The content on this page is general in nature and is not legal advice because legal advice, by definition, must be specific to a particular set of facts and circumstances. No person should rely, act, or refrain from acting based upon the content of this blog post.


Legal Requirements for Offering a Direct Public Offering (DPO)
Man taking notes in a notepad with a laptop computer in the foreground

Understanding a Direct Public Offering and Why It Is Not Do-It-Yourself

A Direct Public Offering is a method of raising capital by selling securities directly to investors without using a traditional underwriter. It is frequently misunderstood as a simple marketing exercise. In practice, a DPO is a regulated securities offering subject to an intricate overlay of federal and state laws, accounting standards, and investor protection rules. The legal definition of a “public” offering hinges on solicitation breadth and resale potential, not merely whether an investment bank participates. As an attorney and CPA, I emphasize that the absence of an underwriter does not eliminate regulatory scrutiny. It shifts responsibility for compliance, disclosure, and investor communications squarely to the issuer and its advisors.

A common misconception is that a DPO is synonymous with “crowdfunding,” or that any small business may advertise and accept checks after posting a term sheet on its website. Even a modest offering can trigger registration or exemption requirements, audited financial statements, sales reporting, broker-dealer issues, and state “blue sky” filings. The threshold question is not how little the company intends to raise, but which rules apply to the offering structure, the investor audience, and the states involved. The wrong assumption at the outset often yields rescission risk, forced refunds, and potential enforcement action.

Selecting the Legal Pathway: Registration or Exemptions

The starting point for a compliant DPO is to determine whether to register or to rely on an exemption from registration. Many issuers use Regulation A for a broadly marketed offering, with Tier 1 available for smaller raises within state oversight and Tier 2 for larger raises under federal preemption. Others consider Regulation Crowdfunding, which imposes funding caps and portal requirements but allows general solicitation within its tightly defined parameters. Some offerings rely on Regulation D Rule 504 or intrastate pathways such as Rule 147 or Rule 147A, particularly when the investor base is local. Each path entails distinct disclosure, filing, and advertising constraints.

No pathway is universally “easier.” For instance, Regulation A Tier 2 requires audited financial statements and ongoing annual, semiannual, and current reports, while Tier 1 may trigger more onerous state reviews. Intrastate rules require meticulous confirmation of issuer and investor residency and strict controls over out-of-state promotional spillover. Regulation Crowdfunding mandates use of a registered portal, investment limits tied to investor income and net worth, and real-time communications monitoring. The decision is a legal and financial calculus that should be made with counsel after modeling cost, timing, investor eligibility, and post-offering obligations.

State Blue Sky Laws and Merit Review

Even when a federal exemption applies, state securities laws may impose filing, fee, and anti-fraud obligations. For non-preempted offerings, many states conduct substantive “merit review,” evaluating fees, pricing, capitalization, and promoter compensation against prescriptive standards. A pricing structure viewed as fair by one state may be rejected by another, particularly if the terms appear overly dilutive or if related-party arrangements lack objective justification. Coordinating multi-state filings requires a disciplined timeline, state-by-state strategy, and continuous reconciliation of comments that can conflict across jurisdictions.

Issuers often underestimate the administrative burden of blue sky compliance. Expect to prepare a matrix of filing deadlines, disclosure addenda, sales report formats, escrow triggers, and communication approvals. States may require pre-clearance of advertising, scripted Q&A, and risk factor language. Renewals or post-effective amendments may be necessary if the offering extends beyond an initial period or if material changes occur. Failure to comply can result in stop orders, mandated rescission, and personal liability for officers and directors under state law equivalents of federal anti-fraud provisions.

Offering Documents, Risk Disclosures, and Anti-Fraud Liability

Every DPO rests on a foundation of complete and accurate disclosure. Whether the document is an offering circular, disclosure memorandum, or a state-specific form, the issuer must disclose all material facts, including adverse information, potential conflicts, and realistic risk factors tailored to the business model. Boilerplate is not a safe harbor. Investors, regulators, and plaintiffs’ counsel scrutinize the internal consistency of financial statements, use of proceeds, related-party transactions, customer concentration, and assumptions underpinning projections. As a CPA, I counsel clients to reconcile narrative disclosures to underlying ledgers and to support metrics with verifiable data trails.

