CAMS Certified Anti-Money Laundering Specialist (the 6th edition) Questions and Answers

 According to the ACAMS CAMS Certification Study Guide, 6th Edition, one of the four pillars of an effective anti-money laundering compliance program is the training of appropriate employees on their responsibilities and the institution’s policies and procedures. Training is essential to ensure that employees are aware of the risks of money laundering and terrorist financing, the applicable laws and regulations, the red flags and indicators of suspicious activity, and the reporting and record-keeping requirements. Without proper training, employees may not be able to perform their duties effectively and efficiently, and may expose the institution to legal, regulatory, reputational, and operational risks.

The other options are less serious deficiencies, but still need to be addressed and corrected. The compliance officer should have regular meetings with upper management to inform them of the current money laundering trends and the status of the compliance program, but this is not as critical as providing training to the employees. The company’s anti-money laundering manual should be updated to reflect any changes in the internal controls, policies, or procedures, but this is not as urgent as ensuring that the employees are familiar with the existing ones. The company should download the most recent regulation from the Financial Intelligence Unit web site, but this is not as important as complying with the existing ones.

ACAMS CAMS Certification Study Guide, 6th Edition, Chapter 2, Section 2.1.4, page 39.

ACAMS CAMS Certification Video Training Course, Module 2, Lesson 2.1.4.

U.S. AML lawshave significantextraterritorial effectsdue tothe dominance of the U.S. dollar in global finance.

Option C (Correct):Section 319(b) of the USA PATRIOT Actallows theseizure of funds from foreign correspondent bank accountsin the U.S.

Option D (Correct):OFAC sanctionscan affectnon-U.S. entitiesif theyengage in prohibited transactions using U.S. dollars.

Option A (Incorrect):TheTravel Rule applies only to financial institutions under U.S. jurisdiction.

Option B (Incorrect):TheAML Act of 2020strengthensU.S. financial crime enforcement, butdoes not govern all USD transactions worldwide.

Using self-hosted wallets, or wallets that are stored on the user’s computer, is one of the tactics that may be used to finance terrorism with virtual assets such as Bitcoin. By creating many different donation addresses that are updated continuously, law enforcement will have a harder time tracing transactions. It is also important to note that using the same donation address across multiple donation campaigns and media types, as well as forming relationships with virtual asset service providers that have strong KYC processes in place, can draw attention from law enforcement and should be avoided.

AML risk assessments must beupdatedwhen there aresignificant changes in business operations.

Option A (Correct):New products (e.g.,cryptocurrency services, trade finance) introducenew AML risks.

Option D (Correct):Technology changes(e.g.,AI in transaction monitoring, new digital banking platforms) impactfraud and AML controls.

Option E (Correct):Mergers or acquisitionsintroducenew customer bases, jurisdictions, and compliance frameworks, requiringrisk reevaluation.

Option B (Incorrect):While compliance restructuring is important,it does not change inherent risk exposure.

Option C (Incorrect):Management changesmay affect oversight, but they donot directly alter risk exposure.

 the internal investigation did not examine the brokerage account, which could be a potential source of money laundering. According to the CAMS Study Guide, 6th Edition, one of the common methods of money laundering is to use securities brokers to move funds through the purchase and sale of stocks, bonds, or other instruments1. The customer’s frequent transfers from the business account to the brokerage account, and the increased volume of activity in the business account, could indicate that the customer is trying to disguise the origin or ownership of illicit funds by investing them in money market securities. Therefore, the anti-money laundering specialist should recommend the internal investigator to concentrate on the trades made in the brokerage account, and to look for any signs of market manipulation, insider trading, or unusual patterns of transactions1.

1: CAMS Study Guide, 6th Edition, Chapter 2: Money Laundering Risks and Methods, page 55-56.

a vehicle that is historically most often used to hide beneficial ownership, which is an offshore company. An offshore company is a legal entity that is incorporated or registered in a foreign jurisdiction, usually with low or no taxes, high confidentiality, and lax regulation. Offshore companies can be used by money launderers and other criminals to conceal the true identity and ownership of the funds or assets that they control, andto evade taxes, reporting, or legal obligations in their home jurisdictions. Offshore companies can also be layered with other vehicles, such as trusts, foundations, or nominees, to create complex and opaque structures that make it difficult for authorities to trace the source and destination of illicit funds.

The other options are not necessarily vehicles that are most often used to hide beneficial ownership, although they may pose some risks or challenges depending on the circumstances and the risk profile of the customers and countries involved. Option A describes a professional association, which is a group of individuals or entities that share a common profession or interest, such as lawyers, accountants, or doctors. Professional associations may be involved in money laundering or terrorist financing as facilitators, intermediaries, or advisors, but they are not typically used to hide beneficial ownership. Option C describes a limited liability partnership, which is a legal entity that combines the features of a partnership and a corporation, and limits the liability of its partners. Limited liability partnerships may be used by money launderers or terrorist financiers to obscure the ownership or control of funds or assets, but they are not as common or as secretive as offshore companies. Option D describes a charitable organization, which is a non-profit entity that is established for a charitable, religious, educational, or other public benefit purpose. Charitable organizations may be abused by money launderers or terrorist financiers to divert funds or assets for illicit purposes, but they are not usually used to hide beneficial ownership.

ACAMS CAMS Certification Video Training Course - 6th Edition1

Exam CAMS: Certified Anti-Money Laundering Specialist (the 6th edition)2

ACAMS CAMS Study Guide - 6th Edition, Chapter 4, pages 86-87

https://www.acams.org/wp-content/uploads/2019/09/ACAMS-CAMS-Study-Guide-6th-Edition-Chapter-4.pdf

Implementing a sound customer due diligence (CDD) program is the most effective way to prevent money laundering through financial institutions, according to experts. CDD is the process of identifying and verifying the identity of customers and assessing their risk profile, source of funds, and expected activity. CDD helps financial institutions to detect and prevent money laundering by enabling them to know their customers, monitor their transactions, and report any suspicious or unusual behavior. CDD is also a key requirement of the international standards and best practices for anti-money laundering and combating the financing of terrorism (AML/CFT), such as the Financial Action Task Force (FATF) Recommendations and the Basel Committee on Banking Supervision (BCBS) Guidelines.

The other options are not as effective as CDD, as they are either too narrow or too broad in scope. Ensuring that transaction monitoring systems can identify terrorist financing is important, but it does not address the broader issue of money laundering, which may involve other types of criminal proceeds or activities. Collecting information on beneficial owners and foreign customers is a part of CDD, but it is not sufficient by itself, as it does not cover the risk assessment and ongoing monitoring aspects of CDD. Instituting a policy prohibiting the acceptance of funds intended for terrorist financing is a good practice, but it is not a preventive measure, as it relies on the assumption that the funds are already identified as such, which may not be the case.

Customer Due Diligence - FATF-GAFI.ORG

Sound management of risks related to money laundering and financing of terrorism - Bank for International Settlements

CAMS Study Guide 6th Edition, page 36-37.

Economic sanctions are penalties imposed by a country or a group of countries on another country, entity, or individual for foreign policy or security purposes. There are different types of economic sanctions, depending on the scope, objective, and mechanism of the sanctions. Some of the common types are:

Targeted sanctions: These are sanctions that aim to minimize the adverse effects on the general population and the environment, and focus on specific individuals, entities, sectors, or activities that are responsible for or involved in the undesirable behavior or conduct. Targeted sanctions can include travel bans, asset freezes, arms embargoes, and trade restrictions on certain goods or services. For example, the United States and the European Union have imposed targeted sanctions on various officials, entities, and sectors in Russia, Iran, Syria, Venezuela, and other countries for human rights violations, nuclear proliferation, terrorism, corruption, and other reasons.

Sectoral sanctions: These are sanctions that target a specific sector or industry of the economy of the sanctioned country, such as energy, finance, defense, or transportation. Sectoral sanctions aim to disrupt the economic activity and revenue of the targeted sector, and to create pressure on the government or regime to change its policies or behavior. For example, the United States has imposed sectoral sanctions on Iran’s oil, gas, petrochemical, and automotive industries, as well as its central bank and other financial institutions, to curb its nuclear program and support for regional proxies.

Comprehensive sanction: These are sanctions that impose a total or near-total ban on trade, investment, and other economic relations with the sanctioned country. Comprehensive sanctions are the most severe and broadest form of economic sanctions, and they aim to isolate the country from the global market and cause severe economic hardship and social unrest. Comprehensive sanctions are often accompanied by diplomatic isolation and military intervention. For example, the United States has maintained a comprehensive embargo on Cuba since 1962, prohibiting most trade, travel, and financial transactions with the island nation, as well as supporting its political opposition and dissidents.

What Are Economic Sanctions?, Council on Foreign Relations

Types of Economic Sanctions, Profolus

Economic sanctions, Wikipedia

How Economic Sanctions Work, Investopedia

CAMS Certification Package - 6th Edition, ACAMS

CAMS Certifications: How to Get CAMS Certified, ACAMS

The activities that could be considered a potential spear phishing scam are:

A courier delivers a duplicate invoice to a business that contains updated payment details of an existing supplier. This could be a way of diverting funds to a fraudulent account by impersonating a legitimate vendor and exploiting the trust relationship between the business and the supplier1.

Payroll receives an external email from an employee looking to update their bank account information. This could be a way of stealing money from the employee or the employer by pretending to be the employee and requesting a change in the payment method or destination2.

An employee receives an email that asks to download an attachment, but the attachment is a malware. This could be a way of infecting the employee’s computer or network with malicious software that could compromise sensitive data, disrupt operations, or demand ransom3.

The other options are not necessarily spear phishing scams, although they may be other types of fraud or deception. For example:

An employee receives a phone call requesting that money be sent to assist someone in trouble. This could be a vishing scam, which is a form of voice phishing that uses phone calls to solicit personal or financial information or to request money transfers4.

A business sends its employees an email warning that email passwords must be changed to prevent cyber-fraud. This could be a legitimate security measure, or it could be a phishing scam, which is a form of email phishing that targets a broad audience and tries to trick them into revealing their credentials or clicking on malicious links.

Members of a religious organization receive a donation request by email claiming to be from their leader. This could be a genuine appeal, or it could be a social engineering scam, which is aform of manipulation that exploits the human factor and relies on the victim’s emotions, trust, or sympathy.

 According to the Wolfsberg Group, the FI should take the following steps regarding the opening of the account for the senior government official:

Reasonably establish if the source of wealth and funds of the official is legitimate. This is to ensure that the FI is not facilitating the laundering of proceeds of corruption, bribery, or other illicit activities by the official, who is considered a politically exposed person (PEP) and poses a higher risk of financial crime. The FI should obtain information and documentation on the origin andownership of the funds, the official’s income and assets, and the purpose and expected activity of the account12.

Perform due diligence procedures on the managing intermediary. This is to verify the identity, reputation, and regulatory status of the intermediary, who acts as a third party on behalf of the official. The FI should also assess the intermediary’s own AML/CFT policies and controls, and the nature and extent of the relationship between the intermediary and the official13.

Determine whether the intermediary representative is acting on the officer’s behalf. This is to establish the beneficial ownership and control of the account, and to avoid any potential conflicts of interest or undue influence by the intermediary. The FI should obtain a written confirmation from the intermediary that they are authorized to act on behalf of the official, and that they will disclose any changes in the beneficial ownership or control of the account13.

Customer due diligence should be implemented as an ongoing activity that may vary commensurate with the risk profile of the customer. This is because the risk of money laundering or terrorist financing may change over time, depending on the customer’s behavior, transactions, products, services, and geographic locations. The institution should monitor the customer’s activity and update the customer’s information and risk assessment periodically, or when there are red flags or significant changes in the customer’s circumstances. The institution should also apply enhanced due diligencemeasures for customers that pose higher risks, and simplified due diligence measures for customers that pose lower risks12.

1: CAMS Certification Package - 6th Edition | ACAMS, Chapter 1: Risks and Methods of Money Laundering and Terrorist Financing, p. 18-19 2: FATF Guidance: Customer Due Diligence and Financial Inclusion, February 2018, p. 10-11, http://www.fatf-gafi.org/media/fatf/documents/reports/Guidance-CDD-and-Financial-Inclusion-2018.pdf

According to the FATF Recommendations, the international standard for anti-money laundering and counter-terrorist financing, beneficial owners are the natural persons who ultimately own or control a customer or the natural persons on whose behalf a transaction is being conducted1 The beneficial ownership criterion is not based on the legal title or the nominal ownership of the funds, but on the effective control or the ultimate entitlement to the funds. Therefore, having signature authority over the account, being the person in whose name an account is opened, or being a trusted party in a correspondent banking relationship are not sufficient to determine the beneficial ownership of funds. These may be indicators of legal ownership or nominee arrangements, but they do not necessarily reflect the true ownership or control of the funds. The most effective criterion for determining the beneficial ownership of funds is having control over such funds or entitlement to such funds, either directly or indirectly, through ownership, voting rights, contractual agreements, trusts, or other means2345

1: FATF Recommendations, 2012, Recommendation 10 and Interpretive Note

2: Beneficial Ownership Meaning and Regulation, Investopedia, 2022

3: Ultimate Beneficial Ownership: Understanding Where The Money Comes From, ComplyAdvantage, 2022

4: Beneficial ownership and Irish investment funds, A&L Goodbody, 2021

5: Asset Management and Investment Funds Legal and Regulatory Update, Arthur Cox, 2020

https://egmontgroup.org/en/content/about

"The Egmont Group is a united body of 165 Financial Intelligence Units (FIUs). The Egmont Group provides a platform for the secure exchange of expertise and financial intelligence to combat money laundering and terrorist financing (ML/TF). This is especially relevant as FIUs are uniquely positioned to cooperate and support national and international efforts to counter terrorist financing and are the trusted gateway for sharing financial information domestically and internationally in accordance with global Anti Money Laundering and Counter Financing of Terrorism (AML/CFT) standards.

The European Union Money Laundering Directives (AMLDs) are issued periodically by the European Parliament to prevent money laundering and terrorist financing and establish a consistent regulatory environment across the EU1. They apply to all member states of the European Union and require them to enact laws and/or regulations to comply with the directives2. The directives are legally binding and set forth minimum standards and obligations for financial institutions and other entities within the member states3. The directives do not set forth non-binding best practices, but rather harmonize the AML/CFT rules and procedures across the EU4. The directives do not have extraterritorial impact and do not apply to states that have diplomatic relations with member states, unless they are part of the European Economic Area (EEA) or have equivalent AML/CFT regimes5.

 1: Guide to EU Anti Money Laundering Directives (AMLD) - ComplyAdvantage 2: Directive - 2015/849 - EN - Fourth Anti-Money Laundering Directive - EUR-Lex 3: EU context of anti-money laundering and countering the financing of terrorism - European Commission 4: EU Anti-Money Laundering Directives (AMLD) | LSEG - Refinitiv 5: Anti-money laundering and countering the financing of terrorism legislative package - European Commission

According to the CAMS Study Guide (the 6th edition), page 184, when an FI receives a formal law enforcement request to produce documents, such as a subpoena, a search warrant, or a court order, it should designate a person responsible for the internal investigation in preparation of documents for the request. This person should be familiar with the FI’s policies and procedures, the applicable laws and regulations, and the nature and scope of the request. The designated person should also coordinate with the FI’s legal counsel, compliance officer, and senior management, and ensure that the FI preserves the confidentiality and integrity of the documents and the investigation.

 According to the Anti-Money Laundering Specialist (the 6th edition) study guide, a risk-based approach for EDD means that the FI applies more or less stringent measures depending on the level of risk posed by each client1. This allows the FI to allocate its resources more efficiently and effectively, and to focus on the clients that pose the highest risk of money laundering or terrorist financing2. Applying EDD for every new client, regardless of their risk profile, may not be the best use of the FI’s resources, and may not reflect the proportionality and relevance of the EDD measures3.

TheFATF Grey Listconsists of jurisdictionsunder increased monitoringdue tostrategic deficiencies in their AML/CFT frameworks.

Option A (Correct):Countries placed on thegrey listhaveidentified weaknessesbutcommit to addressing them within set timeframes.

Option B (Incorrect):High-risk jurisdictions that fail to cooperate are placed on theblacklist, not the grey list.

Option C (Incorrect):While additional reviews may occur,grey-listed countries follow an agreed-upon action plan, not an automatic re-evaluation.

Option D (Incorrect):FATF does not impose financial penalties; instead, itmonitors progress and issues public reports.

Thelife insurance industryis vulnerable tomoney laundering and terrorist financing, especially when policies allowpayments to unknown third parties.

Option A (Correct):Allowing policyholders to transfer funds tounknown third partiesincreases therisk of money laundering. FATF andEU AML Directiveshighlight life insurance policies as high-risk products.

Option B (Incorrect):Completing KYC does not eliminate risk. Customers can use legitimate insurance products for illicit purposes.

Option C (Incorrect):While governance violations should be addressed, themain concern here is money laundering risk, not the compliance team’s involvement in product development.

Option D (Incorrect):Fast-tracking approvalwithoutproper risk assessmentcreates regulatory and reputational risks.

A customer visiting multiple branches of the MSB on the same day in order to transfer funds internationally is a potential indicator of structuring, which is a technique used by money launderers to avoid reporting thresholds or detection by authorities. A customer attempting to buy money orders under $3,000 USD in cash multiple times a day is also apossible sign of structuring, as well as an attempt to evade the identification and recordkeeping requirements for MSBs. Both scenarios should be included in the procedures for further review by the AML Officer.

BSA/AML Risk Assessment for Money Services Businesses (MSBs), section “Risk Factors”, sub-section “Structuring”: “Structuring is the practice of conducting financial transactions in a specific pattern calculated to avoid the creation of certain records and reports required by the BSA and/or 31 CFR Chapter X. Structuring is illegal and is often indicative of money laundering or other illicit activity.”

Money Services Business (MSB) — AML Compliance Guide, section “AML Compliance Requirements for MSBs”, sub-section “Identification and Recordkeeping”: “MSBs must verify the identity of any person who conducts a transaction of $3,000 or more. They must also keep records of the transaction, including the name, address, date of birth, and identification number of the customer, as well as the amount, date, and method of payment.”

 The bank’s reputation is not a valid criterion for filing a SAR/STR, as it is not related to the objective assessment of the suspiciousness of the transaction or the activity. The bank should file a SAR/STR based on the facts and circumstances of the case, and not on the potential impact on its image or reputation. The other options are possible indicators of money laundering or terrorist financing, and could warrant a SAR/STR filing,depending on the context and the risk profile of the customer and the transaction. For example, a large, round number wire to an obscure organization could suggest an attempt to conceal the source or destination of the funds, or to support a criminal or terrorist entity. A beneficiary that is largely unknown or has no apparent connection to the customer could indicate a lack of transparency or a false identity. A customer activity that is unreasonable or inconsistent with the customer’s profile, business, or expected behavior could indicate a deviation from the normal or legitimate purpose of the account or the transaction.

CAMS Certification Package - 6th Edition, ACAMS, Chapter 5, page 123

CAMS Certifications: How to Get CAMS Certified, ACAMS

Suspicious Activity Reporting — Overview, FFIEC, page 2

3.2. Basic Structure of an STR or SAR, CBUAE Rulebook, page 1

What is a suspicious activity report?, Thomson Reuters

How to decide if SAR filing is needed, Wipfli

STR (Suspicious Transaction Reports), Ministry of Finance, India

The Certified Anti-Money Laundering Specialist (the 6th edition) Study Guide states that financial institutions should address all requests from law enforcement agencies completely and in a timely manner (Page 83). Disregarding requests when there is a justifiable reason for doing so is not recommended, as this could impede the investigation. Sharing information about theinvestigation with analysts is not recommended, as this could compromise the investigation. Delaying responses by informing senior management of requests is also not recommended, as this could result in a delay in the investigation.

TheFATF Immediate Outcomes (IOs)measure the effectiveness of AML/CFT frameworks in jurisdictions.

Option A (Correct):International cooperationis key to combating financial crime, as outlined inImmediate Outcome 2.

Option B (Correct):Effective regulation of financial institutionsis part ofImmediate Outcome 3, which ensures compliance with AML laws.

Option E (Correct):Investigation and prosecution of money laundering offensesalign withImmediate Outcome 7.

Option C (Incorrect):FATF itself does not conduct investigations; FIUs share intelligence with domestic and international agencies.

Option D (Incorrect):While financial criminals face legal consequences, there is no global mandate to restrict their access to banking.

 it describes the organization that a national Financial Intelligence Unit (FIU) should consider becoming a member of, which is the Egmont Group. The Egmont Group is an international network of FIUs that was established in 1995 to facilitate the exchange of financial intelligence and information among its members, and to promote cooperation and coordination in the fight against money laundering and terrorist financing. The Egmont Group currently has 166 member FIUs from different jurisdictions, and provides them with various benefits, such as access to secure communication channels, bestpractices, training, and technical assistance. The Egmont Group also works closely with other international organizations, such as the Financial Action Task Force (FATF), the United Nations, and the World Bank, to enhance the global anti-money laundering and counter-terrorist financing (AML/CTF) framework.

The other options are not necessarily organizations that a national FIU should consider becoming a member of, although they may have some relevance or influence on the AML/CTF field. Option B describes the Wolfsberg Group, which is an association of 13 global banks that was formed in 2000 to develop standards and guidance for the financial industry on AML/CTF and other financial crime issues. The Wolfsberg Group is not an organization for FIUs, but rather for financial institutions. Option C describes the Financial Action Task Force (FATF), which is an inter-governmental body that was established in 1989 to set the international standards and recommendations for AML/CTF and to monitor the compliance and effectiveness of its members and other jurisdictions. The FATF is not an organization for FIUs, but rather for governments and policy-makers. Option D describes the Basel Committee, which is a forum of central bank governors and heads of banking supervision authorities from 28 jurisdictions that was established in 1974 to enhance the quality and consistency of banking supervision and regulation. The Basel Committee is not an organization for FIUs, but rather for banking regulators and supervisors.

ACAMS CAMS Certification Video Training Course - 6th Edition1

Exam CAMS: Certified Anti-Money Laundering Specialist (the 6th edition)2

ACAMS CAMS Study Guide - 6th Edition, Chapter 5, pages 108-109

https://www.acams.org/wp-content/uploads/2019/09/ACAMS-CAMS-Study-Guide-6th-Edition-Chapter-5.pdf

According to the Basel Committee's principles on customer due diligence, banks must obtain the necessary information to establish the identity of their customers, beneficial owners, and any persons acting on behalf of their customers. This includes verifying the identity of the customer and the beneficial owners and assessing the customer's risk profile. Additionally, banks must conduct ongoing due diligence to ensure that the customer does not give rise to suspicions of money laundering or terrorist financing [1].

An institution should focus on the appropriateness of having a centralized review of suspicious transactions and recommendations to file an STR to ensure consistency. This is because a centralized review process can help to avoid duplication, inconsistency, or omission of STRs, as well as to ensure compliance with regulatory requirements and internal policies. A centralized review process can also facilitate the analysis of trends, patterns, and typologies of suspicious transactions across the institution, and enable the communication and coordination with relevant stakeholders, such as law enforcement, regulators, or other financial institutions.

=

ACAMS Study Guide for the CAMS Certification Examination, 6th Edition, Chapter 5, Section 5.3.1, page 1911

ACAMS CAMS Certification Video Training Course, Module 5, Lesson 5.3, video time 2:30-4:002

ACAMS CAMS Certification Practice Exam, Question 124, page 2843

Physical certificates are documents that represent ownership of securities, such as stocks or bonds, that are issued by a company or a government. Physical certificates present a money laundering risk to broker-dealers for two reasons:

The trade information on a physical certificate can be easily altered, such as the name of the owner, the date of issuance, or the number of shares. This can facilitate the concealment or falsification of the origin, ownership, or value of the securities, and enable the laundering of illicit funds through the purchase or sale of the securities.

Physical certificates may be provided to nominees for deposit or settled in off-market transactions, such as private placements, bearer bonds, or direct transfers. This can bypass the normal reporting or recordkeeping requirements of the broker-dealer, and avoid the scrutiny or verification of the identity, source of funds, or beneficial ownership of the securities.

