AFC CHALLENGES
Understanding BNPL risks in the context of these factors allows AML compliance officers to perform a risk assessment , determine their risk appetite and establish an appropriate control framework .
In addition , to remain compliant with broader AML requirements , compliance officers should be familiar with regulatory expectations and how to navigate them effectively .
Expectations for AML compliance officers
Regulatory expectations
Several regulatory bodies , such as the CFPB 7 and the U . S . Department of the Treasury , 8 have announced plans for stricter oversight over BNPL . These relate primarily to enhanced borrower protection and data privacy . However , BNPL-specific regulations are still being developed and subject to change .
AML compliance officers should monitor regulatory developments at both national and international levels and liaise with legal counsel or consultants to understand the implications of emerging regulations . This involves keenly anticipating potential regulatory changes and dynamically updating their AML programs . If a future regulation requires stricter know your customer ( KYC ) processes for BNPL transactions , financial institutions ( FIs ) can enhance these processes in advance .
Banks and other U . S . FIs are also required to comply with existing anti-money laundering ( AML ) regulations , which also apply to their BNPL services .
FIs must monitor customer transactions to identify any unusual or suspicious patterns that could indicate money laundering or other illicit activities
The following five AML obligations relating to BNPL are essential :
1 . Customer due diligence ( CDD ) and KYC procedures : FIs must verify the identity of their customers and collect relevant information to assess their risk . This includes understanding the customer ’ s source of funds , occupation and expected transaction patterns .
For instance , high-value transactions can serve as red flags . If a customer frequently uses BNPL services for these transactions , it may indicate potential illicit activities . Moreover , verifying the identity of consumers and merchants engaging in BNPL transactions could help to deter fraudulent activity during onboarding .
2 . Risk-based approach : FIs are required to implement a risk-based approach to AML compliance . This means they should allocate resources and implement internal controls based on the risk level of their customers and transactions .
For BNPL services , this might involve enhanced due diligence for high-risk customers , more stringent transaction monitoring or increased reporting of suspicious activities .
3 . Transaction monitoring : FIs must monitor customer transactions to identify any unusual or suspicious patterns that could indicate money laundering or other illicit activities .
For BNPL services , this may involve monitoring the frequency , volume and types of purchases made by customers and identifying connections between customers that could suggest collusion or other illicit behavior .
4 . Suspicious activity reporting : FIs are obligated to report transactions or patterns of activity they suspect could be related to money laundering or other financial crimes .
In the context of BNPL , this might involve reporting customers who frequently make high-value purchases , rapidly pay off their debts or engage in activities that deviate from their expected behavior .
5 . Record keeping : FIs must maintain records of customer information , transactions and compliance efforts for a specified period usually five years . This facilitates the process of providing information to regulators and law enforcement ( LE ) agencies for investigations into potential money laundering activities involving BNPL services .
These five measures help organizations identify and mitigate the risk of money laundering and other financial crimes associated with BNPL services . AML compliance officers can further strengthen their AML programs by employing additional best practices .
36 acamstoday . org