You are here:
  1. Home
  2. News
  3. Blog
  4. 9 things you need to know about the new AML regulations

9 things you need to know about the new AML regulations

21 June 2017

The draft Money Laundering, Terrorist Financing and Transfer of Funds (Information on Payer) Regulations 2017 were published on 15 March 2017. The regulations are not as long as the title sounds (or as scary) but failure to take note of the changes can expose firms to prosecution or disciplinary action. Firms with Lexcel should renew their AML policies to ensure compliance with the new regulations.


1 Risk assessment

Firms doing work in the regulated sector will have to carry out a risk assessment and provide that risk assessment to the Solicitors Regulation Authority (SRA) on request.

The Money Laundering Regulations 2007 (MLR) required firms to keep policies relating to risk assessment. The 2017 Regulations are much more prescriptive. Firms must now:

  • Set out the procedure (undertaken by a relevant person) to analyse the business's potential exposure to money laundering or terrorist financing
  • Demonstrate and document that risk assessments are conducted, kept up to date and take into account risk factors including those relating to their customers, countries or geographic areas, products, services, transactions or delivery channels

2 Policies and procedures

Revised reporting, record keeping and monitoring processes are now required, meaning that the relevant person in a firm must produce a written AML risk report that is then translated into written policies.

3 Group level and internal controls

  • Firms which are parent undertakings will be required to apply their policies, controls, and procedures to their subsidiaries and branches in the UK and overseas. Subsidiaries and branches in EEA states must comply with the national law while subsidiaries and branches in third countries with less strict regimes must follow equivalent measures to those required by the regulations
  • Firms will also be required to establish and maintain group controls and procedures for data protection and the sharing of information for the purposes of preventing money laundering and terrorist financing.

For internal purposes a firm must:

  • Appoint a member of the board or management body to be responsible for compliance
  • Screen employees and other agents that carry out work relevant to the firm's AML procedures
  • Establish an independent audit function to assess the efficacy of the firm's policies and procedures and to make recommendations to monitor compliance with the regulations

These requirements are proportionate depending on the size and nature of the firm's business - not all firms will need to have all of these controls in all circumstances.

4 Customer due diligence

The circumstances in which simplified customer due diligence (CDD) is permissible will become more restricted - in a significant departure from the Money Laundering Regulations 2007 'automatic' simplified due diligence for certain transactions will end. Instead, a relevant person will need to consider both customer and geographical risk factors in deciding whether simplified due diligence is appropriate.

The exemption from enhanced CDD is not automatic, and the decision to apply simplified CDD should be backed up by documentation. The Law Society has warned that some of these situations will create an undue burden on firms, particularly in the case of pooled client accounts.

5 Enhanced due diligence

Another major change is the creation of a list of high risk jurisdictions which, if involved in a transaction, will make enhanced due diligence (EDD) and additional risk assessment compulsory.

  • Firms must also identify and verify the identity of a person purporting to act on behalf of the customer
  • Relevant persons will still be able to rely on the CDD carried out by a third party if that third party is either subject to the MLR 2017 or an equivalent regime. However, the conditions for doing so are more prescriptive

6 Measures for local politically exposed persons

The parts of MLR 2007 which applied only to foreign politically exposed persons (PEPs) will now also apply to local PEPs and include domestic individuals occupying prominent public positions. This will broaden the scope of application of enhanced due diligence checks. 

  • Firms will need to review their existing client portfolio to identify any domestic PEPs and to apply enhanced due diligence accordingly.

7 Training

Regular training to relevant employees and agents is crucial to ensure they are made aware of the law relating to money laundering, terrorist financing and data protection. Firms will be able to refer to the revised Law Society AML practice note for more information on how to satisfy these requirements (the note will be published by the end of June).

8 Approval requirements for beneficial owners

Corporate bodies and other legal entities will be required to maintain accurate and current information on their beneficial ownership.

