SBIR/STTR Compliance Guide
The FY2026 SBIR Compliance Checklist: Why Winning Proposals Still Get Triaged Out
Every cycle, technically strong SBIR/STTR proposals never reach a reviewer. They're screened out first for administrative non-compliance — and after the April 2026 reauthorization (S.3971), the compliance bar is higher than it's been in years. If a single required attestation is missing, your proposal can be rejected without review, no matter how good the science is.
Here's the checklist we built our free checker around.
1. Formatting & page limits
Agencies enforce Phase I page limits, font size, and margins mechanically. Over by one page, or the wrong font, and you're non-responsive before anyone reads a word. Confirm the exact per-agency limit for your solicitation — they differ (NSF, NIH, DoD components, NASA, DOE all vary).
2. Required components
Missing a required section is one of the most common silent rejections: specific aims, work plan, commercialization plan, budget and justification, biosketches, and letters of support. A checklist beats memory — reviewers won't chase you for a missing piece.
3. Eligibility
You must certify: a US small business, more than 50% US-owned and independently operated, 500 or fewer employees (including affiliates), and a PI whose primary employment is with the company at award. Get any of these wrong and the award can be pulled even after selection.
4. FY2026 national-security due diligence (the new part)
This is where FY2026 proposals get caught. The reauthorization added due-diligence and disclosure requirements aimed at foreign influence:
- Foreign Ownership, Control, or Influence (FOCI) disclosure.
- Malign Foreign Talent Recruitment Program certification.
- Disclosure of foreign affiliations, investment, and licensing tied to countries of concern.
- Current & pending support, including foreign sources.
- Cybersecurity attestations.
Miss one of these and you're not just non-competitive — you may be ineligible.
Check your proposal in 2 minutes — free
We turned this checklist into a free, private tool. Paste your proposal, pick your agency, and get a submission-readiness score plus an itemized list of exactly what would get you triaged out — including the FY2026 national-security items above. It runs entirely in your browser; your proposal text never leaves your machine.
Stop getting triaged out. Get the gaps fixed before you submit — not in a rejection letter.