TL;DR: Investment suitability under FCA rules involves overlapping obligations under COBS 9.2, MiFID II Article 25, and the Consumer Duty overlay. You must collect information across mandatory categories including knowledge and experience, financial situation, investment objectives, and capacity for loss before making any personal recommendation, and if you cannot obtain that information, you cannot proceed. The FCA's 2017 assessing suitability review found that while 93.1% of advice was technically suitable, only 52.9% of files met disclosure requirements. Documentation failures, not advice failures, are the primary compliance risk you face.

Investment performance rarely determines whether an advice file passes FCA scrutiny, but good compliant documentation does. 71.9% of UK advice firms spend between one and seven hours producing a single suitability report, and the files that fail FCA review rarely fail because the underlying recommendation was wrong. They fail because the rationale was not adequately evidenced. Understanding the exact rule layers that govern suitability is the foundation of building files that hold up to scrutiny.

What Is Investment Suitability Under FCA Rules?

Suitability is not a quality grading applied to investment performance after the fact. It is a proactive obligation placed on the firm before a personal recommendation is made or a trade executed on a client's behalf.

The Suitability Obligation Defined

Under COBS 9.2.1R, you must obtain from the client such information as is necessary to understand their circumstances and have a reasonable basis for believing the specific transaction to be recommended is one the client can bear the risks of, consistent with their investment objectives, and that the client has the necessary knowledge and experience to understand the risks involved.

You must gather information and construct a recommendation that demonstrably aligns with what you find. Collecting a fact-find and then writing a report that does not connect the two does not satisfy this duty. The suitability obligation applies whenever you make a personal recommendation on a designated investment, including new business, replacement business, pension transfers, and ongoing service arrangements.

Personal Recommendations vs Execution-Only

Under PERG 8.30B, a personal recommendation is typically one presented as suitable for the person based on their individual circumstances, or based on a consideration of their circumstances. Where a reasonable observer would view the recommendation as tailored to the client, the full COBS 9.2 suitability framework applies. The practical risk is that advisers sometimes execute trades believing the client has self-directed when the interaction has crossed into personal recommendation territory.

The Three Rule Layers Governing Suitability

Three overlapping frameworks each add a layer of requirement on top of the previous one. Understanding how they interact separates a defensible advice file from one that fails at audit.

COBS 9.2: Core Suitability Requirements

COBS 9.2 is the foundational UK rule. It requires you to gather sufficient information to understand the client's essential circumstances and ensure the recommendation is appropriate for their financial situation, investment objectives, and knowledge and experience. The FCA Handbook COBS 9.2 sets out the minimum information categories firms must collect and the prohibition on proceeding without them.

MiFID II Article 25: The Information and Matching Obligation

The UK retained MiFID II requirements post-Brexit. Under Article 25, firms must obtain the necessary information regarding the client's knowledge and experience, their financial situation including their ability to bear losses, and their investment objectives including risk tolerance, so as to enable a recommendation of investment services and instruments that are suitable for that client. COBS 9A, which implements the MiFID II suitability provisions in the UK, extends requirements around periodic assessment obligations and enhanced documentation for portfolio management services.

Consumer Duty: The Overlay Effect

The Consumer Duty, introduced via PS22/9 and effective from July 2023, operates alongside COBS 9.2 and MiFID II requirements. It shifts the regulatory focus from process compliance to evidence of good outcomes. The FCA's four Consumer Duty outcome areas are typically described as:

• Products and services: Designed for a clearly defined target market and distributed appropriately.

• Price and value: Customers pay a price proportionate to the benefits they receive.

• Consumer understanding: Communications allow customers to make genuinely informed decisions.

• Consumer support: Customers can access help and use products without unnecessary barriers.

The practical impact on suitability documentation is significant. You must now demonstrate that clients received fair value and understood the recommendation, not just that the recommendation was appropriate.

The Four Mandatory Data Points

Under COBS 9.2.2R, you must collect information across specific categories before making any personal recommendation. These are not optional fact-find fields. They are prerequisites.

1. Knowledge and experience: Covers the client's familiarity with the relevant investment field, including the nature, volume, and frequency of past transactions in designated investments, the period over which they have been carried out, and the client's level of education and professional background where relevant. You must calibrate the assessment to the nature and complexity of the product being recommended.

