The Hidden Compliance Risk
in Your Team's Phone Calls

Most insurance brokerage compliance programmes focus on documents: policies, procedures, Statements of Advice, file notes. The risk that accumulates in verbal advice conversations often receives less attention, even though client interactions are frequently where conduct obligations are tested in real time. This article explains why phone calls represent a material compliance gap for many brokerages, what systematic call monitoring actually covers compared to spot-checks, and what good call oversight looks like as an operational practice.
Where Compliance Risk Actually Lives
Insurance brokerage compliance frameworks are generally built around documentation. Policies sit on shared drives. Procedures are mapped and signed off. Statements of Advice are reviewed before they go out. For most firms, the document side of compliance has received significant investment and attention. For many firms, the verbal side has received considerably less. Every day, brokers talk to clients on the phone. They provide advice, explain coverage, handle renewals, respond to claims queries. These conversations can carry the same regulatory significance as written interactions, and in many cases they are where best interest duty for personal advice interactions, disclosure obligations, and the general obligation to act efficiently, honestly and fairly are either met or not met in practice. The gap for many firms is not in their written compliance framework. It is in whether anyone is systematically checking whether that framework is translating into client conversations. ASIC's enforcement record reinforces the point. In the second half of 2025 alone, courts imposed a record $349.8 million in civil penalties arising from ASIC enforcement actions, according to ASIC's February 2026 enforcement update. The pattern across many of those cases is consistent: firms had the right intentions but lacked systems to demonstrate compliance with the conduct that was actually taking place.
Court-ordered civil penalties secured by ASIC in H2 2025: the highest six-monthly total in the regulator's history
People or companies subject to ASIC enforcement proceedings in 2024–25, with a 94% success rate
New investigations launched by ASIC in H2 2025, alongside 518 surveillance activities completed
Your calls are already being recorded.
Callyx.ai makes sure they are working for your compliance programme.
What Supervision of Calls Actually Requires
The Corporations Act places a clear obligation on AFSL holders to take reasonable steps to ensure that their representatives comply with the financial services laws. That obligation is not limited to written advice. It applies to every financial service provided under the licence, including verbal advice given on the phone.
ASIC's RG 104 is explicit that compliance measures need to be fully implemented and integrated into day-to-day business conduct, not just documented. A written supervision policy that is not actively applied to the calls your brokers are making every day may not function as an effective supervision programme in practice.
In June 2024, ASIC reinforced this directly. The regulator called on AFS licensees to strengthen supervisory arrangements for recording and monitoring representatives' business communications, citing concerns that unmonitored communication channels significantly increase the risk of misconduct going undetected. While that guidance was directed at market intermediaries, it reflects broader supervisory themes relevant to financial services licensees generally: having calls recorded is not the same as having those calls supervised. For insurance brokers specifically, the calls most at risk of producing compliance issues are the ones that contain advice. A renewal conversation where a broker recommends continuing existing cover. A new business call where a broker explains product features and exclusions. A claims discussion where the broker's comments about coverage may affect the client's expectations. For personal advice interactions, best interest obligations where applicable and disclosure requirements may be engaged, and these are the conversations that spot-check monitoring is least likely to capture consistently.
The Limitations of Sampling
Where sampling-based monitoring can fall short
1. Statistical coverage
If a broker makes 20 client calls a day and a compliance manager reviews five of those calls each week across a team of ten brokers, the proportion of conversations actually reviewed can be very small. Patterns of non-compliant conduct that occur occasionally, rather than consistently, can pass through a sampling-based programme without being detected.
2. Selection bias
In most sampling programmes, the calls reviewed are either randomly selected or selected by the broker. Neither approach systematically targets the conversations most likely to contain compliance issues: complex renewals, new business calls, claims conversations, situations where the client pushed back or asked challenging questions.
3. Supervisory blind spots
ASIC guidance consistently emphasises that supervision arrangements should be effective, implemented in practice, and appropriate to the nature, scale and complexity of the business. A programme that covers a small proportion of conversations may provide meaningful oversight while still leaving material supervisory blind spots, particularly in higher-volume environments.
Most call monitoring programmes have a gap: the conversations that are not being reviewed.
Callyx.ai monitors 100% of your recorded calls automatically. Every disclosure, every advice conversation, every compliance event across your team: reviewed, flagged and documented. No sampling. No gaps.
Book a DemoWhat Systematic Call Monitoring Looks Like
A defined monitoring framework
The criteria applied to calls are documented: what constitutes a compliant disclosure, what best interest obligations look like in a renewal conversation, what escalation triggers exist for potential issues. Without a consistent framework, monitoring results vary depending on who is reviewing and what they are looking for.
Coverage across call types
A monitoring programme that focuses only on new business calls can miss compliance issues that emerge in renewals or claims conversations. Different call types carry different obligations, and the monitoring programme needs to reflect that.
