Australia: fintech & payments regulation

Regulated

Fintech & payments regulated under Corporations Act 2001; ASIC oversees AFS/credit licensing

Lead regulator:
Australian Securities and Investments Commission (ASIC)
Key law:
Corporations Act 2001
Last updated:
2026-07-12

The Australian regulatory framework for fintech and payments is primarily governed by the Corporations Act 2001, with the Australian Securities and Investments Commission (ASIC) serving as the principal regulator for financial services and credit activities. Entities providing financial product advice, dealing in financial products, or operating payment facilities generally require an Australian Financial Services (AFS) licence or specific relief under the Act.

Payment activities are further scrutinized under the National Consumer Credit Protection Act 2009 for credit-related functions, requiring an Australian Credit Licence where applicable. The Australian Prudential Regulation Authority (APRA) regulates deposit-taking institutions and superannuation entities, imposing prudential standards on payment-related data and risk management for those specific sectors.

The regulatory environment supports innovation through an enhanced regulatory sandbox, allowing fintech firms to test products without holding a full licence under specific conditions. Recent regulatory guidance emphasizes strict compliance with organisational competence, financial resource requirements, and conduct obligations for all licensees.

Who regulates

  • Australian Securities and Investments Commission (ASIC)

    Primary regulator for financial services licensing, market conduct, and credit licensing.

    [1][2]
  • Australian Prudential Regulation Authority (APRA)

    Prudential regulator for deposit-taking institutions, superannuation, and insurance.

    [3][4]

Core laws & rules

  • Corporations Act 2001 (2001)

    The core legislation governing financial services, including licensing requirements for AFS licensees, conduct obligations, and disclosure standards.

    [1]
  • National Consumer Credit Protection Act 2009 (2009)

    Regulates credit activities, requiring Australian Credit Licences for entities engaging in credit provision or intermediation.

Licensing & registration

  • Australian Financial Services (AFS) Licence

    Required for providing financial product advice, dealing in financial products, or operating financial markets. ASIC assesses applications based on organisational competence, financial resources, and conduct obligations.

    [1]
  • Australian Credit Licence

    Required for engaging in credit activities as defined by the National Credit Act, including lending and credit intermediation.

  • Regulatory Sandbox

    An enhanced sandbox allows fintech firms to test innovative products and services without holding a full AFS or credit licence under specific exemptions.

Restrictions & warnings

  • Entities must maintain adequate organisational competence, financial resources, and professional indemnity insurance arrangements.

  • Strict conduct and disclosure obligations apply, including the preparation of Product Disclosure Statements (PDS) and adherence to codes of conduct.

Direction of travel

  • Regulators continue to emphasize compliance with general conduct obligations and breach reporting, with ASIC actively using discretionary powers to manage licence conditions.

Email alerts for Australia updates

New circulars, rules and guidance — a digest in your inbox, same day.

This guide is compiled automatically from 4 primary-source documents published by Australia's regulators, reviewed by RegAlert, and refreshed monthly (last updated 2026-07-12). It is not legal advice — always confirm requirements with the regulator or local counsel before acting.