SEBI AI/ML Compliance

SEBI has layered its AI/ML regulation over three instruments: the 2019 reporting circulars for market intermediaries, Regulation 16C (introduced by the SEBI (Intermediaries) (Amendment) Regulations, 2025 on 10 February 2025), and the 20 June 2025 Consultation Paper on guidelines for responsible AI/ML usage in Indian securities markets. Combined, these set requirements for AI systems used in securities markets, trading workflows, asset management platforms, and regulated financial services in India. Check SEBI's circulars page for the current status of the Consultation Paper's downstream rules.

The three SEBI instruments that apply today

1. The 2019 reporting circulars (live, in force)

SEBI/HO/MIRSD/DOS2/CIR/P/2019/10 (4 January 2019) — stock brokers + depository participants
SEBI/HO/MRD/DOP1/CIR/P/2019/24 (31 January 2019) — market infrastructure institutions (exchanges, clearing corporations, depositories)
SEBI/HO/IMD/DF5/CIR/P/2019/63 (9 May 2019) — mutual funds, AMCs, trustee companies

All regulated intermediaries must file AI/ML-system disclosures — including a NIL declaration when no system is deployed — via the Exchange's Enhanced Supervision Portal. Reporting is half-yearly for trading members (April-September and October-March windows). The filing captures name + type of AI/ML application, date of first use, whether it initiates / routes / executes orders, whether it falls under discretionary investment or portfolio management, use in cybersecurity, marketing claims about the system, safeguards against abnormal behaviour, implementation methodology, and compliance attestation.

Harmonisation since July 2025: NSE-registered trading members file a single disclosure that NSE shares with BSE, MSE, MCX, NCDEX. (MSE adopted the harmonised model formally in MSE Circular MSE/MEM/17921/2025 on 7 October 2025.)

2. Regulation 16C — binding sole-liability rule (in force 10 February 2025)

SEBI Board's 208th meeting notified three amendment regulations: SEBI (Intermediaries) (Amendment) Regulations, 2025 (inserts Regulation 16C), plus parallel amendments on the MIIs and Depositories side (the DP Amendment Regulations came into force 1 April 2025).

Regulation 16C's operative rule: any SEBI-regulated entity is solely liable for AI/ML tools it uses, whether developed in-house or procured externally. Liability covers data privacy and security, integrity of AI outputs, and compliance with all applicable laws. Non-compliance triggers SEBI Act 1992 enforcement — monetary sanctions, cease-and-desist, suspension.

3. June 2025 Consultation Paper

Released 20 June 2025; comments closed 11 July 2025. Proposes a board-approved AI Governance Framework for all regulated institutions with internal controls, algorithmic audits, model explainability, fallback plans, continuous monitoring, independent audits, periodic accuracy reporting to SEBI, investor-protection disclosures, regulatory sandbox testing, staff training, and human-in-the-loop mechanisms. Any downstream rules or notifications are published on SEBI's circulars page.

A concrete example: a securities-firm research assistant

Here is how a SEBI-regulated research house lands on AxonFlow. They want to deploy an AI research assistant that pulls from internal reports, public filings, and SEBI-registered data sources, and drafts analyst notes.

What SEBI asks the firm to prove:

2019 circular disclosure: the assistant is disclosed via the half-yearly ESP filing — covering name, date of first use, implementation methodology, safeguards, and a compliance attestation.
Regulation 16C liability: the firm is solely liable for outputs, even though the underlying model is a third-party foundation model. The SLA with the vendor does not transfer SEBI liability.
DPDP Act 2023 alignment: when the assistant touches client personal data (contact details, PAN for KYC cross-reference), it must honour DPDP rules once Phase 3 kicks in on 13 May 2027.
Requirements proposed in the June 2025 Consultation Paper: board-approved governance framework, model explainability, fallback plan, continuous monitoring, independent audit, HITL on material analyst notes.

How it maps to AxonFlow tiers:

Need	Community	Evaluation	Enterprise
PAN / Aadhaar / Indian-phone detection on all inbound connector data	System policies (`sys_pii_pan`, `sys_pii_aadhaar`, plus platform Indian detectors)	Same	Same + checksum-aware validation
Policy enforcement on every LLM + MCP call (Regulation 16C "integrity of AI outputs")	Yes	Yes	Yes
Full audit trail with decision chain and transparency headers (Consultation Paper explainability)	Yes	Same	Same + 10-year retention (`AuditRetentionDays=3650`)
HITL on analyst-note drafts before they land with clients (Consultation Paper HITL)	Can emit `require_approval` decisions; no queue to act on them	HITL approval queue (24h expiry, 100 pending cap)	Production HITL queue + portal
Policy simulation before a DPDP-driven policy change hits production	Not provided	Policy simulation (Evaluation-tier limits)	Simulation + production reporting
Periodic audit export for the 2019-circular half-yearly filing	Raw audit log; team builds the export itself	Same	`POST /api/v1/sebi/audit/export` + `GET /api/v1/sebi/audit/export/{id}` — structured export designed to be filing-ready
Retention-window proof (for DPDP + SEBI data-handling audit)	Tier-level audit retention, limited	Same, extended window	`GET /api/v1/sebi/audit/retention` surfacing the actual retention state
SEBI-readiness dashboard ("where do we stand on our half-yearly filing?")	Not provided	Not provided	`GET /api/v1/sebi/audit/readiness` + `GET /api/v1/sebi/dashboard`

What the 5 Enterprise SEBI endpoints do in practice

The SEBI module surface is intentionally small — 5 endpoints — because SEBI's own expectations around AI/ML are narrower than, say, RBI FREE-AI's 26 recommendations. What matters is that each endpoint maps to an actual compliance workflow rather than a generic "export".

