RU EN

Development of documents for compliance with AML- / CFT-regulation for a fintech project

Elena Mashina
Request a call

The fintech industry is one way or another associated with many risks. One of them is the possibility of fraud through financial platforms, as well as terrorist financing. To prevent these financial crimes, all jurisdictions have a large body of AML / CFT regulation. Such legislation imposes the obligation to adopt documents on the assessment of AML / CFT risks and their mitigation. At the same time, the documents must simultaneously comply with legislative standards and be individualized for a specific fintech project. You can read about what you should pay attention to when developing these documents in our article. 

Contents:

Why does fintech projects need AML / CFT documents?

Financial activity is associated with high risks, therefore the legislation of almost all countries contains a block of norms, countering the financing of terrorism and money laundering. In some jurisdictions, it applies to specific organizations, since they have a “financial” license for any activity (Belgium, Malta), in other countries AML / CFT regulation is applied regardless of the presence of a license only by virtue of carrying out a certain activity (Netherlands). Therefore, when creating a fintech project, you will come across this question in one way or another. The development of AML / CFT documents should take place at the earliest stage, since they are mandatory. And if your activity is subject to compulsory licensing, then these documents will be required by the regulator along with the application for a license.

Content of AML / CFT documents of a fintech organization

AML-regulation (anti-money laundering) - anti-money laundering regulations. CFT-regulation (counter-financing terrorism) - the rules, countering the financing of terrorism.

The policy adopted by your fintech project must meet these requirements. The main content of the policy is to describe the procedures and measures that you take in order to prevent these illegal activities.

At the same time, when implementing the AML / CFT policy, all bodies adhere to a risk-based approach. The FATF, the international organization dedicated to the development of anti-money laundering measures, periodically publishes a list of high-risk jurisdictions and those under special scrutiny.

Therefore, the procedures that will be contained in your policy may also depend on the perceived level of risk.

The following universal requirements for AML / CFT policy can be distinguished:

  • They must be approved by the body of the fintech project, the general meeting of the founders or the board of directors;
  • There should be a position in the organization whose responsibilities include coordinating AML / CFT procedures;
  • These procedures must be independently verified;
  • This policy should apply to all branches and subsidiaries of the fintech project;
  • The documents must provide for the period during which the received data on operations and clients will be stored.
  • Procedures to reduce the risk of money laundering or terrorist financing. 

What procedures can be provided for in the AML / CFT policy?

Taking into account the risk-based approach, the following procedures can be envisaged:

  • Due Diligence in relation to clients:
    • Low risk - basic customer identification procedure
    • High risk - longer identification procedure, taking several days
    • Very high risk - a deeper procedure with an analysis of an additional level of beneficiaries
  • Monitoring of translations. For high-risk clients, monitoring occurs more often and on large parameters
  • For high risk clients, their beneficiaries are verified, with a very high level - your user's client verification.

KYC procedures for a fintech project

One of the key measures in preventing financial crime is KYC (Know Your Customer) procedures. The essence of these measures is to identify users. For their implementation, an independent KYC policy can be adopted.

Thus, an increased risk is posed by:

  • Clients, due to their characteristics, pose an increased risk
    • These include foreign politically exposed persons (PEPs), as their status makes them more likely to engage in corruption. PEP family members are also at increased risk.
  • Clients from high-risk jurisdictions;
  • Clients making large transfers without specific goals;
  • Clients who have relationships with persons or organizations that do not meet the requirements of AML / CFT regulation; 
  • Customers Suspected of Related Violations.

User identification in decentralized fintech projects (DeFi)

DeFi (decentralized finance) startups also need to think about user identification procedures. At first glance, the system based on decentralization directly contradicts the KYC policy, which requires customer verification. DeFi projects tend to follow anonymity and do not have any hierarchy: it is difficult to determine who is the client and who will be in charge of AML / CFT compliance. However, it is worth considering this regulation if your DeFi project plans to obtain a license, since one of the requirements will be to develop AML / CFT documents. Given the tendencies of the European and American regulators that are trying to move DeFi projects out of the gray zone, it is worth paying close attention to KYC requirements, even for systems built on anonymity. 

