FINMA: Switzerland's financial market regulator

Marcus Altenburg, Managing Partner Published 12 Jun 2026

FINMA, the Swiss Financial Market Supervisory Authority, is Switzerland's single, independent financial regulator, seated in Bern. Created by the Financial Market Supervision Act (FINMASA) of 22 June 2007, it took over from three predecessor authorities on 1 January 2009. It licenses and supervises banks, insurers, securities firms, asset managers, fund institutions, exchanges and fintech companies, polices the anti-money-laundering system, and acts as resolution authority when an institution fails. It is funded by the firms it supervises, not by taxpayers, and it cannot impose fines: its enforcement is administrative, with criminal prosecution left to other federal authorities.

What does FINMA supervise?

FINMA supervises every prudentially licensed financial institution in Switzerland and the market infrastructure those institutions trade on. The Financial Market Supervision Act (FINMASA, SR 956.1) is the umbrella statute; the sector acts below define who needs authorisation and what FINMA polices in each case.

Sectors under FINMA supervision and the financial-market act each sits under, as of June 2026.
Sector	Legal basis	What it covers
Banks and fintech firms	Banking Act (BankA, SR 952.0)	Deposit-taking banks from UBS to cantonal and private banks; the art. 1b fintech licence for public deposits up to CHF 100 million
Securities firms and asset managers	Financial Institutions Act (FinIA, SR 954.1)	Securities firms, portfolio managers, trustees and managers of collective assets
Funds	Collective Investment Schemes Act (CISA, SR 951.31)	Swiss funds, fund management companies and representatives of foreign funds
Insurers	Insurance Supervision Act (ISA, SR 961.01)	Life, non-life and reinsurance undertakings, plus insurance intermediaries
Market infrastructure	Financial Market Infrastructure Act (FMIA, SR 958.1)	Stock exchanges, multilateral and DLT trading facilities, central counterparties and securities depositories
The AML system	Anti-Money Laundering Act (AMLA, SR 955.0)	Money-laundering controls at every financial intermediary, and recognition of the self-regulatory organisations
Conduct at the point of sale	Financial Services Act (FinSA, SR 950.1)	Client classification, suitability and appropriateness checks, prospectus and key-information rules

One neighbouring institution is often confused with FINMA: the Swiss National Bank. Monetary policy, interest rates and the franc belong to the SNB, not the regulator. How the central bank, FINMA and the commercial banks divide the work is mapped in our guide to the Swiss banking system.

What does FINMA do?

FINMA performs four statutory tasks: it authorises, it supervises, it enforces and it resolves. Authorisation is the gate: no bank, insurer, securities firm, fund institution or portfolio manager may operate in or from Switzerland without the licence its activity requires. Supervision is the standing work: monitoring capital, liquidity, governance and conduct for as long as the licence exists.

The five supervisory categories

FINMA grades every supervised institution into one of five supervisory categories using measurable criteria: total assets, assets under management, privileged deposits and required capital. Category 1 holds the extremely large, complex institutions whose failure could destabilise the financial system; since the 2023 takeover of Credit Suisse, UBS is the standing example. Category 5 holds small firms watched through quantitative indicators and examined closely only when something looks off. The category decides how intensive the supervision is, and how high the annual levy runs.

The audit-firm model

FINMA does not inspect most institutions itself. Switzerland runs a dual supervisory system in which licensed audit firms conduct the periodic regulatory audit as FINMA's extended arm, with the supervised institution paying for its own audit. Portfolio managers and trustees have a further layer: their day-to-day supervision sits with a FINMA-authorised Supervisory Organisation (SO), with FINMA above it. Only the largest banks and insurers see intensive direct supervision, including on-site reviews and stress tests.

Resolution is the fourth task. FINMA is Switzerland's resolution authority for banks and insurers, running restructuring and bankruptcy proceedings when prevention fails. The largest case to date: on 19 March 2023 FINMA approved the takeover of Credit Suisse by UBS and ordered roughly CHF 16 billion of AT1 capital instruments written down — a demonstration that its crisis powers reach investors, not only managers.

How do you check whether a firm is FINMA-regulated?

FINMA publishes two tools that answer the question in minutes, and both are free. The first is the directory of authorised institutions, individuals and products, searchable by name and licence category. Every bank, insurer, securities firm, fund institution, portfolio manager and trustee holding a FINMA licence appears there; a firm that claims a Swiss licence but is absent from the directory does not have one.

