Bank Secrecy Act/ Anti-Money Laundering Examination Manual Federal Financial Institutions Examination Council Board of Governors of the Federal Reserve System, Federal Deposit Insurance Corporation, National Credit Union Administration, Office of the Comptroller of the Currency, Consumer Financial Protection Bureau and State Liaison Committee 2014 Contents CONTENTS The sections of the FFIEC BSA/AML Examination Manual that have been added or significantly modified from the previous edition are reflected by date. INTRODUCTION 1 CORE EXAMINATION OVERVIEW AND PROCEDURES FOR ASSESSING THE BSA/AML COMPLIANCE PROGRAM 11 Scoping and Planning — Overview .................................................................................11 Examination Procedures ........................................................................................15 BSA/AML Risk Assessment — Overview ......................................................................18 Examination Procedures ........................................................................................27 BSA/AML Compliance Program — Overview ...............................................................28 Examination Procedures ........................................................................................34 Developing Conclusions and Finalizing the Examination — Overview .........................40 Examination Procedures ........................................................................................43 CORE EXAMINATION OVERVIEW AND PROCEDURES FOR REGULATORY REQUIREMENTS AND RELATED TOPICS 47 Customer Identification Program — Overview ...............................................................47 Examination Procedures ........................................................................................53 Customer Due Diligence — Overview ............................................................................56 Examination Procedures ........................................................................................59 Suspicious Activity Reporting — Overview (2014) ........................................................60 Examination Procedures ........................................................................................76 Currency Transaction Reporting — Overview (2014) .....................................................81 Examination Procedures ........................................................................................84 Currency Transaction Reporting Exemptions — Overview (2014) .................................86 Examination Procedures ........................................................................................90 Information Sharing — Overview ....................................................................................92 Examination Procedures ........................................................................................97 Purchase and Sale of Monetary Instruments Recordkeeping — Overview ...................100 Examination Procedures ......................................................................................103 Funds Transfers Recordkeeping — Overview ...............................................................104 Examination Procedures ......................................................................................110 Foreign Correspondent Account Recordkeeping, Reporting, and Due Diligence — Overview (2014) ..............................................................111 Examination Procedures ......................................................................................119 Private Banking Due Diligence Program (Non-U.S. Persons) — Overview .................125 Examination Procedures ......................................................................................130 Special Measures — Overview ......................................................................................133 Examination Procedures ......................................................................................136 Foreign Bank and Financial Accounts Reporting — Overview (2014) ........................137 Examination Procedures ......................................................................................138 International Transportation of Currency or Monetary Instruments Reporting — Overview (2014) ..................................................................................................139 FFIEC BSA/AML Examination Manual i 11/17/2014 Contents Examination Procedures ......................................................................................141 Office of Foreign Assets Control — Overview (2014) ..................................................142 Examination Procedures ......................................................................................152 EXPANDED EXAMINATION OVERVIEW AND PROCEDURES FOR CONSOLIDATED AND OTHER TYPES OF BSA/AML COMPLIANCE PROGRAM STRUCTURES 155 BSA/AML Compliance Program Structures — Overview ............................................155 Examination Procedures ......................................................................................161 Foreign Branches and Offices of U.S. Banks — Overview ...........................................164 Examination Procedures ......................................................................................168 Parallel Banking — Overview .......................................................................................170 Examination Procedures ......................................................................................171 EXPANDED EXAMINATION OVERVIEW AND PROCEDURES FOR PRODUCTS AND SERVICES 173 Correspondent Accounts (Domestic) — Overview ........................................................173 Examination Procedures ........................................................................................175 Correspondent Accounts (Foreign) — Overview (2014) ...............................................177 Examination Procedures ......................................................................................181 