No Result
View All Result
SUBSCRIBE | NO FEES, NO PAYWALLS
MANAGE MY SUBSCRIPTION
NEWSLETTER
Corporate Compliance Insights
  • Home
  • About
    • About CCI
    • CCI Magazine
    • Writing for CCI
    • Career Connection
    • NEW: CCI Press – Book Publishing
    • Advertise With Us
  • Explore Topics
    • See All Articles
    • Compliance
    • Ethics
    • Risk
    • FCPA
    • Governance
    • Fraud
    • Internal Audit
    • HR Compliance
    • Cybersecurity
    • Data Privacy
    • Financial Services
    • Well-Being at Work
    • Leadership and Career
    • Opinion
  • Vendor News
  • Library
    • Download Whitepapers & Reports
    • Download eBooks
    • New: Living Your Best Compliance Life by Mary Shirley
    • New: Ethics and Compliance for Humans by Adam Balfour
    • 2021: Raise Your Game, Not Your Voice by Lentini-Walker & Tschida
    • CCI Press & Compliance Bookshelf
  • Podcasts
    • Great Women in Compliance
    • Unless: The Podcast (Hemma Lomax)
  • Research
  • Webinars
  • Events
  • Subscribe
Jump to a Section
  • At the Office
    • Ethics
    • HR Compliance
    • Leadership & Career
    • Well-Being at Work
  • Compliance & Risk
    • Compliance
    • FCPA
    • Fraud
    • Risk
  • Finserv & Audit
    • Financial Services
    • Internal Audit
  • Governance
    • ESG
    • Getting Governance Right
  • Infosec
    • Cybersecurity
    • Data Privacy
  • Opinion
    • Adam Balfour
    • Jim DeLoach
    • Mary Shirley
    • Yan Tougas
No Result
View All Result
Corporate Compliance Insights
Home Featured

U.S. Financial Institutions Face New Risk Regulations

by Laura Glynn
October 30, 2017
in Featured, Risk
buildings from ground view

The Reality of the New FinCEN CDD Rule

The FinCEN Final Rule on Customer Due Diligence (CDD) is designed to improve global corporate transparency in the wake of recent scandals. This new rule will have a significant impact on the requirements of financial institutions and the way in which they enforce risk-based procedures.

In just under seven months’ time, U.S. financial institutions will have yet another regulation with which to comply. The FinCEN Final Rule on Customer Due Diligence (CDD), which comes into force on May 11th, 2018, is designed to improve global corporate transparency in the wake of scandals such as Panama Papers and the Bahamas Leaks, which exposed how the rich and powerful used tax havens to hide their wealth.

The rule will require covered financial institutions to enforce risk-based procedures for conducting ongoing Customer Due Diligence (CDD) and Know Your Customer (KYC) processes. It will particularly impact the identification and verification of beneficial ownership for legal entity clients.

There is no doubt that this will have significant compliance, operational and legal challenges for bank’s client lifecycle management and onboarding processes. Specifically, covered financial institutions (covered FIs*) will need to know who their customers are and from where their sources of funds originate. In keeping with a risk-based approach, they will also need to develop an accurate risk profile based on a culmination of all available client data and documentation.

Two Key Components to the FinCEN CDD Final Rule:

1. Identification of Beneficial Ownership

Under the Final Rule, covered financial institutions must now document procedures incorporated into their AML compliance programs that identify and verify natural persons for each legal entity customer who opens an account on or after May 11, 2018. Once these natural persons are identified and verified, a covered FI must establish the beneficial owners of each legal entity.

This is a significant addition to the current Bank Secrecy Act/ Anti-Money Laundering regime as covered FIs are not “presently required to know the identity of the individuals who own or control their legal entity customers”. Many advocates of the Final Rule claim that this gap of information that has enabled criminals, money launderers and terrorist financing organizations to funnel illegal proceeds through the financial services system using legal entities.

