Stop worrying about SEBI compliance. Learn exactly what RAs need to do in 2025, including MITC requirements, AI disclosures, model portfolio rules, and how to avoid common compliance mistakes.
SEBI Compliance Requirements for Research Analysts in 2025: The Complete Checklist
Running a SEBI-registered Research Analyst practice is not just about brilliant stock picks and model portfolio platform construction. The SEBI compliance software framework is extensive, detailed, and strictly enforced. A single compliance failure can result in monetary penalties ranging from Rs 1 lakh to Rs 25 crore, suspension of your registration, or even criminal prosecution under the SEBI Act. Yet compliance need not be burdensome if you understand the requirements clearly and build them into your daily operations from day one.
This guide provides a complete, actionable compliance checklist for SEBI-registered Research Analysts in 2025, covering every regulatory requirement with practical implementation guidance.
Annual Compliance Calendar
Every SEBI-registered RA must maintain a structured compliance calendar. Missing deadlines is one of the most common reasons for regulatory action. Here is the complete calendar:
| Month | Compliance Activity | Details |
|---|
| April | FY-end record closure | Close complaint register for previous FY, prepare annual summary |
| April-May | Net worth certificate | Obtain fresh CA-certified net worth certificate for the new FY |
| May-June | Compliance audit preparation | Prepare documents for annual compliance audit by CA/CS |
| June-September | Compliance audit completion | Complete audit and submit report to BSE Administration |
| Quarterly | Complaint data submission | Submit complaint statistics to BSE Administration portal |
| Ongoing | NISM certification validity | Monitor and renew NISM Series XV before expiry (3-year validity) |
| Ongoing | Disclosure compliance | Ensure disclosures accompany every research report and recommendation |
| As needed | Material change reporting | Report changes in address, key personnel, or business structure to SEBI |
Record Keeping Requirements
SEBI mandates that RAs maintain comprehensive records for a minimum of 5 years. This is one of the most inspected compliance areas. Records that must be maintained include:
Client Records
- Complete client onboarding software documentation for every client — PAN, identity proof, address proof, risk profiling questionnaire, income declaration
- Signed subscriber agreements with MITC incorporated
- Fee payment records — invoices, receipts, payment confirmations
- All correspondence with clients — emails, messages, call logs (if recorded)
- Client onboarding dates and subscription status history
Research and Recommendation Records
- Every research report issued, with date, time, and distribution list
- All model portfolio changes — stock additions, removals, and weightage adjustments with timestamps and rationale
- Disclosure documents accompanying each recommendation
- Source matesoftware for RIAsls and data used in research (analyst workpapers)
- Draft versions of reports showing the analytical process
Compliance Records
- Complaint register — every complaint received, action taken, resolution timeline, and outcome
- Compliance audit reports for each financial year
- Net worth certificates
- NISM certification copies and renewal records
- Deposit proof and lien documentation
- SEBI and BSE correspondence
Financial Records
- Complete revenue records — subscription fees received, client-wise breakdown
- Business expenses and tax filings
- GST returns and invoices
- Bank account statements for the RA business account
Using a platform like AlphaQuark automates most record keeping. Every portfolio change, client communication, and onboarding action is automatically timestamped and stored, creating a comprehensive audit trail that satisfies SEBI's requirements with minimal manual effort.
Disclosure Obligations
Disclosure is the single most important compliance requirement for Research Analysts. SEBI's framework requires multiple layers of disclosure designed to eliminate conflicts of interest and ensure investor protection.
Per-Recommendation Disclosures
Every research report, model portfolio update, or stock recommendation must include:
- Whether the RA, their associates, or relatives hold positions in the recommended security
- Whether the RA has received any compensation from the company in the past 12 months
- Whether the RA has any financial interest in or material conflict with the recommended company
- Whether the RA has served as an officer, director, or employee of the company
- Standard risk disclaimer about market risks
- Statement that past performance does not guarantee future results
Website and Marketing Disclosures
- SEBI registration number displayed prominently on the homepage and all marketing materials
- Complete fee structure visible before any payment is required
- Investor charter as prescribed by SEBI
- Complaint resolution mechanism with escalation path
- Methodology document describing the RA's research and portfolio construction process
- AI usage disclosure (if applicable, under Regulation 24(7))
Client Agreement and KYC Compliance
The subscriber agreement is a critical compliance document that must be executed before providing any research services. In 2025, the agreement must incorporate the MITC framework. The agreement should be in clear, plain language that a retail investor can understand. Avoid legal jargon that might be challenged as unclear or misleading during regulatory review. The KYC process must include PAN-based identity verification, risk profiling to categorise the client as conservative, moderate, or aggressive, and a signed acknowledgement that the client has read and understood the risk disclosures and MITC terms. All KYC documents must be verified, dated, and stored securely for the mandatory 5-year retention period.
Complaint Handling Compliance
SEBI takes complaint handling very seriously. RAs must maintain a dedicated complaint handling process that includes a complaint register with unique complaint IDs, date received, nature of complaint, action taken, resolution date, and client acknowledgement. Every complaint must be acknowledged within 3 business days, investigated thoroughly, and resolved within 21 business days. If resolution is not possible within this timeframe, the client must be informed of the reason and expected timeline. Unresolved complaints must be reported to BSE Administration. The complaint register is one of the first documents inspected during SEBI audits and inspections. A well-maintained register demonstrates professionalism and compliance culture, while gaps or missing entries raise red flags.
