A Guide to AML for Australian FinTechs
Explore Australia’s AML/CTF framework and uncover the key obligations for FinTechs, including registration, reporting, and record keeping.
Download nowOn October 5, 2022, the Australian Transaction Reports and Analysis Centre (AUSTRAC) published guidance aimed at helping reporting entities identify and verify sources of funds and wealth as part of their know-your-customer (KYC) processes. The advice was drafted earlier this year and underlined the importance of having appropriate risk-based controls for customers that present a higher risk, such as politically exposed persons (PEPs).
The new guidance builds on an earlier draft, with the addition of questions to consider when developing source of funds (SoF) and source of wealth (SoW) processes and a reminder of reporting entities’ obligations under the Privacy Act.
When developing SoF and SoW processes, AUSTRAC recommends firms ask the following questions to ensure all procedures align with their risk appetite:
According to AUSTRAC, “reasonable measures” means what is practical and necessary in line with the firm’s identified money laundering and terrorist financing risks.
In the guidance, AUSTRAC reminds reporting entities that the Privacy Act covers all personal information collected and verified about a person’s identity. Since this type of information can be considered “sensitive,” firms should consider storing the data with a higher level of privacy protection per the Australian Privacy Principles.
Chapter 11 of the Australian Privacy Principles details the reasonable steps reporting entities should take to ensure the security of personal information obtained throughout the KYC process, including SoF and SoW checks. These include:
The new guidance follows AUSTRAC’s ongoing investigation of Star Entertainment Group, where concerns had been raised regarding the casino’s customer due diligence and compliance with anti-money laundering and counter-terrorism laws.
Earlier this year, the group’s Chief Financial Crime Officer, Skye Arnott, revealed that the company provided fake SoF letters to the Bank of China to make deposits by high-net-worth individuals appear to have been earned by gambling. During the inquiry, Arnott acknowledged that providing fake SoF letters raised “very significant concerns” regarding anti-money laundering compliance.
While AUSTRAC’s enforcement investigations into the Star Group are ongoing, the recent revelations are a strong reminder of reporting entities’ obligation to maintain accurate SoF and SoW documentation. More information from AUSTRAC on record-keeping best practices can be found here.
Identifying the SoF and SoW are key elements of an effective risk management framework. Compliance staff should ensure these procedures and processes are accurately documented and applied consistently and in accordance with the firm’s risk appetite. The systems and controls that identify the SoF and SoW must also be subject to regular independent review.
When conducting the checks, reporting entities must also avoid the common misconception that funds from a bank can be presumed clean. Further action may still be required to prove the funds are not derived from criminal proceeds.
For more information, the compliance team should consult the frequently asked questions on SoF and SoW issued by The Wolfsberg Group.
Explore Australia’s AML/CTF framework and uncover the key obligations for FinTechs, including registration, reporting, and record keeping. A Guide to AML for Australian FinTechs
Originally published 14 October 2022, updated 14 October 2022
Disclaimer: This is for general information only. The information presented does not constitute legal advice. ComplyAdvantage accepts no responsibility for any information contained herein and disclaims and excludes any liability in respect of the contents or for action taken based on this information.
Copyright © 2023 IVXS UK Limited (trading as ComplyAdvantage).