Anti-Money Laundering

Man holding up in front of his face a picture of his face

The Benefits of Electronic Verification

Anti-Money Laundering, Blogs, Legal Compliance /

The world of electronic verification is an ever-evolving industry, with some providers supporting features like facial recognition, authentication of documents, direct access bank account information, and PEP and Sanctions screening.

Electronic verification should provide you with a level of certainty that the individual is who they say they are and, for corporate entities, that a legal entity exists and has an active company status.

Electronic identification can be used either as part of a wider process or, where appropriate, as the only source of identification. Before using any provider, you may want to consider the following:

The information supplied by the data provider is considered sufficiently extensive, reliable, and accurate.The provider allows users to capture and store the information they have used to verify an identity.

There are several benefits achieved by using electronic identification and verification (EV):

Improved Customer Experience

Using EV can assist in streamlining your current verification process. It can lead to enhancing the overall client experience making it easier for the client to submit identity documents securely in a matter of minutes ready for teams to receive and review.

Quicker Onboarding of Clients

Faster access to transmitted documents can reduce the time it takes to conduct Customer Due Diligence (CDD) and onboard the client. Adopting this approach may also help you carry out a risk assessment quickly to decide whether you would like to act for the client . It may even form part of your decision-making process when assessing any risks during the course of the instruction.

Document Verification

Most current providers allow you to verify documents. If you are interested in this feature just remember your provider is verifying the authenticity of the document having been issued using the machine-readable zone (MRZ code). It is important to remember a documentation verification check is not verifying the identity of the person, it is verifying the document.

Identity Verification

If you are a firm looking to verify the identity of a person some providers offer a different feature which includes biometric data and facial recognition. Here the client is usually asked to take a live photo of themselves using an app and identity documents are uploaded. The picture and identity documents are compared by the system and all including the results are transmitted electronically to the firm as a pass/fail. The system is verifying the identity of the individual, which can help firms address issues where obtaining a correctly certified identity is a concern.

Clear Audit Trail

UK/EU providers are usually GDPR compliant, offering you a secure place to save all searches for a period of time, and helping you demonstrate a clear audit trail. Remember to check that your terms and data protection statements specify the use of authorised third parties to process personal data.

Increased Accuracy

Automating your CDD process can make a manual task easier to manage and give increased accuracy. Politically exposed persons and sanctioned designated individuals/entities are automatically highlighted as risks. In addition, automating your take-on process by using digital technology to compare documents can improve quality and eliminate human error when comparing documents using the untrained eye.

 

Get in touch 

For more information about how our services can help, contact our experts today.

 

Get in touch

The Benefits of Electronic Verification Read More »

Two front doors. One with a correct number and one with a made up number

Preventing a repeat of Dreamvar

Anti-Money Laundering, Blogs, Legal Compliance, Regulatory Compliance /

Dreamvar – more than a year on …….. so, what has changed?

It’s likely most conveyancers will shudder when they hear the name Dreamvar. It’s the case that changed the liabilities and responsibilities of lawyers and conveyancers when dealing with residential property transactions. But in practice, what has actually changed since this case?

Firstly, a brief background for those unfamiliar with the details of the case. The case involved the liability of solicitors in cases of identity fraud. A fraudster posed as the seller of a property in London worth about £1million and succeeded in selling the property to an innocent buyer, Dreamvar. Once the property was sold the fraudster seller and the purchase monies disappeared. Dreamvar went on to sue his solicitor, for negligence (in contract and tort) and for breach of trust. He also sued the fraudster seller’s solicitor in negligence, for breach of warranty and breach of trust.

The High Court ruled that only Dreamvar’s solicitor could be liable and dismissed all claims against the fraudster’s solicitors. This seemed a little harsh given the solicitors acting for the fraudster had not taken sufficient steps to verify their client’s identity as required by the Money Laundering, Terrorist Financing and Transfer of Funds (Information on the Payer) Regulations 2017.

The case therefore eventually made its way to the Court of Appeal. The Judge ruled the solicitors representing the fraudulent property vendor should share responsibility along with those representing the duped buyer of any losses. The Court of Appeal ordered both firms involved to make financial contributions.