2. Financial situation: Includes the source and extent of the client's regular income, their assets including liquid assets, investments, and real property, and their regular financial commitments. The purpose is to establish whether the client can bear the financial risks associated with the recommendation without material detriment to their overall position.

3. Investment objectives: Requires information on what the client is trying to achieve, the time horizon over which they wish to hold the investment, and their attitude to risk. Generic objectives such as "capital growth" without context do not meet the standard. FCA finalised guidance FG12/16 emphasises that you should capture the underlying motivation behind the client's objectives, not just the surface-level goal.

4. Capacity for loss and risk tolerance: Capacity for loss is a factual assessment of what the client can financially afford to lose without a material impact on their standard of living. Risk tolerance is a behavioural measure of how comfortable the client is with potential losses. The two are distinct and should both be documented. A client can have a high risk tolerance but low capacity for loss, and your recommendation should reflect the more conservative constraint. If you cannot obtain the necessary information to assess suitability, COBS 9.2.6R states you must not make a personal recommendation or take a decision to trade on the client's behalf.

The Suitability Matching Test Explained

Gathering the four data points is necessary but not sufficient. The matching test requires you to demonstrate a logical, evidenced connection between what the fact-find reveals and what the suitability report recommends.

Good matching documentation includes three elements:

1. The specific client circumstance from the fact-find that the recommendation addresses

2. The characteristics of the recommended investment that speak to that circumstance

3. An explanation of why this particular product was preferred over available alternatives

The rationale section of the suitability report must be personalised to the individual. FCA guidance FG12/16 emphasises that generic templated risk warnings not adequately linked to the specific recommendation or the individual's personal circumstances fall short of regulatory expectations. The phrase "this is consistent with your medium-risk profile" repeated across fifty suitability reports is not a rationale. It is a template.

The most common matching gaps identified in file reviews include:

• Underdeveloped capacity for loss justification, where the conclusion is stated without a fact-specific calculation

• Missing explanation of why alternative products were discounted

• Cost comparison documentation that either lacks personalisation or is absent entirely

A Citywire review of common suitability failures found that costs and charges comparisons are frequently inadequate or missing entirely.

Where Firms Repeatedly Fall Short

The FCA's 2017 assessing suitability review found that 93.1% of cases were suitable in terms of the advice given, but only 52.9% were suitable when it came to disclosures. The advice was right. The documentation was not. That gap is where you face the most FCA enforcement exposure.

For networks and consolidators, that gap is a firm-wide operational risk, not just an individual adviser issue. Where documentation quality varies across adviser teams, the weakest file in a cohort sets the exposure level for the whole firm, and operations leaders reviewing for Consumer Duty Board reporting cannot rely on adviser-by-adviser variation to stay within acceptable bounds.

Inadequate Documentation of Advice Rationale

Firms that produce personalised fact-finds but then rely on templated rationale sections break the chain of evidence. The FCA's finalised guidance indicates that defensible files typically share three characteristics:

1. They capture not just the client's investment objectives but the underlying motivation behind those objectives

2. They document the specific product characteristics that address those motivations

3. They explain why alternative products were discounted

Missing or Generic Risk Warnings

Risk warnings that are not linked to the specific transaction, the specific client, and the specific risks involved fail the personalisation test. FCA finalised guidance FG12/16 identifies that advantages, disadvantages, risk warnings, and justification of extra costs are too often templated and not adequately connected to the individual client or the specific recommendation.

Colin, AdvisoryAI's compliance checker, runs automated checks on suitability reports against FCA Consumer Duty and COBS standards, providing pass/fail verdicts with specific remediation guidance before the report leaves your desk. The check output includes compliance results with colour-coded category indicators and precise instructions for each failed item, such as adding AML documentation or including an executive summary. Colin works with suitability reports from various platforms.

Weak Evidence of Client Understanding

Consumer Duty's consumer understanding outcome requires that clients receive communications enabling them to make genuinely informed decisions. File notes that simply record that a suitability report was provided, without any evidence that the client understood the key terms, costs, or risks, do not meet this standard. Structured meeting notes that capture client questions, reactions, and stated understanding are increasingly important for evidencing this outcome. Evie, AdvisoryAI's meeting notes capability, generates structured notes from recorded client meetings after the meeting concludes, capturing tone and contextual detail so this level of detail is recorded in the structured output rather than relying on adviser recall.

