Safety Case FlowSafety Case Flow
Request Demo
Back to Blog
Risk Management

Key Steps PAPs Can Take to Manage Building Safety Act Liability Risk

May 2, 2025
6 min read
Risk Management

Why Spreadsheets Put Your BSA Compliance at Risk

BSA Data Chaos: Are Spreadsheets Holding You Back?

New safety rules = tons of data. Manual spreadsheets create BSA compliance risks through errors, version control issues, and lack of audit trails.

See the Better Alternative
  • Error-prone data entry
  • No version control
  • Missing audit trails
  • Limited collaboration
S

Safety Case Flow Team

Data Management Experts

Introduction

Let's be honest: the Building Safety Act (BSA) has put a lot of weight on the shoulders of Principal Accountable Persons (PAPs). Alongside the day job of managing buildings, there's now the very real worry about personal liability. The talk of unlimited fines and even jail time for getting things wrong is enough to keep anyone up at night.

Feeling exposed? It's understandable. But while the risks are serious, feeling powerless isn't the answer. The good news is there are practical, common-sense steps you can take now to manage that risk, protect yourself, and feel more confident navigating the new rules.

This guide outlines key steps to focus on.

Step 1: Know Your Job Inside Out (Understand Your BSA Duties)

You can't protect yourself if you're unsure what you're actually supposed to do. The BSA gives PAPs specific legal duties. Ignoring them or being fuzzy on the details is where the risk starts.

Why it matters for liability:

Failing to meet a duty you didn't fully understand isn't a good defence. Clarity is your first layer of protection.

Simple Action:

Make sure you (and your team) have a clear grasp of your core BSA responsibilities:

  • Assessing your building's fire and structural risks.
  • Creating and keeping updated that Safety Case Report (SCR).
  • Managing the "Golden Thread" of building information.
  • Engaging properly with residents about safety.
  • Reporting serious safety issues when they happen.

Key Thought:

Are you crystal clear on what the BSA legally requires of YOU as the PAP?

Step 2: Show You're Being Sensible (Demonstrate "Reasonable Steps")

The law often comes down to whether you acted reasonably. The BSA expects PAPs to take "all reasonable steps" to manage safety risks.

Why it matters for liability:

Being able to prove you took sensible, careful actions to keep people safe is your strongest position if something goes wrong or the regulator (BSR) questions your decisions.

Simple Action:

Think: "What would a careful, responsible building manager do in this situation?" This usually means:

  • Acting on safety warnings promptly.
  • Following established safety guidance and standards.
  • Making decisions based on proper risk assessments, not guesswork.
  • Crucially, keeping records of why you made certain safety decisions.

Key Thought:

Can you explain and show evidence for the sensible steps you're taking to manage safety?

Step 3: Get Your Paperwork Perfect (Good Records = Good Defence)

This sounds boring, but it's vital for managing liability. Under the BSA, your records – the SCR evidence, the Golden Thread documents, meeting notes, decision logs – are your proof.

Why it matters for liability:

Messy, incomplete, or lost records make it incredibly hard to demonstrate you took those "reasonable steps." If you can't prove it, it's almost like it didn't happen in the eyes of compliance.

Simple Action:

Focus on having:

  • Organised: Safety info stored logically, not scattered across random spreadsheets and emails.
  • Up-to-Date: Records reflecting the current state of the building and safety measures.
  • Accessible: Key documents findable quickly when needed (especially for that 28-day SCR request!).
  • Clear: Records showing who did what, when, and why regarding safety decisions.

Key Thought:

If the BSR asked for proof of a safety action from 6 months ago, could you find it easily and show a clear record?

Step 4: Don't Be Afraid to Ask for Help (Use Competent People)

You're not expected to be an expert in everything – fire engineering, structural surveys, complex regulations. Part of being responsible is knowing when to bring in qualified help.

Why it matters for liability:

Relying on unqualified people (or trying to do complex technical tasks yourself without the right skills) is not taking reasonable steps. Using competent experts demonstrates diligence.