Bulk Shipments of Currency — Overview (2014) .........................................................183 Examination Procedures ......................................................................................189 U.S. Dollar Drafts — Overview .....................................................................................191 Examination Procedures ......................................................................................192 Payable Through Accounts — Overview .......................................................................194 Examination Procedures ......................................................................................196 Pouch Activities — Overview ........................................................................................199 Examination Procedures ......................................................................................201 Electronic Banking — Overview ...................................................................................202 Examination Procedures ......................................................................................206 Funds Transfers — Overview ........................................................................................207 Examination Procedures ......................................................................................214 Automated Clearing House Transactions — Overview (2014) .....................................217 Examination Procedures ......................................................................................225 Prepaid Access – Overview (2014) ................................................................................227 Examination Procedures ......................................................................................233 Third-Party Payment Processors — Overview (2014) ...................................................235 Examination Procedures ......................................................................................239 Purchase and Sale of Monetary Instruments — Overview ............................................240 Examination Procedures ......................................................................................241 Brokered Deposits — Overview ....................................................................................243 Examination Procedures ......................................................................................245 Privately Owned Automated Teller Machines — Overview .........................................247 Examination Procedures ......................................................................................250 Nondeposit Investment Products — Overview ..............................................................252 Examination Procedures ......................................................................................256 Insurance — Overview ...................................................................................................258 Examination Procedures ......................................................................................261 Concentration Accounts — Overview ...........................................................................262 FFIEC BSA/AML Examination Manual ii 11/17/2014 Contents Examination Procedures ......................................................................................264 Lending Activities — Overview ....................................................................................265 Examination Procedures ......................................................................................266 Trade Finance Activities — Overview ...........................................................................267 Examination Procedures ......................................................................................272 Private Banking — Overview ........................................................................................273 Examination Procedures ......................................................................................278 Trust and Asset Management Services — Overview .....................................................280 Examination Procedures ......................................................................................284 EXPANDED EXAMINATION OVERVIEW AND PROCEDURES FOR PERSONS AND ENTITIES 286 Nonresident Aliens and Foreign Individuals — Overview ............................................286 Examination Procedures ......................................................................................288 Politically Exposed Persons — Overview ......................................................................290 Examination Procedures ......................................................................................294 Embassy, Foreign Consulate, and Foreign Mission Accounts — Overview (2014) .....296 Examination Procedures ......................................................................................298 Nonbank Financial Institutions — Overview (2014) .....................................................299 Examination Procedures ......................................................................................307 Professional Service Providers — Overview .................................................................309 Examination Procedures ......................................................................................310 Nongovernmental Organizations and Charities — Overview .......................................311 Examination Procedures ......................................................................................313 Business Entities (Domestic and Foreign) — Overview ................................................314 Examination Procedures ......................................................................................320 Cash-Intensive Businesses — Overview ........................................................................322 Examination Procedures ......................................................................................324 Appendix A: BSA Laws and Regulations (2014) ......................................................... A-1 Appendix B: BSA/AML Directives ...............................................................................B-1 Appendix C: BSA/AML References (2014) ..................................................................C-1 Appendix D: Statutory Definition of Financial Institution ........................................... D-1 Appendix E: International Organizations (2014) ........................................................... E-1 Appendix F: Money Laundering and Terrorist Financing “Red Flags” ......................... F-1 Appendix G: Structuring ............................................................................................... G-1 Appendix H: Request Letter Items (Core and Expanded) (2014) ................................ H-1 Appendix I: Risk Assessment Link to the BSA/AML Compliance Program ................. I-1 Appendix J: Quantity of Risk Matrix .............................................................................. J-1 Appendix K: Customer Risk Versus Due Diligence and Suspicious Activity Monitoring .......................................................................... K-1 Appendix L: SAR Quality Guidance (2014) .................................................................. L-1 Appendix M: Quantity of Risk Matrix — OFAC Procedures ....................................... M-1 Appendix N: Private Banking — Common Structure .................................................. N-1 Appendix O: Examiner Tools for Transaction Testing ................................................. O-1 Appendix P: BSA Record-Retention Requirements (2014) ........................................... P-1 Appendix Q: Abbreviations ........................................................................................... Q-1 Appendix R: Enforcement Guidance .............................................................................R-1 FFIEC BSA/AML Examination Manual iii 11/17/2014 Contents Appendix S: Key Suspicious Activity Monitoring Components ................................... S-1 Appendix T: BSA E-Filing System (2014) .................................................................... T-1 Index ........................................................................................................................ Index-1 FFIEC BSA/AML Examination Manual iv 11/17/2014 Introduction INTRODUCTION This Federal Financial Institutions Examination Council (FFIEC) Bank Secrecy Act (BSA)/Anti-Money Laundering (AML) Examination Manual provides guidance to examiners for carrying out BSA/AML and Office of Foreign Assets Control (OFAC) examinations. An effective BSA/AML compliance program requires sound risk management; therefore, the manual also provides guidance on identifying and controlling risks associated with money laundering and terrorist financing. The manual contains an overview of BSA/AML compliance program requirements, BSA/AML risks and risk management expectations, industry sound practices, and examination procedures. The development of this manual was a collaborative effort of the federal and state banking agencies1 and the Financial Crimes Enforcement Network (FinCEN), a bureau of the U.S. Department of the Treasury, to ensure consistency in the application of the BSA/AML requirements. In addition, OFAC assisted in the development of the sections of the manual that relate to OFAC reviews. For more guidance, refer to Appendix A (“BSA Laws and Regulations”), Appendix B (“BSA/AML Directives”), and Appendix C (“BSA/AML References”). Structure of Manual In order to effectively apply resources and ensure compliance with BSA requirements, the manual is structured to allow examiners to tailor the BSA/AML examination scope and procedures to the specific risk profile of the banking organization. The manual consists of the following sections: • Introduction. • Core Examination Overview and Procedures for Assessing the BSA/AML Compliance Program. • Core Examination Overview and Procedures for Regulatory Requirements and Related Topics. • Expanded Examination Overview and Procedures for Consolidated and Other Types of BSA/AML Compliance Program Structures. • Expanded Examination Overview and Procedures for Products and Services. • Expanded Examination Overview and Procedures for Persons and Entities. • Appendixes. The core and expanded overview sections provide narrative guidance and background information on each topic; each overview is followed by examination procedures. The “Core 1 The FFIEC was established in March 1979 to prescribe uniform principles, standards, and report forms and to promote uniformity in the supervision of financial institutions. The Council has six voting members: the Board of Governors of the Federal Reserve System, the Federal Deposit Insurance Corporation, the National Credit Union Administration, the Office of the Comptroller of the Currency, the Consumer Financial Protection Bureau, and the State Liaison Committee. The Council’s activities are supported by interagency task forces and by an advisory State Liaison Committee, composed of five representatives of state agencies that supervise financial institutions. FFIEC BSA/AML Examination Manual 1 11/17/2014 Introduction Examination Overview and Procedures for Assessing the BSA/AML Compliance Program” and the “Core Examination Overview and Procedures for Regulatory Requirements and Related Topics” (core) sections serve as a platform for the BSA/AML examination and, for the most part, address legal and regulatory requirements of the BSA/AML compliance program. The “Scoping and Planning” and the “BSA/AML Risk Assessment” sections help the examiner develop an appropriate examination plan based on the risk profile of the bank. There may be instances where a topic is covered in both the core and expanded sections (e.g., funds transfers and foreign correspondent banking). In such instances, the core