Thus, the adoption of AML / CFT documents within a fintech organization is an important stage. Without them, the company will either not receive licenses and other documents, or will be held accountable. At the same time, when drawing up these documents, it is worth considering all the requirements of acts in the field of combating fraud and financing of terrorism. If your fintech project is related to several jurisdictions, it is better to focus on a higher standard. AML / CFT policies should be based on a risk-based approach. The basic procedure is the identification of clients, depending on the assessed level of risk. If you still have questions about the development of documents for a fintech project or you need help in drafting AML / CFT documents, please contact A4 Law Firm lawyers. 

REMAINED
QUESTIONS?

Актуальные новости и статьи

11January
How to protect your computer game software?
Copyright protection for software and computer games is an issue that lawyers often face in connection with the active development of the gaming industry. Computer games are complex objects of intellectual property. Even if the developer registers a trademark and files a patent, some elements can still be used by third parties. The least protected objects include source code, game characters, music, graphics.
Узнать подробнее
31December
Where to create a cryptocurrency fund: country overview.
Due to the development of cryptocurrencies and the growth of their value, legislators in many countries pay close attention to them and develop appropriate regulation. At the moment, Estonia is one of the most attractive jurisdictions for doing cryptocurrency business.
Узнать подробнее
30December
How to choose the best tax system for a marketplace?
A marketplace is an online platform designed for buying and selling goods. The marketplace acts as an intermediary between the buyer and seller, providing them with a convenient platform for placing goods and buying them.
Узнать подробнее
29December
How to avoid violating copyright when writing FanFiction?
With the development of pop culture, the layer of its influence on society increases. At the time of 2021, there is a huge fan base, divided into societies, depending on their favorite work. Accordingly, in order to express their own creative potential, the fan base expresses it in the form of their own interpretation.
Узнать подробнее
28December
How to profitably use a company in Gibraltar?
Gibraltar is a British Overseas Territory located on the border of Europe and Africa and is an extremely attractive jurisdiction. Gibraltar is currently in the stage of economic growth, attracting a large number of investments from all over the world. Also, this jurisdiction is considered one jurisdiction with a high level of confidentiality and a fairly moderate tax regime. The first step in transferring your assets to Gibraltar is to set up a company. This is quite simple to do compared to other offshore jurisdictions.
Узнать подробнее
27December
Deposit as a way to protect copyright
In the legislation of the Russian Federation, there is no mandatory requirement for registration of copyright. Copyright arises at the time of creation of the object, therefore, there is no obligation to legally enforce the right. Despite this, attribution disputes are not uncommon for courts, and a deposit procedure exists to avoid lengthy litigation.
Узнать подробнее
24December
How to conclude a contract for the development of a website?
In connection with the general transition to online, business owners are increasingly faced with the need to create a website. Online business presentation increases your sales and brand awareness. At the same time, you should take a responsible attitude to the legal registration of relations with the developers of the site, since mistakes in drawing up a contract can lead to extremely negative consequences.
Узнать подробнее
23December
How to avoid site blocking?
When deciding to block a site, government agencies are required to act in accordance with Federal Law No. 149. This law provides a large number of grounds for blocking any resource. Article 15.1 149-FZ and Decree of the Government of the Russian Federation of October 26, 2012 No. 1101 establish a list of bodies authorized to make a decision on blocking a site, and also introduces a register of sites containing information prohibited in Russia. Any resource for which such a decision has been made is included in this register. Inclusion of a site in such a register means restricting access to it in Russia. Internet providers rely on this registry and, when any site gets there, they suspend access to it.
Узнать подробнее
NEWSLETTER SUBSCRIPTION
By pressing the subscribe button I agree to the  Privacy Policy
+7 (499) 841-05-05
telegram whatsapp
RU EN
a4lawfirm.ru
г.Москва г. Москва, Новоданиловская наб., дом 6, корп. 1, БЦ "Данилов плаза" +7 (499) 841-05-05 info@a4lawfirm.ru