Two Reasons Physical Certificates Pose Money Laundering Risks to Broker …

CAMS Certifications: How to Get CAMS Certified | ACAMS

ACAMS Online Certificates | ACAMS

 According to the Egmont Group of Financial Intelligence Units, which is a global network of FIUs that promotes information exchange and cooperation, FIUs making requests to another FIU should disclose the reason and purpose for the request, andprovide feedback on how the information was used12. These actions are intended to enhance mutual trust, transparency, and accountability between FIUs, and to facilitate the effective use of financial intelligence and information for combating money laundering, terrorist financing, and other financial crimes12. FIUs making requests should also respect the confidentiality and data protection requirements of the FIU receiving the request, and avoid imposing unreasonable or unduly restrictive conditions12.

FIUs making requests should not send the same request to all FIUs, as this would be inefficient, unnecessary, and potentially harmful. FIUs should only send requests to FIUs that are relevant and competent to provide the information they need, based on the nature and scope of the case12. Sending the same request to all FIUs could overload the system, create duplication, and compromise the security and confidentiality of the information12. FIUs making requests should also make best efforts to provide complete andfactual information, but this is not an action they should take when submitting a request, but rather when responding to a request from another FIU12.

Egmont Group of Financial Intelligence Units Operational Guidance for FIU Activities and the Exchange of Information

Principles for Information Exchange Between Financial Intelligence Units

Typical events to identify and investigate potential AML activities include: A) blocked transactions involving individuals included in the Office of Foreign Assets Control Specially Designated Nationals and Blocked Persons List; B) internal tips from employees of the bank about potential suspicious activity; and C) alerts triggered by the automated AML monitoring system [1]. Blocked transactions are those which involve individuals included on the Specially Designated Nationals and Blocked Persons List – this is a list maintained by the Office of Foreign Assets Control of individuals who are subject to economic or trade sanctions [1], or who may be involved in money laundering or terrorist activities [2]. Internal tips are those which are provided by employees of the bank who may have observed suspicious activity, or have reason to believe that certain transactions or activities may be related to potential money laundering. Alerts triggered by the automated AML monitoring system are those which are generated by the banks systems and processes which are designed to detect potential money laundering.

A Mutual Legal Assistance Treaty (MLAT) is an agreement between two or more countries that allows for the exchange of information and evidence in the investigation and enforcement of criminal laws. MLATs provide a framework for countries to assist each other with investigations, prosecutions, and other legal matters, including the exchange of information, evidence, documents, and testimony. MLATs are commonly used in investigations related to money laundering, terrorism, and other transnational crimes.

Compare customer and transaction records against periodically updated sanctions lists provided by governmental bodies. This is stated in the Certified Anti-Money Laundering Specialist (the 6th edition) manual on page 595, which states: “Sanctions screening requirements include that a financial institution should compare customer and transaction records against periodically updated sanctions lists provided by governmental bodies.”

Money laundering has a significant negative impact on the financial sector by undermining the integrity of financial markets. It distorts asset and commodity prices and leads to the misallocation of resources, which can dampen economic growth. The process also erodes public trust in the financial system and can deter foreign investment.

A financial intelligence unit (FIU) is a national body or government agency that collects, analyzes, and disseminates financial information related to potential financial crimes, such as money laundering and terrorist financing. One of the core functions of an FIU is to receive disclosures filed by reporting entities, such as banks, money service businesses, casinos, and other obliged entities, that are required to report suspicious or unusual financial activity. These disclosures, also known as suspicious activity reports (SARs) or suspicious transaction reports (STRs), provide valuable intelligence for the FIU and other competent authorities to identify and investigate financial crimes and trace illicit funds. The other statements do not describe the duties of an FIU, but rather the roles of other agencies or bodies, such as the Office of Foreign Assets Control (OFAC) in the US, which administers and enforces economic and trade sanctions, or the Financial Action Task Force (FATF), which sets international standards for anti-money laundering and counter-terrorist financing (AML/CFT) supervision and regulation.

ACAMS CAMS Certification Video Training Course, Module 1: Risks and Methods of Money Laundering and Terrorist Financing, Lesson 1: The Financial Intelligence Unit

The Financial Intelligence Unit: Role of the FIU and International Cooperation, Financial Crime Academy

What We Do, Financial Crimes Enforcement Network (FinCEN)

Failure to report suspected fraud activity is a serious breach of the anti-money laundering (AML) and anti-fraud obligations of a financial institution (FI). It could expose the FI to legal risks, such as civil lawsuits, criminal prosecutions, regulatory sanctions, and reputational damage. One possible legal risk is that the FI could be held liable for the losses suffered by the victims of the fraudster, either by the victims themselves or by a third party acting on their behalf, such as a government agency or a class action representative. This could result in significant financial costs and damages for the FI, as well as loss of trust and confidence from its customers and stakeholders.

1: This web article explains what a suspicious activity report (SAR) is, who regulates it, when it is required, and what are the consequences of failing to file it.

2: This guide provides information on how to make a SAR, what to include, how to request a defence against money laundering (DAML), and what happens if you fail to report suspicious activity.

3: This blog post discusses the legal implications of not reporting an alleged crime, such as fraud, and gives examples of cases where individuals or entities were prosecuted or sued for their failure to report.

The customer’s relocation and expansion to different jurisdictions constitutes a triggering event that requires ongoing due diligence on this client, as it may indicate changes in the customer’srisk profile, business activities, or beneficial ownership. The bank should update the customer’s information, verify the identity and legitimacy of the new entities, and assess the level of money laundering and sanctions risks associated with the new locations12. The other options are not triggering events, as they are either consistent with the customer’s normal business operations or do not affect the customer’s risk profile.

The USA PATRIOT Act imposes several requirements on U.S. financial institutions when dealing with foreign financial institutions, especially those that pose a high risk of money laundering or terrorist financing. Two of these requirements are:

Performing enhanced due diligence on shell banks: A shell bank is a bank that has no physical presence in any country and is not affiliated with a regulated financial group. The USA PATRIOT Act prohibits U.S. financial institutions from opening or maintaining correspondent accounts for shell banks, and requires them to take reasonable steps to ensure that their correspondent accounts are not being used by shell banks indirectly12.

Performing due diligence on correspondent accounts: A correspondent account is an account established by a financial institution to receive deposits from, make payments on behalf of, or handle other financial transactions for a foreign financial institution. The USA PATRIOT Act requires U.S. financial institutions to collect and verify certain information about the foreign financial institution, such as its ownership, licensing, and anti-money laundering policies, and to assess the risk of money laundering or terrorist financing associated with the correspondent account13.

CAMS Certification Package - 6th Edition | ACAMS, Chapter 3: Compliance Standards for Anti-Money Laundering (AML) and Combating the Financing of Terrorism (CFT), pages 82-84

CAMS Certifications: How to Get CAMS Certified |ACAMS, Candidate Handbook, page 14

ACAMS CAMS Certification Video Training Course - Exam-Labs, Video 3.4: Correspondent Banking and Money Laundering Risks

A Mutual Legal Assistance Treaty (MLAT) is an agreement between two or more countries for the purpose of gathering andexchanging information in an effort to enforce public or criminal laws1. MLATs provide a legal basis for transmitting evidence that can be used for prosecution and judicial proceedings, such as witness statements, bank records, search and seizure orders, and asset forfeiture2. MLATs also facilitate the cooperation and coordination between law enforcement authorities of different jurisdictions in investigating and prosecuting transnational crimes, such as money laundering, terrorist financing, corruption, and cybercrime3. The other options are incorrect because:

B. MLATs do not receive reports of suspicious transactions from financial institutions, but rather request specific information or evidence from foreign authorities. Financial institutions report suspicious transactions to their domestic Financial Intelligence Units (FIUs), which may then share the information with foreign FIUs through other mechanisms, such as the Egmont Group or bilateral agreements4.

C. MLATs do not obtain intelligence that might lead to evidence, but rather request evidence that is already available or can be obtained by foreign authorities. Intelligence is a broader term that refers to any information that is relevant to the security or interests of a country, and may not be admissible as evidence in a court of law5. Intelligence may be obtained through other means, such as covert operations, surveillance, or informants6.

D. MLATs do not issue the Principles of Information Exchange Between Financial Intelligence Units (FIUs), but rather follow them. The Principles of Information Exchange are a set of guidelines that were adopted by the Egmont Group of FIUs in 2001, and aim to enhance the cooperation and communication among FIUs in exchanging financial information and intelligence7. The Principles of Information Exchange are not legally binding, but rather reflect the best practices and standards of the FIU community.

1: Mutual legal assistance treaty - Wikipedia

2: FREQUENTLY ASKED QUESTIONS REGARDING LEGAL ASSISTANCE IN CRIMINAL MATTERS, page 1

3: The Mutual Legal Assistance Problem explained | wilmap

4: ACAMS, CAMS Certification Package - 6th Edition, Chapter 4, page 125

5: Intelligence - Wikipedia

6: Intelligence cycle - Wikipedia

7: Egmont Group of Financial Intelligence Units - Wikipedia

Principles for Information Exchange Between Financial Intelligence Units for Money Laundering and Terrorism Financing Cases

 Mutual Legal Assistance Treaties (MLATs) are agreements between two or more countries that provide the legal framework for the exchange of information and evidence in criminal and related matters. MLATs enable law enforcement authorities and prosecutors to obtain evidence, information, and testimony abroad in a form admissible in the courts of the requesting state. MLATs also establish the procedures and channels for making and receiving requests for assistance, as well as the grounds and conditions for granting or denying such requests. MLATs are an important tool for international cooperation and information exchange to combat transnational crimes, such as money laundering, terrorist financing, fraud, and corruption.

1: Treaties and Agreements - U.S. Department of State

2: Mutual legal assistance treaty - Wikipedia

3: International Exchange of Information Manual - GOV.UK

4: Convention on Mutual Administrative Assistance in Tax Matters

According to the CDD Rule, covered financial institutions must establish and maintain written procedures that are reasonably designed to identify and verify beneficial owners of legal entity customers and to include such procedures in their anti-money laundering compliance program1. These procedures should also be updated as necessary to reflect changes in the law or the institution’s risk profile2. Moreover, the institution should provide adequate training to its employees on the new requirements and monitor their compliance3.

1: FinCEN Guidance, FIN-2020-G002, August 3, 2020, p. 1

2: Your responsibilities under money laundering supervision - GOV.UK, Section: Customer due diligence requirements

3: Customer identification: Know your customer (KYC) | AUSTRAC, Section: Training and awareness

Aneffective AML programbalancesalert accuracy and operational efficiency.

Option D (Correct):The true positive vs. false positive ratio reflects the efficiency and accuracy of an AML transaction monitoring system.

Option A (Incorrect):The number of alerts does not indicate system effectiveness—many could be false positives.

Option B (Incorrect):Clients exiting for commercial reasons are unrelated to AML efficiency.

Option C (Incorrect):Tracking high-risk customer onboarding is important but does not measure AML effectiveness.

Best Practices for Measuring AML Effectiveness:

Monitor system efficiency through alert validation metrics.

Reduce false positives while maintaining regulatory compliance.

Enhance machine learning and AI models for transaction monitoring.

https://www.bis.org/publ/bcbs85.pdf - page 12

Banks should gather sufficient information about their respondent banks to understand fully the nature of the respondent’s business. Factors to consider include: information about the respondent bank’s management, major business activities, where they are located and its money-laundering prevention and detection efforts; the purpose of the account; the identity of any third party entities that will use the correspondent banking services; and the condition of bank regulation and supervision in the respondent’s country. Banks should only establish correspondent relationships with foreign banks that are effectively supervised by the relevant authorities. For their part, respondent banks should have effective customer acceptance and KYC policies.

A, C, D:

“Trust and asset management services can facilitate the concealment of the source of funds (A), provide a layer of anonymity to transactions (C), and obscure the true legal and beneficial owners (D). These are well-established ML/TF risks in the private wealth sector.”(CAMS 6th Edition, ML/TF Risks in Trust and Asset Management)

B and E are normal aspects of asset management and are not in themselves ML/TF risks unless combined with other suspicious behaviors.

The bank should request a formal letter be submitted to verify the validity of the request, as this is the best practice to ensure compliance with the law and protect customer privacy. The bank should not confirm or deny the existence of a customer relationship, nor provide any information without proper authorization. The bank should also not inform the board of directors before responding to the request, as this could compromise the confidentiality of the investigation or alert the customer.

ACAMS CAMS Certification Video Training Course, Module 2: Compliance Standards for Anti-Money Laundering (AML) and Combating the Financing of Terrorism (CFT), Section 2.3: Data Protection and Privacy, Slide 10

ACAMS CAMS Certification Study Guide, 6th Edition, Chapter 2: Compliance Standards for Anti-Money Laundering (AML) and Combating the Financing of Terrorism (CFT), Page 51

The Third European Union Money Laundering Directive (3MLD) is a legal framework that aims to prevent the use of the financial system for the purposes of money laundering and terrorist financing. It was adopted in 2005 and repealed by the Fourth European Union Money Laundering Directive (4MLD) in 2015. The 3MLD applies to a range of entities that are considered to be exposed to the risk of money laundering and terrorist financing, such as:

Financial institutions, which include credit institutions, financial intermediaries, insurance companies, investment firms, and payment service providers.

Casinos, which include both online and offline gambling services that involve wagering a stake with monetary value.

Real estate agents, which include both natural and legal persons that act as intermediaries in the buying and selling of real property or rights over it.

The 3MLD requires these entities to implement a number of measures to prevent and detect money laundering and terrorist financing, such as:

Conducting customer due diligence, which involves identifying and verifying the customer and the beneficial owner, understanding the purpose and nature of the business relationship, and applying enhanced or simplified measures depending on the level of risk.

Keeping records of customer and transaction data for at least five years after the end of the business relationship or the execution of the transaction.

Reporting suspicious transactions or activities to the competent authorities without delay and without tipping off the customer.

Establishing internal policies, procedures, and controls to ensure compliance with the 3MLD, and providing adequate training and awareness to staff.

Cooperating with the relevant supervisory and regulatory authorities and financial intelligence units.

The 3MLD does not apply to defense attorneys, as they are not considered to be obliged entities under the directive. However, the 3MLD does apply to other legal professionals, such as notaries, lawyers, and accountants, when they perform certain activities on behalf of their clients, such as:

Buying and selling of real property or business entities

Managing of client money, securities, or other assets

Opening or managing bank, savings, or securities accounts

Organizing contributions for the creation, operation, or management of companies

Creating, operating, or managing trusts, companies, foundations, or similar structures

THE THIRD EU DIRECTIVE ON MONEY LAUNDERING AND TERRORIST FINANCING, page 11-12

Anti-money laundering and countering the financing of terrorism legislative package, page 1

CAMS Study Guide - 6th Edition, Chapter 1, Section 1.2, page 11

V

According to the Basel Committee on Banking Supervision standards, the following statements best describe sound practices in relation to customer due diligence (CDD) policies and procedures:

Banks should take into consideration the occasional banking transaction or the size/level of assets to build an understanding of the customer’s profile and behavior. This is because the nature and frequency of transactions and the size of the account balance may indicate the level of risk associated with the customer and the need for ongoing monitoring1

Banks should develop and implement clear acceptance policies and procedures to identify the types of customer that are likely to pose a higher risk of financing terrorism or money laundering. This is because banks should not enter into or maintain relationships with customers who pose unacceptable risks to the bank or the financial system. Banks should also apply a risk-based approach to CDD and apply more stringent measures to higher-risk customers12

Banks should implement enhanced due diligence measures for entering business relationships with high-risk customers, such as approval by senior management. This is because banks should ensure that they have adequate information and controls to manage the risks posed by such customers and to comply with the relevant laws and regulations. Senior management should be involved in the decision-making process and be accountable for the outcomes12

 1: Basel Committee on Banking Supervision, Consolidated KYC Risk Management, October 2004, page 6-7. 2: Basel Committee on Banking Supervision, Customer due diligence for banks, October 2001, page 8-9.

According to the Basel Committee on Banking Supervision, banks should apply a risk-based approach to customer due diligence, which means that they should adopt enhanced measures for higher-risk customers and simplified measures for lower-risk customers. Enhanced due diligence (EDD) may include obtaining additional information on the customer’s identity, source of funds, business activities, beneficial owners, and expected transactions, as well as conducting more frequent and intensive monitoring ofthe account activity. EDD is especially important for customers who are politically exposed persons (PEPs), who are from or have connections with high-risk countries or jurisdictions, or who are involved in high-risk industries or sectors. Therefore, performing EDD including enhanced ongoing monitoring of the account activity is the correct way for banks to deal with high-risk customers.

 Basel Committee on Banking Supervision, CAMS Study Guide, 6th Edition, Chapter 4, page 121.

Thethird line of defense (internal audit)providesindependent oversightof an institution’sAML/CFT compliance framework.

Option B (Correct):The internal audit function should report to the board’s audit committeeto maintainindependence and objectivity.

Option A (Incorrect):While frequent audits are essential, AML audits should be risk-based rather than mandated at a strict 12-month interval.

Option C (Incorrect):Internal audit must assess remediation plansto ensure they adequatelyaddress AML deficiencies.

Option D (Incorrect):The third line of defense should not be involved in daily AML operationstoavoid conflicts of interest.

Three Lines of Defense in AML Risk Management:

A screenshot of a computer Description automatically generated

Best Practices for AML Audit Function:

Ensure complete independence from AML operations.

Conduct risk-based audits tailored to emerging threats.

Report audit findings to the board for effective oversight.

Thetimely filing of SARs is legally mandated, and financial institutions mustfollow jurisdiction-specific reporting deadlines.

Option A (Correct):Regulatory requirements dictate SAR filing deadlines(e.g., in the U.S., SARs must be filed within30 calendar daysof detecting suspicious activity).

Option B (Incorrect):30 days is the U.S. standard, but different jurisdictions may havedifferent SAR deadlines(e.g.,EU AMLD mandates prompt reporting).

Option C (Incorrect):Complexity-based reporting delaysare not permitted if theyexceed regulatory timelines.

Option D (Incorrect):Relying solely on professional judgmentrather than regulatory rules can lead tonon-compliance.

SAR Filing Deadlines in Different Jurisdictions:

Jurisdiction

SAR Filing Deadline

United States (FinCEN)

30 calendar days(60 days if no suspect is identified)

United Kingdom (FCA/NCA)

As soon as practicable

European Union (6AMLD)

"Promptly" (no fixed number of days)

Australia (AUSTRAC)

3 business daysfor terrorism financing,14 business daysfor other cases

Why Timely SAR Filing Matters:

Delays in reporting can result in regulatory penalties.

Early SAR filing enables FIUs to take swift action against financial crime.

Non-compliance can lead to fines, criminal charges, and reputational damage.

According to the ACAMS Study Guide for the CAMS Certification Exam (6th edition), page 211, dealers in precious metals and stones (DPMS) are vulnerable to money laundering and terrorist financing risks due to the high value, portability, and fungibility of their products. Therefore, DPMS should apply a risk-based approach to their AML/CFT compliance program and monitor their customers and transactions for any red flags or suspicious activities. One of the red flags for DPMS is receiving payments from or sending payments to unknown or unverified third parties, especially if they are located in high-risk jurisdictions that have weak AML/CFT controls, are subject to sanctions, or are known to be sources or destinations of illicit funds. Suchpayments may indicate that the DPMS is being used as a conduit or a front for money laundering, terrorist financing, tax evasion, or other criminal activities. Therefore, if a precious metals dealer opens a new account with a bank and receives or makes payments that reference unknown companies from high-risk jurisdictions, the bank should refer the account to AML investigations for further review and verification of the source and purpose of the funds, the identity and legitimacy of the third parties, and the nature and rationale of the business relationship.

ARisk Appetite Statement (RAS)defines an institution’sacceptable level of risk-takingand alignsAML and financial crime controlswithorganizational strategy.

Option C (Correct):AnRAS sets clear limits for acceptable risk-taking, balancingrisk and business opportunities.

Option D (Correct):The RASis a management-approved documentthat integratesrisk tolerance, compliance strategy, and business goals.

Why Other Options Are Incorrect:

Option A (Incorrect):An RASis not just a reporting document; it actively shapesrisk management decisions.

Option B (Incorrect):An RAS includesboth qualitative and quantitative factors, butnot just qualitative elements.

Option E (Incorrect):An RAS does notonly define residual risk—itguides overall risk limitsand policies.

How an RAS Strengthens AML Compliance:

Defines acceptable AML risk levels across business units.

Guides compliance teams on risk tolerance for high-risk customers.

Ensures alignment with FATF, regulatory expectations, and internal controls.

Reference data screening is a core element of AML/CFT programs and typically covers:

Customers (B):“All customers must be screened against sanctions, PEP, and adverse media lists as part of onboarding and ongoing due diligence.”(CAMS 6th Edition, Due Diligence and Screening)

Third-party service providers (C):“Screening should extend to relevant third parties, such as agents and service providers, to prevent indirect exposure to sanctioned entities.”(CAMS 6th Edition, Third-Party Screening; FATF Recommendations)

Incorrect Options:

A: Types of payment messages are not screened; the entities/individuals are.

D: Customer spouses may be screened in some KYC processes but are not a standard dataset for reference screening.

 The correct answer is C because the European Union Money Laundering Directives require lawyers and other independent legal professionals to report suspicious transactions to the competent authority when they are involved in certain activities on behalf of their clients, such as creating or managing companies, trusts, or other legal arrangements. The directives also provide that the obligation to report overrides any professional secrecy or confidentiality rules, except when the lawyer is ascertaining the legal position of the client or representing the client in legal proceedings or in connection with such proceedings. Therefore, the lawyer in this scenario should report the activity as suspicious to the competent authority, as creating a financial holding company for the client falls within the scope of the reporting obligation and does not qualify for the exemption12

=

1: ACAMS Study Guide for the CAMS Certification Examination, 6th Edition, Chapter 4, page 141

2: Directive (EU) 2018/843 of the European Parliament and of the Council of 30 May 2018 on the prevention of the use of the financial system for the purposes of money laundering or terrorist financing, Article 33 and 34

The red flags that most likely triggered the referral are:

B. Several cash deposits along the country's border that are quickly withdrawn by third parties. C. Several lodging and food payments made on the same day at unusual hours for a business.

Red flag B suggests possible structuring activity, where individuals are trying to avoid currency transaction reporting requirements by depositing and withdrawing cash in amounts below the reporting threshold. This activity is often associated with money laundering and could indicate human trafficking activity.

Red flag C suggests unusual activity that may be indicative of human trafficking, such as lodging and food payments made at unusual hours or in unusual patterns. This type of activity could indicate that the business is being used as a front for human trafficking or that the individuals involved in the trafficking are using the business to facilitate their activities.

The audit function should report to the audit committee of the board of directors (or similar oversight body) and independently evaluate the risk management and controls of the bank through periodic assessments, including the adequacy of the bank’s controls to mitigate the identified risks, the effectiveness of the bank’s staff’s execution of the controls, the effectiveness of the compliance oversight and quality controls and the effectiveness of the training.

A (Enhanced due diligence): EDD is a key control at onboarding for high-risk customers, involving deeper scrutiny, additional documentation, and approval layers to address increased ML/TF risk.

“High-risk customers must be subject to enhanced due diligence during onboarding to ensure a thorough understanding of potential ML/TF risks.”(CAMS 6th Edition, CDD/EDD for High-Risk Customers)

According to the FATF Guidance on Private Sector Information Sharing, FIs should establish sufficient safeguards concerning the confidentiality of information shared for AML purposes, both within the same financial group and between FIs not belonging to the same group. These safeguards include ensuring that the information is shared only with authorized personnel who have a need to know, that the information is used only for the intended AML purpose, and that the information is protected from unauthorized access, disclosure, or misuse. FIs should also comply with the applicable legal and regulatory requirements on data protection and privacy, and respect the rights and interests of the customers whose information is shared1.

1: FATF Guidance on Private Sector Information Sharing1

According to the FATF typology report 2000-20011, lawyers can provide a range of functions that can be useful to a potential money launderer, such as:

Creating complex legal arrangements, such as trusts, foundations, or corporations, that can obscure the identity and ownership of the beneficial owners or the origin and destination of the funds.

Buying and selling property, such as real estate, art, or jewelry, that can be used to transfer or store illicit proceeds or to provide a legitimate cover for the source of funds.

Performing financial transactions on behalf of a client, such as opening bank accounts, transferring funds, issuing checks, or exchanging currencies, that can facilitate the movement or concealment of illicit funds.

Providing legal advice, on the other hand, is not a function that can be directly exploited by a money launderer, unless the advice is related to the above functions or to the avoidance or evasion of anti-money laundering laws and regulations.

