What are the fines for failing to produce records during a regulatory investigation or audit?
There is no single, universal “fine” for failing to produce records. Penalties depend on which law or regulator is involved, the type of records, whether the failure was negligent or willful, and the harm caused. Because consequences are scattered across many statutes and agency rules, the safest assumption is that missing or unproducible records can be costly in more than one way.
Why penalties vary so widely
Different regimes impose different sanctions. A tax authority, a labor regulator, a financial regulator, a privacy regulator, and a court each have their own enforcement tools. As a result, the “fine” for the same missing document can range from a modest administrative penalty to substantial monetary sanctions, depending on the governing rule and jurisdiction.
Several factors typically drive the size of a penalty:
- Intent — accidental loss is usually treated more leniently than deliberate destruction or concealment.
- Materiality — records central to the investigation carry more weight than peripheral ones.
- Pattern — repeated or systemic failures often escalate consequences.
- Cooperation — timely, good-faith responses can reduce exposure.
Common categories of consequence
Failing to produce records can lead to more than a flat fine. Typical outcomes include:
- Monetary penalties assessed per record, per day, or per violation under specific regulations.
- Adverse inferences or sanctions in litigation, where a court may instruct that the missing evidence would have been unfavorable (spoliation).
- Disallowed claims or deductions, such as losing the benefit of a tax position you cannot substantiate.
- License, accreditation, or contract consequences in regulated industries.
- Personal or organizational liability in cases involving willful obstruction.
What this means for practice
The practical lesson is preventive rather than reactive. Maintain a defensible retention schedule, document your disposition decisions, and apply legal holds promptly when an investigation, audit, or litigation is reasonably anticipated. Being able to demonstrate a consistent, good-faith information-governance program is often as important as any single record, because it shows the failure was not deliberate.
For broader context on policies, holds, and defensible practices, see the information governance topic hub.
When facing a specific investigation or audit, consult the controlling statute and qualified counsel, since exact penalty amounts and procedures differ by jurisdiction and regulator.
Sources & further reading
Authoritative government and non-profit references.
- Records management laws — National Archives (NARA)
- The Sedona Conference publications — The Sedona Conference
How to cite this page
APA
RM University Editorial. (2026). What are the fines for failing to produce records during a regulatory investigation or audit?. Records Management University. https://www.recordsmgmt.org/questions/what-are-the-fines-for-failing-to-produce-records-during-an-investigation/
MLA
RM University Editorial. "What are the fines for failing to produce records during a regulatory investigation or audit?." Records Management University, 16 June 2026, www.recordsmgmt.org/questions/what-are-the-fines-for-failing-to-produce-records-during-an-investigation/.
Related questions
- Big-bucket vs item-level retention schedules: how do I choose between them?
- Can a company be penalized for keeping data too long under privacy laws even if nothing was breached?
- Can a US company store records in the EU, or do data localization and cross-border transfer rules block it?
- Can executives or board members be held personally liable for information governance failures?
- Can information governance help reduce cloud storage costs, and how?