AFSL Compliance Operating System
Every AFSL obligation.
One auditable system.
Veriqua replaces the shared drive, the spreadsheet register, and the manual board pack with a single compliance operating system built for ASIC-licensed firms. Every entry is timestamped, every action is attributed, and every deadline is tracked automatically.
Designed for Australian AFSL holders. No US compliance frameworks, no generic templates.
What AFSL compliance looks like without Veriqua
Folders aren't registers
Your SharePoint has a ‘2.4 Incident and Breach Management’ folder. It contains Word docs, PDFs, and three versions of the same spreadsheet. None of them are audit-ready.
The 30-day clock starts immediately
s912DAA requires you to investigate, determine significance, and notify ASIC within 30 calendar days of awareness. A shared calendar reminder is not a compliance system.
Board packs take two days to prepare
The Responsible Manager needs a pack by Friday. You spend Thursday pulling data from seven different files. That's two days of compliance work that adds zero regulatory value.
Built on ASIC Regulatory Guides
Veriqua maps your live obligations to the Regulatory Guides that govern them. These aren't just templates or tick-box checklists. These are fully operational modules, pre-configured for your AFSL obligations.
RG 78
Breach Reporting (s912DAA)
Automated tracking of the 30-calendar-day investigation and notification clock from the moment of awareness.
- •Breach register with statutory significance assessment (material loss, systemic issues, ASIC interest test)
- •AI-assisted ASIC notification drafter — generates the notification document in the required format
- •Linked Board Actions auto-created for significant breaches; clock visible on every breach record
RG 104
Licensing Obligations
Ongoing monitoring of your licence conditions, financial resource adequacy, and responsible person obligations.
- •Obligations register mapped to your specific AFSL authorisations
- •Responsible Manager assignment and declaration tracking
- •Resource adequacy monitoring with scheduled review workflow
RG 105
Organisational Competence
Training and CPD records for every Responsible Manager and representative, with import from major CPD providers.
- •Full CPD register with FASEA/FAISA framework tracking
- •One-click import from Kaplan, Finsia, and FAAA CSV exports — no manual data entry
- •Competency gap alerts and training completion reporting by role
RG 175
Conduct and Disclosure
Representative register, FSG version control, and authorised representative onboarding workflow.
- •Advice File Register for SoA and client file audit tracking
- •AR authorisation records with licence condition linkage
- •Version-controlled policy and disclosure document library
RG 181
Conflicts of Interest
Centralised register with mitigation strategy documentation and periodic review scheduling.
- •Conflict entries linked to obligations and staff records
- •Mitigation status tracked with evidence attachment
- •Board-reportable conflicts flagged automatically
RG 256
Client Money
Trust account reconciliation scheduling and statutory reporting management.
- •Reconciliation log with frequency controls
- •Reporting schedule calendar with due-date alerts
- •Exception flagging for unreconciled items
RG 259
Reference Checking
ASIC reference checking obligations and information-sharing protocol documentation.
- •Reference request log with statutory timeframe tracking
- •Protocol documentation linked to HR workflows
- •Audit trail of all reference checks provided and received
RG 270 & 271
Dispute Resolution
IDR tracking with AFCA escalation monitoring, RG 271 response time compliance, and complaint outcome recording.
- •Complaint register with 30-day IDR response clock
- •AFCA referral tracking with case number linkage
- •Systemic issue identification across complaint trends
14 live modules.
All LiveNothing coming soon. Every module listed below is available today. Compliance Officers use them daily.