1: FATF Terrorist Financing Typologies Report - Financial Action Task Force2

AFinancial Intelligence Unit (FIU)acts as thecentral hub for AML/CFT intelligencein a country.

Option A (Correct):FIUs collect, analyze, and disseminate financial intelligencerelated tosuspicious transactionsto law enforcement and regulators.

Option B (Incorrect):FIUsdo not prosecute cases; theyrefer cases to law enforcementfor prosecution.

Option C (Incorrect):FIUsanalyze databut donot develop surveillance technology.

Option D (Incorrect):FIUs share intelligencewith authorized entities, butnot real-time criminal datawith the private sector.

Types of FIUs:

FIU Model

Description

Example

Administrative FIU

Operates under agovernment agency or central bank.

FinCEN (USA), AUSTRAC (Australia)

Law Enforcement FIU

Operates within alaw enforcement body.

UK NCA (UK), IMPA (Israel)

Judicial FIU

Operates within ajudicial authority.

Belgium CTIF-CFI

Why FIUs Are Important:

They bridge the gap between banks, regulators, and law enforcement.

They ensure confidential handling of SARs.

They support domestic and international cooperation in AML/CFT efforts.

Proliferation financingrefers to the act of providing financial services or funds for thedevelopment, acquisition, or delivery of nuclear, chemical, or biological weapons. The core threat involvesnetworks of individuals and entities using the financial systemto obtain sensitive technologies, materials, or knowledge forweapons of mass destruction (WMDs).

TheFinancial Action Task Force (FATF)identifies this as a major international security threat and requires institutions to assess and mitigate such risks.

Evaluating the risk scoring model and conducting the risk assessment itself may need to be performed annually, every eighteen to twenty-four months, before the launch of a new product, or when an acquisition of another financial institution occurs.

Money laundering can have serious consequences for financial institutions. They may face increased investigation costs and fines from regulators and law enforcement agencies for failing to detect or prevent money laundering activities. Additionally, money laundering can result in a loss of profitable business as customers and counterparties may no longer want to do business with the institution due to its reputation for being associated with illicit activity.

Customer due diligence (CDD) is a key component of anti-money laundering (AML) and counter-terrorism financing (CTF) compliance. CDD helps financial institutions identify and verify their customers, assess their risk levels, and monitor their transactions for suspicious activity.

One of the main objectives of CDD is to understand the nature and purpose of customer relationships, which involves collecting and analyzing relevant information about the customer’s business activities, expected transaction patterns, source and destination of funds, and beneficial ownership. This information helps financial institutions develop a customer risk profile, which is a tool to measure and manage the risk exposure of each customer.

A customer risk profile reflects the financial institution’s risk appetite, which is the level and type of risk that the institution is willing and able to accept. By comparing the customer’s risk profile with the institution’s risk appetite, the institution can determine if the customer operates in line with the firm’s expectations and requirements for a specific industry segment. For example, if the institution has a low risk appetite for customers involved in high-risk sectors such as gambling, cryptocurrency, or arms trade, it can use the customer risk profile to identify and mitigate any potential risks associated with such customers.

Therefore, to understand if the customer operates in line with the firm’s risk appetite for a specific industry segment, a financial institution must obtain sufficient customer information to understand the nature and purpose of customer relationships for the purpose of developing a customer risk profile.

IT expanded the definition of criminal activity to all serious crimes. The first EU Directive on Money Laundering, adopted in 1990, was the first major international agreement to combat money laundering. It expanded the definition of criminal activity to all serious crimes and established drug trafficking as a predicate offense of money laundering. The Directive also extended the scope of money laundering beyond drug-related crimes, making it applicable to all serious crimes. This was a major step forward in the fight against money laundering, as it made it easier for law enforcement to investigate and prosecute money laundering cases.

The methods that are typically used to launder money using insurance companies are:

The policy holder overpays the policy and moves the funds out of the policy despite paying early withdrawal penalties. This method involves placing large amounts of illicit funds into an insurance policy, usually a life insurance or an annuity, and then requesting a refund or a surrender of the policy. The policy holder may incur some fees or penalties for the early withdrawal, but they will receive a check or a wire transfer from the insurance company that appears to be a legitimate source of income. This method allows the launderer to layer and integrate the funds into the financial system.

The policy holder uses an offshore company to pay the insurance installments. This method involves setting up a shell company or a trust in a jurisdiction with low or no tax and weak or no anti-money laundering regulations. The launderer then uses the offshore entity to purchase an insurance policy or a bond from a reputable insurance company. The offshore entity pays the premiums or the installments using the illicit funds, and the launderer can claim thebenefits or the returns from the policy or the bond as clean money. This method allows the launderer to hide the true ownership and origin of the funds.

The other options are not typical methods of money laundering using insurance companies, because:

The policy holder enters a sibling as a beneficiary of the insurance policy rather than themselves. This method does not involve any movement or disguise of the illicit funds, and it does not generate any income or return for the launderer. The beneficiary of the policy will only receive the payout upon the death of the policy holder, and the insurance company will conduct due diligence on the beneficiary before releasing the funds.

The policy holder purchases a bond and redeems it at a discount prior to its full term. This method does not make sense for a money launderer, because it involves losing money rather than gaining money. A bond is a fixed-income instrument that pays a regular interest and a principal amount at maturity. If the bond is redeemed before its full term, the bond holder will receive less than the face value of the bond, and will also forfeit the future interest payments. This method does not help the launderer to conceal or legitimize the source of the funds.

The policy holder is strongly interested in how many costs are incurred when taking out an insurance policy. This method does not indicate any money laundering activity, but rather a prudent and rational behavior of a potential customer. The policy holder may want to compare different insurance products and providers, and to understand the fees, charges, commissions, and taxes associated with the policy. This method does not involve any placement, layering, or integration of the illicit funds.

ACAMS Study Guide for the CAMS Certification Examination - 6th Edition, Chapter 1: Risks and Methods of Money Laundering and Terrorism Financing, Section 1.2: Methods of Money Laundering, Subsection 1.2.5: Insurance Products, pp. 19-20

AML in Insurance: How to Detect & Combat Money Laundering, Section: Common Money Laundering Methods in Insurance, Paragraphs 1-3

When a financial institution is requested to provide data and information to a law enforcement agency for matters related to the financing of terrorism, assistance cannot be refused on the grounds of tipping-off. Tipping-off refers to disclosing to a customer or any third party that a suspicious activity report (SAR) has been filed. However, in this specific context, the obligation to provide information to law enforcement takes precedence over any concerns related to tipping-off. Financial institutions must cooperate fully with law enforcement agencies in such cases to combat money laundering and terrorist financing12.

An oil exploration company based in France does business with oil refineries in Iran, which is subject to comprehensive Office of Foreign Assets Control (OFAC) sanctions. What type of OFAC sanctions should be imposed against the French company?

A. Sectoral

B. Country-based

C. Secondary

D. List-based

Answer: C

An internal investigation log is primarily intended to track the status of investigations into unusual activity. This is to ensure that the investigations are conducted in a timely, thorough, and consistent manner, and that the results and recommendations are documented and communicated to the relevant parties12. An internal investigation log can also help the organization to identify any trends, patterns, or gaps in its anti-money laundering (AML) compliance program, and to measure its effectiveness and efficiency3.

An internal investigation log is not intended to provide training on investigations to the anti-money laundering officer and Financial Intelligence Unit (FIU), report status of investigations to the Board of Directors, or detect and monitor possible suspicious activity. These are separate functions that may involve the use of the internal investigation log, but are not its primary purpose.

1: How to Conduct Effective AML Investigations - Blog | Unit211 2: BSA/AML Internal Audit: PwC2 3: Anti-Money Laundering: 5 Steps to Conduct an Audit3

One of the key components of an effective anti-money laundering (AML) program is customer due diligence (CDD), which involves verifying the identity of the customer, understanding the nature and purpose of the customer’s relationship with the financial institution (FI), and assessing the risk of money laundering or terrorist financing that the customer poses. CDD is essential for preventing and detecting the misuse of the FI’s services by criminals, and for complying with the relevant laws and regulations.

However, CDD can be challenging for FIs that offer online services to customers, as there is a greater difficulty in matching the customer with the provided identification documentation. Unlike face-to-face interactions, online services rely on electronic or remote methods of identification and verification, such as scanned copies of documents, biometric data, digital signatures, or third-party verification services. These methods may not be as reliable or secure as physical verification, and may expose the FI to the risk of identity fraud, document forgery, or impersonation. Moreover, online services may attract customers from different jurisdictions, which may have different standards and requirements for identification and verification, and may pose different levels of risk.

Therefore, FIs that offer online services to customers should implement enhanced due diligence (EDD) measures to mitigate the risk of money laundering, such as obtaining additional information or documentation from the customer, applying more stringent verification procedures, conducting more frequent and intensive monitoring of the customer’s transactions and behavior, and restricting or limiting the types or amounts of transactions that the customer can perform online.

CAMS Study Guide - 6th Edition, Chapter 3, Section 3.4, page 82

Anti-Money Laundering in a Nutshell, Chapter 4, Section 4.2, page 63

Guidance on Digital Identity, Section 2, page 8

Anti-Money Laundering, The Basics: Installment 1, Section 3.2, page 5

"Transaction Monitoring Systems and Ongoing Monitoring: Since the transactional monitoring system is key to mitigating ML risk within the bank, the Committee recognizes that AML risks require more than just appropriate policies and procedures; banks must have adequate and appropriate monitoring systems. For most banks, this will involve an IT monitoring system. If the bank does not believe it needs an IT monitoring system, it should document the rationale for why it does not need one.

Economic sanctions are measures imposed by countries or international bodies to exert pressure on individuals, entities, or nations that engage in undesirable behavior or actions. Sanctions aim to restrict or prohibit certain economic activities with the targeted parties, such as trade, investments, or financial transactions. They serve various purposes, including achieving foreign policy and national security objectives and deterring undesired actions by countries or entities. Sanctions can be comprehensive (affecting an entire country) or targeted (specific businesses, groups, or individuals), with a recent trend toward minimizing harm to innocent civilians12.

OFAC sanctions apply extraterritorially, meaning U.S. persons must comply regardless of their location.

Option A (Correct):OFAC sanctions apply to all U.S. citizens, permanent residents, entities incorporated in the U.S. (including foreign branches), and individuals/entities within U.S. jurisdiction.

Option B (Incorrect):Foreign branches of U.S.-incorporated entities must comply with OFAC sanctions.

Option C (Incorrect):OFAC sanctions apply to all U.S. citizens, including dual nationals.

Option D (Incorrect):U.S. citizens and permanent residents must comply with OFAC sanctions even when located abroad.

Best Practices for OFAC Compliance:

Screen all transactions against the Specially Designated Nationals (SDN) list.

Ensure compliance programs extend to foreign branches and subsidiaries.

Monitor international business activities for potential sanctions violations.

The correct answer is C. Wires received in large, even dollar amounts are a suspicious behavior, as they may indicate an attempt to avoid reporting thresholds or to conceal the source of funds. Large and round numbers are often used by money launderers to simplify calculations or to avoid arousing suspicion12. The other options are not necessarily suspicious, as they may reflect the normal business operations of a wholesale auto business that ships vehicles internationally. The dock shipping receipts match the vehicles (A), vehicles are regularly shipped internationally (B), and account debits are payable to transport companies (D) are all plausible and legitimate activities for such a business.

ACAMS CAMS Certification Video Training Course3, Module 3: Risks and Methods of Money Laundering and Terrorism Financing, Lesson 2: Methods of Money Laundering

ACAMS CAMS Certification Study Guide1, Chapter 3: Risks and Methods of Money Laundering and Terrorism Financing, Section 3.2: Methods of Money Laundering, pp. 79-80

Here is the exact information from the Financial Action Task Force (FATF) Guidance for a Risk-Based Approach for Trust and Company Service Providers:

"Understanding the management and ownership structure of a trust is crucial in assessing the ML/TF risk it poses. This includes the identity of all settlors, trustees and beneficiaries, and their respective roles and responsibilities, as well as the nature and purpose of the trust."

"TCSPs should obtain and maintain up-to-date information on the purpose and intended nature of the business relationship, the source of funds and wealth, and where relevant, the source of funds or wealth of the settlor and beneficiaries."

Based on this information, the correct answers are A and D. Trust and Company Service Providers must understand the responsibility and authority in the structure, as well as the general purpose behind the structure in order to assess the overall risk of the trust and ensure that any transactions with the trust are legitimate.

One of the core components of a strong AFC (Anti-Financial Crimes) compliance program is establishingclear roles, responsibilities, and lines of accountability, especially forescalating and addressing AFC risks and compliance issues. This governance clarity ensures effective implementation, transparency in decision-making, and timely resolution of compliance concerns.

While external audits (option A) and internal controls (option B) are important,defining governance structure and escalation responsibilities (option D)is a foundational element. Additionally, the board of directors (option C) provides oversight—not day-to-day compliance monitoring.

one of the key roles of FATF-Style Regional Bodies (FSRBs) is to support the system of mutual evaluation, which is a peer review process that assesses the level of compliance and effectiveness of each member country’s anti-money laundering and counter-terrorism financing (AML/CFT) regime12. FSRBs conduct mutual evaluations in accordance with the FATF’s methodology and standards, and share the results and recommendations with the FATF and other FSRBs3. Mutual evaluations help identify the strengthsand weaknesses of each country’s AML/CFT system, and provide a basis for technical assistance and follow-up actions4.

What are the 9 FATF-Style Regional Bodies (FSRBs)? - Sygna1

FATF-Style Regional Bodies (FSRBs) - Asia/Pacific Group on Money Laundering2

The Role of FATF Style Regional Bodies (FSRBs) in Combating … - IDMerit3

9 FATF-Style Regional Bodies (FSRBs) - fineksus.com4

According to the ACAMS CAMS Study Guide (the 6th edition), one of the key steps in conducting an effective investigation of a potential money laundering or terrorist financing activity is to gather all relevant information about the customer and the transaction, including the nature and purpose of the account, the source and destination of funds,the expected account activity, and the customer’s risk profile1. In this case, the compliance officer should meet with the staff who opened the new account for the public official to obtain this information and assess whether the account is consistent with the customer’s profile and needs, or whether it indicates a possible attempt to conceal or launder illicit funds. Waiting for the new account to receive funds, calling the competentauthorities, or calling the official’s office are not appropriate actions at this stage, as they may compromise the investigation, alert the customer, or violate confidentiality rules1.

ACAMS CAMS Study Guide (the 6th edition), Chapter 4: Conducting or Supporting the Investigation Process, page 1311

Financial Intelligence Units (FIUs)serve as national centers for collecting, analyzing, and disseminating AML/CFT information.

Option B (Correct):FIUs analyze SARs and STRs to detect money laundering and terrorist financing risks.

Option D (Correct):FIUs disseminate financial intelligence to local and international law enforcement agencies and other FIUs.

Option E (Correct):FIUs receive SARs/STRs from financial institutions, which form the basis for their analysis.

Why Other Options Are Incorrect:

Option A (Incorrect):FIUs do not prosecute cases; they refer findings to law enforcement agencies.

Option C (Incorrect):FIUs share intelligence, but prosecution is handled by judicial authorities, not FIUs.

Best Practices for FIUs:

Enhance data-sharing agreements with domestic and international agencies.

Use AI and analytics tools to detect suspicious financial patterns.

Ensure secure handling of sensitive AML/CFT data.

The art and antiquities market is highly vulnerable to money laundering and terrorist financingdue toanonymity in transactions, lack of regulatory oversight, and difficulty in tracing ownership.

Option A (Correct):Art storage in tax-free zones can be used to obscure ownership and avoid AML scrutiny.

Option C (Correct):Using third-party art advisors can facilitate anonymous transactions and shield beneficial ownership.

Option D (Correct):High-value art sold on social media without proper provenance raises ML/TF risksdue tolack of financial oversight.

Why Other Options Are Incorrect:

Option B (Incorrect):Paying fair market value does not indicate illicit activity—underpricing or rapid resale are bigger red flags.

Option E (Incorrect):Authenticity verification is common in legitimate art transactions and is not a direct ML/TF red flag.

Red Flags for Art & Antiquities Money Laundering:

Frequent high-value art transactions with no clear business purpose.

Use of intermediaries to conceal beneficial ownership.

Rapid resale of newly purchased art at below-market prices.

Best Practices for AML in the Art Market:

Conduct enhanced due diligence (EDD) on high-value art transactions.

Monitor transactions involving politically exposed persons (PEPs).

Report suspicious transactions linked to high-risk art traders.

According to the Certified Anti-Money Laundering Specialist (CAMS) study guide, 6th edition, page 105, the correct answer is C. It can be difficult to determine if there is negative media associated with counterparties solely from the customer's account activity and KYC file.

The study guide explains that negative media can include news articles, government sanctions lists, and other sources of public information that may indicate that a counterparty is involved in illicit activities. However, this information may not be readily available in a customer's account activity or KYC file, and may require additional research or investigation.

In many jurisdictions, it is a requirement to report certain information regarding STRs to senior management and/or the board of directors. This information may be limited to the number of reports filed, the dollar amounts involved and significant trends as observed by compliance personnel. In some cases, if the activity presents a significant or potentially ongoing risk to the institution, the leaders of the institution should be made aware so that high-level decisions can be made regarding potential changes tosystems, staffing, products, services or particular relationships maintained by the institution.

Banks are required by the SAR regulations of their federal banking agency to notify the board of directors or an appropriate board committee that SARs have been filed. However, the regulations do not mandate a particular notification format and banks should have flexibility in structuring their format. Therefore, banks may, but are not required to, provide actual copies of SARs to the board of directors or a board committee. Alternatively, banks may opt to provide summaries, tables of SARs filed for specific violation types, or other forms of notification. Regardless of the notification format used by the bank, management should provide sufficient information on its SAR filings to the board of directors or an appropriate committee in order to fulfill its fiduciary duties, while being mindful of the confidential nature of the SAR.https://bsaaml.ffiec.gov/manual/AssessingComplianceWithBSARegulatoryRequirements/0

 A financial institution should regularly update its AML risk assessment in order to ensure that the results of the assessment are accurate and reflect the current money laundering and other illicit financial activity risks that the institution may face. This helps to ensure the institution has a comprehensive understanding of the risks associated with its activities and can implement adequate controls and procedures as necessary.

The customer’s business activity as a domestic carpet cleaning company is not inherently suspicious, as it aligns with their registered business. However, the significant weekly transactions from an international reputable antique auction house raise red flags.

The sudden increase in the customer’s initial international receipt from $15,000 USD to an average of $30,000 USD per transaction per week is also noteworthy. Such a substantial change warrants further scrutiny.

The fact that 90% of the incoming deposits are matched by cash outgoings to non-related individuals could indicate layering or structuring activities associated with money laundering.

Overall, the combination of large international transactions, increased receipts, and cash outflows to unrelated parties from an antique auction house is the most concerning aspect.

 The Fourth European Union Directive on money laundering (AMLD4) requires member countries to maintain registries of the beneficial owners of legal entities, such as companies, trusts, foundations, etc. This is to ensure that the true identity and ownership of the customers and the natural persons on whose behalf transactions are conducted are known to the obliged entities, such as banks, lawyers, accountants, etc., and to the competent authorities, such as regulators, supervisors, or law enforcement12. This requirement aims to prevent the misuse of legal entities for money laundering or terrorist financing purposes, and to enhance transparency andaccess to beneficial ownership information34.

 1: AMLD4, Article 30, 5; 2: AMLD4, Recital 25, 5; 3: AMLD4, Recital 26, 5; 4: AMLD4, Recital 27, 5.

Nonprofit organizations (NPOs) and charities are at risk of being exploited for terrorist financing due to their access to large sums of money and their operational reach into high-risk areas. FATF’sRecommendation 8specifically recognizes that terrorist organizations may misuse NPOs to raise and move funds, provide logistical support, or conceal the diversion of funds for illicit purposes.

Option A (Correct):Many charities operate internationally, especially in areas with humanitarian crises. These regions often overlap with locations where terrorist organizations are active, making them vulnerable to abuse.

Option D (Correct):Charities handle large volumes of cash and enjoy public trust, which makes it easier for illicit actors to integrate illicit funds without raising immediate suspicion.

Option B (Incorrect):While charities are generally legitimate, the concern is that they can be exploited, not that they necessarily intend to misuse funds.

Option C (Incorrect):Although collecting donations is a legitimate practice, it does not directly contribute to their vulnerability to terrorist financing.

According to the web sources I found, FATF Recommendation 18 requires financial institutions to implement group-wide programmes against money laundering and terrorist financing that include policies and procedures for sharing information within the group for AML/CFT purposes12. These programmes should also include compliance management arrangements, screening procedures for hiring employees, an independent audit function and ongoing employee training1.

Correspondent banking is a service that allows banks to access financial services in different jurisdictions through intermediary banks, known as correspondent banks. Correspondent banking can facilitate cross-border transactions, foreign exchange, and other financial activities for banks and their customers. However, correspondent banking also poses various risks, such as money laundering, terrorist financing, fraud, corruption, tax evasion, and sanctions evasion. Correspondent banks may have no direct relationship with the customers of the respondent banks, making it difficult to verify their identity and monitor their transactions. Correspondent banks may also rely on the compliance programs of the respondent banks, which may not meet the standards of the correspondent banks’ jurisdictions.

One of the risk factors that increases the risk for a correspondent bank is being a major service provider to money service businesses (MSBs). MSBs are entities that provide money transmission, currency exchange, check cashing, prepaid cards, and other similar services. MSBs are often considered high-risk customers, because they may serve as conduits for illicit funds, especially if they operate in jurisdictions with weak anti-money laundering regulations or oversight. MSBs may also have a large and diverse customer base, making it challenging to conduct customer due diligence and transaction monitoring. Therefore, correspondent banks that provide services to MSBs may face higher exposure to money laundering and other financial crimes, and may need to apply enhanced due diligence and risk mitigation measures.

Understanding Risk in Correspondent Banking

GUIDANCE ON CORRESPONDENT BANKING SERVICES

Correspondent Bank: Definition and How It Works

Correspondent banking – why it’s important to understand the risks

According to the CAMS Certification Package - 6th Edition1, one of the essential components of customer due diligence is verifying the identity of the customer using reliable and independent sources. This verification process should be done before or during the establishment of the business relationship, and should not be delayed unless there is a low risk of money laundering or terrorist financing, and the delay is necessary to avoid interrupting the normal course of business. Therefore, after customers have provided acceptable identification, the financial institution should next confirm the validity of the customer information, as option A suggests. Option B is not necessary, as an electronic picture of each customer is not a mandatory requirement for customer verification, and may not be feasible or effective in some cases. Option C is not the next step, as closely monitoring the account for 30 days is part of the ongoing due diligence process, which should be performed after the customer verification is completed and the account is established. Option D is not advisable, as establishing the account based on the information provided without verifying its validity may expose the financial institution to money laundering and terrorist financing risks, and may violate the KYC and AML regulations.

1: CAMS Certification Package - 6th Edition | ACAMS, Chapter 3: Compliance Standards for Anti-Money Laundering (AML) and Combating the Financing of Terrorism (CFT), pages 69-70.

According to the ACAMS CAMS Study Guide, one of the most common methods of placement is to deposit cash into a bank account, either directly or through intermediaries. This allows the money launderer to introduce the illicit funds into the legitimate financial system, and to create a paper trail that can be used to justify the source of the funds. However, this method also exposes the money launderer to the risk of detection by the bank’s anti-money laundering (AML) policies and procedures, such as customer identification, transaction monitoring, and reporting of suspicious activities1.

ACAMS CAMS Study Guide, 6th Edition, page 271

In theEuropean Union (EU), data protection laws (GDPR) and AML regulations (AMLDs) must be balancedwhen sharing customer data.

Option D (Correct):Data sharing must be"necessary, reasonable, and proportionate,"followingAML regulations and data protection requirements.

Option A (Incorrect):While data protection laws apply,AML/CFT regulations provide exemptionsfor legitimate investigations.

Option B (Incorrect):Aformal production orderis not always required if information sharing islegally permitted under AML regulations.

Option C (Incorrect):Privacy laws still apply, even in financial crime investigations. AML/CFT obligations donot override GDPRbut must be balanced appropriately.

