Documenti di Didattica
Documenti di Professioni
Documenti di Cultura
& SWIFT
1
R E G U L AT I O N T E C H N O L O G Y MOST COMMON SCREENING SOURCES O R G A N I Z AT I O N A L C H A L L E N G E S
[PAGE 36] [PAGE 3 4 ] [PAGE 10]
Contents
Main organizational
2 Contents & Infographic
challenges
Nearly 60% agree RegTech
5 Executive Summary
has improved their ability facing companies:
6 Survey Highlights to handle AML, KYC and
sanctions requirements
8 AML Challenges
& Workloads
16
24
Client Screening
33 Human Trafficking P AY M E N T P R O C E S S E S
[PAGE 29]
34 Trade Compliance L I S T U P D AT E S
[PAGE 2 7 ]
36 Regulatory Technology
Relying on
outdated technology
N E A R LY
65%
report their organizations have systems Nearly 90%
in place to check their own payments expect internal lists to be
transparency data quality and monitor updated within 24 hours of changes Too many
the data provided by other banks. to sanctioned/official lists. false-positive alerts
2 3
Executive Summary
The 2017 global anti-money laundering survey, sponsored by Dow Jones Risk and
Compliance and SWIFT, surveyed over 500 risk executives around the world to:
■■ Assess the current regulatory environment and impact on organizations
■■ Deepen understanding of client-screening processes, content and systems
■■ Explore emerging issues related to regulatory expectations, data cleansing,
fraud detection, sanctioned lists, payments transparency/traceability,
peer assessments, human trafficking, trade compliance and regulatory
technology
■■ Trend key measures from previous AML surveys
To see how Dow Jones is using these and other insights to build industry-leading
third party risk management and regulatory compliance solutions, visit
www.dowjones.com/products/risk-compliance.
4 5
Survey Highlights
ADDED WORKLOADS
THIRD-PART Y TESTING
OFAC and EU 50% Rule sanctions and the FINCEN CDD Rule (both new in 2017
survey) are cited by over 70% of respondents as contributing to increased Overall, 70% report their companies do some type of systematic third-party
workloads. FATCA, the Fourth EU Money Laundering Directive and other tax testing. 70% report their organizations have modified AML training and/or
evasion legislation are the other regulations mentioned by more than half of transaction monitoring to incorporate human trafficking and smuggling red
respondents as adding to workloads. flags and typologies, a decrease from 2016.
L I S T UP DAT E S
Nearly 90% expect internal lists to be updated within 24 hours of changes to 2017 total results are compared to 2015 and 2016 to measure trends; statistically
sanctioned/official lists. significant differences between 2016 and 2017 are noted with arrows.
6 7
AML Challenges & Workloads
Increased regulatory expectations* 62% 60% 69% ↑ 42% Increased regulatory expectations* 58% 57% 64% ↑
Understanding regulations outside 23% 25% 42% ↑ 16% Additional regulations 37% 40% 47% ↑
home country
Additional regulations 26% 26% 37% ↑ 11% Understanding regulations outside 16% 18% 29% ↑
home country
Formal regulatory criticism 15% 19% 18% 6% Formal regulatory criticism 13% 16% 17%
Response list was reduced in 2017; interpret YOY changes with caution
* Was single combined item 2015 & 2016
8 9
C UR R E N T OR GA NIZ AT ION A L CH A L L E NGE S IMPAC T OF R EGUL AT ION S ON OR GA NIZ AT ION WOR K L OA D
Concerns about having enough trained staff, relying on outdated technology and OFAC and EU 50% Rule sanctions and the FINCEN CDD Rule (both new in 2017 survey) are
getting too many false-positive alerts are the main AML-related organizational cited by over 70% of respondents as contributing to increased workloads. FATCA, the
challenges facing companies. Budgetary constraints/scrutiny are also mentioned Fourth EU Money Laundering Directive and other tax evasion legislation are the other
by more than one-third of respondents. regulations mentioned by more than half of respondents as adding to workloads. The
proportion mentioning local regulations increases in 2017, while the proportions citing
Dodd-Frank, FCPA and the Brazil Clean Companies Act decrease.
