If you are looking for more information about asbestos risk assessment requirements, it helps to split the topic in two: the dutyholder’s assessment of risk in a building (as part of the duty to manage) and the employer’s risk assessment for work that could expose people to asbestos fibres.
Key takeaways
- Dutyholders must assess asbestos risk in non-domestic premises and the common parts of multi-occupancy domestic buildings, then keep that assessment under review.
- Your asbestos register should be a live record and should include material and priority assessments for each ACM, plus inspection dates and actions.
- Before any work that may expose employees to asbestos, employers must complete a “suitable and sufficient” risk assessment, record significant findings, and put controls in place.
- Anyone who might disturb asbestos (including contractors quoting for planned work) must be given the right information early enough to work safely.
What counts as an asbestos risk assessment
People use “risk assessment” as shorthand, but compliance expectations are quite specific.
- Premises risk assessment (duty to manage)
This is the dutyholder’s assessment of the risk from ACMs in the building, backed by an asbestos register and a management plan. - Work risk assessment (before work starts)
This is the employer’s legal duty before any work that is liable to expose employees to asbestos, with clear requirements for what the risk assessment must cover and how it must be reviewed.
If you manage property, you often sit in the overlap: you hold building information and governance, and you influence how work is scoped, quoted, and controlled.
The building-side requirement: register + material and priority assessment
Survey information should feed into an asbestos register, and the register should stay current. The guidance calls it a “live document” and sets out what it should include, at a minimum. Make a register and assess the risk is the most useful reference for what “good” looks like on paper and in practice.
Your register should cover:
- known and presumed ACMs
- type, amount and condition (with inspection dates)
- material assessment (potential to release fibres)
- priority assessment (likelihood of disturbance in day-to-day use)
- actions, due dates, evidence of completion
You should also update the register at least annually as part of a review, and sooner if risk changes.
Material assessment vs priority assessment (why both matter)
A common gap: teams rely on a survey score and stop there.
- Material assessment is about the ACM itself: what it is, its condition, and how easily it may release fibres if disturbed. This is typically included in a management survey report.
- Priority assessment is about people and activity: who uses the area, how it is used, and how likely the ACM is to be disturbed by occupants, routine maintenance, cleaning, and planned works.
In other words, the same ACM can carry a very different real-world risk depending on access, use, and maintenance patterns.
The work-side requirement: a risk assessment before exposure is possible
When work could expose employees to asbestos, Regulation 6 requires the employer to complete a suitable and sufficient assessment, record significant findings, and implement the steps identified.
The regulation also spells out what the risk assessment must cover, including:
- identifying the type of asbestos (subject to the identification requirements in Regulation 5)
- determining the nature and degree of exposure that may occur
- considering control measures (and results of monitoring where relevant)
- setting out steps to prevent exposure or reduce it to the lowest level reasonably practicable
- reviewing the assessment regularly and when work changes, or monitoring indicates it’s needed
Then Regulation 7 adds a linked requirement: you cannot undertake work with asbestos without a written plan of work, and it lists the details that the plan should include (location, methods, equipment, and the measures you will take to comply with exposure controls).
If you want a more practical “how to comply” companion to these regulations, HSE’s L143 Managing and working with asbestos brings the ACOP and guidance together.
Start with the right asbestos information (and don’t guess your way into a job)
A risk assessment is only as good as the asbestos information it’s based on.
For works like demolition and maintenance, the regulations require an assessment of whether asbestos is present (type, material, condition), or if there is doubt, to assume it is present and follow the applicable requirements.
That’s why survey scope matters. HSE’s Survey Guide is a great reference for survey planning, reporting, competence, and how dutyholders should use survey information.
A simple rule: if the work will be intrusive, “we’ve got a management survey” often isn’t enough on its own.
Information sharing is part of the risk control
Even the best register is useless if it sits in a folder while people drill, cut, or chase walls.
You must tell building managers, employees, contractors and maintenance workers about the asbestos management plan, and you must tell workers before they start work on the fabric of the building. For planned work, asbestos information should be provided as early as possible, including at quote stage. This page is worth bookmarking if you’re worried you aren’t providing the right information.
This is where many compliance failures start: scope is agreed, dates are booked, and only then does asbestos information surface.
A practical checklist for asbestos risk assessment requirements
Use this as a quick internal sense-check:
Confirm whether you are the dutyholder (or who is) and what premises you control.
Make sure survey information feeds a live asbestos register, with material and priority assessments and clear actions.
Review and update the register at least annually, and sooner when conditions, use, or work plans change.
Before any work that may expose employees, complete and record the work risk assessment and implement controls.
For asbestos work, ensure there is a written plan of work with the required detail, and that work follows it.
Provide asbestos information to anyone who might disturb it, early enough to influence how work is priced and planned.
If you’re looking to build a more comprehensive absestos compliance management program, it might be worth investigating how software can help you do it. True Compliance’s Asbestos Compliance page is a good place to start.