Key Considerations in Cross-Border AML Data Sharing in the EU:

GDPR & AML Regulations Must Align:TheGeneral Data Protection Regulation (GDPR)protects customer privacy, but theEU Anti-Money Laundering Directives (AMLDs) require data sharing for AML purposes.

Proportionality Principle:Anydata shared must be strictly limited to what is necessaryfor AML purposes (e.g., transaction details but not unnecessary personal data).

Regulatory Guidance:Banks must comply withArticle 23 of GDPR, which allowsexceptions for AML compliance.

Why This Matters:

Failure toproperly balance AML compliance and data privacycan lead to:

Regulatory fines under GDPRfor data breaches.

AML penaltiesfor failing to cooperate in financial crime investigations.

Money launderers usehigh-value goods(e.g., jewelry, art, and precious metals) todisguise illicit funds.

Option C (Correct):Requesting ahandwritten receipt for a cash purchasesuggests anattempt to avoid record-keeping, a knownmoney laundering technique.

Option A (Incorrect):Buying gold bars withcash and cryptocurrencyisunusualbut notinherently illegalunless the amounts are suspicious.

Option B (Incorrect):Credit card payments are traceableanddo not raise immediate red flags.

Option D (Incorrect):Kimberly Process-certified diamondsare legally sourced, and requesting themdoes not indicate suspicious intent.

The most concerning trading pattern for a compliance officer when a new customer has been onboarded in a securities firm is the customer accumulating securities of a low volume counter in small increments on a weekly basis. This type of behavior could indicate that the customer is attempting to obscure their identity or the true purpose of their trading activity, which can be indicative of money laundering or other suspicious activity. (CAMS Manual, 6th Edition, Page 170).

According to the ACAMS CAMS Study Guide (the 6th edition), one of the common methods of money laundering in the insurance sector is to purchase policies with illicit funds, overpay premiums, and then cancel or surrender the policies to receive refunds or payouts1. This allows criminals to move and disguise the source of their funds through the insurance company. Therefore, the regular withdrawals from the policy by the end of the month could indicate a money laundering scheme. Moreover, the FATF Guidance for a Risk-Based Approach for the Life Insurance Sector states that unidentified third parties depositing cash to the policy could also pose a high money laundering risk, as cash transactions are difficult to trace and third parties may act as intermediaries or nominees for the real beneficiaries2. Therefore, the insurance company should conduct enhanced due diligence on the policyholder and the third parties, and monitor the transactions for any suspicious activity.

Financial institutionsoperating in the EU must comply with GDPR and AML directives, ensuring a balance betweenprivacy and AML compliance.

Option B (Correct):Data minimization is a key GDPR principle, ensuring that only necessary data is collected and processed.

Option D (Correct):Strict guidelines apply to AI and machine learning models used in AML complianceto prevent bias and ensure transparency.

Why Other Options Are Incorrect:

Option A (Incorrect):FIs cannot use third parties to supplement missing customer identification unless proper KYC measures are followed.

Option C (Incorrect):Customers cannot be informed about ongoing AML investigations due to “tipping off” restrictions under AML laws.

Best Practices for AML Compliance Under GDPR:

Limit data collection to what is necessary for AML compliance.

Ensure AI and machine learning models comply with transparency regulations.

Prevent unauthorized data access through strict internal controls.

The Office of Foreign Assets Control (OFAC) sanctions are extraterritorial in nature, meaning that they apply beyond the national borders of the United States. OFAC sanctions are intended to restrict transactions and the movement of assets between the U.S. and designated persons and organizations. These sanctions are imposed to disrupt the economic and financial relations between foreign countries and designated persons, organizations, or countries. These sanctionsinclude prohibiting transactions, requiring the blocking of assets, and implementing targeted measures such as arms embargoes, travel bans, and financial or commodity restrictions.

According to the Financial Action Task Force (FATF) standards for suspicious activity reports (SARs) information sharing within a financial group, "Financial institutions should establish adequate procedures to ensure that confidentiality of information is maintained and that information is only used for purposes permitted under national law. Where the parent institution is located in a country that does not permit such sharing, financial institutions should take measures to address this limitation" (CAMS Manual, 6th Edition, page 476). Therefore, financial institutions must establish sufficient safeguards concerning the confidentiality of information shared for AML purposes.

 Spear phishing is a targeted form of phishing scam in which cybercriminals send highly convincing emails to specific individuals within an organization. The emails often contain personal information or details that make them seem legitimate and trustworthy. The goal of spear phishing is to trick the recipients into clicking a malicious link or downloading an infected attachment, or to reveal confidential information or money to the attackers. In this case, the customers of the telecommunications firm received an email that pretended to be from the company, but was actually a fake. The email directed them to a spoofed website that asked for their personal information, which could be used for identity theft or fraud. This is a clear example of a spear phishing attack.

According to the CAMS Study Guide, EDD is a higher level of scrutiny applied to customers who pose a greater risk of money laundering or terrorist financing. EDD may include obtaining additional information on the customer’s identity, source of funds, businessactivities, beneficial owners, and expected transactions. Details on individuals with control over the account are relevant for EDD, as they may indicate the involvement of politically exposed persons (PEPs), sanctioned individuals, or other high-risk entities. Therefore, this information should be gathered as part of EDD for a high-risk customer.

CAMS Study Guide, 6th Edition, Chapter 4, page 121.

The Basel Committee on Banking Supervision (BCBS) is an international body that sets standards and guidelines for the prudential regulation of banks. One of its key publications is the Customer Due Diligence for Banks, which outlines the essential elements of Know Your Customer (KYC) standards for banks. According to this document, customer acceptance, customer due diligence, and record-keeping policies and procedures should be changed as necessary to address variations in risk among each line of business within the organization. This means that banks should adopt a risk-based approach to KYC, taking into account the different types, levels, and sources of risk associated with different customers, products, services, transactions, and delivery channels. By doing so, banks can allocate their resources more efficiently and effectively, and mitigate the potential for money laundering, terrorist financing, and other financial crimes.

A: “Effective training includes practical examples and use cases tailored to the business.”

B: “Firms must keep accurate records of all AML/CFT training, including completion logs.”

D: “Staff should be aware of the consequences of non-compliance with AML/CFT obligations.”(CAMS 6th Edition, AML/CFT Training and Awareness)

Incorrect:

C: Training should be tailored and role-specific.

E: Third-party trainers are not required for effective training.

According to the Financial Action Task Force (FATF) Special Recommendation IV, if financial institutions, or other businesses or entities subject to anti-money laundering obligations, suspect or have reasonable grounds to suspect that funds are linked or related to, or are to be used for terrorism, terrorist acts or by terrorist organisations, they should be required to report promptly their suspicions to the competent authorities1. This is consistent with the FATF Recommendation 20, which requires the same reporting obligation for money laundering and the financing of proliferation of weapons of mass destruction2. Reporting suspicious transactions related to terrorism is a key measure to detect, prevent and suppress the financing of terrorism and terrorist acts, and to facilitate international cooperation and information exchange.

1: The FATF Recommendations - Financial Action Task Force

2: IX Special Recommendations - Financial Action Task Force

According to the Basel guidelines on customer due diligence for banks, a trust is a legal arrangement whereby a person (the settlor or grantor) transfers the legal ownership of specific assets to another person or entity (the trustee) to hold for the benefit of a third person or persons (the beneficiaries)1. The Basel guidelines recommend that banks should identify and verify the identity of the following parties to determine the true nature of the trust relationship:

The trustee, who is the person or entity that has the legal authority and duty to manage the trust assets and distribute them to the beneficiaries according to the trust deed2. The trustee may also be the settlor, the beneficiary, or both, depending on the type and structure of the trust3.

The beneficiaries, who are the persons or entities that have a beneficial interest in the trust assets or income, either presently or in the future4. The beneficiaries may be named individuals, classes of persons, or charitable causes.

The settlor or grantor, who is the person or entity that creates the trust and transfers the legal ownership of the assets to the trustee. The settlor or grantor may also retain some rights or powers over the trust, such as the ability to appoint or remove trustees, beneficiaries, or protectors.

The other three options are incorrect because:

Respondents are not trust parties, but rather financial institutions that maintain correspondent banking relationships with other financial institutions. Respondents are not relevant for the identification of the trust relationship, but rather for the due diligence of the correspondent banking relationship.

Payees are not trust parties, but rather persons or entities that receive payments from the trust or other sources. Payees are not relevant for the identification of the trust relationship, but rather for the monitoring of the transactions and activities of the trust.

Trust administrators are not trust parties, but rather persons or entities that provide administrative services to the trust, such as accounting, record-keeping, or tax compliance. Trust administrators are not relevant for the identification of the trust relationship, but rather for the assessment of the risk and complexity of the trust.

1: Basel Committee on Banking Supervision, Customer due diligence for banks, October 2001, 4, p. 17 2: Basel Committee on Banking Supervision, Customer due diligence for banks, October 2001, 4, p. 17 3: ACAMS, CAMS Study Guide, 6th Edition, Chapter 5,p. 111 4: Basel Committee on Banking Supervision, Customer due diligence for banks, October 2001, 4, p. 17 : ACAMS, CAMS Study Guide, 6th Edition, Chapter 5, p. 111 : Basel Committee on Banking Supervision, Customer due diligence for banks, October 2001, 4, p. 17 : ACAMS, CAMS Study Guide, 6th Edition, Chapter 5, p. 111 : Basel Committee on Banking Supervision, Customer due diligence for banks, October 2001, 4, p. 10 : ACAMS, CAMS Study Guide, 6th Edition, Chapter 5, p. 112 : ACAMS, CAMS Study Guide, 6th Edition, Chapter 5, p. 112

The main objective when a financial institution (FI) conducts an investigation is to track the movement of the money. Money laundering is a process of disguising the proceeds of criminal activity to make them appear legitimate. The movement of money is an essential element in the process of money laundering. Therefore, tracking the movement of funds is a crucial step in identifying and preventing money laundering. A financial institution must be able to recognize suspicious transactions and report them to the relevant authorities. An investigation is conducted to gather evidence and establish a clear understanding of the transaction flow, the parties involved, and the nature of the activity. This information is used to determine if the transaction is suspicious and if it violates any laws or regulations.

While keeping policies and procedures updated, keeping documentation, and knowing the customer are essential components of a comprehensive anti-money laundering (AML) program, these activities are not the primary objective of an investigation. Policies and procedures need to be updated to reflect changes in regulatory requirements and emerging money laundering risks. Documentation must be retained to provide evidence of the investigation process and outcomes. Knowing the customer is essential to identify and verify the customer’s identity and assess the risk associated with the relationship.

ACAMS Study Guide for the CAMS Certification Examination - 6th Edition, Chapter 3: AML Programs, Section 3.2: AML Program Components, Subsection 3.2.4: Transaction Monitoring and Investigation, pp. 87-88

Main Objective of Conducting Investigations - exam-answer.com

FIs must haveeffective sanctions screeningprocesses toprevent transactions involving designated persons or entities.

Option A (Correct):Automated screening systemshelp financial institutionsidentify sanctioned individuals, entities, and countries in real time.

Option B (Incorrect):If a customer islisted on a sanctions list, the FImust freeze the account, not simply mark it "high-risk" and continue transactions.

Option C (Incorrect):Prohibited entities should not undergo EDD—transactions with them must beblocked or reported.

Option D (Incorrect):Freezing sanctioned assetsdoes not require board approval; it must bedone immediatelyas per regulations.

Sanctions Compliance Requirements:

Sanctioning Body

Examples of Sanctions Lists

U.S. (OFAC)

Specially Designated Nationals (SDN) List

United Nations (UN)

UN Security Council Sanctions List

European Union (EU)

EU Consolidated Sanctions List

UK (OFSI)

UK Sanctions List

Why Sanctions Screening is Important:

Failing to comply can result in billions in fines (e.g., BNP Paribas paid $8.9 billion in OFAC fines).

Transactions involving sanctioned entities can be blocked, leading to regulatory scrutiny.

Automated screening tools (e.g., SWIFT, World-Check, LexisNexis) improve compliance efficiency.

According to the Anti-Money Laundering Specialist (the 6th edition) by ACAMS, an institution’s anti-money laundering program should be reassessed at least annually to ensure that it is current, effective, and compliant with the applicable laws and regulations. The reassessment should include a review of the institution’s risk assessment, policies and procedures, internal controls, training, and independent testing. The reassessment should also consider any changes in the institution’s products, services, customers, geographic locations, or business environment that may affect its exposure to money laundering and terrorist financing risks1.

The other options are not consistent with the best practices of maintaining an up-to-date anti-money laundering program. For example:

The program should be evaluated and updated at least every six months by the Board of Directors. While the Board of Directors has the ultimate responsibility for overseeing the institution’s anti-money laundering program, it is not required to evaluate and update the program every six months. This may be too frequent and impractical, especially for large and complex institutions. The Board of Directors should, however, approve the program and any significant changes, and ensure that senior management implements and enforces the program effectively1.

The program should be reviewed by a federal law enforcement officer for gaps in controls. While federal law enforcement agencies may conduct investigations or examinations of the institution’s anti-money laundering program, they are not responsible for reviewing the program for gaps in controls. This is the role of the institution’s internal audit function or an external independent party, who should conduct periodic testing of the program’s adequacy and effectiveness1.

The program should be sent to the institution’s government regulator on a periodic basis. While the institution’s government regulator may request or review the institution’s anti-money laundering program as part of its supervisory or enforcement activities, the institution is not obligated to send the program to the regulator on a periodic basis. The institution should, however, report any suspicious or unusual transactions or activities to the relevant authorities, such as the Financial Crimes Enforcement Network (FinCEN) or the Office of Foreign Assets Control (OFAC)1.

Anti-Money Laundering Specialist (the 6th edition) by ACAMS

The customer directing the payment of the money borrowed to an unrelated third party is a red flag for potential money laundering, as it could indicate layering or integration of illicit funds. The other options are not necessarily indicative of money laundering, although they could warrant further monitoring or due diligence depending on the customer profile and risk assessment.

According to the FATF Recommendation 10, financial institutions should conduct ongoing due diligence on the business relationship and scrutiny of transactions undertaken throughout the course of that relationship to ensure that the transactions being conducted are consistent with the institution’s knowledge of the customer, their business and risk profile, including, where necessary, the source of funds. This is one of the core measures of customer due diligence (CDD) that aim to prevent and detect money laundering and terrorist financing risks.

= The main reference for this question is the document titled “International Standards on Combating Money Laundering and the Financing of Terrorism & Proliferation - The FATF Recommendations” published by the FATF in February 2018. You can access it by clicking here. You can also find more information about the CDD measures and the risk-based approach on the FATF website, the CFATF website, the Central Bank of Ireland website, and the Medium blog.

The line of business is responsible for creating, implementing and maintaining policies and procedures, as well as communicating these to all personnel. It must also establish processes for screening employees to ensure high ethical and professional standards and deliver appropriate training on AML policies and procedures based on roles and functions performed so employees aware of their responsibilities. To facilitate this, employees should be trained as soon as possible after being hired, with refresher training as appropriate.

 A financial institution can verify the nature and purpose of a business and its legitimacy by using an independent information verification process, such as by accessing public and private databases. This method can help the financial institution to check the names of businesses against anti-money laundering (AML) watchlists, parse and analyze ownership information to determine beneficial ownership structure, and run the beneficial owners themselves through identity verification and AML watchlist checks1. This can also help the financial institution to comply with the regulatory requirements for customer due diligence (CDD), which include obtaining and analyzing sufficient customer information to understand the nature and purpose of customer relationships for the purpose of developing a customer risk profile2. Other methods, such as reviewing a copy of the corporation’s latest audited reports and accounts, undertaking a company search or other commercial inquiries, or reviewing the company’s website, may not provide sufficient or reliable information to verify the nature and purpose of a business and its legitimacy.

Customer due diligence for banks by the Basel Committee on Banking Supervision, October 2001.

How to Verify Legitimate Businesses and Merchants by Trulioo, March 2021.

Along-term, root cause-based approach ensures AML deficiencies are fully remediated.

Option C (Correct):Addressing root causes ensures the institution remains compliant and prevents recurring violations.

Option A (Incorrect):Consulting with an FIU is unnecessary for internal remediation plans.

Option B (Incorrect):Short-term fixes do not resolve systemic AML issues.

Option D (Incorrect):AML compliance improvements may require investment—cost-cutting should not compromise compliance.

Best Practices for AML Audit Remediation:

Conduct root cause analysis before implementing corrective measures.

Develop a long-term compliance improvement plan.

Allocate sufficient resources for sustainable AML enhancements.

When reviewing business operations of a Money Services Business (MSB), it is critical to identify behaviors that indicate potential money laundering activity. TheCAMS Study Guide – 6th Editionoutlines severalred flagscommonly associated with MSBs.

Option Ais correct:

A customer beinghesitant to provide beneficiary information, such as the name or address, is a red flag. It may indicate attempts to hide the true purpose or recipient of the funds and could suggeststructuring or layering activity.

Option Dis correct:

A customer usingmultiple accounts under different namesto conduct transactions is a strong red flag. This could indicate efforts toobscure ownership, avoid detection, or conductsuspicious structuringbehavior to stay below reporting thresholds.

Option Bis incorrect:

While large cash deposits from cash-intensive businesses may require further review, they are not inherently suspicious unlessinconsistent with the nature of the business or transaction volume.

Option Cis incorrect:

Currency exchanges under the reporting threshold, even from high-risk jurisdictions, are not in themselves red flags unless they show a pattern ofstructuringor are part oflarger suspicious behavior.

Option Eis incorrect:

Frequent small-dollar transfers to a native country may benormal remittance behaviorand only become suspicious if tied to additional indicators such asstructuring or third-party involvement.

The individual responsible for setting the anti-money laundering software parameters should recommend ensuring that the alert parameters are based on risk, rather than on default software rules. This means that the software should be configured to generate alerts only when transactions or customers exhibit a high level of risk, based on factors such as the source and destination of funds, the amount and frequency of transactions, the type and purpose of the account, the customer profile and behavior, and the presence of any red flags or indicators of money laundering or terrorist financing. By aligning the alert parameters with the risk assessment of the financial institution, the software can reduce the number of false positives and focus on the most relevant and suspicious cases, thus improving the efficiency and effectiveness of the anti-money laundering staff.

Setting AML Transaction Monitoring Thresholds 1, ComplyAdvantage, 2020.

Machine learning techniques for anti-money laundering (AML) analysis: a survey 2, Springer, 2018.

Anti Money Laundering (AML) Definition: Its History and How It Works 3, Investopedia, 2021.

One of the methods that FATF-style regional bodies (FSRBs) use to understand the inherent money laundering and terrorist financing risks in their regions is to conduct regional-level research and analysis of the methods and trends used by criminals and terrorists to exploit the vulnerabilities of the financial system. This research and analysis is done using the standards and templates developed by the FATF for its typologies reports, which are documents that describe the common features, techniques, and patterns of money laundering and terrorist financing activities. By producing their own typologies reports, FSRBs can identify the specific risks and challenges faced by their member countries and jurisdictions, and provide guidance and recommendations on how to mitigate them.

What are the 9 FATF-Style Regional Bodies (FSRBs)? - Sygna, What are FATF and FSRB typologies?

FATF-Style Regional Bodies (FSRBs) - Asia/Pacific Group on Money Laundering, What are the main duties of FSRBs?

Financial Action Task Force - Wikipedia, Typologies.

The method of purchasing chips with cash and redeeming them for a check is used to launder money in casinos. This is because the check can be deposited into a bank account or cashed at another location, creating a paper trail that appears to be legitimate. The check can also be used to conceal the source and amount of the cash, as well as the identity of the person who obtained it. This method is also known as “chip washing” or “chip dumping” and is one of the common ways that money launderers exploit casinos12.

1: CAMS Certification Package - 6th Edition | ACAMS, Chapter 2: Money Laundering Risks and Methods, p. 32-33 2: FATF Report: Money Laundering through the Physical Transportation of Cash, October 2015, p. 28-29, http://www.fatf-gafi.org/media/fatf/documents/reports/money-laundering-through-transportation-cash.pdf

 these are the essential components of an effective anti-money laundering program for any financial institution, especially an offshore one. According to the CAMS Study Guide, 6th Edition, an anti-money laundering program should include the following elements1:

A risk assessment that identifies and evaluates the money laundering and terrorist financing risks faced by the institution, and the measures taken to mitigate them.

A compliance program that establishes policies, procedures, and controls to prevent, detect, and report money laundering and terrorist financing activities, and to comply with the applicable laws and regulations of the host and chartering countries.

A designated compliance officer who is responsible for overseeing the implementation and maintenance of the compliance program, and for liaising with the relevant authorities and stakeholders.

A training program that provides regular and appropriate education and awareness to senior management and staff on their roles and responsibilities in relation to anti-money laundering and terrorist financing, and on the latest trends and typologies in these areas.

An independent audit function that reviews and tests the adequacy and effectiveness of the compliance program, and reports the findings and recommendations to senior management and the board of directors.

The Basel Committee on Banking Supervision’s capital adequacy requirements for the host country (answer A) are not directly related to anti-money laundering, but rather tothe prudential regulation and supervision of banks. They are important for ensuring the financial soundness and stability of banks, but they are not sufficient to prevent or combat money laundering and terrorist financing2.

1: CAMS Study Guide, 6th Edition, Chapter 5: Compliance Standards for Anti-Money Laundering (AML) and Combating the Financing of Terrorism (CFT), page 139-140. 2: Basel Committee on Banking Supervision, Bank for International Settlements.

TheEgmont Groupis aninternational network of Financial Intelligence Units (FIUs)thatenhances cooperation and information sharing to combat financial crime.

Option A (Correct):The Egmont Groupimproves global cooperationby enabling FIUsto exchange financial intelligence securely.

Option C (Correct):Thegroup facilitates secure communication channelsforsharing money laundering and terrorist financing intelligence.

Option E (Correct):TheEgmont Group fosters trust between FIUs, allowing them to work collaborativelyon cross-border investigations.

Why Other Options Are Incorrect:

Option B (Incorrect):The Egmont Groupdoes not negotiate case-by-case memoranda of understanding (MoUs)for individual cases.

Option D (Incorrect):The Egmont Groupdoes not draft AML legislation; itprovides guidance but does not have regulatory authority.

Key Functions of the Egmont Group:

Facilitating cross-border cooperation among FIUs.

Providing a secure network (Egmont Secure Web) for intelligence sharing.

Developing best practices for AML/CFT investigations.

 According to the USA PATRIOT Act, a shell bank is defined as “a bank that has no physical presence in any country” (Section 313(a)(1)). A physical presence means “a place of business that is maintained by a bank and is located at a fixed address, other than solely a post office box or an electronic address, in a country in which the bank is authorized to conduct banking activities, at which location the bank employs one or more individuals on a full-time basis and maintains operating records related to its banking activities” (Section 313(a)(2)). Therefore, option A is the correct answer, as it describes a bank that has no physical presence or employees in any country. Options B, C, and D are not correct, as they describe banks that have some form of physical presence or affiliation with another bank in a country.

USA PATRIOT Act, Title III, Subtitle A, Section 313, Prohibition on United States Correspondent Accounts with Foreign Shell Banks, 1.

ACAMS Study Guide for the Certified Anti-Money Laundering Specialist (the 6th edition), Chapter 4: International Standards and Global Initiatives, page 103.

 Bearer shares are unregistered equity securities owned by the possessor of the physical share documents. The issuing company does not record the identity or ownership of the shareholders, nor does it track the transfers of ownership. This means that the holder of the bearer share can claim ownership and exercise the rights associated with the share, such as voting and receiving dividends, by simply presenting the physical certificate. This also makes the transfer of ownership very easy, as it only requires the delivery of the physical document, without any formalities or intermediaries. Bearer shares are therefore attractive for those who seek anonymity, privacy, and flexibility in their corporate structures.

Investopedia: Bearer Share

SuperMoney: Bearer Shares: Definition, Examples, and Implications

ACAMS: Bearer Shares

 The integration stage of money laundering is where the illicit funds are reintroduced into the legitimate financial system, making them appear as lawful income or assets. This may include using multiple accounts, transferring funds between different banks or jurisdictions, and engaging in various financial activities to legitimize the illicit funds. The integration stage aims to make the illicit funds appear legitimate and indistinguishable from lawful funds within the financial system1.

