Print Article

Credit Suisse financial crime failure puts Anti-Bribery and Corruption Risk Assessments under FCA scrutiny


The UK regulator imposed the penalty on Credit Suisse in a final notice on 19 October 20201 after it determined the institution had:

  1. Breached its obligations to establish, implement and maintain adequate systems and controls to counter the risk of being used to facilitate financial crime,
  2. Failed to act with due skill, care and diligence to adhere to the systems and controls they had put in place, and
  3. Not properly assessed, monitored and managed the risk of financial crime.

The FCA has stated:

  1. Credit Suisse lacked a financial crime strategy for the management of those risks, which was exemplified by the under-resourcing of its EMEA financial crime compliance team and procedural weaknesses in its financial crime risk management.
  2. That between 1 October 2012 and 30 March 2016 ("the Relevant Period") Credit Suisse failed to meet these obligations, breaching
    • Principle 3 (by failing to take reasonable steps to manage and control its affairs),
    • SYSC 6.1.1R (by failing to maintain adequate policies and procedures to counter the risk it would be used to further financial crime) and
    • Principle 2 (by conducting its business without skill, care and diligence).
  3. In the Relevant Period Credit Suisse failed to sufficiently prioritise the mitigation of financial crime risks, including corruption risks, within its Emerging Markets business.

In its final notice The Financial Conduct Authority (FCA) has pledged to:

  1. "Pursue serious financial crime control failings by regulated firms" after it fined Credit Suisse International, Credit Suisse Securities (Europe) and Credit Suisse AG a total of more than £147m,

Credit Suisse said it has:

  1. "Already taken decisive steps to strengthen its relevant governance and processes".

The FCA's final notice highlights their view that:

  1. Risk factors need to be considered not only individually but holistically, ensuring that all the threads of intelligence within an organisation are pulled together to determine risks and mitigation measures."

The case relates to:

  1. Loans and a bond exchange worth over $1.3bn, which the bank arranged involving the Republic of Mozambique between October 2012 and March 2016.
  2. These loans and bond exchange were found to be tainted by corruption.

According to the FCA,

  1. Due diligence carried out by Credit Suisse identified risks with a contractor involved in the transactions.
  2. This contractor paid significant kickbacks, estimated at over $50 million, to members of Credit Suisse's then deal team.
  3. Those individuals took steps to conceal the kickbacks, but the FCA found fault with Credit Suisse's control functions and said that there were enough red flags for the institution to have identified the risk of bribery and acted.

The FCA said that Credit Suisse

  1. Failed to prioritise the mitigation of financial crime risks, including corruption risks, within its emerging markets business sufficiently.
  2. In addition, it identified inadequacies in its financial crime strategy for the management of those risks.

The FCA fine is part of an approximate $475 million global settlement that Credit Suisse has agreed that also involves the US Department of Justice, the US Securities and Exchange Commission, and the Swiss Financial Market Supervisory Authority (FINMA). As part of its settlement with the FCA, the institution has undertaken to

  1. "Forgive $200 million of debt owed by the Republic of Mozambique".

Anti-bribery and corruption expert Neil McInnes of Pinsent Masons, the law firm behind Out-Law, said:

  1. "The FCA's final notice highlights their view that risk factors need to be considered not only individually but holistically, ensuring that all the threads of intelligence within an organisation are pulled together to determine risks and mitigation measures.
  2. Corruption red flags will often be - rather than direct evidence of corruption or bribery - apparent from the context of the transaction, sector, jurisdiction and counterparty.
  3. Effective compliance programmes should ensure risks factors and red flags are consistently and sufficiently investigated, challenged and scrutinised."

Read article here


FCA notice


The Team

Meet the team of industry experts behind Comsure

Find out more

Latest News

Keep up to date with the very latest news from Comsure

Find out more


View our latest imagery from our news and work

Find out more


Think we can help you and your business? Chat to us today

Get In Touch

News Disclaimer

As well as owning and publishing Comsure's copyrighted works, Comsure wishes to use the copyright-protected works of others. To do so, Comsure is applying for exemptions in the UK copyright law. There are certain very specific situations where Comsure is permitted to do so without seeking permission from the owner. These exemptions are in the copyright sections of the Copyright, Designs and Patents Act 1988 (as amended)[]. Many situations allow for Comsure to apply for exemptions. These include 1] Non-commercial research and private study, 2] Criticism, review and reporting of current events, 3] the copying of works in any medium as long as the use is to illustrate a point. 4] no posting is for commercial purposes [payment]. (for a full list of exemptions, please read here]. Concerning the exceptions, Comsure will acknowledge the work of the source author by providing a link to the source material. Comsure claims no ownership of non-Comsure content. The non-Comsure articles posted on the Comsure website are deemed important, relevant, and newsworthy to a Comsure audience (e.g. regulated financial services and professional firms [DNFSBs]). Comsure does not wish to take any credit for the publication, and the publication can be read in full in its original form if you click the articles link that always accompanies the news item. Also, Comsure does not seek any payment for highlighting these important articles. If you want any article removed, Comsure will automatically do so on a reasonable request if you email