Incomplete Fact-Find Records

A fact-find that does not capture all mandatory data categories creates a compliance exposure that no suitability report can repair. Common gaps include incomplete capacity for loss assessments, undocumented health or foreseeable life changes that affect the client's financial situation, and missing financial literacy assessments. Colin's multi-category fact-find checks cover identity verification, AML documentation, client profiling completeness, and capacity for loss documentation, catching these gaps before a recommendation is made rather than after a file review.

Poor File Note Quality

Sequential workflow delays compound documentation quality problems. When paraplanners wait days for adviser notes before starting suitability report drafts, the connection between what was discussed and what was recommended grows less precise with time. Brooks Macdonald reported that cutting meeting note time from 1.5 hours to 15 minutes gave support teams access to structured notes significantly faster, removing the bottleneck between adviser meeting and paraplanner action.

What the FCA Expects in Your Suitability Report

COBS 9.4 sets out the mandatory content requirements. A suitability report must typically specify the client's demands and needs based on the information obtained, explain why the firm concluded the recommended transaction is suitable having regard to that information, and explain any possible disadvantages of the transaction.

Mandatory Content Requirements

The report must include an outline of the advice and how the recommendation is suitable for the retail client, with specific reference to:

• The investment term required

• The client's knowledge and experience

• The client's attitude to risk and capacity for loss

• Any possible disadvantages of the transaction

For replacement business and pension transfers, the requirements are typically more extensive and should explicitly address why switching serves the client better than retaining the existing arrangement, including a costs comparison.

Demonstrating Consumer Duty Outcomes

Under Consumer Duty, you should demonstrate that clients received fair value, that price is proportionate to benefit, and that clients were supported appropriately. File documentation should evidence these outcomes, not merely assert them. The FCA expects the suitability report to function as a client-facing document written in accessible language, not as an internal compliance record dressed up as a client letter.

Audit Trail Standards

The complete advice file should form a coherent audit trail from initial fact-find through to signed client agreement, with each link documented contemporaneously where possible. Suitability reports dated after applications, missing fact-find updates, or gaps between the advice given and the client agreement create an audit trail that does not support the recommendation it is supposed to evidence.

Atlas, the conversational interface that connects meeting transcripts, fact-finds, suitability reports, and uploaded client documents, now shows its working through Adaptive Thinking. Live status updates display each step as it happens, a collapsible thinking block reveals the reasoning behind every response, and that reasoning persists across sessions so older queries remain auditable. For Consumer Duty defensibility, this gives the adviser and the compliance reviewer a record of how Atlas reached an answer, not just the answer itself.

Emma generates suitability report drafts using your firm's existing templates, with every statement cited back to its source document. Bluecoat Wealth Management reported an 80% reduction in suitability report time, from up to six hours per report down to under one hour, after implementing Emma. You can see a full walkthrough in the Emma suitability letter demo.

How to Build a Defensible Suitability File

The following reflects the documentation requirements across COBS 9.2, COBS 9.4, and Consumer Duty, structured around the advice journey from initial fact-find through to audit trail.

Common Documentation Failures and How to Avoid Them

Document Contemporaneous Records

File notes written hours or days after a client meeting are not contemporaneous records. You must document at the time of or immediately following the interaction, capturing what was discussed, what was agreed, and what the client's response was. In practice, file documentation that captures client questions, reactions, and stated understanding at the time of the meeting gives you stronger evidence of the consumer understanding outcome than a record that relies on adviser recall after the fact. The AdvisoryAI whitepaper "From Paperwork to Peoplework" documents that 43.3% of UK advisers report paperwork and admin directly reduce the time they have available for advice work, creating the conditions for documentation shortcuts.

Evidence the Matching Process

The suitability report must show the reasoning chain, not just the conclusion. Writing "this recommendation is consistent with the client's risk profile and financial objectives" is a conclusion. Writing "the client's capacity for loss assessment indicates they can sustain a specific level of loss without material impact on their financial commitments, and the recommended portfolio's historical drawdown places the risk within that tolerance" is matching. FCA finalised guidance FG12/16 consistently distinguishes between firms that document the reasoning and firms that document only the outcome.