There are two test prongs to determining the beneficial owners in legal entities:

(a) Ownership:

A covered FI must identify and verify one or more natural persons who either directly or indirectly own 25 percent or more of a legal entity customer, and:

(b) Control:

They must also identify any natural person with significant responsibility to control, manage or direct a legal entity customer. This may include an executive officer or senior managers such as the CEO, CFO, COO, Managing Director, General Partners, President, Vice President, Treasurer etc., or any other individual who regularly performs similar functions.

Defining a Beneficial Owner

The number of natural persons that fulfill the definition of a beneficial owner may vary for each legal entity customer. Under the first test of ownership, as few as zero and up to four individuals may be identified, while under the second test (control), at least one individual must be identified. Naturally, there may be situations where owners have equal ownership (e.g. five individuals with 20 percent shareholding each in a legal entity). While the ownership prong may not qualify in this instance, the control prong must be determined to identify the person with most control in the company.

Documentation, Reliance Rules & Maintaining Records

Like a bank’s CIP (Customer Identification Program) process, covered FIs will need to identify and verify these individuals when a new account is opened. Under the Final Rule, in the case of new account opening by an existing legal entity customer, the covered FI must identify and verify the customer’s beneficial owners even if they have already done this previously.

The covered FI may rely on beneficial ownership information supplied by the customer, provided it “has no knowledge of facts that would reasonably call into question the reliability of the information.” This enables financial institutions to easily navigate the operational challenge of verifying a beneficial owner who may not be present during onboarding/account opening.

To obtain this information, FinCEN has released a template beneficial ownership certification form that should be completed by the individual opening the account on behalf of the legal entity customer. The certification should identify any individual who, directly or indirectly, owns 25 percent or more of the equity interests of the legal entity customer (the ownership prong); and one individual with significant responsibility to control, manage or direct the legal entity customer, which may be an executive officer or any other person (the control prong) and may be the same person reported pursuant to the ownership prong. The Final Rule also clarifies that in the case of documentary verification, the covered FI may use photocopies or other reproductions of the documents as required under s326 of the CIP.

Covered FIs are not required to use this form. Instead, they may opt to comply by using their own forms or any other means provided that the individual certifies the accuracy of the information at account opening.

For example, a covered FI may rely on other financial institutions for the performance of these requirements. There are a number of conditions attached to this third-party reliance, including the requirement that the other institution is subject to an AML program rule, is regulated by a federal functional regulator and that they will provide ongoing certifications (on an annual basis).

Furthermore, as with current CIP processes, the covered FI will be required to maintain records of the beneficial information that they obtain and share this throughout the organization. The identification records must be retained for five years after the account is closed. If another party (e.g. another financial institution) maintains these records, the covered financial institution may rely on the performance of that party to satisfy its own compliance obligations.

Furthermore, as with current CIP processes, the covered FI will be required to maintain records of the beneficial information that they obtain and share this throughout the organization. The identification records must be retained for five years after the account is closed. If another party (e.g. another financial institution) maintains these records, the covered financial institution may rely on the performance of that party to satisfy its own compliance obligations.

2. The Addition of CDD as a Fifth Pillar of AML Compliance

The Bank Secrecy Act (BSA) promotes four pillars of an effective AML program and requires covered FIs to establish AML programs that meet these four pillars at a minimum. The FinCEN Final Rule codifies these four pillars, adding a fifth for Customer Due Diligence. Specifically, once beneficial ownership and control information has been collected upon an account opening, covered FIs are now legally required to:

  • Develop customer risk profiles to analyze and understand the account relationship
  • Perform ongoing monitoring of the legal entity relationship to identify and report suspicious transactions (and file Suspicious Activity Reports (SARs))
  • Maintain and update customer information, including beneficial ownership information, on a risk basis.

Customer Risk Profile

A customer risk profile is defined in the Final Rule as “the information gathered about a customer at account opening used to develop a baseline against which customer activity is assessed for suspicious activity reporting”. This can include “self-evident information” for example the type of customer or account or products transacted/traded, and can also include a system of risk ratings (although this is not necessary).

