What an SRO is - and what it is not
Swiss AML supervision runs on two tracks. Banks and other prudentially supervised institutions answer to FINMA directly. Everyone else who qualifies as a financial intermediary under the AMLA - and is not under prudential supervision - must affiliate with a self-regulatory organisation that FINMA has recognised. The SRO admits members, issues its own regulations within the AMLA framework, and audits its members' AML compliance on an ongoing basis.
Now the part sellers tend to blur, so we will state it plainly: SRO membership is not a FINMA licence. It does not authorise banking, securities dealing or fund management, and it is not a permission FINMA has granted to your business. It is the supervision layer that makes it lawful to operate as an AMLA financial intermediary. When a listing describes SRO affiliation as a "Swiss crypto licence", the accurate translation is: a Swiss company under SRO supervision for AML purposes. That is a real and useful status - it just is not a licence.
Where this sits in the wider Swiss picture - and when a business needs more than an SRO affiliation - is covered in our Switzerland route overview.
VQF, SO-FIT and ARIF: same baseline, different houses
All three names you keep hearing - VQF, SO-FIT and ARIF - are among the FINMA-recognised SROs as of July 2026. The current list of recognised organisations is published on finma.ch, and checking it is the first step of any Swiss plan, because recognition is a live status, not a historical fact. For reference, SO-FIT's FINMA authorisation was communicated in a 2020 FINMA release.
The legal baseline is identical across the three: each supervises its members under the same AMLA. What differs is the house around that baseline. In practice, SO-FIT and ARIF are rooted in French-speaking Switzerland, while VQF's centre of gravity is the German-speaking part of the country - which decides the language your file, correspondence and audits will actually run in. Sector familiarity varies too: practitioners report that exposure to crypto and VASP business models differs from desk to desk, and an organisation that sees your model regularly tends to ask sharper questions sooner. Finally, onboarding paperwork and ongoing audit cadence follow each SRO's own published rules, so the member experience differs even where the statute does not.
Where the three differ in practice
| Dimension | What differs in practice | How to check it |
|---|---|---|
| Dimension Working language and geography | What differs in practice SO-FIT and ARIF practice is rooted in French-speaking Switzerland; VQF's centre of gravity is German-speaking Switzerland | How to check it Ask which language the application, correspondence and audits will run in - then match it to your team and advisers |
| Dimension Sector familiarity | What differs in practice Exposure to crypto and VASP models varies desk by desk; an SRO that sees your model regularly asks sharper questions sooner | How to check it Put your actual model in front of the SRO early and read the quality of the questions that come back |
| Dimension Onboarding and documentation | What differs in practice Admission forms, required policies and documentation style differ per each SRO's published rules | How to check it Read the admission regulations on vqf.ch, so-fit.ch and arif.ch before drafting anything |
| Dimension Ongoing audit cadence | What differs in practice Audit frequency and reporting follow each organisation's own regulations, within the same AMLA baseline | How to check it Price the ongoing audit obligations into the operating budget, not just the admission step |
The working method
How to choose in five steps
-
Confirm you need an SRO at all
Write down what activity makes you a financial intermediary under the AMLA and whether SRO affiliation - rather than a prudential authorisation - is the right layer for your model.
-
Match language and geography
Your file, your audits and every follow-up question will run in the SRO's working language. Pick the organisation whose language your team and advisers actually work in.
-
Test sector familiarity
Describe your model - especially if it is crypto or VASP-shaped - and note the questions. Familiar desks ask precise questions; unfamiliar ones ask generic ones, slowly.
-
Read the rules yourself
The admission and audit regulations published on the SRO's own site are the contract you are signing up to. The current list of recognised SROs is on finma.ch.
-
Scope the timeline at kick-off
No SRO publishes a binding onboarding SLA we would rely on. Timeline is scoped per file at kick-off - and readiness on your side moves it more than the choice of organisation.
The choice matters less than your file
Here is the perspective that saves buyers weeks: all three organisations supervise under the same AMLA baseline. The statutory duties - client identification, beneficial-owner establishment, source-of-funds work, monitoring, reporting - are the same whichever badge sits on the membership certificate. An SRO shapes the paperwork and the cadence; it cannot lower the bar.
The practical consequence is blunt. A clean AML file - coherent ownership, documented source of funds, a compliance manual that matches the actual business, a named person who genuinely runs it - passes at any of the three. A weak file fails at all of them, just with different letterheads on the follow-up questions. Founders who spend weeks comparing organisations and two days on their AML manual have the priorities inverted.
So treat the SRO choice as a fit decision, not a difficulty decision. Pick the house whose language, sector habits and published rules suit how you operate - then spend the real effort on the file you will be supervised against.
Buying an SRO-affiliated entity instead of applying
There is a second way into this framework: acquire a Swiss company that already holds an SRO affiliation. The affiliation belongs to the entity, not to its founder, so in practice it continues with the company through a sale - subject to the SRO's change-of-ownership rules. Expect buyer due diligence and notification: per their published rules, SROs want to know who the new controllers are, and they can re-examine the member when ownership changes.
That makes a Swiss SRO deal a small-scale version of the change-of-control process we describe for licensed entities generally - the regulator-facing questions are about you, the buyer, and your file answers them. Our guide to buying a licensed company covers what that file contains; the same logic applies here at lower intensity.
When does buying beat applying? When the entity is clean, operating and in good standing with its SRO, and its setup matches your model - the history and the existing supervision relationship are the asset. When the model does not fit, or the entity's past needs explaining, a fresh affiliation is usually the better path, and we will say so. How we run that assessment end to end is set out in how it works.
FAQ
Swiss SROs: common questions
01 Is SRO membership a licence?
No. SRO affiliation is AML supervision under the Anti-Money Laundering Act, required for financial intermediaries outside prudential supervision. It is not a FINMA licence and does not authorise banking, securities or fund business. A company described as "SRO-licensed" is, accurately, a Swiss financial intermediary under SRO supervision for AML purposes.
02 Can I switch SROs later?
In practice, yes - members can move between recognised organisations, subject to each SRO's admission and exit rules, and continuity of supervision has to be maintained through the change. Check the published regulations of both organisations before planning a move; the mechanics and notice requirements are theirs to set.
03 Which SRO is fastest?
None of the three publishes a binding onboarding SLA we would rely on, and pace depends more on the state of your file than on the organisation. We scope the realistic timeline at kick-off, per entity and per model - treat any flat "X weeks" promise from a seller with suspicion.
04 Does the SRO choice affect banking?
At most indirectly. Banks run their own AML review of your business and do not outsource it to your SRO; a recognised affiliation is the baseline they expect, not a differentiator. In practice, the quality of your AML file and the coherence of your model move a banking decision far more than which of the three names appears on the certificate.
Keep reading
Related reading
Switzerland: the route overview
Where SRO affiliation sits in the Swiss landscape - and when a model needs more than AML supervision.
Buying a licensed company: the change-of-control process
What changes hands when a supervised entity is sold - and what a strong buyer file contains.
How it works
Our process from scoping to handover - including when we advise a fresh affiliation over an acquisition.