Consequences of carrying on regulated financial business without FCA authorisation

Section 19 of the Financial Services and Markets Act 2000 (FSMA) contains the "general prohibition": you must not carry on a regulated activity in the United Kingdom unless you are authorised by the Financial Conduct Authority (FCA) or you are an exempt person. If you are unsure whether your business is in scope, read Do you need FCA authorisation before deciding what to do next. This guide explains what happens if the answer is yes and you trade anyway.

The consequences are stacked. A breach of the general prohibition is a criminal offence. The contracts you sign with customers are unenforceable against them. The FCA can fine you, censure you in public, freeze your assets and force you to return customer money. Your directors can be disqualified and personally barred from the industry. You should treat these consequences as a single package when you weigh up the cost of authorisation against the cost of trading without it.

FSMA 2000 general prohibition on unauthorised regulated activity

Section 19 of the Financial Services and Markets Act 2000 prohibits any person from carrying on a regulated activity in the United Kingdom by way of business unless authorised or exempt.

Section 19 of the Financial Services and Markets Act 2000 (FSMA) imposes the general prohibition: no person may carry on a regulated activity in the United Kingdom, or purport to do so, unless that person is either an authorised person or an exempt person. This is the statutory cornerstone of the UK financial services perimeter.

Statutory source: Financial Services and Markets Act 2000, section 19
Scope: Any person carrying on a regulated activity in the UK by way of business
Required status: Authorised person (FCA/PRA Part 4A permission) or exempt person
Definition of regulated activity: FSMA s.22 read with Schedule 2 and the Regulated Activities Order 2001 (SI 2001/544)
Activity outside permission (authorised persons): FSMA s.20 — authorised persons must act within the scope of their permission
Consequence of breach: Criminal offence under FSMA s.23 (see fsma_general_prohibition_offence)
Civil consequence: Agreements made in contravention are unenforceable against the customer (FSMA s.26)

Authorised or exempt: Authorisation is normally obtained through Part 4A FSMA permission granted by the FCA (with the PRA for dual-regulated firms). Exemptions are set out in the FSMA (Exemption) Order 2001 and include appointed representatives, members of designated professional bodies acting within Part XX, and certain public bodies.

By way of business: The general prohibition only bites where the regulated activity is carried on by way of business. The FCA's Perimeter Guidance manual (PERG) explains how this test is applied in practice.

The criminal offence under section 23

Section 23 of FSMA makes it a criminal offence to breach the general prohibition. The offence is triable either way. On conviction on indictment in the Crown Court, the maximum sentence is two years' imprisonment, an unlimited fine, or both. On summary conviction in the magistrates' court in England and Wales, the maximum is six months' imprisonment, a fine not exceeding level 5 on the standard scale, or both. Scotland and Northern Ireland have their own equivalent summary thresholds.

Section 23(3) provides a statutory defence. It is a defence for the accused to show that they took all reasonable precautions and exercised all due diligence to avoid committing the offence. In practice, this means you must be able to evidence the steps you took to check the perimeter of regulation: legal advice, written records of your scoping work, and a documented decision trail. A vague belief that you were outside the perimeter is not enough.

FSMA 2000 offence and civil consequences of breaching the general prohibition

Criminal offence under FSMA section 23 for contravening the general prohibition, plus unenforceability of agreements under section 26 and FCA restitution and injunction powers under sections 380 and 381.

Breaching the FSMA general prohibition exposes a firm or individual to both criminal and civil consequences. Section 23 makes contravention a criminal offence; section 26 makes related agreements unenforceable against the customer; and the FCA has additional civil powers to seek injunctions and restitution under sections 380 to 382.

Criminal offence — statutory source: FSMA 2000, section 23
Mode of trial: Triable either way (summary or on indictment)
Maximum penalty on indictment: 2 years' imprisonment, an unlimited fine, or both
Maximum penalty on summary conviction: 6 months' imprisonment, a fine not exceeding the statutory maximum, or both
Reasonable precautions defence: FSMA s.23(3) — defendant took all reasonable precautions and exercised all due diligence
Civil consequence — agreements: Unenforceable against the customer (FSMA s.26); customer may recover money paid and compensation for loss
Civil consequence — agreements made through unauthorised persons: FSMA s.27 (similar unenforceability where authorised person acts in consequence of an unauthorised person)
Court relief: FSMA s.28 — court may allow agreement to be enforced or money/property retained if just and equitable
FCA injunction powers: FSMA s.380 (injunctions to restrain contraventions and require remedial steps)
FCA restitution powers: FSMA s.382 (restitution orders by the court); FSMA s.384 (restitution required by the regulator)
Related cross-references: See fsma_general_prohibition (s.19) and fsma_regulated_activities_perimeter (s.22 and the RAO)

Section 23 offence: A person who contravenes the section 19 general prohibition is guilty of an offence. The offence is triable either way. On conviction on indictment the maximum is two years' imprisonment, an unlimited fine, or both; on summary conviction the maximum is six months' imprisonment, a fine not exceeding the statutory maximum, or both. It is a defence under section 23(3) for the defendant to show that all reasonable precautions and all due diligence were exercised to avoid committing the offence.