overview and examination procedures address the BSA requirements while the expanded overview and examination procedures address the AML risks of the specific activity. At a minimum, examiners should use the following examination procedures included within the “Core Examination Overview and Procedures for Assessing the BSA/AML Compliance Program” section of this manual to ensure that the bank has an adequate BSA/AML compliance program commensurate with its risk profile: • Scoping and Planning (refer to page 11). • BSA/AML Risk Assessment (refer to page 18). • BSA/AML Compliance Program (refer to page 28). • Developing Conclusions and Finalizing the Examination (refer to page 40). While OFAC regulations are not part of the BSA, the core sections include overview and examination procedures for examining a bank’s policies, procedures, and processes for ensuring compliance with OFAC sanctions. As part of the scoping and planning procedures, examiners must review the bank’s OFAC risk assessment and independent testing to determine the extent to which a review of the bank’s OFAC compliance program should be conducted during the examination. Refer to core examination procedures, “Office of Foreign Assets Control,” page 152, for further guidance. The expanded sections address specific lines of business, products, customers, or entities that may present unique challenges and exposures for which banks should institute appropriate policies, procedures, and processes. Absent appropriate controls, these lines of business, products, customers, or entities could elevate BSA/AML risks. In addition, the expanded section provides guidance on BSA/AML compliance program structures and management. Not all of the core and expanded examination procedures are likely to be applicable to every banking organization. The specific examination procedures that need to be performed depend on the BSA/AML risk profile of the banking organization, the quality and quantity of independent testing, the financial institution’s history of BSA/AML compliance, and other relevant factors. FFIEC BSA/AML Examination Manual 2 11/17/2014 Introduction Background In 1970, Congress passed the Currency and Foreign Transactions Reporting Act commonly known as the Bank Secrecy Act,2 which established requirements for record keeping and reporting by private individuals, banks,3 and other financial institutions. The BSA was designed to help identify the source, volume, and movement of currency and other monetary instruments transported or transmitted into or out of the United States or deposited in financial institutions. The statute sought to achieve that objective by requiring individuals, banks, and other financial institutions to file currency reports with the U.S. Department of the Treasury (U.S. Treasury), properly identify persons conducting transactions, and maintain a paper trail by keeping appropriate records of financial transactions. These records enable law enforcement and regulatory agencies to pursue investigations of criminal, tax, and regulatory violations, if warranted, and provide evidence useful in prosecuting money laundering and other financial crimes. The Money Laundering Control Act of 1986 augmented the BSA’s effectiveness by adding the interrelated sections 8(s) and 21 to the Federal Deposit Insurance Act (FDIA) and section 206(q) of the Federal Credit Union Act (FCUA), which sections apply equally to banks of all charters.4 The Money Laundering Control Act of 1986 precludes circumvention of the BSA requirements by imposing criminal liability on a person or financial institution that knowingly assists in the laundering of money, or that structures transactions to avoid reporting them. The 1986 statute directed banks to establish and maintain procedures reasonably designed to ensure and monitor compliance with the reporting and recordkeeping requirements of the BSA. As a result, on January 27, 1987, all federal banking agencies issued essentially similar regulations requiring banks to develop programs for BSA compliance. The 1992 Annunzio–Wylie Anti-Money Laundering Act strengthened the sanctions for BSA violations and the role of the U.S. Treasury. Two years later, Congress passed the Money Laundering Suppression Act of 1994 (MLSA), which further addressed the U.S. Treasury’s role in combating money laundering. In April 1996, a Suspicious Activity Report (SAR) was developed to be used by all banking organizations in the United States. A banking organization is required to file a SAR whenever it detects a known or suspected criminal violation of federal law or a suspicious transaction related to money laundering activity or a violation of the BSA. In response to the September 11, 2001, terrorist attacks, Congress passed the Uniting and Strengthening America by Providing Appropriate Tools Required to Intercept and Obstruct Terrorism Act of 2001 (USA PATRIOT Act). Title III of the USA PATRIOT Act is the 2 31 USC 5311 et seq., 12 USC 1829b, and 1951 – 1959. Also refer to 12 USC 1818(s) (federally insured depository institutions) and 12 USC 1786(q) (federally insured credit unions). 3 Under the BSA, as implemented by 31 CFR 1010.100 (formerly 31 CFR 103.11), the term “bank” includes each agent, agency, branch, or office within the United States of commercial banks, savings and loan associations, thrift institutions, credit unions, and foreign banks. The term “bank” is used throughout the manual generically to refer to the financial institution being examined. 