The second is the FINMA warning list: companies and individuals that may be carrying out unauthorised activities, often while presenting themselves as Swiss-regulated. Two caveats apply. Inclusion signals missing authorisation, not a court finding of illegality. And the list is not exhaustive and is not updated daily, so absence from it proves nothing on its own.

A reliable check runs in this order:

Take the exact legal name from the contract or website imprint, not the marketing brand.
Search that name in the FINMA directory of authorised institutions.
Check the warning list for the name and any individuals behind it.
If the firm claims only SRO membership, verify it on that SRO's own member list. SRO members do not appear in FINMA's licence directory.
Match the claimed status to the service sold: an AML affiliation is not an asset-management licence, and a commercial-register entry is not regulation at all.

What enforcement powers does FINMA have?

FINMA's enforcement powers are administrative and sit in arts. 29–37 FINMASA. Where it finds violations of supervisory law, it can:

order measures to restore compliance and issue declaratory rulings naming the breach (arts. 31–32 FINMASA);
ban individuals from senior positions in the supervised sector for up to five years (art. 33 FINMASA);
publish its final ruling, naming the firm or person (art. 34 FINMASA);
confiscate profits earned through the breach: disgorgement, not a penalty (art. 35 FINMASA);
appoint an investigating agent inside the firm, at the firm's cost (art. 36 FINMASA);
withdraw the licence and, for unauthorised operators, order liquidation (art. 37 FINMASA).

What FINMA cannot do is fine anyone. Disgorgement strips the gain but adds no punishment on top, and FINMASA gives the regulator no power to impose monetary penalties. Criminal offences under the financial-market acts (operating without a licence among them) are prosecuted by the Federal Department of Finance, while insider trading and market manipulation fall to the Office of the Attorney General. Where FINMA suspects a crime, it files the complaint and hands over the file.

How does FINMA regulate crypto?

FINMA regulates crypto by substance, not by label, and it moved earlier than most peers. Its 16 February 2018 ICO guidelines sorted tokens into three categories (payment, utility and asset tokens), each mapped to existing financial-market law. The DLT framework that followed amended ten federal acts, entering into force in stages during 2021 and creating ledger-based securities and a DLT trading facility licence from 1 August 2021.

Stablecoins came next: FINMA's guidance of 26 July 2024 set out when an issuer takes deposits under the Banking Act, the conditions for default guarantees from banks, and the heightened money-laundering and sanctions risks it expects issuers to control. Today a crypto exchange or custody business typically operates as a financial intermediary under AMLA, while a federal consultation that closed in February 2026 prepares two dedicated licence categories (a Payment Instrument Institution licence and a Crypto-Institution licence) expected to enter into force in 2027 with a one-year transition. What that means for a crypto business in practice is set out in our guide to the Swiss crypto licence.

What FINMA does not do

The limits matter as much as the powers, because most misplaced expectations of FINMA fall in one of five gaps.

It does not vet investment quality. A licence confirms capital, organisation and fit-and-proper management, not that the products are sound or the strategy sensible. FINMA pays no compensation for investment losses and does not arbitrate individual client disputes; complaints against a bank go to the Swiss Banking Ombudsman.

It does not supervise ordinary companies. A Swiss commercial-register entry, a Zug address or a ".ch" domain places a firm under no financial supervision whatsoever.

It does not directly supervise AML-only intermediaries. Fiduciaries, payment firms and crypto brokers below the prudential threshold are supervised day to day by one of the eleven FINMA-recognised self-regulatory organisations, as of June 2026: the affiliation route described in our SRO membership guide. FINMA supervises the SROs, not each member.

It does not insure deposits. Deposit protection up to CHF 100,000 per client per bank is run by esisuisse, a private industry-funded scheme, as of June 2026.

It does not prosecute, and it does not set monetary policy. Criminal cases belong to the Federal Department of Finance and the Attorney General; interest rates belong to the SNB.

FINMA, SRO and esisuisse: who does what in the Swiss system, as of June 2026.
Body	What it is	What it does	What it does not do
FINMA	Independent federal regulator (public-law institution)	Licenses and supervises institutions, enforces supervisory law, resolves failing banks and insurers, runs the warning list	No fines, no deposit insurance, no compensation for investment losses
SRO	Private body recognised by FINMA	Supervises AML compliance of financial intermediaries that need no prudential licence	No prudential licence; membership says nothing about investment competence
esisuisse	Industry-funded deposit-insurance scheme	Pays protected deposits up to CHF 100,000 per client per bank if a member bank fails	No supervision; securities and crypto holdings are outside the guarantee

How do supervised firms deal with FINMA?

