No Result
View All Result
SUBSCRIBE | NO FEES, NO PAYWALLS
MANAGE MY SUBSCRIPTION
NEWSLETTER
Corporate Compliance Insights
  • Home
  • About
    • About CCI
    • Writing for CCI
    • NEW: CCI Press – Book Publishing
    • Advertise With Us
  • Explore Topics
    • See All Articles
    • Compliance
    • Ethics
    • Risk
    • FCPA
    • Governance
    • Fraud
    • Internal Audit
    • HR Compliance
    • Cybersecurity
    • Data Privacy
    • Financial Services
    • Well-Being at Work
    • Leadership and Career
    • Opinion
  • Vendor News
  • Career Connection
  • Events
    • Calendar
    • Submit an Event
  • Library
    • Whitepapers & Reports
    • eBooks
    • CCI Press & Compliance Bookshelf
  • Podcasts
  • Videos
  • Subscribe
  • Home
  • About
    • About CCI
    • Writing for CCI
    • NEW: CCI Press – Book Publishing
    • Advertise With Us
  • Explore Topics
    • See All Articles
    • Compliance
    • Ethics
    • Risk
    • FCPA
    • Governance
    • Fraud
    • Internal Audit
    • HR Compliance
    • Cybersecurity
    • Data Privacy
    • Financial Services
    • Well-Being at Work
    • Leadership and Career
    • Opinion
  • Vendor News
  • Career Connection
  • Events
    • Calendar
    • Submit an Event
  • Library
    • Whitepapers & Reports
    • eBooks
    • CCI Press & Compliance Bookshelf
  • Podcasts
  • Videos
  • Subscribe
No Result
View All Result
Corporate Compliance Insights
Home Compliance

The Clock is Ticking

by Erin Illman
September 7, 2016
in Compliance
Updates needed to risk processes, internal controls, etc. to maintain compliance with the new CDD

with co-author Sean Wagner

On May 11, 2016, the U.S. Treasury Department’s Financial Crimes Enforcement Network (FinCEN) issued a new customer due diligence rule which requires, among other things, covered financial institutions to collect and verify information on beneficial owners of accounts opened in the name of a legal entity (CDD Rule). Financial institutions have two years, until May 11, 2018, to implement the rule and ensure compliance.

What is the CDD Rule?

The CDD Rule outlines explicit customer due diligence requirements designed to prevent bank customers from using financial systems for illicit purposes.  The CDD Rule applies to a wide variety of covered financial institutions, which are defined as insured banks, commercial banks, U.S. branches and agencies of foreign banks, federally insured credit unions, savings associations, Edge Act corporations, certain federally regulated trust companies, broker-dealers subject to SEC registration requirements, futures commission merchants, brokers in commodities and mutual funds.

Covered financial institutions will be required to identify and verify the identity of the beneficial owners of all legal entity customers at the time each new account is open. In other words, if a new account is open in the name of a corporation, limited liability, general partnership or other entity formed under domestic or foreign laws (unless otherwise excluded under the CDD Rule), the covered financial institution must identify any beneficial owner who directly or indirectly owns 25 percent or more of the equity interests of the entity and is a single individual with significant responsibility to control, manage or direct a legal entity customer.

What Steps Can Your Business Take Now?

1. Update Policies and Procedures.

The CDD Rule requires covered financial institutions to establish and maintain written procedures that are reasonably designed to identify and verify the beneficial owners of legal entity customers. These procedures must enable the institution to identify the beneficial owners of each customer at the time a new account is opened, unless the customer is otherwise excluded or the account is exempted. Likewise, compliance and legal departments will want to analyze how the business will build in processes to ensure that exempt and excluded customers and accounts are identified and tracked.

The policies and procedures must also establish risk-based practices for verifying the identity of each beneficial owner disclosed to the covered financial institution, to the extent reasonable and practicable. The customer identification procedures should outline a methodology sufficient to verify the identity of customers that are individuals under applicable customer identification requirements, including, but not limited to, each customer’s name, date of birth, address and taxpayer or other identification number.  This information will form the baseline for risk profiles associated with each customer, which will now include information regarding the beneficial owners of legal entity customers. The CDD Rule requires covered financial institutions to conduct ongoing monitoring of accounts and identify suspicious activity utilizing customer risk profiles to enhance detection of suspicious transactions. Under the CDD Rule, covered financial institutions will need to formulate updated procedures and guidelines for identifying suspicious activities to include reasonable consideration of customer risk profiles.