  • Beneficial owners, officers or managers of a firm must apply to the SRA for approval by 26 June 2018. They will be approved unless the person has been convicted of a relevant offence

9 Record keeping and data retention

  • Firms will be required to retain records of CDD documents and supporting evidence for at least five years after the end of the business relationship or occasional transaction.
  • At the end of five years, there is a requirement to delete personal data (unless express consent is given to retain that data) or if the firm is otherwise required to retain the personal data (ie for the purposes of court proceedings).
  • You will need to amend your systems and procedures to ensure that, unless an exemption applies, such personal data is deleted

Your 'to do' list

How should you start? First steps:

  • Initiating and documenting a risk-based assessment of money laundering
  • Training staff on how to access the beneficial ownership registry
  • Updating policies and procedures to reflect the changes
  • Adding an audit function to test procedures
  • A review of all new policies by senior management

Explore our AML resources

Watch the AML Update webinar about the new Money Laundering Regulations 2017 with Jonathan Fisher QC, Bright Line Law. Free for Risk and Compliance members

Tags: knowledge management | anti-money laundering

About the author

Pearl Moses is Head of Risk & Compliance at the Law Society

Follow Risk and Compliance

  • Share this page:
Authors

Adam Johnson | Adele Edwin-Lamerton | Alex Barr | Alex Heshmaty | Alexandra Cardenas | Amanda Carpenter | Amanda Jardine Viner | Amy Heading | Andrew Kidd | Andy Harris | Anna Drozd | Annaliese Fiehn | Anne Waldron | Asif Afridi and Roseanne Russell | Bansi Desai | Barbara Whitehorne | Barry Wilkinson | Becky Baker | Ben Hollom | Bob Nightingale | Caroline Roddis | Caroline Sorbier | Catherine Dixon | Christina Blacklaws | Ciaran Fenton | David Gilroy | David Yeoward | Douglas McPherson | Dr Sylvie Delacroix | Duncan Wood | Eduardo Reyes | Elizabeth Rimmer | Emily Miller | Emma Maule | Gary Richards | Gary Rycroft | Graham Murphy | Hayley Stewart | Ignasi Guardans | James Castro Edwards | Jayne Willetts | Jeremy Miles | Jerry Garvey | Jessie Barwick | Joe Egan | Jonathan Andrews | Jonathan Fisher | Jonathan Smithers | Julian Hall | Julie Ashdown | Julie Nicholds | Justin Rourke | Karen Jackson | Kate Adam | Kayleigh Leonie | Keiley Ann Broadhead | Kerrie Fuller | Kevin Poulter | Larry Cattle | Laura Devine | Leah Glover and Julie Ashdown | LHS Solicitors | Lucy Parker | Mark Carver | Mark Leiser | Markus Coleman | Martin Barnes | Matthew Still | Meena Toor | Melissa Hardee | Neil Ford | Nick Denys | Nick Podd | Pearl Moses | Penny Owston | Peter Wright | Philippa Southwell | Preetha Gopalan | Rachel Brushfield | Ranjit Uppal | Richard Coulthard | Richard Heinrich | Richard Messingham | Richard Miller | Richard Roberts | Rita Oscar | Rob Cope | Robert Bourns | Robin Charrot | Rosy Rourke | Saida Bello | Sam De Silva | Sara Chandler | Sarah Austin | Sarah Crowe | Sarah Henchoz | Sarah Smith | Shereen Semnani | Sophia Adams Bhatti | Steve Deutsch | Steve Deutsche | Stuart Poole-Robb | Susan Kench | Suzanne Gallagher | Tom Ellen | Tony Roe Solicitors | Vanessa Friend

Tags

access to justice | anti-money laundering | apprenticeships | archive | artificial intelligence | Autumn Statement | bid process | brand | Brexit | British Bill of Rights | Budget | business | careers | centenary | charity | city | communication | Conservatives | conveyancing | court closures | court fees | courts | CPD | criminal legal aid | cyber security | David Cameron | development | Diversity Access Scheme | diversity and inclusion | education and training | elderly people | emotional resilience | employment law | equality | European Union | Excellence Awards | finance | George Osborne | human rights | human trafficking | immigration | in-house | International Womens Day | Investigatory Powers Bill | IT | Jeremy Corbyn | justice | knowledge management | Labour | law management | Law Society | leadership | legal aid | legal professional privilege | LGBT | Liberal Democrats | library | Liz Truss | Magna Carta | mass data retention | mediation | members | mention | mentoring | merger | modern slavery | morale | National Pro Bono Week | Parliament | party conferences | personal injury | Pii | politics | president | pro bono | productivity | professional indemnity insurance | represent | retweet | risk | rule of law | security | social media | social mobility | SRA | staff | strategy | stress | talent | tax | tax credits | team | technology | Theresa May | Time capture | training | Twitter | UKIP | value proposition | website | wellbeing | Westminster weekly update | wills