The FCA wants “purposeful” AML systems and controls
What Does This All MeaN
1. A key buzzword coming out of the FCA over the past couple of years has been “purposeful”.
- What does the FCA mean by “purposeful” AML systems and controls?
- What does this add to the existing requirement for firms to establish “effective” systems and controls?
2. First, we had a call for firms to develop “purposeful” cultures.
- This being a culture that has an underlying purpose to it that would encourage people to speak up and promote diversity. In turn, this would lead to better outcomes for consumers and markets.
3. Now, the FCA has recycled the word “purposeful” in a recent speech by Mark Steward that stresses the importance of “purposeful” anti-money laundering (AML) systems and controls.
- Firms must have “purposeful” AML systems and controls, according to Mark Steward (the FCA’s Executive Director of Enforcement and Market Oversight) in a recent speech.
FCA AML requirements
4. As a reminder,
- The FCA requires firms to take reasonable care to establish and maintain systems and controls that are “effective” for countering the risk that the firm may be used to further financial crime (FCA Handbook, SYSC 3.2.6R).
5. Key points from Mark Steward’s speech
- Same old, same old: One of the FCA’s enforcement priorities has been (and, no doubt, always will be) issues relating to AML risk.
- Last year, the FCA imposed fines in excess of GBP130 million on firms for AML-related systems and controls breaches.
- The FCA has 42 ongoing enforcement investigations into firms and individuals relating to AML issues, including a number into individual Senior Managers.
- The FCA also recently started its first criminal proceedings against a bank relating to its AML systems and controls.
- These cases show the FCA’s continued focus on AML systems and controls.
- You don’t need to see it to believe it:
- One of the challenges for firms managing AML risk is that the potential harm may occur remotely from the systems and controls that are based in London.
- Mark Steward was critical of systems and controls that are:
- “Overly complicated, bureaucratised, vulnerable to gaming by less scrupulous players, and expensive” because management’s focus may be on the existence and maintenance of the system itself, rather than the end goal of the system.
- In other words, management may take a blinkered view of the risks and don’t spend enough time challenging whether the systems and controls are meeting the underlying purpose of their existence:
- to mitigate AML risk, no matter how remote the consequences of any systems and controls failings may be.
- Mark Steward said that:
- “Systems and controls that are purposeful, efficient and courageous in identifying suspicious activity are vitally important.”
“Purposeful” AML systems and controls – what does it mean?
6. A starting point could be to look at how the word “purposeful” is used in the culture context.
- Here, the FCA has suggested that the purpose behind the culture is “meaningful”.
- This suggests that some form of meaning behind AML systems and controls is required for them to be “purposeful”.
7. The desired consequence of AML systems and controls is to mitigate the risk that bad actors operate within the financial services industry and carry out criminal activities to the detriment of the market and/or consumers.
- You could argue that systems and controls would be “meaningful” and “purposeful” if they are designed to achieve this objective.
8. However, if this is true, it seems odd to say that firms’ existing AML systems and controls (including those in relation to which shortcomings have been identified by the FCA) do not all share the same underlying purpose to mitigate AML risk even if the methods deployed (and degrees of success) may differ.
9. It is understandable that the culture within the financial services industry may not have been “purposeful” previously.
10. Issues that have blighted the financial services industry,[SEE BELOW], required a shift in the messaging from the FCA about how a desirable culture may be achieved.
- Misconduct borne out of improper incentivisation, or
- Forms of non-financial misconduct rooted in poor examples of “tone from the top” or
- Conduct by middle management,
11. In contrast, the argument that existing AML systems and controls are not “purposeful” is harder to sustain.
- The objective of these systems and controls has not changed over time:
- that is, to mitigate and counter AML risk. It is just that, over time, the landscape in which firms operate has changed, raising further challenges.
- This does not necessarily mean that systems and controls are less meaningful or purposeful than they should be.
12. Instead, perhaps the better characterisation of what Mark Steward is saying is
- That firms should ensure their systems and controls are fit for purpose.
- Otherwise, as Mark Steward suggests, there is a risk that complex systems “lose a sense of what they exist for”.
Does Mark Steward’s speech change the status quo?
13. Mark Steward appears to reinforce what was already required and expected of regulated firms.
14. However, either way you look on it, a firm needs to take reasonable care to establish “effective” AML systems and controls.
15. If it is helpful to re-conceptualise what firms need to be thinking about in this area by stating the importance of “purposeful” AML systems and controls, then it should encourage firms (and those responsible for firms’ systems and controls) to approach the crux of the issue from a different angle.
16. Firms should continue to challenge themselves with the real question here: is what we are doing effective to counter evolving AML risk in our business?
Meet the team of industry experts behind ComsureFind out more
Keep up to date with the very latest news from ComsureFind out more
View our latest imagery from our news and workFind out more
Think we can help you and your business? Chat to us todayGet In Touch
As well as owning and publishing Comsure's copyrighted works, Comsure wishes to use the copyright-protected works of others. To do so, Comsure is applying for exemptions in the UK copyright law. There are certain very specific situations where Comsure is permitted to do so without seeking permission from the owner. These exemptions are in the copyright sections of the Copyright, Designs and Patents Act 1988 (as amended)[www.gov.UK/government/publications/copyright-acts-and-related-laws]. Many situations allow for Comsure to apply for exemptions. These include 1] Non-commercial research and private study, 2] Criticism, review and reporting of current events, 3] the copying of works in any medium as long as the use is to illustrate a point. 4] no posting is for commercial purposes [payment]. (for a full list of exemptions, please read here www.gov.uk/guidance/exceptions-to-copyright]. Concerning the exceptions, Comsure will acknowledge the work of the source author by providing a link to the source material. Comsure claims no ownership of non-Comsure content. The non-Comsure articles posted on the Comsure website are deemed important, relevant, and newsworthy to a Comsure audience (e.g. regulated financial services and professional firms [DNFSBs]). Comsure does not wish to take any credit for the publication, and the publication can be read in full in its original form if you click the articles link that always accompanies the news item. Also, Comsure does not seek any payment for highlighting these important articles. If you want any article removed, Comsure will automatically do so on a reasonable request if you email email@example.com.