Obligations Register
All AFSL obligations mapped, assigned, and monitored against due dates
Incident Register
Operational incident capture with root cause and remediation linkage
Breach Register
s912DAA clock, significance assessment, ASIC notification workflow
Complaints Register
IDR tracking, RG 271 response timers, AFCA escalation log
Conflicts Register
Declaration capture, mitigation evidence, board-reportable flag
Remediation Management
Project-based tracking for systemic client remediation programmes
Training & CPD
FASEA/FAISA register with Kaplan, Finsia, and FAAA CSV import
Monitoring Tests
Compliance testing calendar, evidence upload, effectiveness rating
Controls & Evidence
Control library linked to obligations, testing schedule, results log
Board Actions
Escalation register for RM and Board with owner, due date, and status
Board Pack Automation
Auto-generated compliance summary report for monthly Board review
Monthly Reports
Period-close compliance reporting with KPI summary
Internal Audit
Audit programme, findings register, and management response tracking
Regulatory Reporting Wizard
4-step guided ASIC Reportable Situation notification workflow
ASIC s912DAA — the 30-day clock, handled.
The Corporations Act s912DAA requires AFSL holders to investigate potential breaches, determine whether they are reportable, and notify ASIC — all within 30 calendar days of the day the licensee first becomes aware. Veriqua's Regulatory Reporting Wizard manages this end-to-end.
Assess
Confirm reportability. Veriqua walks you through the significance tests: material loss to clients, systemic nature, ASIC interest. The system records your determination and the date of awareness.
Prepare
Capture investigation findings. Record root cause, remediation steps taken, and estimated client impact. Veriqua's AI drafts the notification description in the language ASIC expects.
Preview
Review the full notification document before lodgement. The document is structured to match ASIC's reporting requirements and is saved permanently to the breach record.
Lodge
Record the lodgement date and reference number. If the breach is significant, Veriqua auto-creates Board Actions for RM sign-off. The 30-day clock closes.
Awareness date → lodgement date tracked automatically. If you are approaching day 25, Veriqua escalates.
The board pack used to take two days. Now it takes two minutes.
Every month, your Responsible Manager needs a compliance summary. Veriqua generates it automatically — pulling live data from every register: open breaches, complaint resolution rates, monitoring test results, CPD completion, and outstanding Board Actions.
The output is a structured report, not a raw data export. It is formatted for a Board or Compliance Committee audience, with KPI summary tiles, trend indicators, and a flagged items list. It can be downloaded as a PDF and attached to meeting minutes.
- ✓Report covers all 14 AFSL modules — nothing needs to be manually collated
- ✓Consistent format every period — comparisons between months are automatic
- ✓Every figure is traceable — click any KPI to see the underlying register entries
Board Pack — October 2025
Open Breaches
2
Complaints (30d)
4
CPD Compliance
94%
Monitoring Tests
12/12
What adoption looks like
Day 1 changes with Veriqua
- 1.Spreadsheet registers are retired and locked. All new entries happen in Veriqua with forced audit trails.
- 2.CPD tracking becomes self-serve for representatives, removing administrative burden from Compliance.
- 3.The incident register actively calculates statutory breach reporting deadlines automatically.
- 4.A single source of truth for all current compliance policies and their review dates is established.
- 5.Role-based access ensures staff only see what they need, while RMs have complete oversight.
Month 3 changes
- 1.Compliance committee meetings are run directly from Veriqua's auto-generated board packs.
- 2.Annual compliance reviews take hours of preparation, not weeks of data gathering.
- 3.Overdue tasks are automatically escalated without manual email follow-ups.
- 4.Trend analysis reveals systemic operational issues before they become reportable breaches.
- 5.The compliance function transitions from administrative chasing to active risk management.
Veriqua replaces your compliance folder structure
Most AFSL holders manage compliance through a shared drive with 40–60 folders. Here is what Veriqua replaces — module by module.
| Manual approach (SharePoint / shared drive) | Veriqua |
|---|---|
| 2.4 Incident and Breach Management folder | ✓Incident Register + Breach Register (live, timestamped, clocked) |
| 2.5 Conflicts of Interest sub-folder | ✓Conflicts Register with board-reportable flag |
| 2.6 Client Complaints folder | ✓Complaints Register with RG 271 timer |
| 3.8 Training and Competency folder | ✓CPD Register with Kaplan / Finsia / FAAA import |
| 4.1 Compliance Monitoring Plan docs | ✓Monitoring Tests module with evidence upload |
| 6.1 Training Register spreadsheet | ✓Live CPD register, completion alerts, gap reporting |
| 7.x Board Papers and Minutes folder | ✓Board Pack Automation — auto-generated each period |
| 8.2 Breach Reporting folder | ✓Regulatory Reporting Wizard with 30-day clock |
| Manual tracking of ASIC deadlines | ✓Obligation-level due date monitoring with alerts |
Every entry in Veriqua is attributed to a named user, timestamped, and immutable — ready for an ASIC review on day zero.