2. Implement Risk-Based Procedures.

The CDD Rule amends the Anti-Money Laundering (AML) program to explicitly require covered institutions to implement and maintain appropriate risk-based procedures for conducting ongoing due diligence. Covered financial institutions should begin the process now of understanding the nature, purpose and scope of the institution’s customer relationships and develop processes to monitor and identify ongoing customer due diligence. For example, an institution should assess the following functions and begin implementing changes to adapt to the CDD Rule:

  1. Implement new (and update existing) independent testing, audit functions and reporting;
  2. Designate a compliance officer or other individual for day-to-day compliance with the CDD Rule;
  3. Implement new (and update existing) training for appropriate personnel;
  4. Ensure that internal controls, feedback loops and oversight by management and the board incorporate the CDD Rule requirements;
  5. Utilize in-house and external legal resources to monitor developments in FinCEN guidance and enforcement actions, and review policies, procedures and processes to ensure that these implementations are meeting the legal standards under the CDD Rule.

3. Collect and Store Information About Beneficial Ownership.

Covered financial institutions must collect and verify the beneficial ownership information from each person who meets the definition under the dual prongs of ownership and control identified above. Institutions need to consider how this information will be stored, updated and cross-referenced to reduce costs and duplication. Additional considerations, such as data privacy, information security and storage of non-public personal information should be reviewed.

4. Monitor Developments and Additional Guidance.

On July 19, 2016, FinCEN issued Frequently Asked Questions to assist covered financial institutions in understanding the scope, purpose and requirements under the CDD Rule. FinCEN has indicated that it intends to issue additional Frequently Asked Questions and guidance as appropriate. It will be imperative that covered financial institutions continue to monitor developments, explanations and guidance to ensure that current programs and anticipated changes to policies, procedures, risk process, training and controls are in line with FinCEN expectations.

The CDD Rule presents a number of operational challenges for covered financial institutions related to the gathering, storage and effective utilization of customer and beneficial owner information. In light of these challenges, as well as the heightened expectations of government stakeholders, covered financial institutions should begin the process of reviewing and updating existing policies, procedures and systems to ensure they have the necessary infrastructure to comply with the CDD Rule when it goes into effect on May 11, 2018.


Previous Post

Resilient: Eric Pillmore on Rebuilding Trust

Next Post

Volunteering for the Common Good

Erin Illman

Erin Illman

Erin IllmanErin J. Illman is an attorney in the Charlotte office of Bradley Arant Boult Cummings LLP. Ms. Illman has a diversified practice representing corporate entities and financial institution clients in a wide variety of regulatory compliance, data privacy, litigation and contract matters. She helps companies to navigate compliance and litigation risks, as well as the related business concerns that arise from enforcement and regulatory issues; compliance with state and federal banking and consumer protection laws; government investigations; bankruptcy and insolvency matters; customer complaints; contract disputes; and commercial litigation. Ms. Illman also has a strong understanding of the operational aspects of commercial lending and broad experience in complex loan transactions. She represents clients in secured transactions, UCC and commercial contract-related disputes, as well as unsecured and secured creditors in bankruptcy and adversary proceedings. She further advises clients on privacy and information security compliance issues, regulatory compliance disputes, defense of enforcement actions, real property controversies, and internal risk assessment. Ms. Illman can be reached at eillman@bradley.com and (704) 338-6000.

Related Posts

Fox_DOJ Speeches_f

Analysis of Recent DOJ Statements

by Corporate Compliance Insights
March 23, 2023

DOJ leaders provide insight into agency's plans. Analysis of Recent Statements DOJ Shaping the Future of Corporate Criminal Enforcement What’s...

Fox_2023 ECCP Update_f

2023 Evaluation of Corporate Compliance Programs

by Corporate Compliance Insights
March 23, 2023

Keeping up with 2023 changes to DOJ guidelines. Additions, Deletions & Changes From 2020 2023 Evaluation of Corporate Compliance Programs...

encompass update

Encompass Launches pKYC Maturity Model

by Corporate Compliance Insights
March 22, 2023

KYC automation platform Encompass has unveiled a new perpetual Know Your Customer (pKYC) maturity model designed to help banks improve...

consilio onna partnership

Consilio, Onna Seek to Streamline eDiscovery for Cloud Apps

by Corporate Compliance Insights
March 22, 2023

Legal technology provider Consilio has launched a new platform, Sightline Collect, powered by data management supplier Onna. The platform is...