Option C is an example of the integration stage of money laundering involving a bank or another deposit-taking institution, as it involves moving the illicit funds from one bank account to another, creating a complex trail of transactions that obscures the origin and ownership of the funds. This technique is also known as wire transfer laundering or electronic funds transfer laundering2.

Option A is an example of the placement stage of money laundering, as it involves depositing the illicit funds into the financial system for the first time, using a front company as a cover for the illegal source of the funds. A front company is a legitimate business that is used to conceal or facilitate illicit activity.

Option B is an example of the layering stage of money laundering, as it involves converting the illicit cash into other forms of value that are less conspicuous and easier to move, such as negotiable instruments. Negotiable instruments are documents that promise payment to a specified person or the bearer, such as checks, money orders, or traveler’s checks.

Option D is not an example of the integration stage of money laundering involving a bank or another deposit-taking institution, as it does not involve any financial transactions or accounts. It is rather an example of the integration stage of money laundering involving the purchase of goods or services, such as a luxury vehicle, with the illicit funds that had previously been deposited and layered through the financial system.

1: Integration Stage of Money Laundering: Bank or Deposit-Taking Institution

2: Process of Money Laundering: Placement, Layering, Integration - Tutorial

ACAMS Study Guide 6th Edition, Chapter 2, page 32

ACAMS Study Guide 6th Edition, Chapter 2, page 34

The Three Stages Of Money Laundering And How Money Laundering Works

Human trafficking and modern slaveryinvolveillicit financial transactions, often conductedthrough banks, money service businesses (MSBs), or virtual assets.

Option B (Correct):Frequent payments for online advertisementscan indicaterecruitment for illicit labor or traffickingoperations.

Option C (Correct):Incoming funds from third-party processors with unclear originatorssuggestconcealed financial flows linked to illicit activities.

Why Other Options Are Incorrect:

Option A (Incorrect):Transactional activity with a virtual currency exchange alone is not a strong human trafficking red flag.

Option D (Incorrect):Cash payments to workers could indicate labor law violations but do not necessarily indicate human trafficking.

Common Financial Red Flags for Human Trafficking:

Unexplained cash deposits and withdrawals from multiple accounts.

Frequent wire transfers to high-risk jurisdictions.

Use of prepaid cards to move funds anonymously.

Best Practices for Detecting & Preventing Human Trafficking-Related Transactions:

Train frontline staff to recognize financial indicators of trafficking.

Monitor unusual transaction patterns in industries with high labor exploitation risks.

File Suspicious Activity Reports (SARs) when trafficking-related transactions are suspected.

One of the most common methods of money laundering in the insurance industry is to purchase a policy with illicit funds and then request a refund of the premiums, either partially or fully, before the policy matures. This way, the money launderer can receive a legitimate payment from the insurance company, effectively washing the dirty money. This technique is also known as premium fraud or early surrender12

According to the Financial Crimes Enforcement Network (FinCEN), the most significant money laundering and terrorist financing risks in the insurance industry are found in life insurance and annuity products, because such products allow a customer to place largeamounts of funds into the financial system and seamlessly transfer such funds to disguise their true origin34

Some indicators of potential money laundering through insurance products are: 12

The customer pays the premiums with cash, cashier’s checks, money orders, or other anonymous or unusual payment methods.

The customer overpays the premiums or makes multiple payments in excess of the required amount.

The customer cancels the policy during the free-look or grace period and requests a refund to a different account or a third party.

The customer purchases a policy that is inconsistent with their income, age, or risk profile.

The customer shows little interest in the benefits or terms of the policy, but is more concerned about the cancellation or surrender options.

1: AML in Insurance: How to Detect & Combat Money Laundering, ComplyAdvantage, 2022

2: Anti Money Laundering (AML) In Insurance Industry In 2021, Financial Crime Academy, 2023

3: Money laundering in the insurance industry, Insurance Commission, 2022

4: Money laundering in the insurance industry, Atty. Dennis B. Funa, Business Mirror, 2016

[5]: Anti-Money Laundering Requirements: FAQs for Insurance Companies, FinCEN, 2005

Aproper investigation of unusual transactions requires a mix of data analysis, contextual review, and expert judgmentto assess potential risks.

Option B (Correct):Cross-referencing transactions with external factors(e.g.,political events, commodity price fluctuations, news reports) helps identifypotential links to illicit activities.

Option C (Correct):Therelationship managermay provide insights intowhether a transaction aligns with the customer’s known profile and business activity.

Option D (Correct):Arisk-based approachensures thathigher-risk transactions receive enhanced scrutiny, while lower-risk ones undergo standard monitoring.

Why Other Options Are Incorrect:

Option A (Incorrect):Focusing only on transaction amountsignorescontextual factors, such asunusual behavior in low-value transactions.

Option E (Incorrect):Automated alerts are valuable but cannot replace human analysis and judgment.Manual reviews remain necessary for complex cases.

Red Flags in Unusual Transactions:

Large or frequent transactions inconsistent with a customer’s normal profile.

Payments from/to high-risk jurisdictions without a clear purpose.

Use of intermediaries or shell companies to move funds.

Best Practices for AML Investigations:

Use both qualitative and quantitative factorsto assess transaction risks.

Collaborate with business units(e.g., relationship managers) to understand client behavior.

Apply a risk-based approach to allocate investigation resources efficiently.

According to the ACAMS study guide, one of the training elements that should be delivered to new tellers during employee orientation is “large cash transaction reporting procedures” (p. 224). This is because tellers are often the first line of defense against money laundering and have the responsibility to identify and report any transactions that exceed the threshold of $10,000 or are otherwise suspicious. The other options are not relevant for tellers, as they are more suitable for higher-level or specialized staff.

ACAMS. (2020). Study Guide for the Certification Examination for Anti-Money Laundering Specialists (6th ed.). Miami, FL: ACAMS.

AML Requirements for Tellers 1

Deposit Compliance Training Courses 2

As the compliance officer is providing overview of the "bank's anti-money laundering program to a group of new tellers during employee orientation"

The Financial Action Task Force (FATF) 40 Recommendations address the transparency and beneficial ownership of legal persons (such as companies, foundations, associations, etc.) and legal arrangements (such as trusts, fiducies, anstalts, etc.) in Recommendations 24 and 25. These recommendations aim to prevent the misuse of legal persons and arrangements for money laundering, terrorist financing and other illicit purposes, by requiring countries to ensure that accurate and up-to-date information on the natural persons who ultimately own or control them (the beneficial owners) is available to the competent authorities in a timely manner.

CAMS Study Guide - 6th Edition, Chapter 4, page 112

CAMS Certification Exam Outline, Domain 1, Task 1.2, Skill 1.2.2

Guidance on Transparency and Beneficial Ownership, FATF, October 2014

Recommendation 24: Transparency and beneficial ownership of legal persons, FATF

[Recommendation 25: Transparency and beneficial ownership of legal arrangements], FATF

Mutual Legal Assistance Treaties (MLATs) are characteristics of D. only involving two countries, E. cooperatively combating crime between countries, and F. being useful for gathering evidenceand intelligence in a foreign country. MLATs are public and binding under international law (A), can be used for obtaining banking records from treaty partners (B), and provide a legal basis for transmitting evidence ©.

A money laundering investigation that involves multiple countries can be challenging due to different legal systems, languages, cultures, and levels of cooperation. Two factors that can assist such an investigation are:

Law enforcement and other authorities should have access to financial information that is pertinent to the investigation. This can help them trace the flow of illicit funds, identify the perpetrators and beneficiaries, and gather evidence for prosecution. Financial information can be obtained from various sources, such as financial institutions, financial intelligence units, regulators, and international organizations.

Law enforcement and other authorities should be allowed to establish and utilize joint investigative teams with law enforcement in other countries. This can enhance coordination, communication, and information sharing among the authorities involved, and allow them to pool resources, expertise, and evidence. Joint investigative teams can also facilitate mutual legal assistance and extradition requests.

Financial Action Task Force (FATF), International Standards on Combating Money Laundering and the Financing of Terrorism & Proliferation, The FATF Recommendations, February 2012, updated June 2019, Recommendation 40, pp. 120-123

FATF, Best Practices on Establishing and Operating a Joint Investigative Team, June 2020, pp. 5-6

FATF, Money Laundering and Terrorist Financing Investigations, June 2018, pp. 11-12

A risk-based compliance program is one that identifies and prioritizes the highest compliance risks to the FI and implements controls, policies and procedures to mitigate them. A data-based option is the most suitable for a risk-based compliance program, as it allows the FI to collect, analyze and monitor relevant data on its customers, transactions, products, services, geographies and other risk factors. A data-based option also enables the FI to measure the effectiveness of its compliance program and adjust it as needed to respond to changing risks and regulatory expectations12.

1: Risk-Based Approach to Compliance Management2

2: A Risk-Based Approach to Regulatory Compliance1

An employee who witnesses suspicious activity from a coworker should not confront the coworker or discuss the activity with their supervisor. Instead, they should report the activity to their employer's conflict line or compliance department, who can investigate the matter and take the appropriate action. It is important to remember that employees are legally obligated to report any suspicious activity they witness.

 According to the Financial Action Task Force (FATF), a financial institution must take certain steps to fulfill its customer due diligence (CDD) obligations [1][2]. These steps include verifying the customer's identity, understanding the customer's business, and assessing the customer's risk profile. Additionally, the financial institution must verify that the customer is not on any sanction lists, such as the OFAC Specially Designated Nationals list. This step is important to ensure that the financial institution is not doing business with any individuals or entities that are subject to economic sanctions. Other steps include obtaining information on the intended nature of the banking relationship, securing a written declaration from the customer confirming the source of the funds, and identifying shareholders listed on the stock exchange of corporate entities holding fifty percent of the shares.

 According to the FATF Recommendation 12, financial institutions should take reasonable measures to determine whether the beneficiaries of a life insurance policy and/or, where required, the beneficial owner of the beneficiary are politically exposed persons. This should occur at the latest at the time of the payout1. The purpose of this requirement is to prevent the abuse of life insurance products for money laundering or terrorist financing by PEPs or their associates. Therefore, the best way to mitigate the risk of adding a beneficiary to a life insurance policy for a foreign PEP is to perform due diligence on the beneficiary, such as verifying their identity, relationship with the PEP, and source of funds2.

The other options are not correct because they either do not comply with the FATF standards, or do not adequately address the risk of adding a beneficiary to a life insurance policy for a foreign PEP. Determining the source of wealth and source of funds is a measure that should be applied to the PEP as the customer, not the beneficiary, as partof the enhanced due diligence process2. Declining the request if the beneficiary is a foreign PEP may not be feasible or proportional, as not all foreign PEPs are involved in money laundering or terrorist financing, and some may have legitimate reasons to add a beneficiary to their life insurance policy. Declining the request to add a beneficiary due to increased risk may also not be feasible or proportional, as it may violate the contractual rights of the PEP as the customer, and may not be necessary if the due diligence on the beneficiary does not reveal any red flags or suspicions.

 https://complyadvantage.com/insights/peps-life-insurance/

https://www.cfatf-gafic.org/index.php/documents/fatf-40r/378-fatf-recommendation-12-politically-exposed-persons

Money laundering through real estate is a common method of disguising the source and ownership of illicit funds. Real estate transactions often involve large amounts of money, complex legal structures, and cross-border transfers, which can obscure the true nature and origin of the funds. The new business customer in this scenario raises several red flags that warrant enhanced due diligence, such as:

The business was established five years ago but has a vague website and no physical presence in the state where it is registered.

One of the principals has an international phone number and lives abroad, which could indicate a foreign shell company or a politically exposed person.

The other principal works out of a recreational vehicle, which could suggest a lack of legitimate business activity or income.

The business claims to be a real estate business, but does not provide any details about its projects, clients, or partners.

These factors suggest that the business may be involved in money laundering through real estate, either by purchasing properties with illicit funds, using properties to generate illegal income, or selling properties to launder money. Therefore, the financial institution should conduct enhanced due diligence to verify the identity, background, and source of funds of the business and its principals, as well as the purpose and nature of the account relationship.

ACAMS Study Guide for the CAMS Certification Examination - 6th Edition, Chapter 2: Money Laundering Risks and Methods, pp. 46-47

Enhanced Due Diligence in Construction and Real Estate, by James Swenson, Ethixbase 360

Due Diligence & Legal Considerations in Commercial Real Estate, by Justia

Cryptoassets, such as cryptocurrencies, pose specific ML/TF risks due to their technological characteristics and usage patterns:

Potential for anonymity (C): Cryptoassets allow users to make transactions without revealing their true identities, which hinders law enforcement from tracking illicit activity. The CAMS 6th Edition states:“Cryptoassets can be transferred or exchanged between users without the need for identification, presenting a significant risk due to the potential for anonymity.”(CAMS 6th Edition, Chapter: Risks and Methods of Money Laundering and Terrorist Financing, Virtual Assets section)

Global reach (D): Cryptoassets operate on a global scale, enabling rapid cross-border transfers without the limitations of traditional financial systems. This increases the complexity of monitoring and controlling illicit transactions.“The global nature of virtual assets makes it easy for criminals to move value across borders quickly, evading jurisdictional controls.”(CAMS 6th Edition; FATF Guidance on Virtual Assets 2019)

Use to layer illicit funds (F): The ability to move cryptoassets between numerous wallets and exchanges allows criminals to obscure the source of funds through layering, a key stage of money laundering.“Layering can be achieved by rapidly moving cryptoassets between wallets, exchanges, and across different jurisdictions, making tracing more difficult.”(CAMS 6th Edition, Chapter: Risks and Methods of Money Laundering and Terrorist Financing)

The clients are not willing to have their names provided to the bank is a red flag that should stop the agent from discussing this potential purchase further, as this could indicate that the clients are trying to evade customer due diligence (CDD) or know your customer (KYC) requirements, or hide their beneficial ownership or source of funds. According to the U.K. Money Laundering Regulations 2017, real estate agents must conduct CDD on their customers and any beneficial owners, and verify their identity and address1. The U.K. also has a register of people with significant control (PSC) over companies, which requires companies to disclose their beneficial owners2. The use of private companies and wire transfers could also be a sign of layering, a money laundering technique that involves moving funds through multiple accounts or entities to obscure their origin3.

1: U.K. Government, Money Laundering Regulations 2017, Part 2: Customer Due Diligence, Section 5-6 2: U.K. Government, People with significant control (PSC) register, Overview 3: ACAMS CAMS Certification Study Guide, 6th Edition, Chapter 1: Risks and Methods of Money Laundering and Terrorist Financing, Page 19

D (Independent testing): The third line of defense (internal audit) must conduct truly independent testing and assessments of the AFC/AML program to provide objective, unbiased assurance.

“The third line of defense (internal audit) provides independent assurance of the effectiveness of AML/CFT programs and controls by conducting unbiased reviews and testing.”(CAMS 6th Edition, Three Lines of Defense Model; Basel Committee on Banking Supervision (BCBS) Guidance)

Making payments via a company located in a jurisdiction that is known to have lax anti-money laundering controls is a sign of suspicious activity and should be reported. When making a payment of this nature, the insurance company should be aware of the client's source of funds and the possible risks associated with the transaction.

According to the ACAMS Study Guide 6th Edition, Chapter 2, page 38, one of the steps that a financial institution should take when it suspects money laundering activity is to file a suspicious transaction report (STR) or a suspicious activity report (SAR) to the relevant authorities. This will alert the regulators and law enforcement of the potentialmoney laundering scheme and provide them with valuable information to trace the funds and identify the perpetrators.

Another step that a financial institution should take is to identify any unusual or suspicious wire transfers initiated by casas de cambio to jurisdictions outside of Mexico that bear no apparent business relationship with that casa de cambio. This could indicate that the casas de cambio are involved in layering and integration stages of money laundering, where they are moving the illicit funds across borders and disguising their origin and ownership. The financial institution should monitor and document these wire transfers and report them to the authorities if necessary.

Option B is not a relevant step to trace funds through the bank, as it does not provide any information about the source, destination, or purpose of the funds. A decrease in the sale of large denomination U.S. bank notes to casas de cambio by the bank could be due to various factors, such as market demand, exchange rates, or regulatory changes, and does not necessarily indicate money laundering activity.

Option C is also not a relevant step to trace funds through the bank, as it does not indicate any connection to the suspected money laundering scheme. Deposits by casas de cambio that include third-party items, such as sequentially numbered monetary instruments, could be legitimate transactions that are part of the normal business operations of the casas de cambio. Unless there is evidence that these deposits are related to the sale of large denomination U.S. bank notes or the Mexican syndicate, they are not useful for tracing the funds.

ACAMS Study Guide 6th Edition, Chapter 2, page 38

Combating Money Laundering and Other Forms of Illicit Finance

Sting Operation Snares Casa de Cambio for Allegedly Laundering Millions Through U.S. Banks

According to the Wolfsberg Group, a global association of leading banks that develops guidance and standards for the management of financial crime risks, both private and correspondent banks should monitor account and transactional activity after the proper identification and verification of customers, as part of their anti-money laundering and counter-terrorist financing (AML/CTF) measures12. This is consistent with the FATF Recommendation 10, which requires financial institutions to conduct ongoing due diligence on their business relationships, including scrutinising transactions to ensure that they are consistent with the customer’s risk profile and source of funds3. Monitoring account and transactional activity is a key component of the risk-based approach, as it enables banks to detect and report suspicious or unusual transactions, identify changes in customer behaviour or circumstances, and update customer information and risk assessments accordingly4.

The correct answer is A and C. Law enforcement should determine who are the signatories on the account and examine the flow of money from the company to the individual in an effort to determine if it is legitimate. These steps would help to identify the source and destination of the funds, the purpose and nature of the transactions, and the possible involvement of money laundering or other financial crimes. Asking the bank for the history of the multi-level marketing company (B) may not be relevant or useful, as the company may have a legitimate business model or a false front. Examining possible Suspicious Activity Report information received from the local Financial IntelligenceUnits (D) may be helpful, but it is not a necessary step, as the bank may not have filed any reports or the reports may not contain sufficient information.

ACAMS CAMS Certification Video Training Course1, Module 4: Conducting or Supporting the Investigation Process, Lesson 1: Investigating Techniques for Law Enforcement

ACAMS CAMS Certification Study Guide2, Chapter 4: Conducting or Supporting the Investigation Process, Section 4.1: Investigating Techniques for Law Enforcement, pp. 125-126

as there's NO mitigating control, the temporary control system must be developed and implemented until the permanent mitigating control is developed and implemented.

Public-Private Partnerships (PPPs)are collaborative initiatives involvinglaw enforcement, FIUs, and financial institutions. Their objective is to improve theefficiency and effectivenessof the fight against money laundering, terrorist financing, and other financial crimes bysharing both operational and strategic intelligence.

Option A – Exchange operational information between public authorities and obliged entities:

PPPs often facilitate real-time or near-real-time information sharing that supportsspecific investigations and the detection of suspicious activity, helping financial institutions respond quickly and accurately to ongoing threats.

Option B – Exchange strategic information between FIUs and obliged entities:

Strategic-level intelligence sharing helps financial institutionsunderstand typologies, risk trends, and evolving criminal methods, thereby strengthening their risk assessments and transaction monitoring frameworks.

Option Cis incorrect: Strategic information exchange between private institutions is limited and heavily regulated.

Option Dis incorrect: FATF does not collect or manage databases of suspicious activity reports; it sets standards and reviews national frameworks.

Non-compliance with AML regulatory obligations can have severe consequences for financial institutions. Among these, the most severe consequence is the loss of license. When a financial institution fails to meet AML requirements, regulators may revoke its license to operate. Losing the license effectively shuts down the institution’s ability to conduct business, impacting its existence and operations significantly12.

While this behavior may warrant scrutiny in certain circumstances, it is not inherently suspicious or indicative of money laundering. In contrast, the other behaviors listed (living beyond one's means, excessive unresolved exceptions, and using company resources for personal gain) may suggest that an employee is engaging in or facilitating money laundering activity.

Precious metals, such as gold and silver, pose a high risk of money laundering because they have some features that make them attractive to criminals. According to the FATF Guidance on the Risk-Based Approach for Dealers in Precious Metals and Stones1, these features include:

Some precious metals can be formed into other objects, making easier to transport. For example, gold can be melted and shaped into jewellery, coins, bars, or other items that can be easily concealed and moved across borders. This makes it difficult for law enforcement and customs authorities to detect and seize the illicit proceeds of crime.

Precious metals have high intrinsic value in a relatively compact form and are easy to convert into currency. For example, gold has a stable and universal value that can be exchanged for cash or other assets in any market. This makes it easy for criminals to store, transfer, and launder their illicit funds without leaving a trace in the formal financial system.

The other two options, C and D, are not as relevant to the risk of money laundering. The value of precious metals is determined by the market forces of supply and demand, and it is not easy to inflate or manipulate it. Precious metals can be used in many high-tech commercial applications, but this does not necessarily make them more valuable or more prone to money laundering.

1: FATF Guidance on the Risk-Based Approach for Dealers in Precious Metals and Stones, 2008, https://www.fatf-gafi.org/en/publications/Fatfrecommendations/Fatfguidanceontherisk-basedapproachfordealersinpreciousmetalsandstones.html

2: Money laundering and terrorist financing risks and vulnerabilities associated with gold, 2015, https://www.fatf-gafi.org/en/publications/Methodsandtrends/Ml-tf-risks-and-vulnerabilities-gold.html

3: The anti-money laundering framework for precious stones and metals dealers in Singapore, 2021, https://www.emerald.com/insight/content/doi/10.1108/JMLC-07-2021-0074/full/html

4: Gold and Money Laundering, 2019, https://www.moneylaunderingnews.com/2019/04/gold-and-money-laundering/

The Patriot Act, enacted in 2001, introduced several provisions to enhance the anti-money laundering and counter-terrorist financing (AML/CFT) measures for U.S. banks and their foreign correspondent relationships. Some of the potential issues for foreign financial institutions (FFIs) maintaining correspondent accounts with U.S. banks under the Patriot Act are:

Cancellation of correspondent banking relationships: The Patriot Act requires U.S. banks to conduct due diligence and enhanced due diligence on their foreign correspondent accounts, and to terminate any account that poses a significant risk of money laundering or terrorist financing. This may result in the cancellation of correspondent banking relationships with FFIs that do not meet the U.S. standards or cooperate with the U.S. authorities. The loss of correspondent banking relationships may affect the FFIs’ ability to access the U.S. financial system and provide services to their customers.

Forfeiture of funds in a U.S. interbank account: The Patriot Act authorizes the U.S. government to seize and forfeit any funds in a U.S. interbank account that are involved in or traceable to money laundering or terrorist financing activities. This means that FFIs may face the riskof losing their funds in a U.S. interbank account if they or their customers are suspected or accused of engaging in illicit activities. The forfeiture of funds may have significant financial and reputational consequences for the FFIs and their customers.

Prohibition of correspondent accounts for shell banks: The Patriot Act prohibits U.S. banks from establishing or maintaining correspondent accounts for shell banks, which are banks that have no physical presence in any country and are not affiliated with a regulated financial group. This means that FFIs that are shell banks or have relationships with shell banks cannot access the U.S. financial system through correspondent accounts. The prohibition of correspondent accounts for shell banks aims to prevent the use of shell banks as vehicles for money laundering and terrorist financing.

CAMS Study Guide, 6th Edition, Chapter 4: Compliance Standards for Anti-Money Laundering (AML) and Combating the Financing of Terrorism (CFT), pp. 81-841

USA PATRIOT Act, Title III: International Money Laundering Abatement and Anti-Terrorist Financing Act of 2001, Sections 312, 319, and 3132

Wolfsberg Anti-Money Laundering Principles for Correspondent Banking, October 2014, pp. 3-43

The compliance officer should evaluate the request, determine whether it is valid, and provide the necessary information, subject to management approval. It is important to follow the bank's policies and procedures for responding to law enforcement requests, including verifying the authenticity of the request and the identity of the officer making the request. Additionally, it is important to protect customer privacy and ensure that sensitive information is not released to unauthorized individuals. (Reference: Certified Anti-Money Laundering Specialist (the 6th edition), Chapter 6)

it describes the word “certification” as a written representation by a respondent bank, certifying that they do not do business with shell banks. This is one of the requirements for correspondent accounts in the USA PATRIOT Act, which is a law enacted in 2001 to enhance the anti-money laundering and counter-terrorist financing (AML/CTF) measures in the United States. The USA PATRIOT Act requires that correspondent banks, which are banks that provide services to other banks, such as clearing, settlement, or cash management, to obtain a certification from their respondent banks, which are banks that receive services from correspondent banks, to ensure that they are not involved in money laundering or terrorist financing activities. One of the elements of the certification is that the respondent bank does not do business with shell banks, which are banks that have no physical presence or meaningful supervision in any jurisdiction, and are often used by money launderers and other criminals to hide their identity and funds.