Anti-fraud liability under federal and state law applies regardless of exemption. Misstatements and omissions can trigger rescission rights, enforcement actions, and civil litigation. Issuers should implement a formal disclosure committee, document a robust diligence process, and retain written back-up for key claims. Practical best practices include maintaining a “data room” with version control, requiring officer sub-certifications, and capturing board minutes reflecting disclosure judgments. Simply copying risk factors from another company’s filing invites trouble; risk disclosure must be specific, balanced, and current.

Marketing, General Solicitation, and Communications Controls

Marketing in a DPO is a compliance function, not merely a creative exercise. Permissible outreach depends on the chosen exemption and corresponding rules for general solicitation, “testing the waters,” and filing of solicitation materials. Seemingly innocuous media interviews, conference talks, and social media posts can constitute offers. Issuers should pre-clear all public statements, impose a review workflow, and archive communications. Where legends are required, they must be conspicuous and accurate. Where filing of advertising is mandated, the timing and completeness of those filings must align with the offering schedule.

Lay misunderstandings often arise around “soft” communications. For example, a product launch announcement that includes statements about growth or future fundraising can be deemed an offering communication if it conditions the market. In regulated pathways that permit testing the waters, there are still content and timing restrictions, and some states treat these communications differently. Implement a centralized communications policy that covers employees, contractors, affiliates, and paid promoters. Compensated testimonials and endorsements trigger special disclosure rules. Establish a compliance calendar for ad submissions, approval stamps, legend updates, and retention.

Intermediaries, Compensation, and the Unregistered Broker Problem

Compensating third parties to help find investors raises significant broker-dealer issues. Paying transaction-based compensation to persons who are not registered broker-dealers can violate securities laws, risking enforcement actions and investor rescission rights. There is a persistent misconception that labeling someone a “consultant,” “finder,” or “introducer” avoids registration. The analysis focuses on activities and compensation structure, not job titles. Activities such as soliciting investors, making recommendations, negotiating terms, or handling funds are red flags.

Issuers should map each role and confirm whether a registered intermediary is required. Flat-fee marketing services that only provide general advertising without solicitation can be permissible in certain contexts, but this line is narrow and fact-specific. Written agreements must define scope, restrict prohibited conduct, and require compliance undertakings. If a portal or broker is involved, validate registrations, confirm supervisory procedures, and coordinate disclosure of compensation in offering documents. When in doubt, restructure compensation to avoid transaction-based elements or engage a properly registered firm.

Investor Onboarding, Escrow, AML/KYC, and Subscription Mechanics

Clean subscription mechanics protect both investors and issuers. A robust DPO process includes standardized subscription agreements, investor questionnaires, suitability checks, and funds flow through an independent escrow agent when required. Purchases should not be accepted until eligibility is verified and all legends, acknowledgments, and risk confirmations are executed. Establish clear procedures for cancellations, oversubscriptions, and partial fills, as well as timing for fund release conditions tied to minimum offering thresholds. Maintain a contemporaneous audit trail of each subscription decision.

AML and KYC considerations extend beyond large financial institutions. Issuers should coordinate with banking partners, payment processors, and transfer agents to screen investors under OFAC and other sanctions regimes, assess source-of-funds risks, and prevent prohibited transactions. For entities and trusts, beneficial ownership must be validated. Cross-border subscriptions may invoke additional diligence steps and require reliance on specific exemptions. A disciplined intake process reduces errors that later complicate cap table accuracy, tax reporting, and investor communications.

Financial Statements, Audits, and Ongoing Reporting

Financial reporting is often the longest pole in the tent. Many DPO pathways require audited financial statements prepared in accordance with applicable standards for specified periods. Audits require lead time for inventory counts, revenue recognition review, and evaluation of related-party transactions. Forecasts and projections, if included, must be framed with appropriate cautionary language and based on reasonable, supportable assumptions. Reconciliations among offering documents, management’s discussion and analysis, and the financial statements should be checked line by line. As a CPA, I insist on tie-out binders and variance analyses before any investor-facing release.

Ongoing reporting obligations can be substantial. Depending on the pathway, issuers may be required to file annual and semiannual reports, current event updates, and sales reports, and to maintain a registered transfer agent. Missed deadlines can suspend the ability to raise additional funds, impede secondary trading, and trigger state-level consequences. Establish a compliance calendar aligned to fiscal close, auditor timelines, and legal review. Budget for continuing professional costs, including audit fees, EDGARization support where applicable, and investor relations communications that align with the anti-fraud framework.