However, it wasn’t just the solicitors involved that were in the firing line, the Law Society was also criticised. The case discussed the Law Society’s Code for Completion by Post (“The Code”) and argued that its processes did not consider the prospect that a sale is not genuine.

The Law Society agreed that their Conveyancing Protocol (“The Protocol”) and The Code needed updating and confirmed they intended to take the courts comments into account when making the amendments. And true to their word, the Law Society updated The Code and The Protocol this year.

The Law Society have made it clear that there are no changes in substance to the Code. Their revisions to the Code aim to make it clearer that the seller’s solicitor only gives undertakings where there is a genuine sale, thereby providing better protection for purchasers.

Similarly, with The Protocol the Law Society confirmed the number of steps have been reduced, however the obligations under the Protocol remain the same. They have made some procedural changes that you should be aware of, especially if are acting for the seller. In particular, the Protocol now states that Solicitors in CQS firms who are acting for the seller must

Obtain instructions for dealing with remittance of gross/net sale proceeds and details provided by the seller of UK bank account for remittance of proceeds. Obtain evidence that the bank account is properly constituted as an account conducted by the seller for a period of at least 12 months. Confirm that remittance will be made to that account only.

This means the solicitor must, if they are a CQS firm, request details of the bank account for the sale proceeds and they must also obtain evidence that the account belongs to the seller, showing that they have had and been using the account for at least 12 months.

This is a great way to ensure the purchase funds are going to the correct person! Only last month a woman named Sarah Broadbelt was jailed for 20 months for fraud and possessing a false identity document, after she sold a property for £75,000 back in 2015, without the real owner knowing. This case shows the lengths criminals are willing to go in order to commit this type of crime. Broadbelt went as far as changing her name by deed poll to that of the property owner’s so that she could apply for a passport and open bank accounts! That is real dedication!

Had the new Protocol and Code been in place (and been followed) it would have been far more difficult for Broadbelt to pose as the real owner of the property given that she, as the seller, would have been required to provide at least 12 months bank statements to show that not only was the bank account in her name, but it had also been in use by her for those 12 months.

So, what should you be doing now?

If you haven’t already, review The Protocol and The Code and ensure you have the right policies and procedures in place to enable your staff to follow them – do your firm and staff know about the need for further details about the seller’s bank account?

Don’t forget to communicate the changes to the relevant staff – there’s no point in updating policies and procedures if no one is told they have changed (they don’t have a crystal ball!)

Even if you are not CQS Accredited, it is good practice to follow The Protocol and The Code, it is not only there to protect your client and your firm but you as their solicitor/conveyancer too!

Get in touch

If you’d like to know more about the services we have to offer, get in touch with one of our experts today.

Preventing a repeat of Dreamvar Read More »

Someone speaking at a conference with a room full of delegates

Ark Group Conference Panel

Anti-Money Laundering, Blogs, Legal Compliance /

I attended the Ark Group Annual AML Conference in London yesterday to speak on the panel about the challenges for MLROs who are also fee earners in their firm.

The session posed questions to the audience, and we, the panel, put our two penneth in.

Joining me on the panel was Alex Ktorides from Ince Gordon Dadds, Colette Best from the SRA and the chair was my Taskforce colleague Guy Wilkes

The first question was about how challenging MLROs find combining their compliance obligations and fee earning roles.

Most voted very challenging, (4 out of 5), which I absolutely agree it can be. Interestingly, if unsurprisingly, nobody voted it not challenging!

The main points I shared were:

Culture is key – without strong support and a culture of buying into Compliance you will fail. If we fail to tackle non compliance in firms, our compliance programmes will collapse! Colette agreed, where a firm has a person who refuses to comply, they will expect a firm to deal with it and may themselves deal with that individual.

Don’t put things in your policies which you know don’t work – don’t set yourself up to fail. Check things work, introduce controls so you know things work. Don’t leave things for the SRA to discover. Make sure people can make an assessment of risk when you ask them to, don’t say people can’t open a file without the client ID if you know that’s impossible.

Have controls so you aren’t caught out. Audit the controls. If you let fee earners open a file before client ID is completed, make sure you’ve set a deadline and that that is monitored and enforced.

