requirements before the citation is issued.
- › Follow EHS Manager Jordan Ellis through six months — promoted to Director by Module 5
- › Includes a 15-second timed spill response under live OSHA scrutiny
- › GHS Revision 7 deadline: July 2026
- › Built around real CFR 1910.1200 inspection scenarios
Pay Equity: US Multi-State
CO · CA · NYC
Three states, three different laws, one company trying to get it right. Navigate Colorado posting violations, California pay scale requests, and a 16.6% gap that 'market rate' can't explain. Built for multi-state US employers.
- › Five roles across Colorado, California, and NYC — VP People, Total Rewards, Analytics, CEO, and General Counsel
- › Includes a 14-state clause-builder for your job postings
- › 'Market rate' is not a defence in California — the scenario shows why
- › Class-action signal triage built around real social-media patterns
Psychosocial Safety (Australia)
The Weight
A team lead at a Melbourne architecture firm. One impossible deadline, a bullying disclosure, and a team member heading for burnout. Navigate Australia's WHS Regulations 2011 — and your own judgement — across three critical decisions.
- › Practice three crucial conversations — the bullying disclosure, the burnout signal, the impossible deadline
- › Covers Reg 55A-55D psychosocial hazards
- › Branching story with 3 decisions + 4 activities
- › NZ edition also available
Psychosocial Safety (New Zealand)
Dead Weight
The New Zealand edition of Psychosocial Safety. A team lead at an Auckland firm navigates the Health and Safety at Work Act 2015, WorkSafe NZ guidelines, and a bullying disclosure that tests every assumption about duty of care. Same scenario depth as the Australian original — fully recalibrated to NZ statute and WorkSafe practice.
- › Practice three crucial conversations — the bullying disclosure, the burnout signal, the impossible deadline
- › Maps to WorkSafe NZ Good Practice Guidelines
- › HSW (General Risk and Workplace Management) Regulations 2016
- › Australian edition also available
Reglamento de IA de la UE — Cumplimiento (Español)
La Lista Corta
Cinco escenarios interactivos sobre el Reglamento de IA de la UE, íntegramente en español — desde el algoritmo de preselección hasta la auditoría del 1 de agosto de 2026. Su equipo toma decisiones como responsables de RR. HH., marketing, riesgos y CTOs.
- › Cinco escenarios reales — algoritmo de selección, chatbot de marketing, decisión de crédito, reclamación de cliente, auditoría de agosto
- › Cada decisión cita un Artículo concreto — 4, 6, 14, 26, 50
- › Fecha límite regulatoria: 2 de agosto de 2026
- › Íntegramente en español — voces, pantallas y ejemplos localizados, no solo subtítulos
Règlement IA de l'UE — Conformité (Français)
La Liste Restreinte
Cinq scénarios interactifs sur le Règlement IA de l'UE, entièrement en français — de l'algorithme de présélection à l'audit du 1er août 2026. Vos collaborateurs prennent des décisions en tant que DRH, responsables marketing, risk managers, et CTO.
- › Cinq scénarios réels — algorithme de recrutement, chatbot marketing, décision de crédit, réclamation client, audit d'août
- › Chaque choix cite un Article précis — 4, 6, 14, 26, 50
- › Échéance réglementaire : 2 août 2026
- › Entièrement en français — voix, écrans et exemples localisés, pas juste sous-titrés
Renters' Rights Act 2025
Five seats. One family. Six endings.
A single Sheffield possession case told from five seats at the same table. Play the letting agent, the landlord, the tenant, the council enforcement officer, and the tribunal judge. Your choices in each seat reshape the case the next seat has to adjudicate. Nine months of story. Six possible tribunal endings — Possession Granted, Possession Refused on Retaliation, Rent Repayment Order, Banning Order, Settlement, or Aftermath. One braided narrative across all five modules.
- › Six different tribunal endings — your decisions across all five modules pick which one
- › Play five roles in turn — agent, landlord, tenant, council officer, tribunal judge
- › Five voiced characters and full ambient-audio production — including the moments where you hear what the tenant is really thinking
- › Covers Awaab's Law statutory windows + Rent Repayment Order + Banning Order grounds
- › Built around 14 Beaufort Close — a single Sheffield case across nine months
UK Safeguarding Children
After the Bell
A Year 9 student stays behind after registration. What she says will test everything you thought you knew about safeguarding. Navigate the correct response under Keeping Children Safe in Education 2025.
- › A 135-decision tree teaches what to say in the hardest five minutes a teacher will ever have
- › 24,000 schools, annual renewal obligation
- › Covers KCSiE 2025 Part 1 — all staff
- › Module 1 playable demo available now
Worker Protection Act 2023: Reasonable Steps Defence
Eighteen months. Twenty exhibits. One tribunal.
Six decision-based scenarios across 18 months in the life of a single UK employer, building a reasonable-steps defence file under s.40A of the Equality Act 2010. From a banter line at the Christmas party to tribunal cross-examination, every choice becomes an exhibit. The capstone reads aggregate decisions across all five preceding modules to score the tribunal hearing.
- › Eighteen months in the life of one employer — every decision becomes an exhibit at the tribunal
- › Reads decisions across all 5 modules into the capstone tribunal hearing
- › Covers EHRC 7-step technical guidance + Lidl GB 2025 failure pattern
- › Includes third-party harassment under the ERA 2025 forward horizon
Workplace Violence Prevention
Code Red
A recently terminated employee has returned to the building. Security has him on CCTV. Your Workplace Violence Prevention Plan was written 18 months ago and no one's been trained. Navigate CA SB 553 and the NY Retail Worker Safety Act before this escalates.
- › California SB 553 and NY Retail Worker Safety Act — both in one course
- › Twelve months at Korvus Retail — incident, policy, operations, technology, audit
- › Includes panic-button procedure simulation under live threat conditions
- › Active-threat decision tree built around bystander timing
No courses found. Try a different filter or search term.
Not sure which regulations apply to you?
Answer 3 questions and get a personalised compliance deadline tracker — free, no login.
Need a Course on a Different Topic?
We build custom scenario-based training for any compliance or decision-making challenge.
Talk to Us