Peer‑to‑Peer (P2P) Loans Explained: Essential Australian Legal Insights

P2P lending has opened new doors for Australians looking for finance and for investors chasing yield. Instead of going to a bank, borrowers and lenders connect on online “marketplace lending” platforms, often getting faster decisions and more flexible terms.

But once you move money, you trigger laws. In Australia, P2P lending sits at the intersection of credit law, financial services regulation, consumer protection, privacy and anti‑money laundering rules. If you’re investing through a platform, borrowing funds, or building a fintech of your own, it’s important to understand the legal framework so you can manage risk and stay compliant.

Below, we break down how P2P loans work in Australia, the licences that may apply, the documents you’ll need, and the key legal risks for both lenders and borrowers.

What Is Peer‑to‑Peer (P2P) Lending In Australia?

P2P lending (also called marketplace lending) connects borrowers with individual or institutional investors via an online platform. The platform typically handles onboarding, credit assessment, pricing, loan documentation, and repayments.

Many P2P loans to consumers are unsecured personal loans. Small business loans can be unsecured or secured (for example, by a general security interest over business assets).

Three common structures you’ll see in Australia:

• Direct loan model (investor lends directly to borrower under a Loan Agreement, with the platform acting as intermediary/agent)
• Note or unit model (investors acquire notes/units whose cashflows are linked to pools of loans)
• Trust/MIS model (a responsible entity runs a managed investment scheme that holds loans and issues interests to investors)

Each structure carries different licensing, disclosure and operational obligations. That’s why it’s important to confirm how “your” platform is set up before you lend or borrow.

Who Regulates P2P Loans And Which Licences Apply?

Australia has a mature regulatory framework for marketplace lending. The key regulators are the Australian Securities and Investments Commission (ASIC) for financial services and the Australian Competition and Consumer Commission (ACCC) for consumer law, with AUSTRAC overseeing anti‑money laundering and counter‑terrorism financing (AML/CTF).

Australian Credit Licence (ACL) and the National Credit Code

• If credit is provided to an individual or strata corporation for personal, household or residential investment purposes, the National Consumer Credit Protection Act (including the National Credit Code) generally applies. The credit provider and anyone providing credit assistance usually need an Australian Credit Licence (ACL) or to be a representative of an ACL holder.
• Responsible lending, disclosure (e.g. Credit Guide), hardship and arrears processes, advertising rules and internal dispute resolution (plus AFCA membership) all sit under this framework.
• Small business loans may fall outside the National Credit Code, but borrower communications still need to be accurate and not misleading under the ASIC Act and Australian Consumer Law.

Australian Financial Services Licence (AFSL), MIS, DDO and PDS

• If investors are acquiring a financial product (for example, interests in a managed investment scheme or notes), the platform operator typically needs AFSL authorisations (or to operate under a suitable authorisation arrangement). This can include authorisations to operate a registered scheme, deal in/issue financial products, and provide general/wholesale advice.
• Retail offerings normally require a Product Disclosure Statement (PDS). Design and Distribution Obligations (DDO) require a Target Market Determination (TMD) and controls to ensure products are distributed to the right customers.
• Where a trust or scheme structure is used, custody, client money handling, audits, compliance plans and responsible entity obligations can apply.

If you’re planning a platform, specialised AFSL advice up front is critical to get your authorisations, disclosure and distribution settings right.

AML/CTF and AUSTRAC

• Most marketplace lenders are “reporting entities” under the AML/CTF Act. You’ll need to enrol/register with AUSTRAC, develop an AML/CTF program, perform KYC/identity checks, monitor transactions and report suspicious matters, threshold transactions and international funds transfers.
• Even if you’re a lender/investor using a platform, you will be asked to complete KYC. That’s a legal requirement, not just a platform preference.

Privacy and Data

• Collecting and using personal information must comply with the Privacy Act and the Australian Privacy Principles. Most platforms need a clear, accessible Privacy Policy and strong data security practices.
• If you handle credit information/credit reporting data, additional credit reporting obligations apply. Many lenders also use a Privacy Collection Notice and suitable vendor/data processing terms with service providers.

Consumer Law and Advertising

• Your statements about fees, interest, returns or default consequences must not be misleading or deceptive. That is enforced under the Australian Consumer Law and ASIC Act. Clear disclosures and fair presentation matter just as much as the numbers.
• Platforms should implement review processes so marketing aligns with the product’s TMD and complies with section 18 obligations about misleading conduct. For context, see the overview of misleading or deceptive conduct.

Key Legal Documents And Platform Policies

Whether you’re investing, borrowing, or building a platform, strong contracts and policies reduce risk and set expectations.