Litigation need to know too! Don’t forget to make sure your litigation teams also have AML training and appreciate the risk that on boarding a client they are happy to deal with may cause AML issues if they also instruct the firm to carry out transactions.

Get a process in place for source of funds and source of wealth. Tell your teams they won’t spot money laundering if they think the extent of their obligations is to get a passport and utility bill, that’s doesn’t prevent money laundering #baddieslivesomewhere!

Get in touch

If you’d like to know more about our AML services, simply contact one of our experts today.

Ark Group Conference Panel Read More »

Lettered cubes spelling out the word "Consent"

Teal Tales: Consent for missing CDD information

Anti-Money Laundering, Blogs, Legal Compliance /

We get many calls from firms who have unusual compliance queries. They are my favourite calls!

Today’s tale is a common one, and the issue it raises is a common misconception. In fact, we had 2 calls about this on the same day, with similar issues.

“We’re ready to complete, there is a third-party funder, we’ve asked for source of funds information, but it’s not forthcoming. Can I get consent?”

The answer to that question will depend on the facts of each case, and whether there is a suspicion of money laundering.

Quite often in these situations I ask the firm what they are suspicious about, they will say, the fact the clients are refusing to provide the information is making me suspicious. And that is true.

However, consent, or a defence against money laundering will only be given if there is a suspicion of money laundering; for there to be money laundering, you need to know or suspect there is criminal property.

So, the next question I ask is what is the suspected criminal conduct, and very often the answer is, “I have no idea” or “I don’t think there is any”.

If the firm can not detail on the Suspicious Activity Report what they think the criminal property is, and the suspected criminal conduct from which it is thought to have come from, the NCA are unlikely to accept it as a valid SAR.

Having no idea won’t get you there, you won’t have the relevant suspicion.

If you can’t get consent for missing CDD information, what can you do?

Regulation 31 stipulates that you must not establish a business relationship with someone for whom you can’t complete your due diligence enquiries. So, if you’re in a position that you can’t complete your CDD enquiries because of an uncooperative client or third party, you may need to withdraw.

Many people who contact us about this are concerned about how to explain to their client without telling them they are suspicious. If you don’t already, you should consider setting out your source of funds and wealth policy at the very beginning, explaining to the client the depth you are likely to go to and then if they do not provide the information, you can point to the policy and withdraw from acting.

If you are already in receipt of funds, the situation will be a lot more difficult, you may need to press the client further for the information, and keep returning to the question, do you suspect any criminal conduct.

Get in touch

If you have compliance questions and need help, why not try our Ask Teal service. For more information, contact our experts today.

Teal Tales: Consent for missing CDD information Read More »

Ten and twenty pound notes (sterling) scattered

New Government focus on AML

Anti-Money Laundering, Blogs, Legal Compliance /

When I decided to start ABC and Teal I was very clear about one thing. I will not scaremonger, use fear to sell our services.

In compliance there are serious consequences for failing, massive fines in Data Protection and custodial sentences in AML, not to mention striking off by the SRA!

But you all know those things. You don’t need me to tell you that compliance needs to be effective in your firm to mitigate the risks of these consequences.

The consequences often seem very remote – unlikely, not something that will apply to me – and I think that is correct most of the time.

However, I have woken this morning to more criticism of our profession by Ben Wallace, Security Minister, saying solicitors must do more to prevent money laundering, and that failure to report will lead to sanctions and prosecutions.

I sat in a meeting this week, as I do many weeks, with lawyers who do not recognise this criticism of being professional enablers or of under reporting. Who don’t understand why they are being criticised, or “tarred with the same brush”.

Today’s message from government is clear – professionals who enable money laundering will be scrutinised, and there is a high probability of action.

My message today is this – MLROs/COLPs/MLCOs – ask yourself these 5 questions to establish whether you are confident your firm is doing enough.