Annual Compliance Audit
Every SEBI-registered RA must undergo an annual compliance audit conducted by a practicing Chartered Accountant or Company Secretary not associated with the RA's own practice. The audit covers registration and qualification compliance including valid NISM certification, client agreement compliance with MITC requirements, disclosure compliance for all published recommendations, record keeping adequacy and completeness, complaint handling compliance including resolution timelines, fee structure compliance and transparency, marketing and advertising compliance with SEBI guidelines, net worth maintenance verification, and deposit compliance under the new framework.
The audit report must be submitted to BSE Administration within 6 months of the financial year end. Late submission attracts penalties and potential regulatory scrutiny. The auditor is required to provide an independent assessment and flag any deficiencies, which the RA must address within the specified timeline. Repeated audit deficiencies can trigger SEBI enforcement action.
Penalties for Non-Compliance
| Violation | Penalty Range |
|---|
| Operating without SEBI registration | Imprisonment up to 10 years, fine up to Rs 25 crore |
| Failure to maintain proper records | Monetary penalty Rs 1 lakh - Rs 1 crore |
| Non-disclosure of conflicts of interest | Suspension of registration, monetary penalty |
| Misleading advertisements | Warning, monetary penalty, suspension |
| Failure to handle complaints | Regulatory action, enhancement of penalties |
| Fraudulent recommendations | Cancellation of registration, criminal prosecution |
| Late compliance audit submission | Monetary penalty, enhanced scrutiny |
| Failure to maintain net worth | Show cause notice, potential suspension |
Building a Compliance-First Practice
The most successful Research Analysts treat compliance not as a burden but as a competitive advantage. Here is how to build compliance into the DNA of your practice:
- Automate what can be automated: Use technology platforms that automatically maintain audit trails, timestamp portfolio changes, and store client records. Manual compliance processes break down at scale.
- Create standard operating procedures: Document your compliance processes — client onboarding checklist, recommendation disclosure template, complaint handling workflow. SOPs ensure consistency even during busy periods.
- Regular self-audits: Do not wait for the annual compliance audit to discover gaps. Conduct quarterly internal reviews of your records, disclosures, and complaint register.
- Stay informed: Subscribe to SEBI circular notifications and BSE compliance updates. Regulatory changes are frequent, and ignorance is not an acceptable defence.
- Invest in the right tools: A comprehensive platform like AlphaQuark that integrates portfolio management with compliance features is far more reliable than a patchwork of spreadsheets and email folders.
Conclusion
SEBI compliance for Research Analysts is comprehensive but logical — every requirement serves the purpose of protecting investors and maintaining market integrity. By understanding the complete compliance landscape, building proper systems from day one, and treating compliance as a core business function rather than an afterthought, you can run your RA practice with confidence. The investment in compliance infrastructure pays dividends not just in avoiding penalties, but in building the trust and credibility that attract and retain clients long-term.
Grow Your Advisory Practice with AlphaQuark
AlphaQuark provides a complete model portfolio platform for SEBI-registered Research Analysts and RIAs. From automated rebalancing to multi-broker integration and SEBI compliance tools — everything you need to scale your advisory practice.
Frequently Asked Questions
How often is a SEBI inspection conducted for Research Analysts?
SEBI does not follow a fixed schedule for RA inspections. Inspections can be triggered by client complaints, red flags in compliance audit reports, suspicious patterns in recommendations, adverse media reports, or random selection for routine inspection. Most RAs experience an inspection once every 3-5 years, but some may be inspected more frequently if SEBI has concerns. The key is to maintain compliance at all times as if an inspection could happen tomorrow — because it can. The inspection team typically examines 3-5 years of records.
What records should I maintain for SEBI compliance?
You must maintain records in five categories for a minimum of 5 years: client records (KYC, agreements, payment records, correspondence), research records (all reports, model portfolio changes with rationale, disclosure documents, source materials), compliance records (complaint register, audit reports, net worth certificates, NISM certificates, SEBI correspondence), financial records (revenue records, GST filings, bank statements), and marketing records (all advertisements, social media posts, marketing materials used). Using an integrated platform like AlphaQuark automates most of this record keeping.
What is the penalty for not completing the annual compliance audit?
Failure to submit the annual compliance audit report within the prescribed timeline (6 months from financial year end) attracts monetary penalties from SEBI, typically starting at Rs 1 lakh and potentially increasing for repeat offenders. Additionally, late submission triggers enhanced regulatory scrutiny — your next inspection may be prioritised. In severe cases, SEBI may issue a show-cause notice questioning your continued registration. Beyond penalties, not completing the audit means you may have undetected compliance gaps that could compound into larger violations over time.
Do I need a separate compliance officer as an individual RA?
No. Individual RAs are not required to appoint a separate compliance officer. As an individual registrant, you are personally responsible for all compliance functions. However, for body corporate RAs (LLPs and companies), appointing a dedicated compliance officer with NISM certification is mandatory. Even as an individual RA, as your practice grows, you may want to engage a compliance consultant or use technology tools to manage the compliance workload effectively. Many individual RAs with 200+ clients find that investing in compliance support — whether human or technological — is essential for maintaining standards.
Can SEBI cancel my RA registration for compliance failures?
Yes. SEBI has the power to suspend or cancel an RA registration for serious or repeated compliance failures. Cancellation is typically reserved for egregious violations such as fraudulent recommendations, wilful non-disclosure of conflicts of interest, operating in a manner prejudicial to investor interests, or persistent non-compliance despite warnings. For less severe violations, SEBI usually follows a graduated approach — warning letter, monetary penalty, suspension, and then cancellation. However, certain violations like operating unregistered or making fraudulent claims can result in immediate suspension pending investigation.