The other options are not necessarily the word “certification” as a written representation by a respondent bank under the USA PATRIOT Act, although they may have some relevance or importance depending on the circumstances and the nature of the correspondent relationship. Option A describes a possible certification by a federal receiver, which is a person appointed by a court to take custody and control of the assets of a failed bank, but this is not related to the correspondent accounts requirements in the USA PATRIOT Act. Option B describes a possible certification by a respondent bank, certifying that they do not do business with politically exposed persons (PEPs), which are individuals who hold or have held prominent public positions or their close associates or family members, and who may pose a higher risk of money laundering or corruption, but this is not a mandatory element of the certification under the USA PATRIOT Act, although itmay be a good practice or a risk-based measure. Option C describes a possible certification by a correspondent bank, certifying that they do not open correspondent accounts for alternative remittance companies, which are businesses that provide money transfer or payment services outside the formal banking system, and which may pose a higher risk of money laundering or terrorist financing, but this is not a requirement for the respondent bank under the USA PATRIOT Act, although it may be a regulatory obligation or a risk-based measure for the correspondent bank.

ACAMS CAMS Certification Video Training Course - 6th Edition1

Exam CAMS: Certified Anti-Money Laundering Specialist (the 6th edition)2

ACAMS CAMS Study Guide - 6th Edition, Chapter 7, pages 156-157

https://www.acams.org/wp-content/uploads/2019/09/ACAMS-CAMS-Study-Guide-6th-Edition-Chapter-7.pdf

When an FI is being investigated for possible money laundering, it is important that it cooperates with the law enforcement agencies (LEAs) in a professional and transparent manner. This means that the FI should take the following steps:

Maintain centralized control over all requests and responses to ensure completeness and timely responses. This will help the FI to avoid duplication, inconsistency, or omission of information, as well as to track the status and progress of the requests and responses. It will also facilitate the communication and coordination between the FI and the LEAs, and demonstrate the FI’s willingness to cooperate12.

Review subpoenas and other information requests by senior management and an investigations group or counsel. This will help the FI to assess the scope, relevance, and legality of the requests, as well as to identify any potential risks, conflicts, or sensitivities. It will also enable the FI to prepare and provide the requested information in an accurate and timely manner, and to seek clarification or negotiation if necessary13.

The other options are not advisable, as they may indicate a lack of cooperation, obstruct the investigation, or damage the FI’s reputation. For example:

Making employees, including corporate officers, unavailable for interviews and refusing documents upon receipt of a subpoena may be considered as non-compliance, evasion, or contempt of court, and may result in legal sanctions or penalties4.

Addressing the document destruction policy to ensure the relevant documents are destroyed may be seen as tampering with evidence, destroying records, or concealing information, and may constitute a criminal offence or a breach of regulatory obligations5.

Not answering inquiries from the media directly, but rather replying, “No comment” may create a negative impression, fuel speculation, or invite criticism, and may harm the FI’s image, credibility, or trustworthiness.

Cooperation between FIUs, Law Enforcement Authorities, and Prosecutors

AML and Financial crimes investigation

Mechanisms for interaction of law enforcement agencies in the field of counteracting and combating money laundering

Recommendation 30: Responsibilities of law enforcement and investigative authorities

Money laundering and illicit finance

 According to the Basel Committee guidelines, banks should formulate a customer acceptance policy and a tiered customer identification programme that involves more extensive due diligence for higher risk customers12. The customer acceptance policy should be approved by senior management and include clear guidelines on the types of customers that are likely to pose a higher than average risk to the bank1. Senior management should also ensure that the bank has adequate resources and systems to effectively manage the risks associated with higher risk customers1. Therefore, senior management should determine whether or not to enter business relationships with higher risk customers, based on the bank’s risk appetite, policies, and procedures.

Money laundering can have negative effects on a country’s currencies and interest rates, as it distorts the allocation of resources and the demand and supply ofmoney. According to the IMF1, money laundering can also adversely affect currencies and interest rates as launderers reinvest funds where their schemes are less likely to be detected, rather than where rates of return are higher. This can create artificial fluctuations and imbalances in the exchange and interest rates, and undermine the effectiveness of monetary policy. For example, if launderers invest in low-yield assets such as government bonds or real estate, they may drive up the prices and lower the yields of these assets, while reducing the availability of funds for more productive investments. This can also affect the inflation and growth prospects of the country.

1: Macroeconomic Implications of Money Laundering by Peter J. Quirk, IMF Working Paper, 1996

2: Understanding Money Laundering: How It Impacts the Global Economy by Tookitaki, 2019

3: Money Laundering by U.S. Department of the Treasury, 2021

4: The Consequences of Money Laundering and Financial Crime by John McDowell and Gary Novis, U.S. Department of State, 2001

The FATF measures the effectiveness of a country’s efforts to combat money laundering and terrorist financing through a process known as mutual evaluation. This process involves peer reviews, where experts from other member countries assess the technical compliance and the effectiveness of a country’s anti-money laundering and counter-terrorist financing (AML/CTF) framework. The FATF has developed a methodology that identifies 11 key areas, or immediate outcomes, that an effective AML/CTF system should achieve, and uses them as the basis for the mutual evaluation. The FATF publishes the mutual evaluation reports, which provide an in-depth analysis of the strengths and weaknesses of each country’s AML/CTF regime, as well as recommendations for improvement.

1: An effective system to combat money laundering and terrorist financing, FATF, February 2013.

2: Report on the State of Effectiveness and Compliance with the FATF Standards, FATF, June 2021.

3: Financial Action Task Force (FATF) | Meaning, Functions, Impact, Finance Strategists, September 2023.

4: FATF Recommendations, FATF, October 2020.

The customer’s wire transfers to high-risk jurisdictions and the large volume of activity with low month-end balance are two facts that should be considered during the course of an investigation into possible money laundering. These facts may indicate that the customer is trying to move funds from or to countries that have weak anti-money laundering (AML) controls, or that are known to be a source or destination of illicitfunds12. They may also suggest that the customer is using a technique called “smurfing” or “structuring”, which involves breaking down large amounts of cash into smaller transactions to avoid detection or reporting34. The other two facts are not necessarily indicative of money laundering, as the customer may have a legitimate reason to have a long-standing account at the bank or to be on the exempt list for currency transaction reporting requirements.

 1: FFIEC BSA/AML Examination Manual, Appendix F: Money Laundering and Terrorist Financing Red Flags, Geographic Concerns, 5; 2: AML Red Flags – What are the Top 10 Indicators?, ComplyAdvantage, 6; 3: FFIEC BSA/AML Examination Manual, Appendix F: Money Laundering and Terrorist Financing Red Flags, Transaction Has Unusual Features, 5; 4: Money Laundering Red Flags | Key Behaviours and Indicators, High Speed Training, 7.

Retail banks typically have a high inherent risk of money laundering due to their provision of cash services. This is because cash is a preferred medium of exchange for criminals and terrorists, and retail banks provide a convenient way for them to move large sums of money without detection. Retail banks are also vulnerable to money laundering through the use of false identities and other deceptive practices. (CAMS Manual, 6th Edition, Page 8).

Red flags in connection with a company involved in illegal logging include: D. Expeditious shipment of wood to far away jurisdictions, E. Use of heavy machinery in non-protected areas, and F. Executive's association with politically exposed persons. These red flags could be indicative of attempts to conceal the origin of illegally harvested wood and to avoid detection by government authorities.

free of payment asset transfer is a trading pattern that may be indicative of money laundering in capital markets. Free of payment asset transfer is a method of transferring securities without any corresponding payment, which can be used to avoid detection of the origin or destination of the funds. This can facilitate the layering or integration stages of money laundering, as the launderer can move the assets across different accounts, jurisdictions, or institutions without leaving a clear audit trail. Free of payment asset transfer can also be used to evade taxes, sanctions, or other regulatory requirements.

ACAMS Study Guide 6th Edition, Chapter 1, Section 1.8, page 28: “Methods to launder money using broker-dealers, investment advisors, and the capital markets (e.g., securities, futures)”.

ExamTopics, Question 476: “Which trading pattern may be indicative of money laundering in capital markets?”

these are the main factors that determine the inherent money laundering risk of a financial institution. The customer base, location, products and services of a financial institution affect the type, volume, and complexity of transactions that it processes, as well as the exposure to high-risk customers, jurisdictions, and activities12. A financial institution should review these factors regularly and conduct a comprehensive risk assessment to identify, measure, and mitigate its money laundering risk34.

Anti Money Laundering Risk Assessment - Financial Crime Academy1

Anti-Money-Laundering (AML) Risk Approach Explained | Okta2

Anti-Money Laundering (AML) Risk Assessment | ACAMS4

2024 National Money Laundering Risk Assessment (NMLRA)5

The three statements from the procedure that are in line with Wolfsberg are:

B. The responsible private banker must establish the identity of a holder of general powers over an account (e.g. a signatory for the account) and, as appropriate, verify that identity. This is consistent with the Wolfsberg Principle 1.2.1, which states that the bank will establish the identity of its clients and beneficial owners prior to establishing business relationships with such persons1.

D. The responsible private banker must obtain the necessary documentation establishing the authorized signer’s authority to act on behalf of the account holder or beneficial owner (e.g. a Power of Attorney). This is consistent with the Wolfsberg Principle 1.2.3, which states that the bank will obtain the necessary documentation establishing the authority of the authorized signatory to act on behalf of the client or beneficial owner1.

E. If an individual has signing authority over an account but does not act on a professional basis as a manager of funds, the responsible private banker must understand and document the relationship between that authorized signer, the account holder, and, if different, the beneficial owner of the account. This is consistent with the Wolfsberg Principle 1.2.4, which states that the bank will understand and document the relationship between the authorized signatory, the client and, if different, the beneficial owner of the account1.

1: Wolfsberg Anti-Money Laundering Principles for Private Banking (2012)

Internet gambling is an ideal web-based money laundering method because it allows criminals to move funds across borders quickly, anonymously, and with minimal oversight12. Internet gambling sites can facilitate the placement, layering, and integration stages of money laundering by accepting cash deposits, issuing virtual credits, allowing bets on various games, and paying out winnings through different payment methods12. Internet gambling also poses challenges for law enforcement and regulators, as it operates in a complex and dynamic environment that involves multiple jurisdictions, service providers, and technologies12.

ACAMS CAMS Study Guide (the 6th edition), Chapter 2: Money Laundering Risks and Methods, page 671

ACAMS Today, The Growing Threat of Online Gambling Money Laundering2

Arobust customer identification programis critical in preventing money laundering and financial crime.

Option B (Correct):Understanding the nature and purpose of a customer’s business helps banks assess thelegitimacyof financial activity and identify potential risks.

Option D (Correct):Understandingwhya customer selects a particular bank provides insights intopossible risk factors, such as jurisdictional concerns or access to certain financial instruments.

Option A (Incorrect):Limiting online activities is not a standard CDD (Customer Due Diligence) measure. Risk-based controls are applied but do not involve blanket restrictions.

Option C (Incorrect):While online verification is useful,in-person or government-sourced verificationis preferred.

The scenario described in the question presents several indicators of potential money laundering through real estate, which the broker should be aware of and report accordingly. The most relevant red flags are:

Value: The student wants to buy a home that is overvalued, meaning that the asking price is higher than the market value or the appraisal value of the property. This could indicate that the student is trying to launder a large amount of illicit funds in one transaction, or that the seller is colluding with the student to inflate the price and receive a kickback. Overvaluing or undervaluing properties is a common technique used by money launderers to manipulate the price of real estate and conceal the source or destination of their funds12.

Inconsistency: The student’s behavior and profile are inconsistent with the typical characteristics of a legitimate home buyer. The student cancels the viewing of the home at the last minute due to illness, which could suggest a lack of interest or a pretext to avoid scrutiny. The student also wants to buy an expensive home despite being a student, which could indicate a discrepancy between the student’s income and the source of funds. Moreover, the student disregards the broker’s objections to the asking price, which could imply that the student is not concerned about the value or quality of the property, but rather the amount of money that can be laundered through it34.

Transaction speed: The student wants to quickly buy the home, which could indicate a sense of urgency or pressure to move the illicit funds before they are detected or seized by the authorities. Money launderers often use fast transactions to avoid raising suspicion or leaving a paper trail. Transaction speed is especially relevant when combined with other red flags, such as cash payments, anonymous buyers, or overvalued properties5 .

A compliance officer should cooperate with the law enforcement inquiry as much as possible, but also ensure that the request is valid, lawful, and does not violate any confidentiality or privacy obligations. Therefore, the compliance officer should collaboratewith the FI’s designated department, such as the legal counsel, the senior management, or the board of directors, to determine the appropriate course of action to comply withthe request12. The compliance officer should also ensure that all communication, written and oral, is funneled through a centralized place, and that the FI maintains a record of the request and the response12.

1: Requests by Law Enforcement for Financial Institutions to Maintain Accounts, FinCEN, 2014

2: Best Practices for Compliance and Enforcement-Related Information Requests, EPA, 2018

According to the Certified Anti-Money Laundering Specialist (CAMS) Sixth Edition manual, the AML compliance officer should inform senior leadership and the board of the investigation (page 124) and monitor the progress of the investigation by keeping clear records (page 127). Additionally, the AML compliance officer should provide all information to the FIU as soon as possible to avoid delays (page 126).

According to the CAMS Manual, when a financial institution is being investigated by the financial intelligence unit (FIU), the AML compliance officer should inform senior leadership and the board of the investigation and monitor the progress of the investigation by keeping clear records. The manual states:

"The AML compliance officer should inform senior leadership and the board of any investigations and then monitor the progress of the investigation by keeping clear records of what has been requested and submitted, deadlines and extensions granted, and any findings or reports received. This will allow the financial institution to respond effectively and efficiently to the investigation and take appropriate action if necessary." (CAMS Manual, Section 7.4.1 - Financial Intelligence Units, p. 366)

"The first European Union Directive, “Prevention of the Use of the Financial System for the Purpose of Money Laundering (Directive 91/308/EEC),” was adopted by the Council of the European Communities in June 1991. Like all directives adopted by the Council, it required member states to achieve (by amending national law, if necessary) the specified results. This First Directive required the members to enact legislation to prevent their domestic financial systems from being used for money laundering"

Funds transfers are electronic payments that move money from one account to another, either within the same financial institution or across different institutions, countries, or currencies1. Funds transfers are commonly used for legitimate purposes, such as remittances, trade, or investment, but they can also be abused by money launderers, terrorists, or fraudsters to move illicit funds or conceal their origin or destination2. Therefore, financial institutions and other entities that offer funds transfer services are required to apply anti-money laundering and counter-terrorism financing (AML/CFT) measures, such as customer due diligence, transaction monitoring, record-keeping, and reporting of suspicious activities2.

One of the red flags for funds transfers that may indicate money laundering or other criminal activity is when funds transfers are repeatedly sent to the same beneficiary out of line with the business purpose3. This could suggest that the originator and the beneficiary are colluding to layer or integrate illicit funds, or to evade reporting or sanctions requirements. For example, a business may send multiple funds transfers to the same supplier, but the amounts or frequencies do not match the invoices or contracts, or the supplier is located in a high-risk jurisdiction or is subject to sanctions. Alternatively, an individual may send frequent funds transfers to the same person, but the relationship or the reason for the transfers is unclear or inconsistent, or the person is associated with a criminal or terrorist organization. In such cases, the financial institution or the funds transfer service provider should conduct enhanced due diligence, verify the source and purpose of the funds, and report any suspicious activity to the relevant authorities.

1: Wire Transfer Definition - Investopedia

2: International Standards on Combating Money Laundering and the Financing of Terrorism & Proliferation - The FATF Recommendations | FATF

3: Wire Transfer Red Flags: Money Laundering & Fraud Risks - Alessa1

The risk-based approach (RBA) is an essential foundation of the FATF Recommendations, as it allows countries, competent authorities and financial institutions to adopt a more flexible set of measures to target their resources more effectively and apply preventive measures that are commensurate to the nature of risks, in order to focus their efforts in the most effective way. The RBA is not optional, but a prerequisite for the effective implementation of the FATF Standards. The RBA requires the identification, assessment and understanding of the ML/TF risks to which the countries and FIs are exposed, and the implementation of AML/CFT measures that are proportionate and tailored to those risks. The RBA is not a “zero failure” approach, but a way to mitigate the risks in the most efficient and effective manner.

FATF Recommendations, Introduction, page 11

FATF Guidance on the Risk-Based Approach to Combating Money Laundering and Terrorist Financing - High Level Principles and Procedures, page 3

Risk-based Approach (RBA), What is the Risk-based Approach (RBA)?

Layering is the second stage of the money laundering process, in which the launderer moves the funds around to create distance and confusion between the source and the destination of the illicit proceeds. Layering often involves multiple transactions, such as wire transfers, shell companies, trusts, and offshore accounts, that make it difficult to trace the origin and ownership of the funds. Layering is intended to disguise the audit trail and provide anonymity for the launderer12.

Placement is the first stage of the money laundering process, in which the launderer introduces the illicit proceeds into the financial system, often by breaking them into smaller amounts or using cash-intensive businesses12.

Structuring is a technique used in the placement stage, in which the launderer deposits or withdraws cash in amounts below the reporting threshold to avoid detection or suspicion12.

Integration is the third and final stage of the money laundering process, in which the launderer reintroduces the funds into the legitimate economy, often by purchasing assets, investing in businesses, or mixing them with legal income12.

 1: ACAMS (2020), Study Guide for the Certification Examination, 6th Edition, ACAMS, Miami, FL, USA, www.acams.org/en/cams-certification-package-6th-edition, pp. 12-14. 2: ACAMS (2020), CAMS Examination Preparation Video, 6th Edition, ACAMS, Miami, FL, USA, www.acams.org/en/cams-certification-package-6th-edition, Module 1.

FIUsexchange information through secure platformsto investigate financial crime cases.

Option B (Correct):TheEgmont Secure Webis theprimary communication platformforFIUs globally.

Option A (Incorrect):MLATsallow forformal legal cooperationbut arenot an FIU-to-FIU communication tool.

Option C (Incorrect):INTERPOL databasestrackcriminal records, not financial intelligence data.

Option D (Incorrect):TheUN Sanctions Listprovidesentity restrictions, not an FIU data-sharing mechanism.

In anEnterprise-Wide Risk Assessment (EWRA),residual riskis the level of risk that remains after applying mitigating controls to theinherent risk(the risk present before controls are applied).

In this scenario, theinherent risk is highdue to the nature of private banking—high net worth clients,cross-border transactions,complex ownership structures, andhigh-value financial products. However, the institution has implementedrobust CDD and EDD, as well asadvanced transaction monitoring systems.

According to the CAMS Study Guide – 6th Edition, wheneffective and properly implemented controlsare in place, they cansignificantly reducethe residual risk—even in high-risk business areas like private banking. However, no control framework caneliminate all riskentirely.

Option Ais correct: Controls can significantly reduce the residual risk when strong, effective systems and procedures are in place.

Option Bis partially true but suggests inadequacy, which is not indicated here.

Option Cincorrectly assumes residual risk cannot be lowered even with controls.

Option Dis incorrect because residual riskcannot be eliminated entirely.

This is the correct answer because the institution must ensure that the beneficiaries of the transfers are not on a terrorist watch list, such as the United Nations Security Council Consolidated List, the U.S. Treasury Office of Foreign Assets Control (OFAC) Specially Designated Nationals and Blocked Persons List, or the European Union Terrorism List. These lists contain the names of individuals, entities, and groups that are subject to sanctions or other measures due to their involvement or association with terrorism or terrorist financing. The institution must screen the beneficiaries of the transfers against these lists and report any matches or hits to the relevant authorities. Failing to do so may expose the institution to legal, regulatory, or reputational risks, as well as facilitate the financing of terrorism.

ACAMS CAMS Certification Video Training Course1, Module 3: International AML/CTF Standards, Lesson 3.2: International AML/CTF Standards

ACAMS CAMS Study Guide, 6th Edition2, Chapter 3: International AML/CTF Standards, Section 3.2: International AML/CTF Standards, pp. 57-58

ACAMS CAMS Examination Preparation Seminar, 6th Edition3, Chapter 3: International AML/CTF Standards, Section 3.2: International AML/CTF Standards, Slide 12

According to the CAMS study guide, chapter 4, page 1191, transaction records include any records that reflect the movement of funds or assets, such as wire transfers, checks, deposits, withdrawals, securities trades, etc. Therefore, items 1, 2, and 4 are examples of transaction records that should be delivered in response to a legal request. Item 3, signature cards, are not transaction records, but rather account opening documents that contain the customer’s name, address, identification, and signature. These documents may be relevant for customer due diligence or identification purposes, but they do not reflect the transaction activities of the customer.

1: ACAMS CAMS Study Guide - 6th Edition, Chapter 4, page 119: https://www.acams.org/wp-content/uploads/2019/09/ACAMS-CAMS-Study-Guide-6th-Edition-Chapter-4.pdf

 New business products should be evaluated for AML concerns before they are launched into the market. This is because new products may introduce new risks or vulnerabilities that could be exploited by money launderers or terrorist financiers. By conducting a pre-launch assessment, a financial institution can identify and mitigate these risks, design appropriate controls and procedures, and ensure compliance with the relevant laws and regulations. A pre-launch assessment can also help a financial institutionto align its AML strategy with its business objectives, and avoid potential reputational damage or regulatory sanctions.

9 Things to Consider When Evaluating an AML Solution

CAMS Study Guide 6th Edition, page 38.

 According to the Egmont Group of Financial Intelligence Units Principles for Information Exchange Between Financial Intelligence Units, one of the channels for the exchange of information between FIUs is the Egmont Secure Web (ESW), which is a secure and encrypted communication system that allows FIUs to share information and expertise1. The ESW is accessible to all members of the FIU who have been authorized by the FIU head or his/her delegate1. The other options are not correct because:

B. Information sharing is not always conducted according to processes contained in Memoranda of Understanding (MOUs). The Egmont Group encourages FIUs to exchange information regardless of the existence of an MOU1.

C. Intelligence is not shared via messaging applications. This would not be a secure or reliable way of exchanging sensitive information.

D. Investigators are not allowed to request information from a foreign FIU directly. Requests for information must be made through the FIU of the requesting country1.

Egmont Group of Financial Intelligence Units Principles for Information Exchange Between Financial Intelligence Units

The Egmont Group of Financial Intelligence Units | FinCEN.gov

The Egmont Group of The Egmont Group of Financial Intelligence Units

An offshore company is a legal entity that is incorporated or registered in a foreign jurisdiction, usually with low or no taxes, high confidentiality, and minimal regulation1. Offshore companies are often used to hide beneficial ownership, as they can create complex and opaque structures that obscure the identity and control of the real owners and beneficiaries of the assets or transactions involved2. Offshore companies can also use nominee directors and shareholders, trust and company service providers, and shell companies to further conceal beneficial ownership3. According to the web search results, offshore companies are among the most common vehicles for money laundering, tax evasion, corruption, and other illicit activities4 .

1: What is an offshore company? - ACAMS

2: Guidance on Transparency and Beneficial Ownership - FATF

3: Concealment of Beneficial Ownership - FATF-Egmont Group

4: What’s a Beneficial Owner and Why Does it Matter? - Dun & Bradstreet

The Panama Papers: Exposing the Rogue Offshore Finance Industry - ICIJ

According to the ACAMS CAMS Certification Video Training Course1, one of the red flags for money laundering is “transferring funds to or from foreign countries or jurisdictions that are known to have weak anti-money laundering standards or are considered high-risk for money laundering or terrorist financing” (Module 2, Lesson 3, Part 2). This is also consistent with the suspicious activity report (SAR) criteria, which require financial institutions to report transactions that “involve funds derived from illegal activity or are intended or conducted to hide or disguise funds or assets derived from illegal activity” or “involve the use of the financial institution to facilitate criminal activity” (31 CFR § 1020.320(a)(2)). Therefore, the customer’s request to transfer funds to accounts in three different foreign jurisdictions should be the focus of the SAR, as it may indicate an attempt to launder money or finance terrorism.