Ongoing Monitoring and Updating Information on a Risk Basis

If while ongoing monitoring the covered FI detects information about a customer that represents a materially significant or unexplained change in customer activity and is relevant to “assessing or re-evaluating the risk posed by the customer”, the covered FI is obligated to update the customer record, including beneficial ownership information.

In the aftermath of the Panama Papers and Bahamas Leaks scandals, the FinCEN Final Rule (CDD) is a welcome addition in the regulatory effort to curb money laundering, terrorism financing and other criminal activity.

Many industry commentators claim that the Rule does not go far enough – or at least as far enough as the Fourth Money Laundering Directive in Europe, which has already taken the lead in creating central registries to share collected information on legal entities. While some Member States have only partially transposed this requirement to date, the UK is currently leading the pack with this approach, having implemented a requirement in June 2016 that all companies and limited partnerships report their beneficial ownership structures.

This contrasts starkly with the FinCEN Final Rule (CDD) which has stopped short of creating central registers for beneficial owners despite pleas to use it to fight financial crime. Only time will tell if this will become an additional requirement under FinCEN Final Rule (CDD).

Regardless, with just seven months to go before the Rule kicks in, there is still a lot of work to be done by covered FIs to achieve even a baseline approach to compliance. FinCEN represents yet another layer of regulatory and operational complexity on top of existing regulatory and operational challenges. For further information on how to adopt a best practice approach, please refer to our FinCEN Final Rule whitepaper.

 

*Covered FIs include: banks (including insured depository institutions); Federally regulated trust companies; the U.S. agencies and branches of foreign banks and Edge Act corporations; Securities broker-dealers; Mutual funds; and Futures commission merchants and introducing brokers in commodities.


Tags: AMLBeneficial OwnershipDue DiligenceFinancial Crimes Enforcement Network (FinCEN)Financial Services
Previous Post

“Civil” War in the Workplace

Next Post

What’s Your Tough Call Quotient?

Laura Glynn

Laura Glynn

Laura Glynn, CAMS, is Director of Regulatory Compliance at Fenergo. As such, she is responsible for managing Fenergo’s Regulatory Roadmaps to ensure Fenergo clients are fully future-proofed from a compliance perspective. Laura and her team run regular Regulatory Forums with Fenergo’s global client base to translate key regulatory requirements into rules-based logic ahead of compliance deadlines. With over a decade’s experience working in the area of risk and compliance, across hedge, mutual and private equity products, Laura has cultivated a strong focus on AML and regulatory compliance. Laura is ACAMS certified and holds a B.Sc. degree in Government & Public Policy from University Collect Cork and a diploma in Applied Finance Law from the Law Society of Ireland.

Related Posts

monies illustrating money laundering

Power Shift: What Happens When America Steps Back From Global AML Enforcement?

by Joe Biddle
April 15, 2025

EU's new anti-money laundering authority emerges as potential counterweight amid uncertain US priorities

roller coaster ride upside down

CTA: How Did We Get Here?

by Richard Hathaway
March 26, 2025

With its dramatic reversal early this month and newly issued interim rule, the Treasury Department has carved a clear fork...

merger concept figurines

When Money Isn’t Cheap, M&A Due Diligence Must Go Deeper

by Jim DeLoach
March 17, 2025

Today's dealmakers must scrutinize targets through multiple lenses to avoid costly post-acquisition surprises

bills on clothesline money laundering

Trump 2.0 Is Already Shaking Up the Sanctions & AML Landscape

by Paul | Weiss
March 11, 2025

Financial institutions should prepare for potential ‘Know Your Customer's Customer’ obligations sanctions priorities shift

Next Post
executive with hands on hips

What’s Your Tough Call Quotient?

No Result
View All Result

Privacy Policy | AI Policy

Founded in 2010, CCI is the web’s premier global independent news source for compliance, ethics, risk and information security. 