Documentation of outcomes
Each reviewed call should produce a recorded outcome: compliant, requiring coaching, escalated for review. Without documentation, there is no evidence base to show a regulator if asked, and no way to track performance trends over time.
Feedback loops into coaching
Call monitoring is most valuable when it informs how brokers are developed, not just when it catches problems. A monitoring programme that identifies consistent patterns across the team gives management specific, evidence-based material to work with.
How Callyx.ai Fits
Flags potential compliance issues automatically
The platform flags calls that contain potential disclosure gaps, advice that does not meet best interest criteria, or language patterns associated with compliance risk. Flagged calls are surfaced for human review with context, so compliance managers can focus their time on the conversations that most need attention.
Produces a documented evidence base
Every reviewed call produces a record of its outcome, which is stored and accessible. If ASIC were to conduct a surveillance of the brokerage's compliance programme, there is a documented evidence base covering all recorded calls rather than a selection of reviewed samples.
Feeds pattern data back into coaching
Patterns identified across the team, such as a particular disclosure being inconsistently delivered or a specific call type producing more flags than others, give management specific information to act on. This makes coaching conversations more targeted and more useful.
The operational challenge for many firms is not knowing what the obligations are: it is consistently demonstrating that they are being met across every client conversation.
Practical Steps
Audit what your current monitoring programme actually covers
Before adding any new process or technology, understand the current baseline. How many calls are being reviewed each week, relative to total call volume? Which call types are included? Is monitoring documented and are outcomes recorded?
Define a compliance framework for call review
Monitoring is only consistent if the criteria are consistent. Document what compliant conduct looks like for the main call types in your brokerage: new business, renewal, mid-term adjustment, claims. This becomes the reference point for every reviewed call.
Ensure monitoring covers high-risk call types
New business calls and renewal conversations where advice is given carry the highest obligation density. If monitoring resources are limited, prioritise these call types before expanding to lower-risk conversations.
Produce documented evidence of your monitoring
ASIC guidance is consistent that compliance measures need to be implemented and verifiable, not just described in policy. A record of each reviewed call, its outcome, and any follow-up taken is more useful in a surveillance or audit context than a monitoring policy document.
Use monitoring data to inform coaching and training
The most operationally valuable thing a call monitoring programme produces is pattern data: which brokers, which call types, which obligations are producing the most flags. That data gives management a basis for targeted coaching rather than general reminders about compliance requirements.
These steps can be applied incrementally. The goal is not a perfect programme from day one but a monitoring framework that improves coverage and produces documented evidence over time.
Summary
The compliance risk in phone calls is not a new problem. ASIC's general obligation framework has always required AFSL holders to supervise their representatives' conduct, including verbal advice. What has changed is the enforcement environment and the availability of tools to address the risk systematically. Spot-check monitoring can identify specific issues and give compliance managers useful insight, but it may leave blind spots in higher-volume environments where a large proportion of calls goes unreviewed. As call volumes grow and ASIC's enforcement activity continues at record levels, the operational case for extending monitoring coverage becomes more material. For insurance brokerages that have already built strong frameworks around their AFSL obligations, the next operational step is ensuring those frameworks extend consistently to the conversations where client outcomes are actually determined. Callyx.ai provides that coverage automatically, giving compliance managers a complete, documented picture of what is happening across every recorded call.
Frequently Asked Questions
About the Author
Vincent Keogh
Vincent is an operations specialist on the Callyx.ai team, writing for compliance managers and principals on how to get maximum value from recorded calls: across compliance, staff training, and business performance.
Primary Sources
- Corporations Act 2001 (Cth), s.912A: General obligations of AFS licensees
- ASIC, Regulatory Guide 104: AFS Licensing: Meeting the general obligations (June 2022)
- ASIC, AFS licensee obligations
- ASIC media release 24-134MR: ASIC calls on market intermediaries to strengthen supervision of business communications (26 June 2024)
- ASIC, Information Sheet 283: Supervising your representatives' business communications
- ASIC media release 26-032MR: ASIC secures record $350 million in civil penalties and $583 million back to Australians in second half of 2025 (25 February 2026)
- ASIC, Annual Reports
- ASIC Corporations (Record-Keeping Requirements for Australian Financial Services Licensees when Giving Personal Advice) Instrument 2024/508 (registered 24 September 2024, F2024L01201)
Related Articles
This article is general information only and does not constitute legal advice. AFSL holders and their representatives should seek independent legal or compliance advice in relation to their specific obligations under the Corporations Act 2001 and applicable ASIC instruments. Regulatory requirements may change. Always refer to current legislation and ASIC guidance for the most up-to-date position.
Your calls are already being recorded.
Now make them count.
Recorded advice conversations are reviewed against your compliance criteria, with issues flagged and documented. Less reliance on sampling. Fewer blind spots.