Civil consequences: Under section 26, an agreement entered into by a person in the course of carrying on a regulated activity in contravention of the general prohibition is unenforceable against the other party. The customer is entitled to recover any money or other property paid or transferred under the agreement, together with compensation for any loss sustained as a result of having parted with it. Section 27 extends similar treatment to agreements made by authorised persons in consequence of something said or done by an unauthorised person. Under section 28, the court has a discretion to allow the agreement to be enforced, or money or property to be retained, where it considers it just and equitable to do so.

FCA enforcement powers: The FCA may apply to the court for an injunction under section 380 to restrain a contravention of the general prohibition or to require steps to remedy a contravention. Where profit has accrued to a person as a result of the contravention, or another person has suffered loss, the FCA may seek a restitution order from the court under section 382, or require restitution administratively under section 384. These powers operate in addition to, not instead of, criminal prosecution under section 23.

Section 23 FSMA: criminal offence

Penalty: Up to 2 years' imprisonment and an unlimited fine on indictment

Breaching the section 19 general prohibition is a criminal offence under section 23 of FSMA 2000. On summary conviction in England and Wales the maximum is 6 months' imprisonment or a level 5 fine. The statutory defence under section 23(3) requires evidence of reasonable precautions and due diligence.

Enforced by: Financial Conduct Authority (criminal prosecution)

Applies when: Carrying on a regulated activity without authorisation or exemption

How to avoid:

Stop the regulated activity, take legal advice on the perimeter, and apply for authorisation or an appropriate exemption before resuming.

FSMA 2000 section 23 on legislation.gov.uk

Civil unenforceability and customer redress

Section 26 of FSMA makes any agreement entered into by a person carrying on a regulated activity in breach of the general prohibition unenforceable against the other party. Your customer can walk away from the contract. Section 28 then allows the customer to recover any money or property they transferred under the agreement, plus compensation for loss. The court may permit enforcement only if it is satisfied it is just and equitable in all the circumstances.

The strategic point is that civil unenforceability bites regardless of whether the FCA prosecutes. A single disgruntled customer can unwind their contract and claim restitution. If you have a book of unauthorised business, the contingent liability covers every customer in that book and survives a change of ownership. This often surfaces in due diligence on a sale or investment round and can collapse the transaction.

FCA regulatory enforcement powers

Beyond criminal prosecution, the FCA has a graduated set of civil and regulatory tools:

Public censure. The FCA can publish a statement that a person has breached the general prohibition. This is reputationally severe and discoverable in perpetuity.
Financial penalty under section 206. Although section 206 is most commonly used against authorised firms, the FCA can impose financial penalties for misconduct linked to unauthorised activity in conjunction with other powers.
Restitution under section 380 and section 384. The FCA can apply to the court, or order directly, that the firm pays back profits made or losses caused by the unauthorised activity to affected customers.
Injunctions under section 380. The court can restrain a person from continuing or repeating the breach and require steps to remedy it.
Asset freezing under section 381. Where there is a risk that customer money will dissipate, the FCA can obtain a freezing order over the firm's and connected persons' assets.

Consequences for directors and senior managers

Personal consequences sit alongside firm-level consequences. Under section 56 of FSMA, the FCA can make a prohibition order against an individual it considers not fit and proper, barring them from working in regulated financial services in any role covered by the order. The bar can be permanent.

The Company Directors Disqualification Act 1986 is the second lever. Conduct that makes a director unfit to be concerned in the management of a company — which knowingly running unauthorised financial services typically does — can result in a disqualification order of up to 15 years. Disqualified directors cannot act as a director, take part in the formation or management of a company, or act as an insolvency practitioner during the disqualification period. Breach of a disqualification order is itself a criminal offence.

Why this sits alongside the perimeter question

Authorisation is expensive and slow. Founders sometimes treat it as something to do later, after product-market fit. The consequence stack above is the reason that calculation usually fails. Civil unenforceability creates a contingent liability on every customer contract you sign. A criminal conviction or FCA prohibition forecloses your career in financial services. Asset freezing during an investigation halts trading regardless of whether you are eventually convicted. The cost of authorisation is bounded; the cost of getting the perimeter wrong is not.

The right pairing for this guide is Do you need FCA authorisation. Read the two together before you commit to a route to market.

UNDER CONSTRUCTION

Guvnor

Consequences of carrying on regulated financial business without FCA authorisation

The criminal offence under section 23

Section 23 FSMA: criminal offence

Civil unenforceability and customer redress

FCA regulatory enforcement powers

Consequences for directors and senior managers

Why this sits alongside the perimeter question

Compliance Assistant

🚧 UNDER CONSTRUCTION

The criminal offence under section 23

Section 23 FSMA: criminal offence

Civil unenforceability and customer redress

FCA regulatory enforcement powers

Consequences for directors and senior managers

Why this sits alongside the perimeter question

Related guides in Financial Regulation Overview

UNDER CONSTRUCTION