ASIC: Role, Powers and Enforcement Guide

Updated 12 Mar 2026Content was accurate at the time of publication

The Australian Securities and Investments Commission (ASIC) is the principal corporate, markets and financial services regulator. This guide explains what ASIC is, the legal basis for its powers, who it regulates, and how you—as a business owner, director or compliance professional—should meet obligations, use ASIC registers for due diligence, and respond if ASIC opens an inquiry or issues a notice.

What is ASIC?

ASIC's statutory mandate flows from the Corporations Act and related legislation and focuses on promoting investor and consumer confidence, maintaining market integrity and enforcing compliance across companies, financial services and credit.

In practice, ASIC:

Registers companies and business names and maintains public registers.
Licences and supervises financial services providers, including holders of an Australian financial services licence (AFSL).
Monitors disclosure and conduct of regulated entities, from listed firms to small credit providers.
Investigates suspected breaches, enforces regulatory outcomes and pursues civil or criminal proceedings where necessary.

If you need to learn how to set up a company or check registration details, see our page on how to register a company. For AFSL applicants and AFSL compliance, consult our Financial services licence (AFSL) guide.

ASIC's role and powers

ASIC derives its powers primarily from the Corporations Act and the Australian Securities and Investments Commission Act, and it is also empowered under the National Consumer Credit Protection framework for credit activities.

Its core responsibilities include:

Corporate regulation: enforcing company law, directors' duties and financial reporting obligations.
Financial services supervision: licensing (AFSL), conduct obligations, adviser and product regulation.
Market integrity: oversight of exchanges, disclosure, and surveillance to prevent market misconduct.
Consumer protection: preventing misleading or unconscionable conduct in financial services and credit.

Statutory and administrative powers include:

Licensing: grant, suspend or cancel AFSLs and enforce conditions on credit licences.
Registers and public information: maintain registers that record companies, business names, AFSL holders, disqualified or banned persons and enforcement history.
Investigative tools: compulsory notices to produce documents, require attendance, and use of search warrants where authorised.
Remedial and enforcement options: enforceable undertakings, infringement notices, civil penalty proceedings, criminal referrals and director disqualifications.

For practical guidance on corporate behaviour and board responsibilities refer to our Corporate governance obligations guide.

Who ASIC regulates

ASIC's supervision applies across a wide set of entities and people, including:

Registered companies and company officers (directors, secretaries).
AFSL holders, authorised representatives, and entities providing financial product advice or dealing.
Credit providers and credit representatives under the credit regime.
Auditors and approved liquidators (to a limited extent).
Trustees and managers of registered managed investment schemes.
Persons who are disqualified or banned from managing corporations or providing financial services.

When you deal with suppliers, advisers or counterparties, check their status on ASIC registers. Related areas to consider when assessing officers and licence scope include Director Identification Number, Company Secretary, AFSL, Credit Licence, Managed Investment Scheme, Financial Advice, Record-Keeping, Finance Lease and Novated Lease.

Key obligations for businesses and licensees

You must understand and act on core compliance obligations. Below are the high-priority areas and practical steps:

Reporting and lodgements: Companies must file annual reviews and ASIC forms for changes to officers, addresses and share structure. AFSL and credit licensees must lodge regulatory returns and pay fees on time.

Disclosure: Ensure product disclosure statements, financial product disclosure and continuous disclosure (for listed entities) are accurate and up to date.

Licensing: Hold and comply with an AFSL or credit licence where activities require authorisation. See the Financial services licence (AFSL) guide for details.

Conduct and advice obligations: Meet best-interest duties, target market and responsible lending obligations.

Financial reporting and audit: Prepare statutory financial reports, lodge them on time and ensure external audit where required.

Record-keeping: Maintain records of advice, client files, minutes and key correspondence for required retention periods.

Practical compliance checklist:

Maintain a compliance manual and designate a responsible officer.
Implement conflicts-of-interest and gifts registers.
Regularly review marketing, disclosure documents and adviser scripts.
Run periodic AFSL gap analysis and training for staff.
Keep orderly minutes, statutory registers and up-to-date ASIC lodgements.

If your business arranges finance for equipment or vehicles, accurate licensing and disclosure matter. For financing products, explore options such as asset finance and business loans.

ASIC registers and searches

ASIC's public registers are a crucial due-diligence tool. The main registers and when to use them:

Companies register: Confirm ABN/ACN, officeholders, status and lodged documents. Use when onboarding suppliers, co-directors or investors.

Business names register: Check trading names and owner details.

Financial services licence (AFSL) register: Verify licence status, authorised representatives and licence conditions.

Banned & disqualified persons: Check whether a prospective director or manager is subject to a disqualification order.

Enforcement outcomes & infringement notices: Review past enforcement action to assess counterparties' history.

How to search:

Use ASIC's registers page for official searches at https://asic.gov.au/for-business/registers/
Document and screenshot search results, and store evidence in your vendor due-diligence files.
Cross-check ASIC searches with information from the Australian Taxation Office (tax status) and Reserve Bank of Australia (systemic context).

When conducting due diligence, also consult related guidance on director identity and company officers.

Enforcement: investigations, powers and penalties

ASIC's enforcement approach ranges from administrative remedies to civil and criminal proceedings. Typical enforcement tools include:

Inquiries & compulsory notices: Fact-finding and document production, typically resulting in evidence collection and remedial action.

Enforceable undertakings: Voluntary binding commitments resulting in public undertakings and remediation programs.

Infringement notices: Penalty for contraventions resulting in fixed fines without court action.

Civil penalty proceedings: Court orders for breaches of the Corporations Act resulting in pecuniary penalties and disqualifications.