Corporate Governance, Cap Table Hygiene, and Transfer Restrictions

Before launching a DPO, governance should be investor-grade. Update bylaws, confirm board composition and independence where required, and adopt committee charters appropriate to the company’s stage. Equity plans, vesting schedules, and convertible instruments must be reconciled to avoid hidden overhang. Clean-up tasks can include repapering founder agreements, standardizing IP assignments, and documenting prior issuances. Cap table software is not a substitute for legal validation; reconcile to executed instruments, board approvals, and state filings. If multiple share classes are offered, ensure voting and economic rights are internally consistent and clearly disclosed.

Transfer restrictions and resale mechanics require careful drafting. Depending on the exemption and state rules, securities may be “restricted” for a period and subject to legends limiting transfer. Issuers should define transfer procedures, including right-of-first-refusal provisions, required opinions of counsel, and acceptable documentation for permitted transfers. Plan for investor expectations around liquidity and be candid about secondary trading prospects. Some states require manual listings or other conditions for secondary trades. Align transfer agent instructions with the offering’s legends and resale constraints to prevent inconsistent processing.

Tax Structuring, ERISA Considerations, and Cross-Border Issues

Tax implications of a DPO reach far beyond the headline rate. Entity choice affects investor eligibility, pass-through items, state tax nexus, and information reporting. The use of debt-like preferred instruments, warrants, or revenue sharing can trigger original issue discount, contingent payment rules, or phantom income. For pass-through entities, investor K-1 expectations and state composite filing mechanics need early attention. As a CPA, I recommend modeling post-raise tax positions, including the impact of use-of-proceeds on capitalization policies and potential research credits, and aligning dividend or distribution policies with investor communications.

ERISA adds another dimension. If retirement plan assets invest, fiduciary standards, plan asset regulations, and prohibited transaction rules can apply. Offering terms, fees, and control rights must be evaluated for ERISA compatibility. Cross-border investors implicate sanctions, tax withholding, and securities law issues, including the need to rely on appropriate offshore offering exemptions. Additional complications include FIRPTA for real estate-heavy issuers, treaty documentation, and FATCA/CRS certifications. The subscription flow should collect the data required to apply correct withholding, provide necessary investor statements, and maintain compliance records.

Technology, Cybersecurity, and Website Compliance

Issuers frequently market DPOs through dedicated websites and investor portals. Public-facing materials must align with offering documents, include required legends, and avoid performance claims lacking substantiation. Access controls should prevent non-permitted jurisdictions or investors from progressing through the funnel when rules require geographic or status limitations. Archive the site at key milestones to evidence the content shown to investors. Maintain strict version control across PDFs, FAQs, and investor decks to avoid divergent statements that could be deemed misleading.

Cybersecurity is not optional. A compromise of investor data during a DPO can lead to regulatory inquiries, contractual liability, and reputational harm. Implement multi-factor authentication, encryption at rest and in transit, and vendor due diligence for payment processors and transfer agents. Document incident response protocols and test them. Ensure that privacy policies reflect actual practices, especially regarding data sharing with service providers. Disclosures that reference security practices must be accurate; aspirational statements can become liabilities if controls do not match claims.

Post-Offering Obligations: Shareholder Relations, Secondary Liquidity, and Unclaimed Property

After the raise closes, the compliance journey continues. Establish a cadence for investor communications that aligns with ongoing reporting commitments and anti-fraud rules. Prepare for inquiries regarding financial performance, use of proceeds, and timelines for potential liquidity. If the capital structure contemplates dividends or distributions, adopt a consistent policy and synchronize it with cash forecasting and debt covenants. Maintain accurate shareholder records, coordinate with the transfer agent, and resolve discrepancies promptly to avoid disputes.

Liquidity planning should be realistic. Secondary trading may require meeting specific eligibility criteria, transfer restrictions may persist, and market-making partners may be limited. Address investor expectations soberly in offering documents and ongoing communications. Additionally, states enforce unclaimed property laws that can apply to uncashed dividend checks, returned mail, or dormant shareholder accounts. Build processes for due diligence mailings, escheatment timelines, and recordkeeping. Failure to comply can result in audits, penalties, and costly remediation efforts years after the offering.

