A governance handover checklist is a practical test of whether your organisation can transfer control of its entities, registers, obligations, approvals and evidence without depending on one person's memory. For a multi-entity group, the question is simple: if your CFO, General Counsel, Company Secretary or external ad
A governance handover checklist is a practical test of whether your organisation can transfer control of its entities, registers, obligations, approvals and evidence without depending on one person's memory. For a multi-entity group, the question is simple: if your CFO, General Counsel, Company Secretary or external adviser changed tomorrow, could the next person reconstruct the group's governance position in one working day?
If the answer is no, the issue is not just administration. It is corporate memory risk.
Most governance failures do not begin with a major breach. They begin with small gaps: an outdated register, an unsigned consent, a missing solvency resolution, a share transfer saved in the wrong folder, or a board decision that never made it back into the entity file. Over time, those gaps become harder to explain during audit, due diligence, refinancing, a board transition or a change of adviser.
This article gives governance teams a practical handover framework for testing whether their entity records are current, complete and defensible.
Every group eventually faces a handover event. It may be planned, such as a new CFO joining, a Company Secretary going on leave, or an external CoSec provider being replaced. It may also be unplanned, such as a resignation, acquisition, audit request or urgent board query.
Governance information is often distributed across:
Each source may be useful on its own. The risk appears when no single person can prove which source is current, who approved the last change, what evidence supports the record, and whether public registry data and internal records match.
ASIC's own guidance reinforces the point that companies must keep records, keep company details up to date, and maintain evidence that can be produced when needed. ASIC notes that company records can be digital, but they must be capable of being produced in hard copy, and financial records generally need to be kept for at least seven years. ASIC also says companies must keep officeholder details current and notify most changes within 28 days. Sources: ASIC company record keeping, ASIC company officeholders and ASIC annual review.
The handover test is not legal advice. It is an operational control: can the organisation find, verify and explain its governance position without relying on tribal knowledge?
Use this scenario: a new CFO, General Counsel or Company Secretary starts tomorrow with no verbal briefing from the previous owner. They have one working day to reconstruct the group's governance position from existing systems and records.
By the end of that day, they should be able to answer these questions:
If the new owner can answer those questions from a central system, the group has a functional governance operating layer. If they need to search inboxes, ask advisers, compare spreadsheets manually and reconstruct decisions from memory, the group has a handover risk.
The checklist below is designed for Australian multi-entity groups, but the operating logic applies to any organisation managing multiple companies, SPVs, trusts or subsidiaries.
Start with the full entity universe: every registered company, subsidiary, SPV, trustee company, holding company and dormant entity the group still needs to track.
For each entity, confirm:
The key question is whether a new owner can distinguish the live operating structure from legacy entities that remain on the register.
Next, verify directors, alternate directors, secretaries and other officeholder roles. ASIC says officeholder details must be kept up to date and that most company detail changes must be notified within 28 days.
For each officeholder, check:
The common failure is that the board decision exists in one place, the ASIC lodgement exists in another, and the internal register is not updated.
For proprietary companies, member and share records are often where governance drift becomes visible. A group may have ASIC data, an internal register, signed transfer forms and structure charts that do not fully agree.
Check:
For CFOs and GCs, this is not just a filing issue. Ownership data supports due diligence, financing, group reporting, beneficial ownership work and board decision making.
ASIC's annual review process creates a recurring control point. ASIC sends an annual statement and invoice, and the company must pay the annual review fee, check and update company details, and pass a solvency resolution unless an applicable financial report has been lodged with ASIC in the previous 12 months. ASIC states directors must pass the solvency resolution within two months of the annual review date.
For each entity, confirm:
This is a useful stress test because annual reviews touch multiple controls at once: data accuracy, payment, director assessment, document evidence and deadline ownership.
A handover-ready group should not need to rebuild its registers from scratch.
Check whether each entity has current and accessible:
ASIC's record-keeping guidance includes company meetings and resolutions among examples of company records that should be kept. The operational question is whether the next person can find the right version quickly.
