The Australian Securities and Investments Commission (ASIC) has started 2026 with a decisive enforcement signal to the Contracts for Difference (CFD) sector. The release of Media Release 26-004MR and Report 828: Risky business: Driving change in CFD issuers’ distribution practices marks a critical juncture for Australian Financial Services Licensees (AFSLs) dealing in high-risk over-the-counter (OTC) derivatives.

With nearly $40 million in refunds secured for over 38,000 retail investors in the last 12 months and the identification of widespread regulatory failures, the regulator has moved beyond warnings. The review of 52 licensed CFD issuers between October 2024 and December 2025 has exposed systemic weaknesses in Design and Distribution Obligations (DDO) compliance, derivative transaction reporting, and adherence to the Product Intervention Order (PIO).

For the industry, this is not merely a retrospective penalty but a forward-looking mandate. The era of “tick-box” compliance is definitively over. ASIC’s findings indicate that operational resilience and genuine consumer-centricity are now non-negotiable requirements for maintaining a licence.

The Findings: A Sector “Falling Short”

The scope of ASIC’s review was comprehensive, and the findings were damning. Despite the implementation of the CFD PIO in 2021—designed to curb significant retail losses—issuers have continued to engage in practices that undermine consumer protections.

Key regulatory breaches identified include:

  • Margin Discounting: More than half of the sector was found to be contravening the PIO by offering “margin discounts” to retail clients holding opposing long and short positions. This practice artificially lowered initial margin requirements while increasing funding costs for investors, effectively eroding any potential profits and increasing the risk of liquidation.
  • DDO Failures: Widespread deficiencies were noted in Target Market Determinations (TMDs) and client onboarding questionnaires. Many issuers failed to adequately filter out retail clients for whom these high-risk products were inappropriate.
  • Reporting Errors: The review identified over 70 million erroneous reports in OTC derivative transaction reporting. This scale of data inaccuracy compromises market visibility and indicates a severe lack of technological oversight within compliance frameworks.

While ASIC acknowledged that its intervention drove improvements—such as 46 issuers amending website content and 39 revising TMDs—Commissioner Simone Constant’s statement that there is “still work to do” suggests that scrutiny will only intensify throughout 2026.

The “Perfect Storm” of Compliance

This enforcement action arrives amidst what MIntegrity has previously characterised as a “perfect storm” of regulatory convergence. With the Financial Accountability Regime (FAR) now in effect and AUSTRAC’s AML/CTF reforms looming, CFD providers face unprecedented pressure. The $40 million remediation bill serves as a stark metric of the cost of non-compliance.

It is insufficient for AFSLs to merely react to media releases. A strategic, root-and-branch review of distribution and operational frameworks is required to align with ASIC’s heightened expectations.

5 Strategic Actions CFD Providers Must Take Now

Based on the specific deficiencies outlined in Report 828 and the broader regulatory landscape, the following five actions are essential for CFD providers to ensure compliance and operational integrity.

1. Immediate Elimination of “Margin Discount” Practices

The most direct cause of the recent remediation orders was the misapplication of margin calculations for hedged positions. ASIC’s PIO explicitly prohibits practices that reduce the initial margin required from retail clients below the prescribed ratios (e.g., 3.33% to 50% of notional value).

Action Required: Providers must immediately audit their trading platforms and margin calculation engines. Any mechanism that nets off notional values of opposing long and short positions to reduce margin requirements for retail clients must be disabled. Systems must ensure that each position attracts the full required initial margin mandated by the PIO. Furthermore, a retrospective review should be conducted to identify if any past clients were detrimentally affected by such practices, as proactive self-reporting is viewed more favourably than detection during a surveillance audit.

2. Rigorous Validation of Target Market Determinations (TMDs)

Report 828 highlighted that many TMDs were too broad, effectively capturing consumers for whom CFDs are unsuitable. A “set and forget” approach to DDO is a breach of obligation. The TMD must be a living document, supported by data.

Action Required: Licensees must review their TMDs to ensure they specifically define the negative target market—those who should not hold the product. This goes beyond generic descriptors. Additionally, distribution conditions must be tightened. If a high percentage of clients are consistently losing money or defaulting (data which issuers now possess), the TMD is likely failing. Compliance teams must correlate client loss metrics with TMD review triggers to demonstrate that the product is reaching the intended, sophisticated audience, rather than vulnerable retail consumers.

3. Overhaul of Client Onboarding and “Knock-out” Questionnaires

ASIC’s review found that 44 issuers needed to improve their onboarding questionnaires. In many cases, these questionnaires were easily manipulated by users or provided prompts that guided applicants to the “correct” answers, bypassing the intent of the assessment.

Action Required: Onboarding processes must be redesigned to genuinely assess financial literacy and risk tolerance. This involves removing “coaching” mechanisms where clients are allowed unlimited re-attempts to pass compatibility tests immediately. Questions should be randomised and non-binary where possible to test actual understanding of leverage, volatility, and liquidation risks. If a client fails the assessment, a cooling-off period should be enforced before re-application is permitted. The goal is accurate assessment, not maximum conversion.

4. Automated and Integrity-Centred Transaction Reporting

The discovery of 70 million erroneous reports is a significant operational failure. Accurate reporting is the bedrock of market integrity, allowing regulators to monitor systemic risk. A 127% increase in reportable situations indicates that firms are finding issues, but the volume of historical errors suggests systemic data governance problems.

Action Required: CFD providers must move beyond manual checks and implement automated reconciliation tools for OTC derivative reporting. This involves validating data against the ASIC derivative transaction reporting rules (DTRs) on a daily basis (T+1). A third-party assurance review of the reporting framework is recommended to identify coding errors or data mapping issues that internal teams may have missed. Data lineage—tracking the data from the trading engine to the repository—must be documented and auditable.

5. Implementation of “True” Client Outcome Monitoring

Design and Distribution Obligations require issuers to take “reasonable steps” to ensure distribution is consistent with the TMD. This requires monitoring actual client outcomes, not just sales figures.

Action Required: Firms must implement dashboards that track “red flag” indicators of consumer harm in real-time. These indicators should include:

  • High leverage utilisation rates by retail clients.
  • Frequency of margin calls and auto-liquidations.
  • Client tenure and churn rates (rapid loss of funds followed by exit).
  • Net loss positions relative to deposited funds.

When these metrics exceed defined risk appetite thresholds, the issuer must have a documented process to intervene—whether that involves suspending marketing, contacting the client, or offboarding. Evidence of this monitoring loop is what ASIC looks for during a surveillance visit.

The Cost of Inaction

The $40 million refund secured by ASIC is a fraction of the total cost to the industry when reputational damage, legal fees, and operational overhauls are factored in. With the CFD Product Intervention Order set for review in 2027, the conduct of issuers in 2026 will determine the future regulatory framework of the sector.

ASIC has signalled that it will use its full suite of powers, including stop orders and civil penalties, to enforce compliance. For AFSL holders, the priority must shift from aggressive acquisition to robust retention and protection frameworks. In a regulatory environment defined by data-driven surveillance and high stakes, operational integrity is the only viable strategy for sustainability.

For more insights on navigating regulatory changes and ensuring AFSL compliance, visit MIntegrity today.

Want to earn CPD points for reading this article? Sign up with our partner Think Caddie today to claim your points and access more expert financial content.

Back to Blog