ACAMS CAMS Certification Video Training Course

[31 CFR § 1020.320 - Reports by banks of suspicious transactions]

Casinos and gambling institutionsare highly vulnerable to money launderingbecause they allow theconversion of cash into chips, checks, or electronic credits, which can later be redeemed as “clean” funds.

Option A (Correct):A privately held company funding multiple patrons' betting accounts is highly suspiciousand may indicate:

Structuring/smurfing, where multiple individuals are used to move illicit funds.

Third-party money laundering, where the real source of funds is obscured.

Trade-based money laundering, if linked to non-gaming businesses.

Why Other Options Are Incorrect:

Option B (Incorrect):Placing multiple bets on the same eventis not inherently suspiciousunless linked tofraudulent betting patterns.

Option C (Incorrect):Large chip purchases in cashmay requirereporting, but they do not necessarily indicatemoney laundering.

Option D (Incorrect):Transferring winnings to another operator may beunusual, butnot automatically suspiciousunless the amount is large and unjustified.

Common Money Laundering Techniques in Casinos:

Chip Walking– Buying chips with illicit funds and cashing them out later as "clean" funds.

Casino Account Transfers– Using multiple accounts or third-party accounts to move funds.

High-Value Gambling with No Loss Intent– Betting on both sides of an event to ensure clean withdrawal of funds.

Best Practices for Casino AML Compliance:

Monitor suspicious large transactions and third-party funding activities.

Perform enhanced due diligence (EDD) on high-risk patrons.

File Suspicious Transaction Reports (STRs) for unusual gambling activity.

The auditor should include the regulatory violation in the audit report and report it to the board of directors. This is because the auditor has the responsibility to report any findings of non-compliance or material weaknesses in the institution’s internal controls, policies, and procedures. The auditor should also provide recommendations for corrective actions and follow-up on their implementation. The board of directors has the ultimate oversight and accountability for the institution’s compliance program and should be informed of any significant issues or risks that may affect the institution’s reputation, operations, or regulatory status12.

1: CAMS Certification Package - 6th Edition | ACAMS, Chapter 6: Developing an Effective Anti-Money Laundering Program, p. 125-126 2: The Wolfsberg Group, The Wolfsberg Anti-Money Laundering Principles for Correspondent Banking, October 2014, p. 7, https://www.wolfsberg-principles.com/sites/default/files/wb/pdfs/Wolfsberg-Correspondent-Banking-Principles-2014.pdf

According to the Wolfsberg Anti-Money Laundering (AML) Principles for Correspondent Banking, one of the key aspects of establishing and maintaining a correspondent relationship is to conduct a risk-based due diligence on the respondent bank, which includes obtaining approval from at least one person other than the person sponsoring the relationship12. This is to ensure that the correspondent bank has a clear understanding of the nature, purpose, and expected activity of the relationship, as well as the respondent bank’s ownership, governance, AML policies, and customer base12.

Another aspect of the Wolfsberg AML Principles is to recognize and assess the factors that may increase the risk inherent in a correspondent relationship, such as the involvement of politically exposed persons (PEPs), the presence of downstream (nested) correspondents, the geographic location of the respondent bank and its customers, and thetypes of products and services offered by the respondent bank12. These factors may require enhanced due diligence, monitoring, and reporting of suspicious activities by thecorrespondent bank, as well as the application of appropriate risk mitigation measures12.

1: Wolfsberg Correspondent Banking Principles 20221

2: Wolfsberg Anti-Money Laundering Principles for Correspondent Banking2

Non-compliance with anti-money laundering (AML) laws and regulations can lead to severe consequences for both financial institutions and individuals. One of the indirect consequences is the imposition of punitive fines. These fines can vary based on the type of violation and the institution’s willingness to address the issue. Additionally, non-compliance may damage a company’s reputation, impacting its standing in the market and potentially leading to financial losses beyond the fines themselves123.

Money laundering risks arise whentransaction patternsareinconsistent with a business’s expected activity.

Option D (Correct):Multiple cash deposits in different branchesis a knownstructuring (smurfing) technique, used toevade cash transaction reporting thresholds.

Option A (Incorrect):Depositing intoboth checking and savings accountsisnormal behavior.

Option B (Incorrect):Irregular incoming paymentsmay require further review but arenot inherently suspicious.

Option C (Incorrect):Industry-related expenses (e.g., conference tickets)arenormal business activity.

A suspicious transaction report (STR) is a document that financial institutions must file with the relevant authorities when they detect or suspect any activity that may be related to money laundering, terrorist financing, or other criminal offences. An STR should include the details of the customer, the transaction, the reason for suspicion, and any other relevant information.

One of the indicators of suspicious activity is the use of financial instruments, such as checks, money orders, or cashier’s checks, that are drawn on other institutions and deposited in amounts under the currency reporting thresholds. This may suggest that the customer is trying to avoid the detection and reporting of large cash transactions, which is a technique known as structuring or smurfing. Structuring is illegal and may indicate that the customer is laundering money from illicit sources or evading taxes.

Another indicator of suspicious activity is the use of financial instruments that are sequentially numbered, meaning that they have consecutive serial numbers. This may suggest that the customer has obtained the instruments from the same source or issuer, and that they are using them to launder money or finance illegal activities. Sequentially numbered instruments may also indicate that the customer is involved in fraud, such as check kiting or counterfeit checks.

Therefore, if a bank conducts a quarterly review on a retail customer’s account and finds that the customer has made a number of large deposits of financial instruments drawn on other institutions in amounts under the thresholds, and that the instruments were sequentially numbered, the bank will most likely file an STR. This is because this activity does not fit the customer’s historical profile, and it raises a high level of suspicion that the customer is engaged in money laundering or other criminal activities.

CAMS Study Guide - 6th Edition, Chapter 4, Section 4.2, page 108

Answers to Frequently Asked Questions Regarding Suspicious Activity Reporting and Other Anti-Money Laundering Considerations, Question 5, page 7

Anti-money laundering – handling suspicious activity, Section 6.3, page 3

Tell us about suspicious activity that may be linked to money laundering, Section 3, page 1

According to the FATF Recommendation 40, which sets the standards for international cooperation in relation to money laundering, associated predicate offences and terrorist financing, countries should ensure that exchanged information is used only for the purpose for which it was sought or provided, and that any dissemination or use of the information beyond the original scope is subject to prior authorization by the requested competent authority. Moreover, countries should have safeguards in place to ensure that the information exchanged is protected in a manner that is consistent with the way they protect their own information of a similar nature. One of the possible safeguards is to require the use of non-disclosure agreements or other legal instruments to prevent unauthorized access or disclosure of the exchanged information.

= FATF Recommendation 40, Section A.3; Compliance Trends: AML Information Sharing, Section: Cross-border AML information sharing; Safeguarding AML Information Exchanged with Other Countries, Section: Answers.

 the bank teller should not provide any information to the police officer without consulting the compliance officer first. The compliance officer is responsible for ensuring that the bank follows the applicable laws and regulations regarding customer privacy, dataprotection, and anti-money laundering. The compliance officer can verify the authenticity and validity of the request, determine the appropriate response, and obtain any necessary approvals or authorizations before releasing any information. The bank teller should not reject the request outright, as this could be seen as uncooperative or obstructive. The bank teller should also not provide the information after management approval, as this could bypass the compliance officer’s role and expose the bank to legal or regulatory risks.

Bank Records and Financial Privacy Laws - FindLaw1

Anti-Money Laundering (AML) Risk Assessment | ACAMS2

What is the Difference Between Smurfing and Structuring?3

The USA PATRIOT Act is a comprehensive legislation that was enacted in 2001 to enhance the powers and tools of the US authorities to combat money laundering, terrorist financing, and other threats to the national security and the integrity of the financial system. The USA PATRIOT Act contains several provisions that affect the relationship between US banks and foreign banks that maintain correspondent accounts in the US.

One of these provisions is Section 319, which allows the US authorities to seize the funds of a foreign bank held with a US bank, if the foreign bank refuses to comply with a subpoena or a request for records related to the correspondent account. This provision is intended to prevent foreign banks from using their correspondent accounts in the US to facilitate transactions involving tainted funds, such as proceeds of crime, funds intended to support terrorism, or funds subject to sanctions or asset freezing orders. Section 319 also requires US banks to maintain records of the owners and agents of foreign banks that have correspondent accounts with them, and to terminate such accounts if requested by the US authorities.

Therefore, if a foreign bank maintains a correspondent account in the US, and the US authorities find out that the account has been used to facilitate a transaction involving tainted funds, the US authorities can seize the funds of the foreign bank held with the US bank, under the authority of the USA PATRIOT Act.

CAMS Study Guide - 6th Edition, Chapter 1, Section 1.2, page 10

USA PATRIOT Act, Section 319, page 55-57

The USA PATRIOT Act: A Legal Analysis, Section III, page 9-10

[The USA PATRI

FATF and CAMS 6th Edition highlight certain third-party activities as red flags for money laundering in the life insurance sector:

Payments are regularly received from third parties that have no apparent relationship with the policy holder (C):“Red flags include payments made by third parties, especially where there is no apparent connection between the third party and the policy holder.”(FATF, Risk-Based Approach for Life Insurance Sector, Section IV: Red Flags; CAMS 6th Edition, Customer Due Diligence for Life Insurance)

A customer names an apparently unrelated third party as a beneficiary (D):“Another warning sign is when beneficiaries have no apparent relation to the policyholder.”(FATF, Ibid; CAMS 6th Edition, Life Insurance ML/TF Red Flags)

Incorrect Options:

A: Consulting an attorney is not, by itself, a red flag.

B: Policy transfer may warrant review but is not specifically a red flag for third-party involvement.

 the compliance officer should cooperate with the law enforcement investigation, but only after receiving a formal written request that specifies the scope and purpose of the information sought. This is to ensure that the compliance officer complies with the legal and regulatory obligations of the bank, such as confidentiality, privacy, and data protection. The compliance officer should also document the request and the information provided, and report the incident to the senior management and the board of directors as appropriate.

FFIEC BSA/AML Assessing the BSA/AML Compliance Program - BSA Compliance Officer, section “BSA Compliance Officer”, paragraph 3: “The BSA compliance officer is responsible for ensuring that the bank’s BSA/AML compliance program is implemented effectively, including timely updates in response to changes in regulations or business activities, and for managing all aspects of the BSA/AML compliance program. The BSA compliance officer is also responsible for ensuring that the bank’s BSA/AML compliance program is communicated to all personnel and that adequate training is provided to appropriate personnel.”

Guidelines on the role of AML/CFT compliance officers, section “Guidelines on the role of AML/CFT compliance officers”, paragraph 36: “The AML/CFT compliance officer should ensure that the institution cooperates with the competent authorities, including by providing them with all the information they require in a timely manner, in accordance with the applicable legal and regulatory framework.”

Anti-Money Laundering Compliance Officer Job Description, section “Responsibilities of an AML Compliance Officer”, bullet point 6: “Cooperate with law enforcement and regulatory bodies as required.”

According to the CAMS Certification Package - 6th Edition1, a financial institution that processes a wire transfer is required to file a suspicious transaction report (STR) in thejurisdiction where it is located, if it detects any red flags or indicators of money laundering, terrorism financing, or other financial crimes. The financial institution does not need to file an STR in the jurisdictions of the originator or the beneficiary of the wire transfer, unless it has a branch or a subsidiary there. Therefore, the correct answer is A. The transaction in Country A.

CAMS Certification Package - 6th Edition1, Chapter 4: Compliance Standards for Anti-Money Laundering (AML) and Combating the Financing of Terrorism (CFT), Section: Wire Transfers, pp. 161-162.

By delivering the same annual refresher training to all employees, the compliance officer could miss the opportunity to update the staff on any new trends, developments, or risks that have emerged in the anti-money laundering field. For example, new typologies, indicators, technologies, or best practices could be relevant for the staff to be aware of and apply in their daily work. Moreover, the compliance officer could also miss the chance to share any links to enforcement actions identifying violations in other financial institutions that could serve as lessons learned or case studies for the staff to avoid similar mistakes or gaps in their compliance program.

ACAMS CAMS Certification Video Training Course, Module 5: Risk Management, Lesson 5.4: Training1

ACAMS CAMS Certification Study Guide, 6th Edition, Chapter 5: Risk Management, Section 5.4: Training2

TheBasel Committee’s AML guidelinesemphasizerisk-based customer due diligence (CDD) and beneficial ownership transparency.

Option A (Correct):CDD policies must be risk-basedto applyenhanced due diligence (EDD) for high-risk customersandsimplified due diligence (SDD) for low-risk customers.

Option C (Correct):Banksmust verify the identity of customers and beneficial ownersto prevent financial crime risks.

Why Other Options Are Incorrect:

Option B (Incorrect):Numbered accountsare not strictly prohibitedbut requirestrict transparency and due diligence measures.

Option D (Incorrect):CDD proceduresmust be risk-based, not uniform across all customers.

Option E (Incorrect):Transactionsshould not be processed until full due diligence is completed, except in rare cases where regulatory exceptions apply.

Best Practices for Risk-Based Customer Due Diligence:

Apply EDD for high-risk entities (e.g., PEPs, offshore companies).

Ensure full beneficial ownership transparency.

Implement ongoing transaction monitoring for risk assessment.

 According to the AML Directive of the EU, obliged entities, such as banks and other financial institutions, are required to apply enhanced vigilance in business relationships and transactions involving high-risk third countries, which are those identified by the Commission as having strategic deficiencies in their anti-money laundering and countering the financing of terrorism regimes1. The types of enhanced vigilance requirements are basically extra checks and control measures which are defined in article 18a of the Directive1. However, these requirements are not exhaustive, and obliged entities should also implement additional mitigating measures that are complementary to the enhanced customer due diligence procedures, in accordance with a risk based approach1. This means that obliged entities should assess the level of risk posed by each customer, product, service, transaction, or delivery channel, and apply appropriate measures to mitigate those risks2. The additional mitigating measures may include, for example, obtaining additional information on the customer and the beneficial owner, applying additional elements of enhanced monitoring, increasing the frequency and intensity of transaction testing, or requiring the first payment to be carried out through an account in the customer’s name with a bank subject to similar customer due diligence standards1.

1: Directive (EU) 2018/843 of the European Parliament and of the Council of 30 May 2018 amending Directive (EU) 2015/849 on the prevention of the use of the financial system for the purposes of money laundering or terrorist financing, and amending Directives 2009/138/EC and 2013/36/EU (Text with EEA relevance)

2: Guidance on Risk Factors, EBA, 2021

Financial Intelligence Units (FIUs) are national agencies that collect, analyze, and disseminate information on suspicious or unusual financial activity, such as money laundering and terrorist financing, to relevant authorities. One of their main functions is to disseminate the results of their analysis to law enforcement agencies in a timely manner, so that they can initiate investigations or prosecutions. This is also one of the standards set by the Financial Action Task Force (FATF), the global body that sets the anti-money laundering and counter-terrorist financing (AML/CFT) policies and recommendations. The other options are not the primary responsibilities of FIUs, although they may perform them as part of their mandate or in cooperation with other agencies.

What are Financial Intelligence Units (FIUs)? | Dow Jones

Financial Intelligence Units: An Overview - IMF

Financial Intelligence Units - Egmont Group

FATF Recommendation 29 - Financial Intelligence Units (page 17)

According to the Basel Committee on Banking Supervision principles, the most important question the banker should ask when opening a numbered or alternate name account is who will control the account. This is because such accounts pose a higher risk of money laundering and terrorist financing, as they can be used to conceal the identity and beneficial ownership of the funds. Therefore, the banker should perform enhanceddue diligence and verify the identity and source of funds of the person who has the authority to operate the account, as well as the purpose and nature of the business relationship12

The other questions are less relevant or secondary to the issue of control. The inheritance of the proceeds in the event of the businessman’s death is a matter of succession law and does not affect the identification of the beneficial owner. The amount of money deposited into the account may indicate the level of risk, but does not reveal the origin or destination of the funds. The account-opening date is a procedural detail thatdoes not affect the compliance with the anti-money laundering and counter-terrorist financing standards12

1: Basel Committee on Banking Supervision - Core principles for effective banking supervision, 2012, Principle 14 and Essential Criterion 14.1

2: Basel Committee on Banking Supervision - Sound management of risks related to money laundering and financing of terrorism, 2014, Paragraphs 30 and 31

 Predicate offenses are the criminal activities that generate the proceeds that are later laundered through money laundering schemes. A country that does not have strong predicate offenses and is lax in prosecuting AML cases could suffer from increased organized crime and corruption, as criminals would have more opportunities and incentives to engage in illicit activities and evade detection and punishment. Organized crime and corruption can have serious social and economic consequences for a country, such as undermining the rule of law, eroding public trust, threatening national security, harming human rights, reducing economic growth, and distorting market competition123.

AML compliancemust be balanced with data privacy laws, such asGDPR (EU), CCPA (U.S.), and jurisdictional banking secrecy laws.

Option A (Correct):Data protection laws regulate how customer information can be shared internallyand externally, ensuringconfidentiality and regulatory compliance.

Option B (Incorrect):Enterprise risk assessments do not determine data sharing rules; legal and regulatory policies do.

Option C (Incorrect):Risk rating does not impact legal data-sharing restrictions.

Option D (Incorrect):AML policies must align with data protection laws, not override them.

Key Data Privacy Considerations in AML Compliance:

GDPR (Article 6) requires a legal basis for processing personal data, including AML investigations.

Banking secrecy laws restrict sharing certain customer information without consent or legal obligation.

Internal information-sharing policies must be clear on what AML teams can disclose.

Best Practices for AML & Data Privacy Compliance:

Consult legal teams before sharing AML-related data internally or externally.

Ensure compliance with GDPR, CCPA, and banking secrecy laws.

Minimize data sharing to what is strictly necessary.

Terrorist financing (TF) differs from traditional money laundering, as funds can originate fromlegitimate sources(e.g., donations, charities) and often involvelow-value transactions.

Option A (Correct):Non-profits with no online presencecan beshell organizations used to finance terrorism.

Option C (Correct):Small-dollar payments to high-risk jurisdictions(e.g., FATF-listed countries)may indicate terrorist funding activity.

Why Other Options Are Incorrect:

Option B (Incorrect):Crowdfunding payments with transparency and project detailsare generallylow-risk.

Option D (Incorrect):Charities helping refugeesmay behigh-risk but not automatically suspicious.

Option E (Incorrect):Structuring below reporting thresholds is more indicative of money laundering than terrorist financing.

Red Flags for Terrorist Financing:

Frequent low-value transactions to conflict zones.

Use of charities and non-profits as fronts for terror groups.

Funds moving through unregulated crowdfunding platforms.

Best Practices for Detecting Terrorist Financing:

Identify transactions involving known terrorist financing typologies.

Enhance monitoring of non-profit organizations operating in high-risk regions.

Use negative news screening to detect links to sanctioned entities.

According to the Basel Committee on Banking Supervision’s Customer Due Diligence for Banks1, banks should have policies and procedures to identify and manage high-risk customers, such as those who provide false or incomplete information, have complex oropaque beneficial ownership structures, or are involved in large or unusual transactions. In such cases, banks should apply enhanced due diligence measures, such as obtaining additional information or documentation, verifying the source and purpose of funds, conducting more frequent and intensive monitoring of account activity, and reporting any suspicious transactions to the relevant authorities. Therefore, the best course of action for the bank in this scenario is to implement enhanced due diligence procedures to monitor the account for suspicious activity, as option B suggests. Option A is not recommended, as it would imply that the bank accepts the customer without verifying his identity and background, which would expose the bank to money laundering and terrorist financing risks. Option C is not advisable, as it would terminate the relationship without investigating the origin and destination of the funds, which could hinder the efforts of law enforcement agencies to trace and recover illicit assets. Option D is also not appropriate, as it would involve sending a check to a customer whose address and identity are not confirmed, which could facilitate money laundering and fraud.

5: Customer due diligence for banks - Bank for International Settlements, October 2001, pages 8-9, 13-14.

The board of directors has the ultimate responsibility within a bank for ensuring that the bank has a comprehensive and effective BSA/AML program and oversight framework that is reasonably designed to ensure compliance with applicable regulations. According to the Federal Financial Institutions Examination Council (FFIEC) BSA/AML Examination Manual, the board of directors must approve the BSA/AML compliance program, which includes the BSA/AML policy, internal controls, independent testing, designatedBSA/AML compliance officer, and training1. The board of directors must also provide sufficient resources, ensure qualified staff, and hold senior management accountable for implementing and adhering to the BSA/AML compliance program1.

1: FFIEC BSA/AML Examination Manual, Board of Directors and Senior Management Oversight

Thethird line of defense (internal audit)is responsible forproviding independent assurance to the Board of Directorsaboutthe effectiveness of AML/CFT controls.

Option C (Correct):Theinternal audit function provides independent review and oversight of AML risksto theboard.

Option A (Incorrect):There is no "fourth line of defense" in AML risk management frameworks.

Option B (Incorrect):Thesecond line (compliance & risk management)is responsible formonitoring AML processes but does not provide direct board assurance.

Option D (Incorrect):Thefirst line (business units) manages AML risks dailybut does not provide board assurance.

Best Practices for Internal Audit in AML Programs:

Ensure audits are risk-based and independent.

Report findings directly to the board’s audit committee.

Regularly test AML controls to assess effectiveness.

A: The first step in any suspicious activity investigation is to review the transaction history and other relevant account information to establish context, identify patterns, and determine if the behavior is consistent with known typologies of money laundering.

“The initial phase of an AML investigation is to review relevant account information and transaction activity to assess whether a SAR filing is warranted.”

This approach ensures that any subsequent decisions, such as escalation, SAR filing, or customer outreach, are based on a comprehensive understanding of the facts.

 The board of directors or designated specialized committee should be provided with statistical data regarding SARs filed during the reported period, such as the number, type, and amount of SARs, as well as any trends or patterns identified. This would enable them to oversee the effectiveness of the anti-money laundering program and ensure compliance with regulatory requirements. Providing too much detail, such as names of customers or copies of SARs, could compromise the confidentiality of the SARs and expose the institution to legal risks.

TheFATF 40 Recommendationsprovide aglobal AML/CFT framework, and theImmediate Outcomesassess effectiveness.

Option A (Correct):Therisk-based approach (RBA)is the foundation ofmodern AML complianceand is mandated byFATF Recommendation 1.

Option B (Incorrect):Interpretive notes are public documentsavailable to all jurisdictions, not private.

Option C (Incorrect):The40 Recommendations are regularly updated, incorporating new technology (e.g., virtual assets in 2019).

Option D (Incorrect):The11 Immediate Outcomesassess theeffectiveness of AML systems globally, not just for high-risk countries.

According to the Certified Anti-Money Laundering Specialist (the 6th edition), Section 2.2.5 Suspicious Activity Reporting (SAR) Requirements, a Suspicious Activity Report (SAR) filing is required when a financial institution is aware of, or suspects, a possible violation of law or regulation, or any other suspicious activity related to money laundering, terrorist financing, or other unlawful activity. In this case, Answer A would require a Suspicious Activity Report filing as the deposits are made on a daily basis without providing a legitimate purpose.

According to the Financial Crimes Enforcement Network's (FinCEN) guidance, one example of a suspicious transaction is "frequent deposits of cash or monetary instruments in amounts under $10,000 to the same account, or a pattern of such deposits, unless the financial institution has a reasonable explanation for the pattern." (CAMS Manual, 6th Edition, Page 209)

Money Services Businesses (MSBs)are commonly recognized by regulatory and supervisory authorities as havinghigher inherent AML/CFT risk, particularly due to certain business characteristics.

Option B – The prevalence of international wire transfers:

MSBs often facilitatecross-border transactions, which present a higher money laundering and terrorist financing risk due to challenges in verifying customer identity, the origin of funds, and the end destination—especially when dealing with higher-risk jurisdictions.

Option D – The cash-intensive nature of the services offered:

Many MSBs deal primarily incash, which increases the risk ofanonymous transactionsandfunds layering, making it harder to trace illicit activity. Cash is the most vulnerable medium for placement of illicit funds into the financial system.

Option AandOption E, while involving modern technologies,can actually reduce riskwhen implemented with proper controls (e.g., secure digital onboarding and traceable payments enhance auditability).

Option Cdoes not in itself signal high AML risk unless combined with other red flags.