Show Alternatives Considered and Record Client Agreement Clearly

Documenting that alternatives were considered and explaining why they were discounted strengthens the rationale and demonstrates the recommendation resulted from a genuine assessment. This is particularly important for replacement business, where the FCA expects explicit justification of why switching serves the client better than retaining the existing arrangement. The client's agreement to proceed must be documented in a way that reflects they understood the recommendation, not merely that they signed a form. Structured notes capturing the client's stated understanding, any questions they asked, and their expressed agreement create a far stronger audit trail than a signature on a document the file does not show they read.

AdvisoryAI Capabilities That Support Suitability File Compliance

Colin and Emma are capabilities within Atlas, AdvisoryAI's single conversational interface for documentation, compliance checking, and client data. Colin checks suitability reports against FCA Consumer Duty requirements and COBS standards before they leave your desk, providing pass/fail verdicts with specific remediation steps for every gap identified.

• Colin is priced at £99 per user per month and works on any suitability report regardless of which platform produced it.

• Emma is priced at £299 per user per month and uses fact-finds, LOA pack summaries, ceding information, cashflow modelling outputs, and risk profile assessments as inputs to the draft. Bundle pricing is available across the AdvisoryAI product range.

• Atlas connects the output from both capabilities with meeting transcripts, uploaded documents, and client data so advisers can query across the full file in one place. Adaptive Thinking makes Atlas's reasoning visible and persists it across sessions, giving operations leaders an auditable record of how Atlas reached any answer, not just the answer itself.

Both capabilities are available on monthly rolling agreements with a 30-day money-back guarantee and a 10% discount on annual plans. To see how Colin and Emma work within your firm's existing compliance workflow, request a demo. If you'd prefer to test both capabilities against your own documents first, start a 14-day free trial with no credit card required.

FAQs

Can I Rely on Previous Fact-Find Data?

You can typically use previously gathered information, but it is advisable to take reasonable steps to ensure it remains accurate before making a new recommendation. Ask clients to confirm whether anything material has changed, and update the fact-find where it has, without unnecessarily re-requesting information already on file.

How Often Must I Reassess Suitability?

Under COBS 9A.3, firms providing a periodic suitability assessment typically must review the suitability of recommendations at least annually, with potentially higher frequency for clients with more complex risk profiles or portfolios. The frequency should be disclosed in your service agreement.

What If a Client Insists on an Unsuitable Investment?

Under COBS 9.5A, where a client proceeds with a transaction that differs from your personal recommendation, you should communicate the unsuitability clearly in plain language and ensure the client's decision to proceed against your advice is properly documented. Proceeding without this documentation in place creates direct regulatory exposure.

Do I Need Separate Suitability Letters for Each Product?

A single suitability report can typically cover multiple recommendations provided it clearly explains the suitability of each component and provides distinct, personalised rationale for each element. The key requirement is that the suitability of each recommendation is explained, not that it is contained in a separate document.

Key Terms Glossary

COBS 9.2: The FCA Handbook rule that sets out the core suitability obligation. Firms must obtain sufficient information about a client's essential circumstances and ensure any personal recommendation is appropriate to their financial situation, investment objectives, and knowledge and experience before it is made.

Consumer Duty: The FCA's conduct framework introduced via PS22/9, effective July 2023. It does not replace COBS 9.2 but adds an outcomes-evidencing obligation across four areas: products and services, price and value, consumer understanding, and consumer support.

Fact-Find: The structured process by which a firm collects the four mandatory data categories required under COBS 9.2: knowledge and experience, financial situation, investment objectives, and capacity for loss. A complete fact-find is a prerequisite for any personal recommendation.

Capacity for Loss: A factual assessment of what a client can afford to lose without material impact on their standard of living. It is distinct from attitude to risk, must be documented separately, and where the two conflict, the recommendation must reflect the more conservative constraint.

Suitability Report: The written document required under COBS 9.4 that records the personal recommendation, specifies the client's demands and needs, explains why the recommendation is suitable, and sets out any possible disadvantages. It must be personalised and form part of a coherent audit trail from fact-find to client agreement.