4 12 USC 1818(s), 12 USC 1829(b), and 12 USC 1786(q), respectively. FFIEC BSA/AML Examination Manual 3 11/17/2014 Introduction International Money Laundering Abatement and Anti-Terrorist Financing Act of 2001. The USA PATRIOT Act is arguably the single most significant AML law that Congress has enacted since the BSA itself. Among other things, the USA PATRIOT Act criminalized the financing of terrorism and augmented the existing BSA framework by strengthening customer identification procedures; prohibiting financial institutions from engaging in business with foreign shell banks; requiring financial institutions to have due diligence procedures and, in some cases, enhanced due diligence (EDD) procedures for foreign correspondent and private banking accounts; and improving information sharing between financial institutions and the U.S. government. The USA PATRIOT Act and its implementing regulations also: • Expanded the AML program requirements to all financial institutions.5 Refer to Appendix D (“Statutory Definition of Financial Institution”) for further clarification. • Increased the civil and criminal penalties for money laundering. • Provided the Secretary of the Treasury with the authority to impose “special measures” on jurisdictions, institutions, or transactions that are of “primary money-laundering concern.” • Facilitated records access and required banks to respond to regulatory requests for information within 120 hours. • Required federal banking agencies to consider a bank’s AML record when reviewing bank mergers, acquisitions, and other applications for business combinations. Role of Government Agencies in the BSA Certain government agencies play a critical role in implementing BSA regulations, developing examination guidance, ensuring compliance with the BSA, and enforcing the BSA. These agencies include the U.S. Treasury, FinCEN, and the federal banking agencies (Board of Governors of the Federal Reserve System (Federal Reserve), Federal Deposit Insurance Corporation (FDIC), National Credit Union Administration (NCUA), and Office of the Comptroller of the Currency (OCC). Internationally there are various multilateral government bodies that support the fight against money laundering and terrorist financing. Refer to Appendix E (“International Organizations”) for additional information. U.S. Treasury The BSA authorizes the Secretary of the Treasury to require financial institutions to establish AML programs, file certain reports, and keep certain records of transactions. Certain BSA provisions have been extended to cover not only traditional depository institutions, such as banks, savings associations, and credit unions, but also nonbank financial institutions, such as 5 The USA PATRIOT Act expanded the AML program requirement to all financial institutions as that term is defined in 31 USC 5312(a)(2). However, as of the publication of this manual, only certain types of financial institutions are subject to final rules implementing the AML program requirements of 31 USC 5318(h)(1) as established by the USA PATRIOT Act. Those financial institutions that are not currently subject to a final AML program rule are temporarily exempted from the USA PATRIOT Act requirements to establish an AML program, as set forth in 31 CFR 1010.205 (formerly 31 CFR 103.170). FFIEC BSA/AML Examination Manual 4 11/17/2014 Introduction money services businesses, casinos, brokers/dealers in securities, futures commission merchants, mutual funds, insurance companies, and operators of credit card systems. FinCEN FinCEN, a bureau of the U.S. Treasury, is the delegated administrator of the BSA. In this capacity, FinCEN issues regulations and interpretive guidance, provides outreach to regulated industries, supports the examination functions performed by federal banking agencies, and pursues civil enforcement actions when warranted. FinCEN relies on the federal banking agencies to examine banks within their respective jurisdictions for compliance with the BSA. FinCEN’s other significant responsibilities include providing investigative case support to law enforcement, identifying and communicating financial crime trends and patterns, and fostering international cooperation with its counterparts worldwide. Federal Banking Agencies The federal banking agencies are responsible for the oversight of the various banking entities operating in the United States, including foreign branch offices of U.S. banks. The federal banking agencies are charged with chartering (NCUA and OCC), insuring (FDIC and NCUA), regulating, and supervising banks.6 12 USC 1818(s)(2) and 1786(q) require that the appropriate federal banking agency include a review of the BSA compliance program at each examination of an insured depository institution. The federal banking agencies may use their authority, as granted under section 8 of the FDIA or section 206 of the FCUA, to enforce compliance with appropriate banking rules and regulations, including compliance with the BSA. The federal banking agencies require each bank under their supervision to establish and maintain a BSA compliance program.7 In accordance with the USA PATRIOT Act, FinCEN’s regulations require certain financial institutions to establish an AML compliance program that guards against money laundering and terrorist financing and ensures compliance with the BSA and its implementing regulations. When the USA PATRIOT Act was passed, banks under the supervision of a federal banking agency were already required by law to establish and maintain a BSA compliance program that, among other things, requires the bank to identify and report suspicious activity promptly. For this reason, 31 CFR 1020.210 states that a bank regulated by a federal banking agency is deemed to have satisfied the AML program requirements of the USA PATRIOT Act if the bank develops and maintains a BSA compliance program that complies with the regulation of its federal functional regulator8 governing such programs. This manual refers to the BSA compliance program requirements for each federal banking agency as the “BSA/AML compliance program.” 6 The Federal Reserve and FDIC may collaborate with state banking agencies on the examination, oversight, and enforcement of BSA/AML for state-chartered banks. 7 Refer to 12 CFR 208.63, 12 CFR 211.5(m) and 12 CFR 211.24(j) (Federal Reserve); 12 CFR 326.8 (FDIC); 12 CFR 748.2 (NCUA); 12 CFR 21.21(OCC). 8 Federal functional regulator means: Federal Reserve, FDIC, NCUA, OCC, Securities and Exchange Commission or U.S. Commodity Futures Trading Commission. FFIEC BSA/AML Examination Manual 5 11/17/2014
Description: