Do I Need to Register with the CMF to Operate?
It depends on one prior question: whether your model falls within a service regulated by the Fintec Law. If it does, registration and CMF authorization are a condition to operate, and doing business without them is an infraction, not a grey area.
This page answers the registration question in the right order: whether you are inside the regulated perimeter, which services trigger it, what operating without registration exposes you to, and why the filing opens a permanent regime rather than closing a one-off step. It ends with the questions founders and CFOs ask first.
The prior question: are you inside the perimeter?
Registration is not a universal fintec duty. It attaches to specific regulated services, so the model has to be classified before anything else.
Inside the regulated perimeter
The model provides one of the services defined by Law 21.521. Registration in the Financial Service Providers Registry and CMF authorization are a condition to operate, together with the continuing duties of the Fintec Law regime.
Outside the perimeter
The activity does not match any regulated service. There is no duty to register under the Fintec Law, though other rules may still apply. The risk here is the opposite one: assuming you are outside when a feature of the product actually brings you in.
The classification turns on which regulated services the product actually performs.
The regulated services
The Fintec Law names specific activities. A single product often performs more than one, and each carries its own requirements.
- Crowdfunding platforms and alternative transaction systems.
- Credit advisory and investment advisory.
- Custody of financial instruments and order routing.
- Intermediation of financial instruments, among others defined by the law.
Getting the classification wrong in one direction means over-regulating; in the other, it means operating outside the law.
Operating without registration
Being inside the perimeter without the filing is not a low-visibility risk. It is a fineable infraction with commercial consequences.
CMF sanctions
Providing a regulated service without registration and authorization is sanctionable within the CMF supervisory regime, with fines and measures against the provider.
Counterparties and funding
Banks, investors and partners increasingly require proof of registration to contract or fund. Operating unregistered closes commercial doors well before any sanction arrives.
An ongoing regime
Registration opens duties of governance, risk and disclosure detailed by the CMF, including NCG 502. It is a state to maintain, not a box to tick.
Not sure if the Fintec Law reaches your model?
The costly mistakes are at the edges: assuming you are outside when a product feature brings you in, or registering for more than you provide. We classify the model against the regulated services and, where registration applies, prepare the CMF filing.
Discuss your model with usFrequently asked questions
Must every fintec company register with the CMF?
No. Only those providing one of the financial services regulated by Law 21.521 fall within the perimeter and must register in the Financial Service Providers Registry and obtain CMF authorization. The first analysis is not how to register, but whether the business model falls within a regulated activity at all.
Which services are regulated?
The law regulates, among others, crowdfunding platforms, alternative transaction systems, credit and investment advisory, custody of financial instruments, order routing and intermediation of financial instruments. Each activity has its own definition, and a single product may combine more than one.
What happens if I operate without registration?
Providing a regulated financial service without the corresponding registration and authorization is an infraction sanctionable by the CMF, with fines and measures within its supervisory regime. On top of the regulatory exposure comes contractual and reputational risk before clients and counterparties, who often require registration as a condition to operate.
Is registration a one-off step or a continuing duty?
It is the entry point to a permanent regime. Registration and authorization enable operation, but the provider is then subject to ongoing governance, risk-management, cybersecurity and disclosure duties detailed by the CMF, including NCG 502 and its amendments.
How long does authorization take?
It depends on the activity, the complexity of the model and the quality of the filing. The real timeline shortens when the application arrives complete and consistent with governance and risk-management requirements; it lengthens when the CMF must raise observations. Preparing the file well is the variable the provider controls most.
Official sources
Transform Your Legal Challenges into Competitive Advantages
Discover how our innovative approach can drive your business