Practical Timeline, Budgeting, and Team Assembly

A successful DPO follows a disciplined plan with sufficient lead time. Core workstreams typically include legal structuring, financial statement preparation and audit, offering document drafting, blue sky strategy, marketing compliance, technology buildout, and intermediary engagement. Each workstream has dependencies; for example, audited financials are often prerequisites for final disclosure, and state filings cannot begin until certain documents are complete. A realistic timeline for a fully compliant DPO is measured in months, not weeks, and can extend if multiple states are involved or if comments require rounds of revisions.

Budgeting must account for professional fees, audit costs, state filing fees, transfer agent and escrow services, technology platforms, marketing compliance review, and ongoing reporting obligations. As an attorney and CPA, my recommendation is to assemble a cross-functional team that includes experienced securities counsel, an audit firm familiar with the chosen pathway, a compliance-oriented marketing partner, and, where applicable, a registered intermediary. Establish governance around decision-making and escalation, with clear documentation at each step. The earlier the team is in place, the fewer costly course corrections later.

Common Misconceptions and How to Avoid Costly Pitfalls

Several myths persist. First, that small dollar amounts mean “lightweight” compliance. In reality, the scale of disclosure and control requirements depends on the pathway, jurisdictions, and investor profile, not just the offering size. Second, that using a template offering document avoids liability. Templates are starting points; the liability standard hinges on material accuracy, completeness, and the reasonableness of the diligence underlying statements. Third, that hiring a promoter solves distribution challenges. If the promoter engages in solicitation without proper registration or disclosures, the cure becomes a violation.

To avoid pitfalls, adopt a mindset that treats the DPO like a public company project scaled to fit. Implement internal controls over financial reporting, formalize disclosure processes, maintain communications logs, and document all compliance judgments. Allocate sufficient resources to investor onboarding and data security. Engage professionals early to map the regulatory landscape, coordinate filings, and test assumptions. The cost of proactive compliance is almost always lower than the cost of remediation, rescission, or enforcement. When structured and executed carefully, a DPO can diversify the investor base and finance growth while preserving more control than a traditional underwriting.

Next Steps

Please use the button below to set up a meeting if you wish to discuss this matter. When addressing legal and tax matters, timing is critical; therefore, if you need assistance, it is important that you retain the services of a competent attorney as soon as possible. Should you choose to contact me, we will begin with an introductory conference—via phone—to discuss your situation. Then, should you choose to retain my services, I will prepare and deliver to you for your approval a formal representation agreement. Unless and until I receive the signed representation agreement returned by you, my firm will not have accepted any responsibility for your legal needs and will perform no work on your behalf. Please contact me today to get started.

Book a Meeting
As the expression goes, if you think hiring a professional is expensive, wait until you hire an amateur. Do not make the costly mistake of hiring an offshore, fly-by-night, and possibly illegal online “service” to handle your legal needs. Where will they be when something goes wrong? . . . Hire an experienced attorney and CPA, knowing you are working with a credentialed professional with a brick-and-mortar office.
— Prof. Chad D. Cummings, CPA, Esq. (emphasis added)


Attorney and CPA

/Meet Chad D. Cummings

Picture of attorney wearing suit and tie

I am an attorney and Certified Public Accountant serving clients throughout Florida and Texas.

Previously, I served in operations and finance with the world’s largest accounting firm (PricewaterhouseCoopers), airline (American Airlines), and bank (JPMorgan Chase & Co.). I have also created and advised a variety of start-up ventures.

I am a member of The Florida Bar and the State Bar of Texas, and I hold active CPA licensure in both of those jurisdictions.

I also hold undergraduate (B.B.A.) and graduate (M.S.) degrees in accounting and taxation, respectively, from one of the premier universities in Texas. I earned my Juris Doctor (J.D.) and Master of Laws (LL.M.) degrees from Florida law schools. I also hold a variety of other accounting, tax, and finance credentials which I apply in my law practice for the benefit of my clients.

My practice emphasizes, but is not limited to, the law as it intersects businesses and their owners. Clients appreciate the confluence of my business acumen from my career before law, my technical accounting and financial knowledge, and the legal insights and expertise I wield as an attorney. I live and work in Naples, Florida and represent clients throughout the great states of Florida and Texas.

If I can be of assistance, please click here to set up a meeting.



Read More About Chad