Sentencing exposes supervision gap in authorised representative networks

Case highlights why licensees need independent visibility over authorised representative trust accounts

Sentencing exposes supervision gap in authorised representative networks

Insurance News

By Roxanne Libatique

When Craig John Horsell’s suspended sentence was activated on July 9, 2026, more than a decade after his original offending, it illustrated a structural problem that compliance managers across Australia’s insurance broking sector should examine directly: in an authorised representative (AR) model where the licensee functions as regulatory infrastructure for an independent business owner, the licensee may have no natural visibility into that AR’s trust account unless the supervision framework is specifically designed to generate it.

The District Court of South Australia revoked Horsell’s Recognizance Release Order after finding he had committed a state deception offence against a bank between May 2015 and December 2018, while already subject to conditions from a 2013 conviction. The court activated his original three-year suspended sentence and imposed a further two years, eight months, and 10 days cumulatively, bringing his total effective sentence to three years, eight months, and 10 days’ imprisonment.

The underlying conduct

Between September 2007 and May 2010, Horsell diverted 89 client premium payments totalling approximately $414,000 into his personal bank account while acting as a director and employee of South Australian insurance brokerage businesses. He falsified bank statements and cancelled some clients’ policies to conceal the diversion, leaving those policyholders temporarily without cover.

Breaching client money obligations is an offence of strict liability under the Corporations Act 2001 – the Australian Securities and Investments Commission (ASIC) does not need to prove intent. ASIC expects licensees to maintain controls including account designation and segregation, regular reconciliation of client money balances against records, documented authorisation levels for permitted withdrawals, and prompt assessment and reporting where obligations are breached. Falsifying bank statements across 89 transactions over nearly three years is precisely the conduct that independent reconciliation controls – rather than representative self-reporting – are designed to detect.

That distinction is not incidental. ASIC’s case against Lanterne Fund Services, which resulted in a $1.25 million penalty, established that relying on pro-forma monthly compliance self-assessments by authorised representatives to identify conduct risk is not sufficient – licensees cannot simply rely on self-attestation to monitor representative conduct on an ongoing basis.

ASIC permanently banned Horsell from providing financial services in January 2012 – before his criminal conviction – demonstrating that its administrative and criminal enforcement mechanisms operate on separate, parallel tracks.

The visibility problem in AR networks

The accountability framework differs depending on how the broker operates, and the distinction carries direct compliance exposure. The AFS licensee bears primary legal responsibility for compliance, systems, and supervision, while an authorised representative delivers advice or services under that framework – and regulatory risk increases where licensees fail to properly supervise authorised representatives or where those representatives act outside their authorised scope.

In practice, most authorised representatives are independent business owners who control their own revenue, manage their own clients, and build their own teams – with the licensee functioning as regulatory infrastructure rather than employer. That commercial separation creates a structural information gap: the licensee does not automatically have sight of an AR’s trust account activity. Supervision frameworks that do not independently generate that visibility rely, by default, on the AR to surface problems – precisely what a representative engaged in deliberate misappropriation will not do. A significant risk that principal licensees must manage is contagion risk – where inadequate compliance arrangements for one authorised representative quickly spread to other ARs in the network, resulting in regulatory and reputational consequences for the licensee and all representatives operating under it.

ASIC has been direct about what it will not accept as an adequate substitute for genuine oversight. The Sanlam Private Wealth undertakings – accepted by ASIC in lieu of civil penalty proceedings after the regulator found the licensee had failed to adequately supervise its 42 corporate authorised representatives and 71 authorised representatives – confirm that due diligence must be ongoing rather than conducted only at appointment, a formalised and systematic review process must assess whether representatives comply with financial services laws, and self-reporting by authorised representatives alone is not adequate as a supervisory mechanism.

ASIC deputy chair Sarah Court stated that Sanlam “had plainly inadequate resources and processes to ensure its diverse cohort of authorised entities complied with the law,” and that “licensees like Sanlam must have robust compliance processes that are fit-for-purpose to ensure that those who operate under their licence comply with the law.”

Enforcement context

The Horsell sentencing arrives as ASIC operates at the highest enforcement intensity in its history. In the second half of 2025, ASIC secured nearly $350 million in court-ordered civil penalties – the highest six-monthly total in the agency’s history – and recorded 17 criminal convictions of individuals, a 31% increase on the prior corresponding period. Insurance complaints and claims handling was named among ASIC’s new enforcement priorities for 2026, alongside misleading pricing and financial reporting misconduct.

The industry’s self-regulatory framework is also under active revision. An independent review of the Insurance Brokers Code of Practice found a significant increase in code breaches related to remuneration disclosure, rising from 42 in 2023 to 334 in 2024, coinciding with the introduction of new informed consent regulations in July 2025. In January 2026, the National Insurance Brokers Association of Australia (NIBA) released its formal response to the review, backing reforms including extending remuneration disclosure to all retail clients, strengthening vulnerable client provisions, and introducing a 28-day renewal contact period.

What the sentencing judge said

Sentencing Judge Press stated that the Recognizance Release Order “did not deter you and it also suggests your deception of the bank was not a momentary lapse of judgment in a moment of weakness. It tends to reveal a willingness on your part to ignore responsibilities when they are inconvenient for you.” His Honour found the breach was “clearly not” different in character from the original offending.

ASIC chair Sarah Court said the outcome marked “the end of a very sorry and long-running chapter for the clients who placed their trust in Mr Horsell many years ago.” The matter was prosecuted by the Commonwealth Director of Public Prosecutions following an ASIC investigation.

Related Stories

Keep up with the latest news and events

Join our mailing list, it’s free!