Insufficient, inadequate or outdated technology 48% 24% 27% 43% 71% N/A N/A
OFAC and EU 50% Rule sanctions
Fear of personal civil & criminal liability 17% 5% Dodd-Frank 14% 25% 40% ↓ 53% 59%
10 11
R EGUL AT ION W I T H MO S T IMPAC T ON OR GA NIZ AT ION WOR K L OA D
COMPANY RISK POLICIES
The FINCEN CDD Rule (new in 2017 survey) is cited by nearly 20% of respondents as the & OP E R AT ION A L E FFEC T I V E NE S S
regulation most responsible for increased workloads, followed by local regulations
and FATCA. The relative impact of Dodd-Frank continues to decrease. The proportion More than 80% of respondents continue to believe their companies’ risk policies and/
of respondents who claim none of these specific regulations have a major impact on or operations reflect a convergence of global compliance disciplines, although the
workloads decreases from 2016 to 2017. proportion who “completely agree” is decreasing, As in previous years, about 80% report
increased regulatory expectations for operational effectiveness in the past 12 months.
Neutral Decreased
Somewhat disagree
Completely disagree
12 13
AML Data Providers
0%
Speed of implementation 51% 48% 57% ↑ 2015 2016 2017
14 15
Client Screening
F A M I L I A R I T Y W I T H C L I E N T- S C R E E N I N G C O N F I D E N C E I N C L I E N T- S C R E E N I N G
P R O CE S S IN OR GA NIZ AT ION P R OV IDE R DATA AC C UR ACY
The majority of respondents are “very familiar” with the client-screening processes More than two-thirds of respondents remain “extremely” or “very confident” in the
in their organizations, an increase from 2016. The remainder are mostly “somewhat data accuracy of their primary data provider. Confidence levels have been steady
familiar” with the processes. in recent years.
Very confident
60% Very familiar 60% 52% 55% 57%
Somewhat confident
Somewhat familiar
Not confident
Not familiar
40% 40%
16 17
REASONS FOR LACK OF FULL CONFIDENCE IN T E S T I N G C L I E N T- S C R E E N I N G D ATA Q U A L I T Y
C L I E N T- S C R E E N I N G D ATA A C C U R A C Y Consistent with recent years, 90% of respondents report that their companies test the
Excessive false-positive alerts remains the key factor hurting confidence in client- quality of data from their client-screening data providers, including half who conduct
screening data providers, followed by concerns about data comprehensiveness. quality checks monthly or more often.
Coverage gaps, insufficient breadth of coverage and timeliness increased in
importance in 2017. AMONG THOSE FAMILIAR WITH CLIENT SCREENING
2015 2016 2016
Too many false-positive alerts 44% 47% 51% Annually 14% 14% 12%
25-49%
Not enough crime types covered 13% 12% 16% 60% 19% 22% ↑
16% 11-24%
1-10%
Integration 18% 20% 15% 14% 12% 15%
40% 0%
0%
2015 2016 2017
18 19
AV E R A G E T I M E T O C L E A R G E N E R AT E D A L E R T SECONDARY IDENTIFIERS USED IN CLIENT SCREENING
As in previous years, nearly half of respondents claim their companies typically clear a As in previous years, nearly all respondents report their organizations use secondary
generated alert within 5 minutes or less. The average across all respondents decreases identifiers in the client-screening process. Date of birth, personal identification data and
slightly due to a drop in the proportion reporting it takes “longer than 1 hour” to clear an alert. country of birth continue to be the most widely used secondary identifiers. The proportion
using birth location information, name in original script and corporate identification data
increased in 2017.