  1. Are you confident your policies and procedures are effective? Have you had any examples where something should have been spotted earlier, particularly if you have had a production order about a case.
  2. Are you confident all issues are reported to you? Have you had any reports from the high risk areas? If not, are you confident staff know what to look for?
  3. Do you turn cases away because you have concerns about the due diligence, source of funds? If the answer is yes you can point to evidence which says your risk assessment process works in weeding out suspicious cases and stopping money laundering.
  4. Does your CDD procedure properly consider the source of funds? Often CDD is mainly focused on Client ID – which does not prevent money laundering. You need to be able to demonstrate you have considered the source of funds and wealth and thought about any red flags.
  5. Are you confident on the law, what you must report, what the level of suspicion is, how to report?

If any of these answers are no, I would urge you to address them urgently.

Help is available on the Law Society website, the updated guidance from the Legal Sector Affinity Group is essential reading.

Get in touch

We can help too! Find out more about our AML services or alternatively, contact one of our helpful experts today.

New Government focus on AML Read More »

British pounds - notes and coins scattered

The human cost of money laundering

Anti-Money Laundering, Blogs, Legal Compliance /

It is very easy to silo oneself when immersed in the world of investigating money laundering and to forget that actually it isn’t just about currency, commodities and hidden profits, but it’s about people.

I have investigated a plethora of cases during my career and the focus is usually centred upon the villain and the criminal gains. How often do we actually sit down and examine how many people have been damaged along the road to the conviction? We get the conviction, we take back the proceeds of crime via the machinations of POCA and we send the villain to jail. Do we know what happened to all the others that were affected somewhere along the way to the Courtroom steps?

Just like fraud, I have often heard people say that it is a victimless crime. This couldn’t be further from the truth.

Money laundering is a crime that many people consider irrelevant to them. If it is a problem at all, they consider it is a problem only for banks. That is far from true. Money laundering has massive effects, not only on financial institutions, but also on governments, industries, economies and also individuals.

What are the effects of these widespread crimes that fly under the radar of much of the population? And why are these effects so massive?

To understand the reasons you need to understand the nature of money laundering. It is not an overt crime like robbery or assault; it is secretive and buried under multiple layers so as to avoid detection. It is also not headline news. How often do you see a laundering case at the top of the News at Ten? It’s not a headline grabber and so the consequences of this crime also get buried in the myriad stories about Brexit, Russian Spy Poisoning and Britain’s Got Talent!

Have you ever stopped to consider what might be under your nose when taking a stroll through the main street of your town or through a large, out of town shopping mall? Have you ever considered the rise and proliferation of the nail bar?

That is not to cast aspersions over every nail bar in the land, but have you ever considered how a business, with seemingly very few customers in an area of high business rates, is able to sustain itself?

I have investigated a number of cases involving nail bars. They are often used as a ‘front’ for cannabis farms. These farms are often linked to organised crime, often of Asian or Vietnamese origin.  The profits of the sales of cannabis are often laundered by creating fictitious sales or customers on the books. A simple scheme where no one is really hurt?

Cannabis farms don’t run themselves. The crop needs tending. Organised criminals don’t employ a local firm of horticulturalists. They often turn to human trafficking to find their staff.

When Police conduct search warrants at these cannabis farms they usually find a single male ‘gardener’ on the premises, locked into the building and controlled by others who are higher up the food chain. This male is usually living in fairly squalid conditions, sleeping on a camp bed if he’s lucky, and left only with sufficient food and water to exist. The ‘gardener’s’ sole function is to tend to the lucrative crop. There will be no pay or rewards beyond basic existence.

This is the reality of laundering. A person who has been trafficked. A prisoner in a foreign land with no rights or standing. They may actually have a better standard of living than in their homeland and do not view themselves as victimised, but a victim they are.

Money laundering and financial crime hurts real people.

Money launderers need to engage with professionals to enable their funds to be assimilated into a legal system. As professionals in this arena you will come into contact with launderers. They will want your assistance.

By engaging with launderers, whether knowingly or unwittingly, you become part of the problem.

Perhaps you may now look differently when engaging with some businesses. What lies beneath?  Think……..What can I do about it? What should I do about it?

Get in touch

We assist firms everyday with practical advice on AML and on how to spot the signs of money laundering in real life.  Contact us today for more information.