Got a news tip? Get in touch. Want a weekly round-up in your inbox? Sign up for free. No subscription fees, no paywalls. 

Follow Us

Browse Topics:

  • CCI Press
  • Compliance
  • Compliance Podcasts
  • Cybersecurity
  • Data Privacy
  • eBooks Published by CCI
  • Ethics
  • FCPA
  • Featured
  • Financial Services
  • Fraud
  • Governance
  • GRC Vendor News
  • HR Compliance
  • Internal Audit
  • Leadership and Career
  • On Demand Webinars
  • Opinion
  • Research
  • Resource Library
  • Risk
  • Uncategorized
  • Videos
  • Webinars
  • Well-Being
  • Whitepapers

© 2025 Corporate Compliance Insights

Welcome to CCI. This site uses cookies. Please click OK to accept. Privacy Policy
Cookie settingsACCEPT
Manage consent

Privacy Overview

This website uses cookies to improve your experience while you navigate through the website. Out of these, the cookies that are categorized as necessary are stored on your browser as they are essential for the working of basic functionalities of the website. We also use third-party cookies that help us analyze and understand how you use this website. These cookies will be stored in your browser only with your consent. You also have the option to opt-out of these cookies. But opting out of some of these cookies may affect your browsing experience.
Necessary
Always Enabled
Necessary cookies are absolutely essential for the website to function properly. These cookies ensure basic functionalities and security features of the website, anonymously.
CookieDurationDescription
cookielawinfo-checbox-analytics11 monthsThis cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Analytics".
cookielawinfo-checbox-functional11 monthsThe cookie is set by GDPR cookie consent to record the user consent for the cookies in the category "Functional".
cookielawinfo-checbox-others11 monthsThis cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Other.
cookielawinfo-checkbox-necessary11 monthsThis cookie is set by GDPR Cookie Consent plugin. The cookies is used to store the user consent for the cookies in the category "Necessary".
cookielawinfo-checkbox-performance11 monthsThis cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Performance".
viewed_cookie_policy11 monthsThe cookie is set by the GDPR Cookie Consent plugin and is used to store whether or not user has consented to the use of cookies. It does not store any personal data.
Functional
Functional cookies help to perform certain functionalities like sharing the content of the website on social media platforms, collect feedbacks, and other third-party features.
Performance
Performance cookies are used to understand and analyze the key performance indexes of the website which helps in delivering a better user experience for the visitors.
Analytics
Analytical cookies are used to understand how visitors interact with the website. These cookies help provide information on metrics the number of visitors, bounce rate, traffic source, etc.
Advertisement
Advertisement cookies are used to provide visitors with relevant ads and marketing campaigns. These cookies track visitors across websites and collect information to provide customized ads.
Others
Other uncategorized cookies are those that are being analyzed and have not been classified into a category as yet.
SAVE & ACCEPT
No Result
View All Result
  • Home
  • About
    • About CCI
    • CCI Magazine
    • Writing for CCI
    • Career Connection
    • NEW: CCI Press – Book Publishing
    • Advertise With Us
  • Explore Topics
    • See All Articles
    • Compliance
    • Ethics
    • Risk
    • FCPA
    • Governance
    • Fraud
    • Internal Audit
    • HR Compliance
    • Cybersecurity
    • Data Privacy
    • Financial Services
    • Well-Being at Work
    • Leadership and Career
    • Opinion
  • Vendor News
  • Library
    • Download Whitepapers & Reports
    • Download eBooks
    • New: Living Your Best Compliance Life by Mary Shirley
    • New: Ethics and Compliance for Humans by Adam Balfour
    • 2021: Raise Your Game, Not Your Voice by Lentini-Walker & Tschida
    • CCI Press & Compliance Bookshelf
  • Podcasts
    • Great Women in Compliance
    • Unless: The Podcast (Hemma Lomax)
  • Research
  • Webinars
  • Events
  • Subscribe

© 2025 Corporate Compliance Insights