First Reference company logo

Inside Internal Controls

News and discussion on implementing risk management

machine cogs image

Canadian Anti-Money Laundering Law: What you need to know about compliance program requirements

The importance of a comprehensive and effective compliance program cannot be overstated. FINTRAC regularly audits businesses to ensure compliance with the Canadian Anti-Money Laundering law.

Canadian Anti-Money Laundering LawIf you (as an individual or a business) are subject to the requirements of the Proceeds of Crime (Money Laundering) and Terrorist Financing Act and associated regulations (also referred to as Canadian AML Law), you are required to establish and implement a comprehensive and effective compliance program.

The Financial Transactions and Reports Analysis Centre of Canada (FINTRAC) is Canada’s financial intelligence unit. Among other things, it is responsible for the enforcement of Canadian AML Law. In December 2017, FINTRAC released a revised guidance document relating to the compliance program requirements.

This guidance document should be reviewed carefully to ensure that you satisfy all the requirements of a compliance program.

Compliance program requirements

The importance of a comprehensive and effective compliance program cannot be overstated. The guidance document notes that establishing and implementing such a compliance program is the basis for meeting the reporting, record keeping, client identification and know-your-client requirements under the Canadian AML Law.

FINTRAC requires that compliance programs must have the following five elements (the guidance document includes detailed description of these elements):

  1. Compliance officer: You are required to appoint a person who will be responsible for the implementation of the compliance program.
  2. Compliance policies and procedures: You are required to develop and apply written compliance policies and procedures that need to be kept up to date and include enhanced measures to mitigate high risks.
  3. Risk assessment: You are required to conduct a risk assessment of your business activities and relationships.
  4. Compliance training: You are required to develop and maintain a written ongoing compliance training program for employees, agents and others authorized to act on your behalf.
  5. Effectiveness review: You are required to institute and document an effectiveness review of your compliance program (policies and procedures, risk assessment and training program) every two years (minimum) for the purpose of testing its overall effectiveness.

FINTRAC acknowledges that the level of detail and sophistication of your compliance program must reflect the size of your business as well as its complexity, structure and risk of exposure to money laundering and terrorist activity financing.

FINTRAC regularly audits businesses to ensure compliance with the Canadian AML. In addition, entities that are subject to the regulatory authority of Canada’s federal financial regulator (the Office of the Superintendent of Financial Institutions known as OSFI) are also subject to regulatory examination by OSFI.

During recent years (partly because of global geopolitical issues), we are seeing a heightened focus from the regulators on issues relating to money laundering and terrorist financing. In this environment, it is important for all relevant businesses to pay careful attention to their compliance program requirements.

By Kashif Zaman, Osler

Occasional Contributors

In addition to our regular guest bloggers, Inside Internal Controls blog published by First Reference, provides occasional guest post opportunities from various subject matter experts on the topics of risk management and best practices in finance and accounting, information technology, environmental issues, corporate governance, sales/marketing and operations, not-for-profits and business related issues in Canada. If you are a subject matter expert and would like to become an occasional blogger, please contact Yosie Saint-Cyr at editor@firstreference.com. If you liked this post and would like to subscribe to Inside Internal Controls blog click here.
Send to Kindle

, , , , ,

Leave a Reply

Your email address will not be published. Required fields are marked *

Time limit is exhausted. Please reload CAPTCHA.

This site uses Akismet to reduce spam. Learn how your comment data is processed.