Risk Disclosure to Client and KYC

Risk disclosure is a statutory obligation for any intermediary dealing in currency derivatives to inform the client about the nature and magnitude of risks involved before execution of a trade.

The Securities and Exchange Board of India (SEBI) mandates that the disclosure be in plain language, signed by the client, and retained for the prescribed period. The purpose is to ensure that investors make an informed decision, thereby reducing disputes and regulatory penalties.

In the exam, you will often be asked to identify missing elements in a disclosure statement or to choose the correct sequence of steps to provide risk information. Remember that every risk type – market, liquidity, leverage, operational and legal – must be explicitly mentioned.

The disclosure must cover five core risk categories:

Market Risk – the possibility of adverse price movements due to exchange‑rate fluctuations.

Liquidity Risk – the risk that the client may be unable to unwind a position at a reasonable price because of insufficient market depth.

Leverage Risk – the amplified effect of price changes on the client’s capital when positions are taken on margin.

Operational Risk – failures in systems, processes or human error that could affect trade execution.

Legal/Regulatory Risk – changes in regulations or legal disputes that may impact the derivative contract.

• Each risk must be described in simple language.
• The client must acknowledge receipt by signing the Risk Disclosure Document (RDD).

KYC is the process of verifying the identity, address, and financial profile of a client before allowing them to trade currency derivatives.

SEBI (Issue) Regulations, 2021 prescribe that every client must submit a PAN, Aadhaar, proof of address, and a recent photograph. For corporate clients, additional documents such as Certificate of Incorporation and Board Resolution are required.

In the exam, you may be asked which document is mandatory for a resident individual, or what the retention period for KYC records is (five years from the last transaction).

The KYC workflow consists of four sequential steps:

1. Document Collection – Obtain PAN, Aadhaar, address proof, and bank statement.

2. Verification – Cross‑check documents with government databases (e.g., UIDAI, NSDL).

3. Risk Profiling – Capture the client’s investment objectives, risk tolerance, and expected trading horizon. This information feeds directly into the risk disclosure narrative.

4. Record Keeping – Store electronic copies securely and retain them for a minimum of five years as per SEBI guidelines.

• Failure at any step invalidates the client’s ability to trade.
• Risk profiling must be updated annually or when material changes occur.

Risk profiling obtained during KYC determines the level of risk disclosure that must be provided. A high‑risk tolerance client receives a detailed leverage and margin‑call disclosure, whereas a conservative client receives a simplified version focusing on capital protection.

SEBI requires that the intermediary match the disclosed risk with the client’s stated risk appetite. If there is a mismatch, the transaction must be rejected or the client’s risk tolerance re‑assessed.

Exam questions often present a client profile and ask which risk disclosures are mandatory. Use the KYC‑derived risk category to select the correct set of disclosures.

The RDD must be a printed or electronic document that includes the client’s name, PAN, a list of all risk categories, and a statement that the client has understood and accepted the risks.

Key mandatory elements are:

• Date and signature of the client.
• Signature of the authorized person of the intermediary.
• Reference to the specific currency derivative product (e.g., NDF, FX Options).

The document should be retained for at least five years and must be presented to SEBI on request.

Intermediaries must maintain an audit trail of all risk‑disclosure communications, client acknowledgments, and KYC records. SEBI mandates a retention period of five years from the date of the last transaction.

Periodic internal reviews are required to verify that the disclosed risks remain current with market conditions. Any amendment to the RDD must be re‑signed by the client.

Non‑compliance can attract penalties ranging from monetary fines to suspension of the intermediary’s registration. Exam questions may ask about the penalty for failure to retain KYC documents – the answer is a fine up to Rs. 5 lakh per default.

Mnemonic for the five risk categories: MLL‑OL (Market, Liquidity, Leverage, Operational, Legal). Use it to quickly scan a disclosure statement for completeness.

Remember the KYC document hierarchy: PAN → Aadhaar → Address Proof → Bank Statement → Corporate Documents. This order often appears in multiple‑choice questions.

When faced with a scenario‑based question, first check: (1) Has the client signed the RDD? (2) Does the RDD list all five risk types? (3) Is the KYC profile aligned with the disclosed risk level? If any answer is ‘No’, the option is incorrect.