AI for Financial Advisors in 2026: Practical Workflows for Client Meetings, Planning, and Compliance

63% of registered investment advisors now use AI tools — more than doubled since 2023. 52% of financial planning professionals use generative AI. Adoption has outpaced firm-level policy in nearly every survey. This guide walks through the workflows financial advisors and RIAs are actually using AI for in 2026, the SEC and FINRA frameworks that apply, and how to do each one without creating Reg S-P or fiduciary exposure.

The Regulatory Frame

Three frameworks dominate AI use in financial services.

SEC Reg S-P (amended December 2025 / June 2026): Requires firms to ensure vendor contracts include confidentiality provisions that protect client data from AI model training or unrelated processing. The amendments add specific AI-related requirements that consumer AI tools cannot satisfy.¹

FINRA 2026 Annual Regulatory Oversight Report (December 2025):Expanded the generative AI section significantly. For the first time, the report explicitly flagged “agent-based AI risks” as an enforcement focus. FINRA emphasized that Rule 2210 communications standards, Rule 3110 supervision requirements, and Books and Records obligations all apply unchanged to AI-generated content.²

Fiduciary duty: RIAs operate under SEC fiduciary standards. Broker-dealers operate under Reg BI. Both create obligations to act in clients' best interests with their information, including their data. Using consumer AI tools that train on client information may be inconsistent with these obligations.

Workflow 1: Client Meeting Preparation

The use case: preparing for client review meetings — synthesizing recent portfolio activity, life event changes, market developments relevant to their plan, and follow-ups from the last meeting.

The AI workflow: feed client notes, recent statements, prior meeting summaries, and current market context into AI for a structured prep brief.

Compliance check: Client-specific portfolio and life information. High Reg S-P risk if submitted to consumer AI. On-device AI is the cleanest fit.

Practical pattern: Many advisors are using on-device AI to prep on Monday morning for the week's client meetings. The data stays local; the prep briefs are saved as encrypted notes; the meeting goes more efficiently than it did pre-AI.

Workflow 2: Meeting Summary and Follow-Up

The use case: turning a 45-minute client conversation into a follow-up summary, action items, and documentation for the CRM.

The AI workflow: dictate or type rough meeting notes, ask AI to format them into a professional summary with clear action items and a follow-up email to the client.

Compliance check: Meeting notes contain client information and may capture sensitive personal context. On-device AI or enterprise AI under contract.

Books and Records implication: Under FINRA Rule 4511 and SEC Rule 204-2, certain client communications must be preserved. AI-generated summaries that get sent to clients are themselves “communications.” Make sure your retention practices include AI-generated client output.

Workflow 3: Financial Plan Drafting

The use case: drafting plan sections — retirement projections analysis, tax-loss harvesting commentary, estate planning recommendations, insurance gap analysis. The text portions of comprehensive plans.

The AI workflow: feed plan modeling outputs (eMoney, RightCapital, MoneyGuide) and client situation into AI for plain-English plan section drafts.

Compliance check: Plan inputs are highly client-specific. Tier 2 or 3 only. Many planning software vendors now include their own AI features with appropriate data protections; check those before defaulting to general-purpose tools.

Workflow 4: Regulatory Research

The use case: researching changes to retirement plan rules (Secure 2.0, Roth conversion mechanics, RMD changes), state-level investment laws, new tax provisions affecting clients.

The AI workflow: query AI with abstract questions (no client identification), get plain-English explanations, verify against primary sources.

Compliance check: Abstract research with no client identifiers is low-risk. Any AI tier works. Citation verification matters — financial regulation moves fast and AI knowledge cutoffs can be misleading.

Workflow 5: Prospect Outreach and Marketing

The use case: drafting blog posts, newsletter content, prospect emails, social media commentary on market events.

The AI workflow: AI assists with first-draft generation, editing for tone, translating complex content to broader audiences.

Compliance check: Public-facing marketing has no client confidentiality issue (assuming no client identification). Any AI tier works for the content generation.

FINRA Rule 2210 implication: AI-generated marketing content for FINRA-registered firms is still subject to Rule 2210 communication standards and the firm's supervisory review procedures. AI doesn't change the substantive review requirements; it just accelerates the drafting.

Workflow 6: Portfolio Commentary and Market Communication

The use case: writing quarterly portfolio commentary, market updates, and client-facing analysis of market developments.

The AI workflow: feed performance data, market context, and house views into AI for first-draft client-facing commentary.

Compliance check: If commentary is client-specific (e.g., addressing individual portfolio decisions), Tier 2 or 3. If general market commentary distributed broadly, Tier 1 with FINRA Rule 2210 review.

The Three-Tier System for Advisory Practices

Tier 1 — Public AI: Approved for general market commentary with no client identification, regulatory research, broad-audience marketing drafts. Prohibited for anything involving a specific client.

Tier 2 — Enterprise AI with contracts: Approved for client work if Reg S-P-compliant contracts in place, supervisory procedures updated, audit-trail documentation maintained. Many planning software vendors' AI features fall here.

Tier 3 — On-Device AI: Approved for any client work. Reg S-P question becomes structurally moot (no vendor processing client data). Cleanest E&O underwriting position.

Documentation FINRA and the SEC Now Expect

Build and maintain:

1. Written AI usage policy specifying approved tools by tier, prohibited uses, and the supervisory review process for AI-generated client communications.
2. Vendor diligence files for any cloud AI tool used with client data, including contract review, security posture assessment, and BAA/DPA equivalents.
3. Training records showing staff completed AI compliance training.
4. Audit logs of AI-generated client communications, integrated into your normal Books and Records retention.
5. Quarterly review documentation showing supervisory review of a sample of AI-assisted work.

Sample Engagement Letter Language

“[Firm] uses artificial intelligence (AI) tools to assist with research, drafting, planning analysis, and related tasks. For tasks involving Client's personal financial information, [Firm] uses AI tools that either operate entirely on local hardware or are subject to written agreements with the AI vendor prohibiting use of Client information for model training and ensuring deletion of inputs after processing, consistent with SEC Regulation S-P. [Firm]'s personnel review all AI-generated work product before use, and [Firm] retains full fiduciary responsibility for advice provided to Client.”

Part of our AI by Profession cluster: See the pillar guide. For the broader compliance framework, see the step-by-step compliance guide. For the architectural foundation, see the On-Device AI pillarand our Financial Advisors landing page.