AMONG THOSE FAMILIAR WITH CLIENT SCREENING AMONG THOSE FAMILIAR WITH CLIENT SCREENING
% O F A L E R T S T H AT A R E F A L S E P O S I T I V E S
6-15 minutes
60% 23% 23% 23% City/state/province of birth 47% 44% 53% ↑
3-5 minutes
<2 minutes
40% Entity type 49% 52% 50%
27% 24% 28%
48% cleared in 5 Gender 40% 44% 48%
47% 45%
minutes or less
20%
20% 21% 20% Known location 43% 44% 44%
0%
2015 2016 2017 Name in original script 28% 33% 42% ↑
None 7% 4% 4%
20 21
REASONS TO REVIEW/CHANGE CH A NGE S IN C OMP L I A NCE OP E R AT ION S S TA FF
C L I E N T- S C R E E N I N G T E C H N O L O G Y Over half of respondents continue to anticipate increases in the number of operational
Among respondents from companies with client-screening technology solutions in place, compliance users over the next 12 months.
cost issues and excessive false alerts—positive and/or negative—remain the reasons
most likely to prompt companies to review their solutions. C H A N G E I N O P E R AT I O N A L C O M P L I A N C E U S E R S I N N E X T 1 2 M O N T H S
[ A MONG T HO SE FA MIL I A R W I T H CL IEN T S CREENING]
100%
Increase
A MONG T HOSE FA MILIA R WIT H CLIEN T SCREENING
A N D H AV E S O L U T I O N I N P L A C E Stay the same
80%
56% 52% 53% Decrease
0% 3% 5% 6%
Too many false-negative alerts 40% 43% 42% 2015 2016 2017
Poor customer service / roadmap 33% 36% 36% G OV E R NME N T R I SK & C OMP L I A NCE P L AT F OR M DE P L OY ME N T
The proportion of respondents reporting their companies have Government Risk &
Enterprise technology consolidation 34% 35% 33% Compliance platforms in place is steady at about 45%. The proportion claiming their
companies have no plans to deploy GRC systems is slowly decreasing.
Inability to handle non-Latin script 12% 11% 15% C H A N G E I N O P E R AT I O N A L C O M P L I A N C E U S E R S I N N E X T 1 2 M O N T H S
[ A MONG T HO SE FA MIL I A R W I T H CL IEN T S CREENING]
Willingness to outsource 10%
100%
Currently in place
0%
2015 2016 2017
22 23
Data Cleansing, Fraud & Sanctioned Lists
C U S T OMER DATA AUDI T S /CL E A N SING HOW COMPANIES VERIF Y BENEFICIAL OWNERSHIP
Nearly 60% of respondents report their companies have “cleansed” customer data Beneficial ownership continues to be verified mainly as part of the KYC process or
in the past six months, including nearly one-fourth that conduct continuous audits. through internal due diligence. The proportion of respondents in companies using
Results are consistent with recent years. Country Company Registry as a verification source increases in 2017.
T I M E S I N C E A U D I T E D / C L E A N S E D C U S T O M E R D ATA
2015 2016 2017
Continuous/past 6 months
62% 57% 59%
Audit is continuous Part of KYC process 82% 83% 85%
100%
Within past 6 months
28% 26% 24% Due diligence (internal) 69% 70% 72%
80% 7-12 months
24 25
CHOOSING LISTS FOR CLIENT SCREENING IN T E R N A L UP DAT E S T O S A NC T IONE D/OFFICI A L L I S T S
& PAY M E N T S F I LT E R I N G Nearly 90% of respondents expect internal lists to be updated within 24 hours of
Risk-based decisions and guidance from local AML regulations continue to be the changes to sanctioned/official lists, including over one-third that expect updates
most widely used methods in choosing which sanctioned/official lists to use in client within four hours. Nearly 55% of respondents report their companies are basing their
screening. These two methods both increased in 2017 while the impact of system expectations on regulator guidance in 2017, a sharp increase from 2016.
capabilities decreased.