Criminal referrals: Serious dishonest conduct referred for prosecutorial action via the Director of Public Prosecutions.

Disqualification orders: Protection of the public from unfit persons through director bans for set periods.

Civil vs criminal: Civil proceedings target breaches of statutory duties and can result in pecuniary penalties or injunctions. Criminal prosecutions require proof beyond reasonable doubt and are used for the most serious dishonest conduct.

Common penalties include fines, compensation orders, enforceable undertakings, and director disqualification. ASIC may also seek court orders to freeze assets or obtain injunctions.

How to respond to ASIC enquiries or notices

If ASIC contacts you, act promptly and deliberately. A practical response workflow:

Initial assessment: Identify the type of contact—information request, compulsory notice, or informal inquiry. Note deadlines and whether the notice is statutory (legally compelled).

Preserve evidence: Immediately suspend routine deletion or archival of relevant documents and communications. Issue a legal hold to staff and preserve electronic logs.

Seek prompt legal and compliance advice: Engage counsel experienced in regulatory matters and, if applicable, forensic advisers.

Review scope and prepare response: Map documents and data that address ASIC's questions. Agree a factual narrative and identify privilege issues—legal advice privilege may apply.

Communicate with ASIC: Be cooperative, accurate and timely. Provide clear, structured responses. If you need more time, request an extension early and justify it.

Consider negotiating outcomes: For minor breaches, ASIC may accept an enforceable undertaking or remediation plan. For more serious issues, prepare for potential litigation.

Board and management actions: Keep the board informed and consider independent investigation where necessary.

Post-inquiry remediation: Implement compliance fixes, report progress and document remediation steps.

Do:

Be truthful and responsive.
Preserve documents and maintain an audit trail.

Don't:

Destroy or alter documents (obstruction can escalate to criminal exposure).
Provide speculative or unverified statements.

Common compliance risks and how to reduce them

Areas that attract ASIC's attention and mitigation measures:

Misleading statements or poor disclosure: Review marketing and PDS for accuracy and use legal review checklists.

Inadequate record-keeping and advice files: Implement standard file templates, supervision and random audits.

Weak governance and oversight: Invest in board training and independent risk or compliance committees.

Conflicts of interest and remuneration structures: Establish clear policies, disclosure and conflict registers.

Unlicensed activity or incorrect licence scope: Conduct licence gap analysis and consult with licensing advisers.

Operational controls—internal audits, staff training, periodic legal health checks and documented remediation programs—reduce the chance of enforcement action.

If your business provides credit or equipment finance, ensure your licensing and disclosure match the product offered. Vendor financing may trigger licensing requirements.

Notable ASIC enforcement cases

High-profile enforcement outcomes illustrate ASIC's approach:

Fee-for-no-service matters: Investigations into failures in advice and charging for services not provided have resulted in civil proceedings, remediation orders and public scrutiny. Notable examples include cases involving major financial services firms where ASIC required compensation and implemented strict compliance upgrades.

Disqualifications and enforceable undertakings: ASIC often accepts undertakings from firms that commit to remediation and compliance upgrades. These outcomes allow firms to avoid litigation while demonstrating commitment to remedial action.

These cases illustrate that securities, advice and disclosure breaches can lead to multi-million dollar penalties, remediation programs, and director disqualifications. Review ASIC's news and enforcement pages for current case summaries.

How to report misconduct and tips on whistleblowing

If you encounter misconduct:

Report to ASIC via its online reporting channels and provide precise details: names, dates, documents and a chronology.
Whistleblower protections: Whistleblowers may be protected under the Corporations Act if they report eligible wrongdoing. Document evidence and seek confidential legal advice on protections before disclosure.
When to escalate: If the conduct involves imminent risk to consumers, large financial loss, or persistent non-compliance, escalate promptly.

For internal reporting and escalation, maintain a dedicated, confidential channel and provide support information for whistleblowers. Consult guidance on reporting misconduct and whistleblowers for additional information.

FAQ

Does my company need an AFSL?

If you provide financial product advice, deal in financial products or operate managed investment schemes you may need an AFSL. Check scope requirements in the Financial services licence (AFSL) guide.

How do I check if a director is disqualified?

Search ASIC's banned and disqualified persons register on ASIC's registers page at https://asic.gov.au/for-business/registers/.

What happens if ASIC opens an investigation?

Expect document requests or notices. Preserve evidence, seek legal advice and respond within required timelines. See the "How to respond to ASIC enquiries or notices" section for practical guidance.

Can ASIC revoke my AFSL?

Yes—ASIC can suspend or cancel licences for breaches or serious misconduct. Remedial steps and enforceable undertakings are alternatives in some cases.

What records should I keep?

Maintain advice files, minutes, financial records, compliance logs and correspondence. Keep records for statutory retention periods and follow internal record-keeping policies.

How long does an ASIC investigation take?

Timelines vary widely—from weeks for straightforward information requests to months or years for litigated matters.

Where can I find ASIC forms and regulatory guides?

ASIC's website centralises forms and regulatory guides at https://asic.gov.au/.

Who else regulates financial services?

ASIC focuses on conduct and corporate law. Tax and broader economic policy involve the Australian Taxation Office and Reserve Bank of Australia.

Key takeaways

ASIC is Australia's principal regulator of companies, financial services and credit. Understanding ASIC's role, your compliance obligations and enforcement processes helps you reduce regulatory risk, respond effectively to enquiries and maintain market confidence. Use ASIC registers for due diligence, maintain detailed records and seek legal counsel promptly if contacted by ASIC.

This article is general information only and is not legal, tax or financial advice.

Get your quote in less than 3 minutes

Browse A to Z

A B C D E F G H IJK L M N O PQR S T U V WXYZ