POST /api/v1/sebi/audit/export — create an audit export job for a date range + scope (tenant, connector, user). Designed to produce the structured evidence a compliance officer submits alongside the half-yearly ESP filing.
GET /api/v1/sebi/audit/export/{id} — poll an export job. Returns manifest metadata (tenant IDs, row counts, time bounds) the compliance officer sees before sharing with the internal auditor.
GET /api/v1/sebi/audit/retention — confirm retention configuration on the tenant: how long audit data is kept, where it lives, how it survives tenant deletion. Comes up during SEBI TRM inspections.
GET /api/v1/sebi/audit/readiness — a readiness summary. Answers "are we ready to file?" before the compliance deadline: missing metadata, gaps in attestations, expired policies, etc.
GET /api/v1/sebi/dashboard — the aggregated operational view across recent exports, readiness, and compliance posture. What the head of compliance looks at monthly.

For most securities firms, these 5 endpoints cover the SEBI workflow. Additional reporting needs (e.g., model inventory beyond the ESP filing) are usually handled through the broader governance surface, not a SEBI-specific endpoint.

DPDP Act 2023 — the compliance clock

The Digital Personal Data Protection Act 2023 was assented to on 11 August 2023. The DPDP Rules 2025 were notified on 13 November 2025. Rollout is phased:

Phase 1 (14 November 2025 — live now): procedural provisions — Data Protection Board constitution, definitions, bar of civil-court jurisdiction. No substantive compliance obligations on firms yet.
Phase 2 (13 November 2026): Consent Manager registration process operationalised.
Phase 3 (13 May 2027): substantive compliance goes live — grounds for processing, notice + consent, rights of data principals, additional obligations of Significant Data Fiduciaries, cross-border transfer rules, data breach notifications, processing of children's personal data.

What engineers should be doing now, not in 2027:

PII detection + redaction on every prompt, response, and connector result touching Indian data subjects. AxonFlow's sys_pii_pan and sys_pii_aadhaar system policies are the baseline.
Audit trail with enough granularity that a Data Principal's right-to-access request (activated Phase 3) can be answered without a database archaeology expedition.
Policy hooks for purpose-limited processing — defined now even if only logged today, because the DPDP notice regime requires they be enforceable by May 2027.

Non-compliance penalties in the DPDP schedule are not theoretical: up to ₹250 crore for failure to maintain reasonable security safeguards, up to ₹200 crore for breach-notification failures, up to ₹150 crore for Significant Data Fiduciary obligation breaches.

What Community covers

Community is a credible starting point for SEBI-relevant engineering work:

audit logging
system and tenant policy enforcement
India-relevant PII protection (sys_pii_pan, sys_pii_aadhaar, plus the broader Indian-detector set covering UPI, IFSC, bank-account, GSTIN, voter ID, driving licence, passport, Indian phone, pincode, ration card — 12 detectors total on the india_pii_detector module)
governed LLM and MCP execution paths that are easy to review

This is enough for engineering teams building research assistants, advisory copilots, analyst tools, trading-support workflows, or internal AI operations tools — before they touch the Enterprise SEBI module.

Industry playbook

Research-assistant AI

The concrete flow above. Community covers policy + audit; Evaluation adds the HITL queue for analyst-note review; Enterprise adds the filing-ready export and readiness dashboard. Regulation 16C sole-liability is why the audit trail matters: when a recommendation turns out to be wrong, the firm must be able to reconstruct what the model saw, what it produced, and who approved it.

Advisory copilot

For investment-advisory workflows, the DPDP Phase 3 clock matters most: advisory conversations often carry PAN, account numbers, and client-specific recommendations. AxonFlow's Indian-PII detectors plus tenant policies enforcing purpose-limited disclosure let the advisory team build now and stay compliant when Phase 3 activates.

Fraud and surveillance AI

Exchange-side surveillance uses AI to flag anomalies. The 2019 circular requires reporting; Regulation 16C makes the exchange liable for outputs; the June 2025 Consultation Paper adds accuracy reporting to SEBI. AxonFlow's audit surface is often the cleanest way to produce both the half-yearly ESP filing and the accuracy evidence the Consultation Paper would require.

Engineering perspective

For staff-level engineers at an Indian securities firm: Community is a real foundation, not a tease. You can build and run a governed AI product end-to-end on Community, prove controls with real Indian data, and stay aligned with the 2019 circular filing workflow. The Enterprise SEBI module becomes the cleaner operating model the moment your compliance team wants structured exports, a readiness dashboard, or 10-year retention — which typically happens as soon as the use case crosses into analyst-facing or customer-facing territory.

The three SEBI instruments that apply today​

1. The 2019 reporting circulars (live, in force)​

2. Regulation 16C — binding sole-liability rule (in force 10 February 2025)​

3. June 2025 Consultation Paper​

A concrete example: a securities-firm research assistant​

What the 5 Enterprise SEBI endpoints do in practice​

DPDP Act 2023 — the compliance clock​

What Community covers​

Industry playbook​

Research-assistant AI​

Advisory copilot​

Fraud and surveillance AI​

Engineering perspective​

Related Docs​