A, B, C, D are all identified by CAMS 6th Edition and FATF as primary financial crime risks for e-commerce platforms:

A: Platforms can be exploited to launder money by processing the movement of criminal proceeds under the guise of legitimate sales.

B: Use of stolen credit/debit cards for online purchases is a common fraud and ML technique.

C: Fraud schemes (such as chargebacks or fake listings) are widespread on e-commerce platforms.

D: E-commerce platforms can serve as fronts for illicit goods or services, masking the true nature of transactions.

E and F are not commonly cited as principal inherent risks in AML/CTF guidance.

This represents the highest risk factor for terrorist financing because it may indicate that the charity is diverting funds to support terrorist organizations or activities, or that it is acting as a front or conduit for terrorist financing. Disbursement of funds to entities unrelated to the purpose of the charity may also violate the donor’s intentions, the charity’s mission, or the applicable laws and regulations. A charity with unaudited accounts may have weak internal controls, governance, or transparency, which may increase the risk of misappropriation, diversion, or misuse of funds.

ACAMS CAMS Certification Video Training Course1, Module 2: Money Laundering Risks and Methods, Lesson 2.3: Money Laundering Risks and Methods by Sector

ACAMS CAMS Study Guide, 6th Edition2, Chapter 2: Money Laundering Risks and Methods, Section 2.3: Money Laundering Risks and Methods by Sector, pp. 40-41

ACAMS CAMS Examination Preparation Seminar, 6th Edition3, Chapter 2: Money Laundering Risks and Methods, Section 2.3: Money Laundering Risks and Methods by Sector, Slide 18

According to the Wolfsberg Group, a correspondent bank should evaluate the distribution of downstream correspondents and identify any direct or indirect issues when it permits “nested” relationships, which are arrangements where a respondent bank provides correspondent banking services to other banks that are not customers of the correspondent bank. This step is important to understand the types of financial institutions to whom the services are being offered and the potential risks they pose. The correspondent bank should also obtain information on the nature and extent of the nested activity, the due diligence performed by the respondent bank on the nested banks, and the controls and monitoring in place to prevent financial crime.

Wolfsberg Correspondent Banking Principles 20221, Section 4.5: Nested Relationships

Guidance on Correspondent Banking Services2, Section 3.2.2: Nested Correspondent Banking Relationships

According to the Certified Anti-Money Laundering Specialist (the 6th edition) Study guide, the CCO should advise the manufacturing customer that increased scrutiny of cross-border transfers may lead to delays and caution them to ensure that all necessary documentation is provided in order to facilitate a timely transfer. Additionally, the CCO should recommend that the customer contact the FATF to discuss the possibility of an independent review of the findings, as well as other options to mitigate the potential negative consequences.

Before sharing customer records within the same jurisdiction, an FI should consider the legal and regulatory framework that governs the protection of personal data and the disclosure of client information. Different jurisdictions may have different laws and rules regarding the privacy and confidentiality of customer data, the consent and notification requirements for data sharing, the purposes and scope of data sharing, and the safeguards and accountability measures for data protection. An FI should ensure that it complies with the applicable restrictions and obligations when sharing customer records within the same jurisdiction, and that it does not violate the rights and expectations of its customers.

CAMS Study Guide - 6th Edition, Chapter 3, Section 3.4, page 83

CAMS Dumps Certified Anti-Money Laundering Specialist (the 6th edition), Question 352, page 8

CAMS Dumps Certified Anti-Money Laundering Specialist (the 6th edition), Question 352, page 8

Transaction monitoring alerts requirefurther analysisto determine whether they indicategenuine suspicious activity or a false positive.

Option C (Correct):Requesting information from the relationship manager helps gather customer background details, past transaction patterns, and business rationale.

Option A (Incorrect):Below-the-line testing assesses system effectiveness but does not resolve an immediate AML alert.

Option B (Incorrect):Directly contacting a counterparty bank may violate privacy regulations and should only be done if escalation is required.

Option D (Incorrect):Restricting access without due diligence may lead to regulatory and reputational risks.

Best Practices for Investigating AML Alerts:

Review transaction history and customer risk profile.

Engage the relationship manager for business context.

Escalate to AML compliance teams if red flags persist.

Financial Intelligence Units (FIUs) are the primary channels for sharing financial intelligence both within countries and across borders. FIUs cooperate with each other and other relevant law enforcement, regulatory, or intelligence agencies in the fight against money laundering, terrorism financing, and other financial crimes.

According to the risk-based approach, financial institutions should apply enhanced due diligence and ongoing monitoring to higher-risk clients, and take appropriate measures to mitigate the risks of money laundering and terrorist financing. If the client exceeds the criteria of an acceptable risk model created by the institution, the institution shouldcommunicate the issues to the client and request remedial actions, such as providing additional information, documentation, or evidence of compliance. If the client does not cooperate or comply with the institution’s requirements, the institution should consider terminating the relationship with the client, as the risk may outweigh the benefits of continuing the business relationship.

ACAMS CAMS Certification Package - 6th Edition, Chapter 2: Risk Assessments, pp. 51-521

ACAMS CAMS Certification Package - 6th Edition, Chapter 4: Customer Due Diligence, pp. 97-981

ACAMS CAMS Certification Video Training Course, Module 2: Risk Assessments, Lesson 2.3: Risk-Based Approach2

ACAMS CAMS Certification Video Training Course, Module 4: Customer Due Diligence, Lesson 4.3: Enhanced Due Diligence

SAR information ishighly sensitive, and institutionsmust follow strict confidentiality rulesto protect investigations and avoid “tipping off” customers.

Option D (Correct):Statistical summaries (e.g., the number of SARs filed, trends, typologies)help the Board monitor AML riskswithout disclosing confidential details.

Option A (Incorrect):Providingall possible detailsmay violateSAR confidentiality laws.

Option B (Incorrect):Sharing full SAR copieswith non-compliance staff isnot permittedunder AML regulations.

Option C (Incorrect):Naming specific customers under SAR reviewrisks"tipping off"or leaking confidential information.

Best Practices for SAR Reporting to the Board:

Provide anonymized statistics on SAR trends.

Highlight emerging AML risks and compliance effectiveness.

Avoid disclosing specific cases or customer names.

The correct answer is B. Questioning reporting requirements. When a prospective customer questions reporting requirements during the account opening process, it may raise concerns about their intentions or understanding of anti-money laundering (AML) regulations. Financial institutions should investigate further to ensure compliance and assess any potential risks associated with the customer’s behavior1.

The correct next course of action is to request that the new product approval committee include the compliance officer. This is because the compliance officer has the responsibility to ensure that the new financial service complies with the applicable laws, regulations, and standards, and does not pose any undue risks to the institution or its customers. The compliance officer should be involved in the new product development process from the beginning, and provide guidance and feedback on the potential compliance implications and requirements of the new service12.

1: CAMS Certification Package - 6th Edition | ACAMS, Chapter 6: Developing an Effective Anti-Money Laundering Program, p. 121-122 2: FATF Guidance: The Role of Hawala and Other Similar Service Providers in Money Laundering and Terrorist Financing, October 2013, p. 28, http://www.fatf-gafi.org/media/fatf/documents/reports/Role-of-hawala-and-similar-in-ml-tf.pdf

According to the ACAMS study guide, one of the red flags for money laundering in crowdfunding platforms is “projects that are fully funded within a very short period of time, especially if the funding comes from a small number of donors or from a single donor” (p. 222). This could indicate that the project is a front for laundering illicit funds or financing terrorism. The other options are not necessarily indicative of money laundering risk, as they could be explained by legitimate factors such as the popularity, urgency, or ambition of the project.

ACAMS. (2020). Study Guide for the Certification Examination for Anti-Money Laundering Specialists (6th ed.). Miami, FL: ACAMS.

ESMA. (2015)Questions and Answers: Investment-based crowdfunding and money laundering/terrorist financing 1. Paris, France: ESMA.

Financial institutions closely monitor customer accounts for suspicious activity related to money laundering, terrorist financing, or other illicit activities. If an account consistently triggers multiple suspicious activity reports (SARs), it raises red flags. These reports indicate unusual or potentially illegal transactions, such as large cash deposits, frequent transfers to high-risk jurisdictions, or patterns inconsistent with the customer’s profile. To mitigate risk and comply with anti-money laundering (AML) regulations, the financial institution may decide to close the account. Regular SAR filings are essential for maintaining the integrity of the financial system and preventing illicit financial flows12.

According to the FATF 40 recommendations, the focus of AML efforts has been expanded beyond financial institutions to include other businesses and professions that are vulnerable to money laundering and terrorist financing risks. These include:

Casinos, when customers engage in financial transactions equal to or above a designated threshold. Casinos are required to identify and verify the identity of their customers, keeprecords of transactions, report suspicious transactions, and implement internal controls and compliance programs to prevent money laundering and terrorist financing. The designated threshold is USD/EUR 3,000 or more1.

Real estate agents, when they are involved in transactions for clients concerning buying and selling properties. Real estate agents are required to identify and verify the identity of their customers and beneficial owners, keep records of transactions, report suspicious transactions, and implement internal controls and compliance programs to prevent money laundering and terrorist financing. Real estate transactions can involve large amounts of money and complex legal arrangements that can be used to conceal the source or destination of illicit funds2.

Trust and company service providers, when they prepare for or carry out transactions for a client concerning the creation, operation or management of legal persons or arrangements. Trust and company service providers are required to identify and verify the identity of their customers and beneficial owners, keep records of transactions, report suspicious transactions, and implement internal controls and compliance programs to prevent money laundering and terrorist financing. Trust and company service providers can facilitate the misuse of legal persons or arrangements, such as shell companies or trusts, to hide the true ownership and control of assets or funds3.

The other option, dealers in art, when they engage in any cash transaction with a customer at or above a designated threshold, is not covered by the FATF 40 recommendations. However, dealers in precious metals and stones are covered when they engage in any cash transaction with a customer at or above a designated threshold of USD/EUR 15,000 or more. Dealers in art may be subject to national or regional regulations that impose AML obligations on them, depending on the jurisdiction.

FATF Recommendation 22: Designated Non-Financial Businesses and Professions: Customer Due Diligence

FATF Recommendation 23: Designated Non-Financial Businesses and Professions: Other Measures

FATF Recommendation 24: Transparency and Beneficial Ownership of Legal Persons

[FATF Recommendation 25: Transparency and Beneficial Ownership of Legal Arrangements]

The Office of Foreign Assets Control (OFAC) is a department of the U.S. Treasury that administers and enforces economic and trade sanctions based on U.S. foreign policy and national security goals1. OFAC regulations cover all persons and entities within the U.S., all U.S.-domiciled entities and their foreign branches, and all U.S. citizens, wherever located or employed2. These include U.S. banks, U.S. corporations, U.S. subsidiaries of foreign corporations, U.S. residents, and U.S. citizens living or traveling abroad3. OFAC regulations do not cover foreign-based entities that have U.S. customers, unless they are owned or controlled by U.S. persons or entities4.

 1: Home | Office of Foreign Assets Control 2: eCFR :: 31 CFR Chapter V – Office of Foreign Assets Control, Department of the Treasury 3: FFIEC BSA/AML Office of Foreign Assets Control - Office of Foreign Assets Control 4: Office of Foreign Assets Control (OFAC): Definition, Sanctions

Private investment companies (PICs) are potentially vulnerable to money laundering due to the difficulty in identifying the ultimate beneficial owners. PICs are often used to hold and manage private wealth, making them attractive targets for money launderers. Since these entities are privately held and not publicly traded, it can be challenging to identify the individuals whoultimately control or benefit from them. This makes it easier for money launderers to use them to disguise the origins of illicit funds.

The rules imposed by the Office of Foreign Assets Control (OFAC) for legal entities and persons related to the US are:

Nationals of the US must comply with OFAC rules, regardless of where they are located in the world. This means that US citizens, permanent residents, and entities organized under US law are subject to OFAC sanctions and prohibitions, even if they operate or reside outside the US12.

Any foreign corporation is also penalized if it conducts transactions with sanctioned countries under OFAC rules. This means that non-US entities that engage in trade or financial dealings with OFAC-designated countries, entities, or individuals are liable to face civil or criminal penalties, as well as secondary sanctions that could restrict their access to the US market or financial system34.

The other options are not correct, because:

A subsidiary of a legal entity of the US, which is formally registered in a foreign country, is not exempt from OFAC rules. This means that foreign-incorporated entities that are owned or controlled by US persons or entities are also subject to OFAC sanctions and prohibitions, unless they are specifically authorized or licensed by OFAC12.

A foreign individual visiting the US for a short vacation is not obligated to follow OFAC rules. This means that non-US persons who are temporarily present in the US are not subject to OFAC sanctions and prohibitions, unless they are involved in transactions that have a US nexus or violate other US laws.

The head office of a foreign legal entity which has a branch in the US does not need to comply with OFAC rules. This means that non-US entities that have a presence or operation in the US are not subject to OFAC sanctions and prohibitions, unless they are involved in transactions that have a US nexus or violate other US laws.

Trade-based money laundering (TBML) is a method to finance terrorism that involves falsifying transaction-related documents, such as invoices, contracts, bills of lading, or customs declarations, to conceal the origin, destination, value, or purpose of illicit funds. TBML can be used to move money, goods, or services to or from sanctioned orhigh-risk jurisdictions, to evade taxes, duties, or currency controls, to launder proceeds of crime, or to support terrorist activities. TBML can involve over- or under-invoicing, over- or under-shipping, multiple-invoicing, or falsely describing goods or services. TBML can also be linked to other methods of money laundering or terrorist financing, such as bribery, black market peso exchange, or informal value transfer systems.

ACAMS CAMS Certification Video Training Course, Module 2: Compliance Standards for Anti-Money Laundering (AML) and Combating the Financing of Terrorism (CFT), Lesson 4: Trade-Based Money Laundering

Money Laundering and Terrorist Financing Related to Counterfeiting of Currency, Financial Action Task Force (FATF), page 28

Tracing terrorist finances, INTERPOL

 Antiques are a potential tool for money laundering because they can be used to conceal, move, and convert illicit funds. Antiques can be of high value and often easily transported across borders, making them attractive for criminals who want to evade detection and reporting. Antiques can also be difficult to value and authenticate, creating a lack of transparency and accountability in the market. Criminals can exploit this to inflate or deflate the prices of antiques, or to use them as collateral for loans or other transactions. Antiques can also be used to layer or integrate illicit funds into the legitimate economy, by selling them through auction houses, dealers, or online platforms.

CAMS Certification Package - 6th Edition, Chapter 4: Conducting and Supporting the Investigation Process, pp. 97-98.

Anti-money laundering and the art and antiquities market - a US and UK perspective, Mishcon de Reya LLP, 2022.

Antiques: an unconventional money laundering tool, The Express Tribune, 2023.

Art and Antiquities an Attractive Market for Money Laundering, FATF Argues, OCCRP, 2021.

According to the Anti-Money Laundering Specialist (the 6th edition) study guide, individuals who violate anti-money laundering laws can face severe consequences, such as imprisonment, fines, asset forfeiture, and sanctions. These penalties can apply not only to the perpetrators of money laundering, but also to the employees, managers, directors, and officers of financial institutions or other entities that fail to comply with their anti-money laundering obligations. Therefore, violations of anti-money laundering laws can pose a significant risk to individuals, both personally and professionally.

Anti-Money Laundering Specialist (the 6th edition) study guide, page 9

ACAMS website, section on CAMS certification

Money Laundering website, article on “The Consequences of Non-Compliance with Anti-Money Laundering Laws”

 Conducting small cash transactions at multiple locations during the same day is the strongest example of avoiding reporting thresholds. This is a common technique used by money launderers to evade the attention of financial institutions and regulators, who are required to report cash transactions above a certain amount (usually $10,000) to the authorities. By splitting the large sum of money into smaller amounts and depositing them at different branches or ATMs, the money launderer can avoid triggering the reporting requirement and conceal the source and destination of the funds. This practice is also known as smurfing or structuring12.

ACAMS CAMS Certification Study Guide, 6th Edition, Chapter 2, page 36

ACAMS CAMS Certification Video Training Course, Module 2, Lesson 2.2, Structuring and Smurfing

1, Smurfing Money Laundering: Mechanics, Detection, and Prevention

2, AML & eWallets - The Risks & How To Comply | ComplyAdvantage

According to the Basel Committee on Banking Supervision (BCBS), a sound KYC program should consist of four essential elements: (i) customer acceptance policy; (ii) customer identification; (iii) on-going monitoring of higher risk accounts; and (iv) risk management. Therefore, B and D are the correct choices among the given options. A customer acceptance policy defines the types of customers that the bank is willing to accept and the conditions for doing so. A risk management system ensures that the bank has adequate policies, procedures, and controls to identify, measure, monitor, and mitigate the risks arising from its KYC program.

Paying a large amount in cash for an art purchase is a typical red flag of potential money laundering, as it may indicate an attempt to avoid traceability and reporting requirements. Cash transactions are often used by criminals to launder illicit funds, as they are difficult to track and verify. According to the FATF guidance on money laundering and terrorist financing risks in the art trade, cash payments above a certain threshold should be subject to enhanced due diligence and reporting obligations by art market participants (AMPs). AMPs should also be wary of customers who provide insufficient or inconsistent information about the source of funds, the purpose of the transaction, or the identity of the beneficial owner.

Structuring is the intentional evasion of a reporting or recordkeeping requirement by breaking down a large transaction into smaller ones, or by using multiple accounts, institutions, or persons to avoid triggering the threshold for reporting or recordkeeping. Structuring is also known as smurfing, and it is a common technique used by money launderers to conceal the source, ownership, or control of illicit funds.

=

ACAMS Study Guide for the CAMS Certification Examination, 6th Edition, Chapter 2, Section 2.1.1, page 511

ACAMS CAMS Certification Video Training Course, Module 2, Lesson 2.1, video time 7:00-8:002

ACAMS CAMS Certification Practice Exam, Question 134, page 2853

 A beneficial owner is the natural person who ultimately owns or controls a legal entity or arrangement, such as a company, a trust, or a foundation. Identifying the beneficial owner is essential for preventing and detecting money laundering, terrorist financing, tax evasion, and other illicit activities that may involve the misuse of corporate vehicles. However, some individuals or entities may attempt to conceal the true beneficial ownership of a company by using various techniques, such as complex ownership structures, shell companies, bearer shares, or nominees. A nominee is a person or an entity that acts on behalf of another person or entity, usually for a fee or a commission, without disclosing the identity of the real owner or controller. Nominees can be used to protect or conceal the identity of the beneficial owner and controller of a company or asset. A nominee can help overcome jurisdictional controls on company ownership and circumvent directorship bans imposed by courts and government authorities. While the appointment of nominees is lawful in most countries, the use of nominees for money laundering purposes is illegal and a red flag for suspicious activity. Therefore, the person filling out an application on the company’s behalf indicating that a beneficial owner is a nominee for another person not named in the company’s documentation is an indicator that there is an attempt to conceal the company’s true beneficial ownership12.

The other options are not necessarily indicators of concealment of beneficial ownership, as they may have legitimate explanations or reasons. The company having a subsidiary in another jurisdiction with a local investor as a beneficial owner may be a normal business practice or a strategic decision, as long as the ownership information is transparent and accurate. Recent changes to the company’s ownership structure may reflect the company’s growth, development, or adaptation to market conditions, as long as they are documented and reported to the relevant authorities. Beneficial ownership information from the time that the company was formed several years ago not matching the current information may be due to natural changes in the company’s shareholders, directors, or managers, as long as they are updated and verified periodically.

 The correct answer is B, as a customer acceptance policy is an essential element of KYC standards according to the Basel Committee’s Customer Due Diligence for Bankspaper1. A customer acceptance policy defines the types of customers that the bank is willing to accept, and the conditions and limitations that apply to such relationships. A customer acceptance policy helps the bank to avoid customers who are likely to pose a higher than average risk of money laundering or terrorist financing, or who are not willing to provide sufficient information for identification and verification purposes1.

 1: Customer due diligence for banks - Bank for International Settlements, page 9.

A law enforcement agency may request account opening documents and account statements from the institution to facilitate its investigation of a suspicious transaction report (STR). These documents can provide valuable information about the identity, background, source of funds, and transaction patterns of the customer, as well as any red flags or anomalies that may indicate money laundering or other criminal activities. Account opening documents may include identification documents, verification documents, customer due diligence forms, risk assessment forms, etc. Account statements may include transaction details, balances, fees, charges, etc.

ACAMS, CAMS Examination Study Guide, 6th Edition, Chapter 4, pp. 115-116

FATF Guidance: The Role of Hawala and Other Similar Service Providers in Money Laundering and Terrorist Financing, October 20131, p. 20

Basel Committee on Banking Supervision, Sound management of risks related to money laundering and financing of terrorism, June 20172, p. 11

Higher-risk customer profilesoften include businesses that:

Regularly handle large volumes of cash

Operate in sectors withhistorical vulnerabilities to money laundering

Are involved invirtual assets or unregulated financial activities

Option C – A local used car sale lot that allows cash payments:

This business type is consideredcash-intensive, and accepting monthly payments in cash raises concerns about the source of funds, potential structuring, or placement of illicit proceeds.

Option D – A Virtual Asset Service Provider (VASP):

VASPs involved inpeer-to-peer crypto transactionspresent elevated AML risks due to theanonymity, speed, and borderless natureof virtual assets. These institutions are often subject toenhanced due diligence requirements.

Option Ais incorrect: A large multinational with documented transactions and transparency typically poseslower inherent risk, though still subject to review.

Option Bmay be reviewed, buton-site ATM replenishment using store cashis not automatically a red flag without other risk indicators.

 According to the ACAMS CAMS Study Guide, 6th Edition, Chapter 2, Section 2.1, the AML program should be reassessed periodically or when there are significant changes in the business environment, such as:

Expansion of business to new territories: This could expose the business to new risks, regulations, and customers that require different AML policies, procedures, and controls. The AML program should be updated to reflect the new jurisdictions and their AML requirements, as well as to conduct appropriate risk assessments and due diligence on the new markets and customers.

New product offering: This could introduce new vulnerabilities, opportunities, and challenges for the AML program. The AML program should be revised to incorporate the new product features, benefits, and risks, as well as to ensure compliance with any applicable AML rules and standards for the new product.

The other options are not factors that would necessarily lead to a reassessment of the current AML program, unless they have a material impact on the AML risks, objectives, or performance of the business:

Appointment of a new Chief Financial Officer: This could affect the AML program if the new CFO has a different vision, strategy, or approach to AML than the previous one, or if the new CFO has a significant role or responsibility in the AML program. However, the appointment of a new CFO alone does not trigger a reassessment of the AML program, unless there are other changes or issues that warrant a review.

Change of company name: This could affect the AML program if the change of name reflects a change of ownership, structure, or nature of the business that could alter the AML risks, obligations, or expectations. However, the change of name alone does not necessitate a reassessment of the AML program, unless there are other implications or consequences that affect the AML program.

Change of internal audit team members: This could affect the AML program if the new internal audit team members have different qualifications, skills, or experiences than the previous ones, or if the new internal audit team members have a different scope, methodology, or frequency of auditing the AML program. However, the change of internal audit team members alone does not require a reassessment of the AML program, unless there are other factors or findings that indicate a need for a review.

Money launderers preferlarge-denomination billsbecause theyfacilitate bulk cash smuggling and placement.

Option A (Correct):Increased demand for large-denomination banknotesis a knownmoney laundering red flag.

Option B (Incorrect):Increased digital service adoption isnormal banking behavior.

Option C (Incorrect):Faster settlement times may reflecttechnology upgrades, not financial crime.

Option D (Incorrect):Maintaining a log of monetary instruments isa compliance best practice, not a red flag.

Specialized AML training must be relevant to the specific risks the corporate banking team faces, including legal/regulatory expectations and the ML/TF typologies applicable to their products and customer base.

Applicable AML laws and regulations (B):“Staff must be aware of the applicable AML/CFT laws and regulatory requirements relevant to their business area.”(CAMS 6th Edition, Chapter: AML Training and Awareness)

Money laundering typologies applicable to corporate loans (D):“Training should include typologies and red flags that are most relevant to the risks present in the specific business line, such as corporate lending.”(CAMS 6th Edition, AML Training for High-Risk Departments)

Incorrect Options:

A: Monetary instrument reporting is more relevant to retail/branch banking.

C: Regulatory exam best practices are for compliance teams, not business-line relationship managers.