The human cost of money laundering Read More »

Corner of a UK driving licence

Identification: The differences between AML, KYC, CDD & CID

Anti-Money Laundering, Blogs, Legal Compliance /

Call me pedantic, but I like precision when I’m talking about compliance. Don’t get me started on 5MLD (which does not currently exist!).

Yesterday I was invited to speak at the Internet of Agreements conference on Identity. I was giving the legal perspective, specifically around AML/KYC.

The audience was, in the main, people working on blockchain solutions. It was absolutely fascinating to be in a room with people trying to solve issues with technology, and this group specifically were concerned with ensuring people involved in a blockchain contract could trust the other person was who they said they were.

Most of the technical content went over my head if I’m honest, I don’t know one end of code from another!

Of course identity from an AML perspective has a very specific meaning and purpose, and it became clear to me that having been immersed in this regulated world for 13 years, that perhaps other people don’t appreciate the nuances of it. If people are looking to create solutions, then they need to understand the problem.

The terms CDD/KYC/AML are used interchangeably by non AML people, to mean the same thing, that one approach to identity will work for all three, but I hope I explained yesterday that it’s not that straightforward, and on reflection, I think we should all be mindful of the difference.

AML – Anti money laundering, does what it says on the tin, an AML policy is a policy which sets out how you are going to prevent money laundering. An AML procedure will be something you have in place to prevent money laundering.
KYC – Know your client, this is understanding who your client is, what their goals are, so you can advise them properly.
CDD – this is a combination of identity verification and understanding the purpose and nature of the business relationship you have with the client, both at the beginning of the matter and ongoing.
CID – Client ID – this is identifying and verifying your client based on documents or information which is independent of the client.

The reason I think it is important to break this down into these 4 parts is that CID does not prevent money laundering. It might prevent identity fraud, but not money laundering. Baddies live somewhere. CDD does not necessarily prevent money laundering. Sure, if you are carrying out source of funds enquiries you might see something which might make you suspicious and withdraw from acting, but we don’t always, when conducting CDD ask for or have the full picture of the client’s affairs.

KYC is more likely to prevent money laundering. Getting to know your client, understanding how they have made their money is where you will detect money laundering. Understanding their past transactions and business activities is where you will spot suspicious circumstances.

Therefore, as I said yesterday, CID is important, it’s required by the law (so the Police know which door to knock on to find your client), but if we deploy AML policies which are just designed to comply with CDD requirements we will miss signs of money laundering. We should be looking to understand the client’s source of wealth as well as funds if we want to disrupt money laundering. We should understand how have they got to the position they are in today, and what are their plans for the future. This is not only good businesses sense in terms of ensuring your advice meets properly the clients needs, but will make it more difficult for the criminals to use you to launder money.

There are a lot of very interesting companies trying to provide Client ID solutions for AML, but if you’re one of those clever techy people I would urge you to consider what can be done to prevent money laundering rather than just making compliance easier – although that’s great too!

Get in touch

For more information about AML Compliance, simply contact one of our helpful advisers.

Identification: The differences between AML, KYC, CDD & CID Read More »

Pillars of a Roman style buildilng

Bribery Act: Do you have ‘adequate procedures’?

Anti-Money Laundering, Blogs, Legal Compliance, Regulatory Compliance /

 

Understanding and complying with ‘adequate procedures’ as detailed in the Bribery Act legislation, was highlighted in the recent conviction of London-based Skansen Interiors Limited in March 2018. It is the first time a UK Jury has had to consider what “adequate procedures” should be for the purpose of a defence to the corporate offence of ‘failing to prevent bribery’ under the UK Bribery Act 2010.

The CPS brought proceedings against the Skansen (now dormant) and its senior executive Stephen Banks, Managing Director at the time.  The prosecution claimed Mr Banks had bribed a project manager at a property company to secure a £6 million refurbishment contract.  Mr Banks pleaded guilty to three offences and Graham Deakin, a former project manager at the property company, pleaded guilty to two offences. A date for sentencing is yet to be published by Southwark Crown Court.

