Systems & controls

Copyright © 2024 LexisNexis

This subtopic explains the regulatory requirement to implement systems and controls to mitigate and manage effectively the risks of money laundering, terrorist financing and proliferation financing as set out in the Money Laundering, Terrorist Financing and Transfer of Funds (Information on the Payer) Regulations 2017 (MLR 2017), SI 2017/692, as amended. It provides guidance which is of general application. You should check whether the MLR 2017 contain additional or varied requirements for your sector and whether your regulatory body has any additional, sector-specific requirements in relation to systems and controls.

Is it mandatory to implement systems and controls under the MLR 2017?

If the MLR 2017 apply to your organisation, you must:

  1. establish and maintain policies, controls and procedures to mitigate and manage effectively the risks of money laundering, terrorist financing and proliferation financing identified in your Money laundering, terrorist financing and proliferation financing organisation-wide risk assessment

  2. regularly review and update those policies, controls and procedures

  3. maintain a written record of:

    1. those policies, controls and procedures—see Precedent: Register of AML, CTF and counter-proliferation financing policies, plans and procedures

    2. any

To view the latest version of this document and thousands of others like it, sign-in with LexisNexis or register for a free trial.

Existing user? Sign-in TAKE A FREE TRIAL
Powered by Lexis+®
Latest Risk & Compliance News

EDPB approves certification criteria for EU Data Protection Seal under EU GDPR

The European Data Protection Board (EDPB) has approved the certification criteria for the EU Data Protection Seal, a mechanism to certify compliance with EU General Data Protection Regulation, Regulation (EU) 2016/679 (EU GDPR) in data processing operations, including transfers to third countries. This seal helps establish appropriate safeguards for data transfers, offering a uniform standard of assurance across the EU. It also specifies the roles of supervisory authorities, accreditation bodies, and certification bodies in maintaining consistent application of GDPR rules

Risk & Compliance weekly highlights—28 November 2024

This week's edition of Risk & Compliance weekly highlights includes: the new Risk & Compliance forecast, the latest sanctions news, the launch of a bribery investigation into defence firm Thales by the SFO and INTERPOL’s successful global operation against financial cybercrime.

Spotlight on Corruption reports on OFSI sanctions enforcement

Spotlight on Corruption publishes a report on the recent Commons Treasury Select Committee hearing with the Office of Financial Sanctions Implementation (OFSI). The report highlights UK's underwhelming record on sanctions enforcement. With only one £15,000 fine imposed since 2022, zero criminal convictions since 2012, and less than £m in assets seized, enforcement remains feeble. However, OFSI's caseload has increased to over 400 investigations, and the Foreign Secretary has confirmed a government review of sanctions is underway. The hearing also revealed potential for improved cooperation between OFSI and law enforcement, though concerns about transparency persist. These developments suggest a possible shift towards more robust sanctions enforcement in the near future, pending the outcomes of ongoing cases and the government's review.

INTERPOL conducts successful global operation against financial cybercrime

INTERPOL's Operation HAECHI V, a five-month global initiative involving law enforcement from 40 countries, has concluded with unprecedented success in combating cyber-enabled financial crimes. The operation led to over 5,500 arrests and the seizure of more than USD 400 million in virtual and fiat currencies. Notably, Korean authorities dismantled a major voice phishing syndicate responsible for USD 1.1 billion in losses. INTERPOL also issued a Purple Notice warning about a new cryptocurrency fraud tactic. The operation's effectiveness was bolstered by INTERPOL's Global Rapid Intervention of Payments (I-GRIP) mechanism, which facilitated swift interception of stolen funds across multiple jurisdictions. Compared to 2023, HAECHI V nearly doubled the number of cases solved and tripled the number of virtual asset service provider accounts blocked, marking significant progress in international efforts against financial cybercrime.

View Risk & Compliance by content type :
News
Practice notes
Precedents
Q&As

Popular documents

Who can certify identification documents (passports, driving licences, utility bills, etc)?

Who can certify identification documents (passports, driving licences, utility bills, etc)?Government guidance on Certifying a document states documents must be certified by a professional person or someone well-respected in your community (‘of good standing’) like a:•bank or building society

Money Laundering Regulations 2017—record keeping

Money Laundering Regulations 2017—record keepingThis Practice Note explains the regulatory requirements relating to anti-money laundering (AML), counter-terrorist financing (CTF) and counter-proliferation financing record keeping as set out in the Money Laundering, Terrorist Financing and Transfer

Scotland—the process for applying for sequestration

Scotland—the process for applying for sequestrationSequestration in Scotland is the legal process by which an insolvent debtor’s estate is gathered in, realised and then distributed among their creditors by a trustee appointed for that purpose. The process requires that a formal award of

If planning permission imposes restrictions on a licensed premises opening hours, once operational can

If planning permission imposes restrictions on a licensed premises opening hours, once operational can the personal licence holder apply for a Temporary Events Notice (TEN) to open for longer hours than those permitted in the planning permission?To use any property for a licensable activity both
Who can certify identification documents (passports, driving licences, utility bills, etc)?

Who can certify identification documents (passports, driving licences, utility bills, etc)?

Who can certify identification documents (passports, driving licences, utility bills, etc)?Government guidance on Certifying a document states documents must be certified by a professional person or someone well-respected in your community (‘of good standing’) like a:•bank or building society

Money Laundering Regulations 2017—record keeping

Money Laundering Regulations 2017—record keeping

Money Laundering Regulations 2017—record keepingThis Practice Note explains the regulatory requirements relating to anti-money laundering (AML), counter-terrorist financing (CTF) and counter-proliferation financing record keeping as set out in the Money Laundering, Terrorist Financing and Transfer

Scotland—the process for applying for sequestration

Scotland—the process for applying for sequestration

Scotland—the process for applying for sequestrationSequestration in Scotland is the legal process by which an insolvent debtor’s estate is gathered in, realised and then distributed among their creditors by a trustee appointed for that purpose. The process requires that a formal award of

If planning permission imposes restrictions on a licensed premises opening hours, once operational can

If planning permission imposes restrictions on a licensed premises opening hours, once operational can

If planning permission imposes restrictions on a licensed premises opening hours, once operational can the personal licence holder apply for a Temporary Events Notice (TEN) to open for longer hours than those permitted in the planning permission?To use any property for a licensable activity both