Next Post
The business benefit of corporate social responsibility

Volunteering for the Common Good

Compliance Job Interview Q&A

Jump to a Topic

AML Anti-Bribery Anti-Corruption Artificial Intelligence (AI) Automation Banking Board of Directors Board Risk Oversight Business Continuity Planning California Consumer Privacy Act (CCPA) Code of Conduct Communications Management Corporate Culture COVID-19 Cryptocurrency Culture of Ethics Cybercrime Cyber Risk Data Analytics Data Breach Data Governance DOJ Download Due Diligence Enterprise Risk Management (ERM) ESG FCPA Enforcement Actions Financial Crime Financial Crimes Enforcement Network (FinCEN) GDPR HIPAA Know Your Customer (KYC) Machine Learning Monitoring RegTech Reputation Risk Risk Assessment SEC Social Media Risk Supply Chain Technology Third Party Risk Management Tone at the Top Training Whistleblowing
No Result
View All Result

Privacy Policy

Founded in 2010, CCI is the web’s premier global independent news source for compliance, ethics, risk and information security. 

Got a news tip? Get in touch. Want a weekly round-up in your inbox? Sign up for free. No subscription fees, no paywalls. 

Follow Us

Browse Topics:

  • CCI Press
  • Compliance
  • Compliance Podcasts
  • Cybersecurity
  • Data Privacy
  • eBooks Published by CCI
  • Ethics
  • FCPA
  • Featured
  • Financial Services
  • Fraud
  • Governance
  • GRC Vendor News
  • HR Compliance
  • Internal Audit
  • Leadership and Career
  • On Demand Webinars
  • Opinion
  • Resource Library
  • Risk
  • Uncategorized
  • Videos
  • Webinars
  • Well-Being
  • Whitepapers

© 2022 Corporate Compliance Insights

No Result
View All Result
  • Home
  • About
    • About CCI
    • Writing for CCI
    • NEW: CCI Press – Book Publishing
    • Advertise With Us
  • Explore Topics
    • See All Articles
    • Compliance
    • Ethics
    • Risk
    • FCPA
    • Governance
    • Fraud
    • Internal Audit
    • HR Compliance
    • Cybersecurity
    • Data Privacy
    • Financial Services
    • Well-Being at Work
    • Leadership and Career
    • Opinion
  • Vendor News
  • Career Connection
  • Events
    • Calendar
    • Submit an Event
  • Library
    • Whitepapers & Reports
    • eBooks
    • CCI Press & Compliance Bookshelf
  • Podcasts
  • Videos
  • Subscribe

© 2022 Corporate Compliance Insights

Welcome to CCI. This site uses cookies. Please click OK to accept. Privacy Policy
Cookie settingsACCEPT
Manage consent

Privacy Overview

This website uses cookies to improve your experience while you navigate through the website. Out of these, the cookies that are categorized as necessary are stored on your browser as they are essential for the working of basic functionalities of the website. We also use third-party cookies that help us analyze and understand how you use this website. These cookies will be stored in your browser only with your consent. You also have the option to opt-out of these cookies. But opting out of some of these cookies may affect your browsing experience.
Necessary
Always Enabled
Necessary cookies are absolutely essential for the website to function properly. These cookies ensure basic functionalities and security features of the website, anonymously.
CookieDurationDescription
cookielawinfo-checbox-analytics11 monthsThis cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Analytics".
cookielawinfo-checbox-functional11 monthsThe cookie is set by GDPR cookie consent to record the user consent for the cookies in the category "Functional".
cookielawinfo-checbox-others11 monthsThis cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Other.
cookielawinfo-checkbox-necessary11 monthsThis cookie is set by GDPR Cookie Consent plugin. The cookies is used to store the user consent for the cookies in the category "Necessary".
cookielawinfo-checkbox-performance11 monthsThis cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Performance".
viewed_cookie_policy11 monthsThe cookie is set by the GDPR Cookie Consent plugin and is used to store whether or not user has consented to the use of cookies. It does not store any personal data.
Functional
Functional cookies help to perform certain functionalities like sharing the content of the website on social media platforms, collect feedbacks, and other third-party features.
Performance
Performance cookies are used to understand and analyze the key performance indexes of the website which helps in delivering a better user experience for the visitors.
Analytics
Analytical cookies are used to understand how visitors interact with the website. These cookies help provide information on metrics the number of visitors, bounce rate, traffic source, etc.
Advertisement
Advertisement cookies are used to provide visitors with relevant ads and marketing campaigns. These cookies track visitors across websites and collect information to provide customized ads.
Others
Other uncategorized cookies are those that are being analyzed and have not been classified into a category as yet.
SAVE & ACCEPT