Simple Action:

  • Hire properly qualified and accredited professionals for tasks like fire risk assessments or structural inspections.
  • Ensure your own staff involved in safety management receive appropriate training.
  • Keep records of the qualifications of people you rely on.

Key Thought:

Are you using people with the right skills and qualifications for safety-critical tasks, and can you prove it?

Manage the Risk, Reduce the Worry

The personal liability aspect of the Building Safety Act is serious, there's no denying it. But it's not about catching people out – it's about ensuring buildings are genuinely safe.

By focusing on these key steps – knowing your duties, acting reasonably, keeping great records, and using competent help – you shift from feeling exposed to feeling empowered. These aren't just compliance hoops; they are the building blocks of responsible management and your best strategy for managing liability risk under the new rules. Be proactive, be organised, and put safety first.

Conflicting information from different team members
  • Compliance risks when regulators request information

    • 3. Lack of Audit Trails

    BSA compliance demands transparency about changes:

    • No reliable way to track who made changes
    • No automatic logging of when data was modified
    • Unable to demonstrate proper information management

    4. Limited Collaboration

    Modern safety management requires teamwork:

    • Restricted collaboration among stakeholders
    • Simultaneous editing prone to conflicts
    • Working with outdated information

    5. Security Vulnerabilities

    Safety data requires robust security:

    • Inadequate access controls and permissions
    • Easy to share sensitive data with unauthorized parties
    • Password protection easily bypassed

    Real-World Consequences

    The limitations of spreadsheets aren't just theoretical concerns. They lead to real problems:

    Regulatory Non-Compliance

    • Inability to produce accurate information within timeframes
    • Difficulty proving information is current and reliable
    • Potential penalties or enforcement actions

    Resource Inefficiency

    • Excessive time spent managing and reconciling data
    • Duplicate data entry wastes valuable resources
    • Error-checking becomes a major time sink

    The Modern Alternative: Purpose-Built Compliance Solutions

    Today's regulatory environment demands tools designed specifically for building safety compliance:

    Single Source of Truth

    Centralized repository ensures everyone works with the same information

    Robust Audit Trails

    Automatic tracking of all changes, including who, what, and when

    Access Controls

    Granular permissions ensure only authorized users can view or modify information

    Built-in Validation

    Automated checks prevent common data entry errors and ensure consistency

    Real-time Collaboration

    Multiple stakeholders can work simultaneously without version conflicts

    Compliance Reporting

    Generate regulator-ready reports with a few clicks when needed

    Making the Transition: From Spreadsheets to Modern Compliance Management

    Moving from spreadsheets to a dedicated compliance solution doesn't have to be overwhelming. Follow this structured approach:

    1
    Assess Current State
    • Identify all spreadsheets containing building safety information
    • Document their purpose, owners, and update frequency
    • Note any known issues or limitations
    2
    Define Requirements

    Determine what you need from a compliance solution:

    • Which building safety processes need to be supported?
    • Who needs access to what information?
    • What reporting capabilities are required?
    3
    Evaluate Solutions

    Look for systems specifically designed for BSA compliance:

    Request demos from providers
    Verify security credentials
    4
    Plan Data Migration

    Develop a strategy for moving your data:

    • Clean and validate existing data before migration
    • Prioritize which information to migrate first
    • Test the migration process with a small data subset
    5
    Implement and Train
    • Provide thorough training for all users
    • Start with a pilot group if possible
    • Document new processes and procedures
    • Maintain support resources for users during the transition

    See a Better Alternative in Action

    Free Demo

    Stop risking your building safety compliance with outdated spreadsheets. See how our purpose-built system eliminates errors, ensures version control, and provides the audit trail regulators demand.

    What You'll See

    • Centralized Data Repository

      One source of truth for all building safety information

    • Complete Audit Trail

      Track every change with user, timestamp, and reason

    • Real-time Collaboration

      Work together without version conflicts

    Request Your Free Demo

    We care about your data and would never share it with third parties.

    Building Safety Act
    Data Management
    Compliance Risk
    Golden Thread
    Higher-Risk Buildings