AFSL pricing — three tiers, no hidden modules
All 14 AFSL modules included in every plan. No per-module fees.
AFSL Essentials
Annual: $3,490 — 2 months free
Up to 3 users
- ✓Obligations Register — mapped to your AFSL authorisations
- ✓Incident Register with root cause tracking
- ✓Breach Register with s912DAA 30-day clock
- ✓Complaints Register with RG 271 IDR timer
- ✓Conflicts of Interest Register
- ✓Training & CPD Register
- ✓Monitoring Tests & Controls module
- ✓Board Actions register
- ✓Monthly Compliance Reports
- ✓Internal Audit programme
- ✓Remediation Management
- ✓Whistleblower Portal
- ✓Full audit trail — every entry timestamped and attributed
- ✓Unlimited obligations and register entries
AFSL Professional
Annual: $6,950 — 2 months free
Up to 15 users
Everything in Essentials, plus:
- ✓AI Compliance Assistant — ask questions across your registers
- ✓Regulatory Reporting Wizard — 4-step ASIC s912DAA notification workflow with AI-drafted notification document
- ✓Board Pack Automation — auto-generated monthly compliance summary for RM/Board review
- ✓Predictive Risk Scoring — AI-identified risk trends across obligations
- ✓Smart Intake — AI-assisted incident and breach capture
- ✓Regulatory Change Feed — ASIC updates mapped to your obligations
- ✓CPD Import Wizard — one-click import from Kaplan, Finsia, and FAAA CSV exports
- ✓Role-based access controls (Compliance Officer / Responsible Manager / Auditor)
AFSL Enterprise
Annual: $12,900 — 2 months free
Unlimited users
Everything in Professional, plus:
- ✓Unlimited user seats — no per-seat cost
- ✓Priority support with named account manager
- ✓Custom obligation library configuration
- ✓SAML/SSO enterprise authentication (scaffold available)
- ✓Multi-entity governance (for licensees managing multiple authorised representatives)
- ✓Database backup — daily automated backups with 30-day retention
- ✓Dedicated onboarding and data migration support
Hold both an AFSL and an AML/CTF obligation? The Dual Professional plan ($1,095/month) covers both regimes in one system — saving $249/month versus buying separately.
View bundle pricing →Common questions from Compliance Officers
Yes. The obligation library and register structure are not locked to a specific authorisation category. You configure which obligations apply to your licence at setup, and Veriqua tracks them accordingly. Firms with general advice, personal advice, and managed discretionary account authorisations all use the same system.
Kaplan, Finsia, and FAAA all export training completion reports in CSV format. Upload the CSV into Veriqua's CPD Import Wizard and it automatically maps the provider's categories to your training register. No reformatting required.
Yes. Veriqua's role-based access controls separate what each user can view, enter, and approve. Compliance Officers have full write access. Responsible Managers can review and sign off on breach significance determinations and Board Actions. Auditors have read-only access for their review window.
The Regulatory Reporting Wizard generates a structured notification document. It is not a legal filing system — lodgement is still through ASIC's portal (ASIC Connect or REG:EX). Veriqua produces the content and records the lodgement reference. You retain control of the submission.
You can export all register data as CSV at any time from within Veriqua. On cancellation, a full data export is provided before the account is closed.
Audit-ready from day one.
Every Veriqua account is pre-loaded with the ASIC Regulatory Guides most relevant to your licence type. Your obligations are mapped, your registers are live, and your deadlines are tracked — before your team enters a single record.