A C C E P TA B L E D E L AY I N G E T T I N G I N T E R N A L E X P E C TAT I O N S
I N T E R N A L L I S T S U P D AT E D REGARDING SPEED OF
L I S T U P D AT E S A R E B A S E D
2015 2016 2017 4 hours or less O N R E G U L AT O R G U I D A N C E
33% 32% 35%
Risk-based decision by OFAC or AML 62% 57% 66% ↑
100% 80%
officer/staff*
15% 13% 12%
More than
Guided by local AML regulation 47% 54% 63% ↑ 80% 24 hours 60%
5-24 hours
60% 52% 55% 52% 54% ↑
Understanding of best practices 39% 41% 46% 2-4 hours 40%
40% 39%
40% 1 hour or less
System capabilities 26% 32% 25% ↓ 17% 18% 16% 20%
20%
16% 14% 19%
Centralized decision 28% 30% 30% 0% 0%
2015 2016 2017 2015 2016 2017
2016 2017
26 27
Payments Transparency/Traceability
The proportion of respondents reporting their companies include additional names of H AV E S Y S T E M S I N P L A C E T O C H E C K D ATA Q U A L I T Y A N D
people/companies/organizations decreases in 2017 while the proportion adding BIC M O N I T O R D ATA F R O M O T H E R B A N K S
Codes and Debt and Equity Securities increases.
100%
13%
2015 2016 2017
80% 22% N/A
No
Additional names of people, 77% 78% 71% ↓ 60%
companies, orgs. Yes
40%
Entities controlled/owned by other 66% 66% 67% 64%
sanctioned entities
20%
Entities linked to sanctioned 68% 64% 66%
jurisdictions 0%
2017
Vessels 44% 43% 42%
100%
80% 91%
Automated real-time 59%
60%
Sampling 46%
Random 30%
20%
[2017 results exclude 13% that do not add any additional data to lists]
0%
2017
28 29
Peer Assessments
Regulators 21%
2017
Consultancy/Advisory companies 19%
The need to improve KYC, sanctions and AML controls 78% National financial institution associations or groups 13%
76% get reports
Vendors 7%
Better management information 33%
Other 4%
A R E A S I N W H I C H R E P O R T S A R E AVA I L A B L E [ A M O N G T H O S E
G E T T I N G B E N C H M A R K A N D / O R P E E R C O M PA R I S O N R E P O R T S ]
2017
30 31
Human Trafficking
I N F O R M AT I O N U S E D T O I D E N T I F Y H U M A N T R A F F I C K I N G
Sanctions screening (customer and transactions) 47% AND SMUGGLING ACTIVITIES
2016 2017
KYC reviews 43%
FinCEN or other advisories 73% 58% ↓
Adverse media 65% 55% ↓
Payments data quality 26%
FATF reports 64% 64%
70% do systematic
third-party testing
32 33
Trade Compliance
CONTROLLED GOODS LISTS TR ANSACTIONS SCREENED AGAINST [AMONG THOSE SCREENING AGAINST CONTROLLED GOODS LISTS]
2017 2017
Wassenaar Arrangement List 10% Use of pricing data to identify over- or under-invoicing of 46%
goods
None/Do not screen against controlled goods lists 47% Peer group analysis 30%
2017
Payments 83%
34 35
Regulatory Technology
Extremely/
Agree very likely
75% 59% 49% 49%
20% 20%
26% 21%
16% 13%
0% 0%
Company will increase
Geopolitical RegTech has There is sufficient
investment in RegTech
environment in improved int'l cooperation
over next 3-5 years
U.S. & Europe ability to tackle between
will present new AML, KYC and intelligence
risks/challenges sanctions in agencies for
past 2 years financial crimes
36 37
Dow Jones Risk and Compliance is a global provider of risk management and
regulatory compliance information, delivering targeted content to organizations
around the world. Our market-leading data helps financial institutions and businesses
have greater control managing Anti-Money Laundering, Anti-Bribery and Corruption,
Economic Sanctions, Third Party Due Diligence and Commercial Risk operations. With
a global team of expert researchers covering more than 60 languages, our risk and
compliance data is information rich, accurate and timely, enabling our clients to make
better quality decisions faster and with greater confidence.
www.swift.com/complianceservices