For Platform Operators

• Platform Terms and Conditions: The rules for users, onboarding, eligibility, fees, disclaimers, suspensions, complaints and termination.
• Terms of Use: Website/app usage terms, IP ownership, acceptable use, and liability limitations.
• Privacy Policy: Explains how personal and credit-related information is collected, used and shared, including consents.
• Disclosure Docs: PDS (for retail investors), TMD under DDO, Credit Guide/key facts sheets, fee schedules and risk summaries.
• AML/CTF Program and KYC procedures: Identity verification, sanctions screening, monitoring and reporting controls.

For Lenders/Investors

• Loan Agreement: Sets interest, repayments, events of default, enforcement and costs. If you’re lending directly to a borrower, have your rights in writing.
• General Security Agreement: If a business loan is to be secured, a GSA lets you take security over the borrower’s personal property and perfect it on the PPSR.
• Trust/Note Documents: If investing in notes/units or a managed fund, you’ll rely on the PDS/scheme constitution and the platform’s legal framework-review them carefully.

For Borrowers

• Loan Agreement (and, where applicable, a secured loan or guarantee): Understand fees, variable vs fixed rates, early repayment, hardship and default consequences.
• Privacy and Data Consents: Know what credit checks are done, how your information is used and who it’s shared with.
• Business Structure Docs: If you’re scaling your borrowing or raising capital, it may be time to consider a company and a Shareholders Agreement for governance and decision‑making.

If you are planning to launch a platform, governance and liability management are easier in a company than trading in your personal name. Our Company Set Up service can help you choose and register the right structure. (Tax has a big role here too-get independent tax advice for structuring and GST/income tax implications.)

Legal Considerations For Lenders And Borrowers

If You’re Investing or Lending

• Understand the structure: Are you lending directly under a Loan Agreement, or buying a product (units/notes) under a PDS? Your rights and risks differ.
• Diversify: Spread funds across borrowers or tranches. Even with platform credit models, individual defaults can occur.
• Security and priority: If a loan is secured, check the security documents and whether the security interest is perfected (and where you sit in the repayment waterfall).
• Fees and liquidity: Confirm platform fees, when cashflows are paid, and how you can exit. Many marketplace products aren’t “on‑demand.”
• Misleading claims: Returns are not guaranteed. Be cautious of advertising that looks like a deposit product. That can be a red flag and a legal risk.

If You’re Borrowing

• Credit assessment and affordability: Be accurate with your application. If the loan is regulated by the National Credit Code, the lender must assess suitability and provide key disclosures.
• Rates and fees: Compare total cost of credit (including establishment, ongoing and late fees). Know if rates are fixed or variable.
• Default and hardship: Understand default triggers, enforcement steps, and how to apply for hardship. Communicate early if things change.
• Security and guarantees: If you give a security interest or personal guarantee, you’re putting assets at risk. Seek advice before signing.
• Privacy and data: Read the Privacy Policy and authorisations so you’re comfortable with data collection and credit reporting checks.

Risk Management, Defaults And Disputes

For Platform Operators

• Credit risk and collections: Have clear underwriting criteria, arrears workflows, hardship policies and compliant collections practices. Ensure communications comply with consumer law.
• Operational risk: Document outsourcing arrangements, incident response, data security controls and business continuity. If third parties process personal data, use a Data Processing Agreement.
• Product governance: Maintain your TMDs, monitor outcomes, review distribution channels and remediate issues under DDO.
• Complaints and AFCA: Maintain an internal dispute resolution process and (where required) AFCA membership to handle customer complaints.

For Lenders/Investors

• Portfolio approach: Diversify, set limits per borrower/grade, and stress‑test your expected returns for higher arrears scenarios.
• Documentation: Keep copies of your Loan Agreements, security documents and platform statements. You’ll need them if you enforce rights or claim a tax loss.
• Consumer law lens: If you communicate with borrowers directly (e.g. collections), ensure your conduct is fair, accurate and consistent with Australian Consumer Law principles.

For Borrowers

• Budget and buffers: Understand repayment schedules and build a buffer for rate rises or cash‑flow dips.
• Hardship early: If you hit trouble, contact the lender early to discuss hardship options before arrears escalate.
• Dispute pathways: Use the platform’s complaint process first. If the lender is in AFCA’s jurisdiction, you may be able to escalate there.

Key Takeaways

• P2P lending in Australia is regulated: consumer loans generally require an ACL, and investor products often trigger AFSL, disclosure (PDS) and DDO obligations.
• Platforms need robust product governance, AML/CTF KYC, privacy compliance and clear Platform Terms and Conditions to operate safely.
• Lenders should confirm the structure they’re investing in, diversify, and use proper documentation like a Loan Agreement or General Security Agreement where appropriate.
• Borrowers should review total cost, defaults and hardship rights, and read the Privacy Policy and consents before proceeding.
• If you’re launching a marketplace lending platform, get AFSL and ACL scoping right from day one, and consider incorporating with our Company Set Up service for clearer governance and liability protection.

If you would like a consultation on P2P loans or marketplace lending compliance, you can reach us at 1800 730 617 or team@sprintlaw.com.au for a free, no‑obligations chat.