For a firm, FINMA is first a gatekeeper and then a standing counterparty. The relationship begins with the licence: confirming which category the activity falls under, building the application file and carrying it through the supervisory dialogue; the process, capital thresholds and timelines are covered in our FINMA authorisation service page. In the authorisation files we run, the rounds that consume the most time are the fit-and-proper evidence for the proposed managers and the AML section of the business plan, rarely the capital threshold, which is usually the simplest condition to satisfy.

After approval the relationship becomes a cycle. The firm undergoes its periodic regulatory audit by a licensed audit firm or its Supervisory Organisation, files reports and applications through FINMA's electronic survey and application platform (EHP), and pays the annual supervisory levy scaled to its category. Material changes (new owners, new managers, new business lines) need notification or fresh approval before they happen, not after. The licence categories, capital figures and SRO alternatives are covered in detail across our FINMA licensing guides.

FAQ

Frequently asked questions.

01What is FINMA?

FINMA is the Swiss Financial Market Supervisory Authority, Switzerland's independent federal financial regulator, seated in Bern. It has operated since 1 January 2009 under the Financial Market Supervision Act (FINMASA) and licenses and supervises banks, insurers, securities firms, asset managers, fund institutions, exchanges and fintech companies.

02What does FINMA stand for?

FINMA abbreviates the German Eidgenössische Finanzmarktaufsicht, rendered in English as the Swiss Financial Market Supervisory Authority. The same short name is used across all of Switzerland's official languages and in English.

03Is FINMA a government agency?

Not in the ordinary sense. FINMA is an independent public-law institution with its own legal personality. The Federal Council appoints its board and Parliament exercises high-level oversight, but neither may direct individual supervisory decisions. It is funded entirely by fees and levies on supervised institutions, not by taxes.

04When was FINMA created?

Parliament adopted FINMASA on 22 June 2007, and FINMA took over supervision on 1 January 2009. It merged three predecessors: the Swiss Federal Banking Commission, the Federal Office of Private Insurance and the Anti-Money Laundering Control Authority.

05How do I check if a company is FINMA-regulated?

Search the exact legal name in FINMA's public directory of authorised institutions, individuals and products on finma.ch, then check the FINMA warning list. If the firm claims only SRO membership, verify it on that SRO's own member list. A Swiss commercial-register entry alone proves nothing about regulation.

06What is the FINMA warning list?

A public list on finma.ch of companies and individuals that may be carrying out unauthorised activities, often while falsely claiming Swiss regulation. Inclusion flags missing authorisation rather than proven illegality, and the list is not exhaustive. Absence from it is no guarantee.

07Can FINMA fine companies?

No. FINMA cannot impose fines; its measures are administrative: industry bans, disgorgement of profits, licence withdrawal, publication of rulings. Criminal offences under the financial-market acts are prosecuted by the Federal Department of Finance, while insider trading and market manipulation go to the Office of the Attorney General.

08Does FINMA regulate crypto?

Yes, where the activity touches financial-market law. FINMA classified tokens as payment, utility or asset tokens in its 16 February 2018 guidelines, licenses DLT trading facilities, and issued stablecoin guidance on 26 July 2024. Crypto exchanges today need AML affiliation; a dedicated Crypto-Institution licence is expected for 2027.

09What is the difference between FINMA and an SRO?

FINMA is the state regulator that grants prudential licences. A self-regulatory organisation (SRO) is a private body recognised by FINMA that supervises the anti-money-laundering compliance of financial intermediaries needing no prudential licence. Eleven SROs are recognised as of June 2026. FINMA supervises the SROs themselves.

10Who supervises FINMA?

The Federal Council appoints FINMA's board of directors and approves its strategic goals, and the Federal Assembly exercises parliamentary oversight. FINMA's rulings can be appealed to the Federal Administrative Court and onwards to the Federal Supreme Court. In individual supervisory decisions it acts independently.

11Does FINMA protect my bank deposits?

No. Deposit protection is run by esisuisse, the industry-funded Swiss deposit-insurance scheme, which covers up to CHF 100,000 per client per bank if a member bank fails. FINMA's role is preventive supervision and, where a bank still fails, ordering and steering its resolution.

12Who runs FINMA?

As of June 2026, Marlene Amstad chairs the board of directors (since 1 January 2021) and Stefan Walter is chief executive officer (since 1 April 2024). The board sets strategy and decides matters of substantial importance; the executive board runs day-to-day supervision from Laupenstrasse 27, 3003 Bern.

Knowledge base