The company was successfully prosecuted, despite having self reported to the National Crime Agency. The jury found against the company having adequate procedures in place to prevent bribery. They have heard evidence that Skansen:

  • did not have a policy specifically directed to preventing offences under the Bribery Act;

  • lacked a dedicated compliance officer; and

  • there was no evidence of staff training or confirmation showing employees have read and understood the company’s existing policy.

Under the Bribery Act 2010 a full legal defence can be found where a company has implemented ‘adequate procedures’ prior to an offence. Adherence to the six principles listed below highlights the importance of having these procedures in place to ensure, as a firm you encourage an anti-bribery and corruption culture:

  1. Proportionality – policies and procedures must be in place and be proportionate to the size, nature and complexity of the business activities;

  2. Top-level commitment – top management should show visible support for the company’s compliance policies and activities;

  3. Risk assessment – periodic assessments should be undertaken including internal and external risks;

  4. Due diligence – a risk-based approach should be taken before engaging with a third party to represent your company e.g. agents, consultants, joint ventures;

  5. Communication – policies and procedures should be communicated firmwide;

  6. Monitoring and review – monitor your anti-corruption policies and review these regularly for risks and the effectiveness of your procedures.

Get in touch

Teal compliance can help you achieve the above objectives and guide you through what is required. We work closely with our clients to ensure they meet their obligatory regulatory compliance and AML requirements.  Contact our experts today.

Bribery Act: Do you have ‘adequate procedures’? Read More »

Back of two police officers

Do we need to ‘change up’ AML Training?

Anti-Money Laundering, Blogs, Compliance Training, Legal Compliance /

 

I have been training in AML for 13 years. I love it, I love spreading the word, helping staff in law firms understand the risks they face, and what to look out for to try and identify someone trying to use them to launder money.

Sopranos, The Wire, Breaking Bad and McMafia have all played a part in raising the awareness of how the baddies launder money, but we need to make sure that the training is relevant to lawyers, and their staff.

I’ve trained countless numbers of MLROs in those 13 years. I’ve never met any who did not accept and appreciate the need to have their firm understand the anti money laundering legislation and how to apply it in their firm.

That said, I have been talking about the same methods in which the money launderers operate for most of those years, car washes, take-aways, and memorably (if you’ve been on the course you’ll remember) nail bars. All of those are still relevant, but there are new ways in which the criminals are operating and it is critical that we gain an understanding of those in order to protect our firms, the people who work for us and the wider society who are damaged by money laundering and the activities of serious and organised crime.

What about your construction clients who are using sub-contracted labour, who are in turn victims of human trafficking, what about the person who is lucky on fixed odds betting machines, who has really been pumping the machine with the proceeds of selling drugs on bicycles on street corners in your town. It’s on your doorstep, I just want to help you see it.

For that reason, I am delighted to have Mark Heffer join us at Teal Compliance. Mark is a Financial Crime Consultant, Accredited Financial Investigator and former Detective Constable. He served for over 25 years with the Devon and Cornwall Constabulary with the Serious and Organised Crime Branch and specialised in crime such as money laundering, complex fraud, human trafficking, drug trafficking, bribery and corruption.  He is an expert in all aspects of POCA, money laundering, confiscation, restraint, and SARs and has a reputation for bringing a very real world, hands on approach to his consulting work.

He supports law firms with a range of services including:

  • Expert training and investigation in all aspects of Financial Crime, Anti Money Laundering, Compliance and Fraud.

  • Bespoke investigations for Business and Private Clients – managing reputational risk

  • Assisting firms with the perils of Restraint/Production Orders

Together, we have written new AML courses, which focus on these new tactics being deployed by the baddies, and how they target not just you, but manipulate the banks, accountants and estate agents, before they get to you, the lawyers, adding layers of legitimacy which can be difficult to unravel. We’re running a webinar for MLROs on the 8th March which will focus on these tactics, and how to spot and avoid them. Visit our events page for more details.

Mark and I are also taking bookings for our brand new in house course. It is a 90 minute course, fully incorporating the 2017 regulations and full of relevant examples of how firms are targeted. In house training can be incredibly cost effective, with up to 100 people trained a day for £1250 plus VAT (and travel expenses)

Get in touch

If you need help with AML compliance or need compliance training, simply get in touch with one of our experts today.