A handover that only captures historical records is incomplete. The new owner also needs to know what is coming next.
For each entity, confirm:
The handover should produce an exception list: overdue items, near-term deadlines, missing evidence and issues needing management attention.
The evidence trail is where many spreadsheet-led governance processes break down. A register can say a change happened, but the organisation also needs to show who approved it, what was lodged, and where the receipt or signed document lives.
For each material governance event, confirm:
Examples include director appointments, address changes, share transfers, share issues, changes to ultimate holding company details, annual review completion and entity deregistration.
Use a simple five-level score.
Level 1: Person-dependent
The records exist only because one person knows where everything is. A new owner would need interviews and inbox access to reconstruct the position.
Level 2: File-dependent
Most documents exist, but they are spread across folders, spreadsheets and adviser files. There is no reliable status view.
Level 3: Register-dependent
Core registers are maintained, but obligations, approvals, evidence and registry updates are not consistently connected.
Level 4: Evidence-ready
Each entity has current records, a clear owner, obligation tracking and linked evidence for material changes.
Level 5: System-of-record ready
The group has one trusted governance system of record connecting entities, registers, obligations, approvals, filings, documents, ownership and evidence. A new owner can reconstruct the position quickly and identify exceptions.
The practical goal is to move the highest-risk entities from Level 1 or Level 2 into Level 4 as quickly as possible.
If the handover test exposes gaps, use a focused cleanup.
Create a complete list of entities and classify each one by status, jurisdiction, ownership, responsible owner and annual review date.
Compare internal records against ASIC data and adviser records. Focus first on directors, secretaries, addresses, members, share structure and ultimate holding company details.
For recent and high-risk changes, attach the approval, signed document, lodgement receipt and register update.
Document what is missing, overdue, inconsistent or unclear. Assign owners and dates. The output should be a governance control pack: entity list, responsibility map, upcoming obligations, evidence gaps and priority remediation tasks.
Common failures include annual reviews handled without saved evidence, board-approved changes that never update the register, adviser-held files with poor internal visibility, spreadsheets that cannot prove their source, and old entities that remain active because nobody owns cleanup.
EntityFlo is built as an Australian-first governance system of record for teams managing multi-entity groups. It is designed to connect entity records, registers, ASIC-related workflows, ownership information, obligations, resolutions, documents and evidence trails in one place.
For a handover scenario, the practical value is straightforward: the next CFO, General Counsel, Company Secretary or governance owner should not have to reconstruct the group from spreadsheets, inboxes and scattered folders.
A governance handover checklist is a structured list of the entity records, obligations, approvals, registers and evidence a new governance owner needs to take control of a company group. It helps test whether the organisation can transfer governance responsibility without relying on one person's memory.
Ownership usually sits with the Company Secretary, General Counsel, CFO, governance manager or external CoSec provider. In practice, the owner should be the person accountable for keeping entity records current, deadlines visible and evidence accessible.
At minimum, run it before a CFO, GC, Company Secretary, external adviser or auditor transition. Many groups should also run a lighter version quarterly or before annual reporting, refinancing, major transactions, acquisitions or board changes.
No. ASIC data is important, but it is not a complete internal governance record. A handover also needs internal registers, approvals, minutes, resolutions, signed documents, evidence of lodgements and context about open obligations.
The biggest sign is that the current governance position cannot be reconstructed without asking a specific person. If records are accurate only because one employee, adviser or founder knows where everything is, the organisation has corporate memory risk.
A governance system of record gives the group one trusted operating layer for entities, registers, obligations, approvals, documents and evidence. It reduces handover risk by making current status, history and exceptions visible without manual reconstruction.
If your governance handover still depends on spreadsheets, shared drives and one person's memory, EntityFlo can help you build a clearer system of record for every entity, obligation, register and evidence trail. Book a demo to see how EntityFlo supports multi-entity governance control.
We use cookies to improve your experience. Essential cookies are always active. You can accept all cookies or choose essential only.