Do we need to ‘change up’ AML Training? Read More »

two large skyscraper buildings

AML – the size and nature test

Anti-Money Laundering, Blogs, Legal Compliance /

 

Regulation 21 of the Money Laundering, Terrorist Financing and Transfer of Funds (Information on the Payer) Regulations 2017 requires that a firm which is regulated, implements internal controls where appropriate to the size and nature of the firm.

These controls are:

  1. Appoint a person to be responsible for compliance with the regulations
  2. Screen relevant employees, both before the appointment is made and ongoing thereafter
  3. Establish an independent audit function

So, what should the ‘controls’ look like and what is the appropriate ‘size and nature’?

Controls

In my experience, in legal services we don’t have many controls in place. Our colleagues in other industries, such as financial services have lots. A control exists to check the efficacy of a policy and procedure. By way of an example, I am betting your firm has a confidential waste policy, “you must not put client information or confidential data in the normal waste paper bin”. You will have a procedure which says “You must put confidential waste in the bin for confidential shredding”. Very few firms however have a control which says “we will check the waste paper bins weekly to ensure that no confidential data has been put in there”.

It’s great to have policies and procedures, but we usually only find out if they are effective when something goes wrong, by which time it’s too late to avoid the damage that the policy and procedure was designed to avoid.

The Regulation 21 controls are designed to make sure you have someone who is tasked with making sure that the regulations are complied with, we have people who know how to comply with them, and that we check that they are working.

Size and Nature

Implementation of these controls depends on the size and nature of the firm. When we were drafting the guidance at the Money Laundering Task Force we grappled with how does a firm decide on the size and nature. It’s not an easy thing to define. The Legal Sector Affinity Group decided on:

Factors you may consider when determining whether it is appropriate to apply those controls include:

  • The number of staff members your practice has

  • The number of offices your practice has and where they are located (including whether your practice has overseas offices)

  • Your client demographic

  • The nature and complexity of work your practice undertakes

  • The level of visibility and control that senior management has over client matters

(taken from the draft Legal Sector Affinity Group Guidance).

Sole practitioners who do not employ any staff are not caught by this by virtue of regulation 21(6).

In practice, I think firms will have appointed their COLP as being responsible for compliance (which is arguably already their job by virtue of the SRA authorisation rules). I think firms will be obtaining references for new staff, at times carrying out more rigorous criminal records type checks, and will be thinking about testing staff understanding after training courses.

I think less straight forward is establishing whether a firm needs an independent audit function. My personal view, (rather than of the Law Society) is that a firm does not have to be very big in order to be required to do this. Take this example, a firm that has about 50 people, across 2 offices, with all the staff collecting and recording their own due diligence, and lawyers making decisions about what sorts of inquiries to make regarding the purpose and nature of the transaction. Does the MLRO know that his policies are adhered to and are effective? If, hand on heart, he would say no, an audit would give him that visibility. The mischief the control is trying to get at is to ensure that the firm knows if the Policies, Controls and Procedures they have in place are working.

So if you decide you are the size and nature to need an independent, who is going to do it?  Do you have staff the with requisite knowledge and capacity to carry out the audit? Are they able to acting independently? I think that resourcing alone would be a struggle for many of the smaller firms, and indeed a fair few of the larger firms, who might have an audit function, but without the necessary experience in AML.

An audit should include review of the policies and procedures, interviewing staff and reviewing files and accounts processes to ensure that the policies and procedures are deployed correctly.

Help

With that in mind, we have put together a package of support for firms who can’t resource their audit internally. We can:

  • Review existing policies and procedures, including firm and matter risk assessments

  • Carry out on site review of systems, policies and procedures

  • Interview staff members to test understanding

  • Provide feedback of observations and recommendations for improvement

In addition we can help

  • Rectify policies and procedures

  • Develop controls to ensure constant visibility as to compliance

  • Provide tailored in-house training to all staff members to embed learning

  • Provide ongoing support and monitoring

Get in touch

If you are still unsure how the AML size and nature test applies to your firm, get in touch with one of our experts today.

AML – the size and nature test Read More »