RiskTech Forum

Fenergo: 13 Points of Clarification for FinCEN Final Rule

Posted: 1 May 2018  |  Author: Laura Glynn  |  Source: Fenergo


A mere five weeks from implementation of its FinCEN Final Rule (CDD) on May 11th, 2018, FinCEN has released their eagerly awaited frequently asked questions (FAQ) document, providing additional guidance under 37 questions pertaining to the rule. This guidance provides much-needed clarifications on a number of fronts, including beneficial ownership thresholds, account definitions, risk-based monitoring, treatment of non-US listed entities and pre-existing customers. I’ve explored several of these below:

1. Beneficial Ownership Threshold
FinCEN has reiterated that the specified threshold (25%) is a floor, not a ceiling. It has left to the discretion of covered financial institutions (FIs) to implement stricter thresholds if they so choose. In addressing a requirement to impose stricter thresholds for certain customers, FinCEN directs that any incremental risk factors may be mitigated by other reasonable means including enhanced monitoring, collection of additional non-mandatory information and recording information relating to expected account activity.

2. Identification and Verification Procedures
The FAQ document clarifies that although the CDD Rule’s verification procedures are required to contain similar elements, they do not need to be identical. The FAQ outlines the example of a financial institution choosing to accept photocopies of identification documents, which would not meet the standard under the Customer Identification Program (CIP) rules. This derogation is expressly authorized within the CDD rule (e.g. covered financial institutions may use photocopies or other reproduction documents for documentary verification). Financial institutions should determine the documentation standards on the outcome of appropriate risk-based analysis towards the identification and verification (ID&V) of beneficial owners.

3. Existing customers as beneficial owners of new legal entity customer accounts
Where the individual identified as the beneficial owner is:

  1. an existing customer of the financial institution, and 
  2. is subject to the financial institution’s CIP,

a financial institution may re-use the information previously collected to identify and verify the legal entity customer, provided the existing information is up-to-date, accurate, and the legal entity customer’s representative certifies or confirms (verbally or in writing) the accuracy of the pre-existing CIP information.

4. FinCEN Certification Template
As previously confirmed, financial institutions are not required to use the template certification and may use alternative formats such as the institutions’ own forms or any other means that comply with the substantive requirements of this obligation. In this instance, covered FIs should retain the form and not file it with FinCEN.

5. Document retention periods for ID&V records
Covered FIs are required to retain all beneficial ownership information collected about a legal entity customer. Identifying information, including the Certification Form or its equivalent, must be maintained for a period of five years after the legal entity’s account is closed. Verification records must be retained for a period of five years after the record is made.

6. Certification of a beneficial owner of multiple accounts
If an institution that has already obtained a Certification Form (or its equivalent) for the beneficial owner(s) of the legal entity customer, the FI may rely on that information to fulfil the beneficial ownership requirement for subsequent accounts, provided the customer certifies or confirms (verbally or in writing) that:

  1. such information is up-to-date and accurate at the time each subsequent account is opened, and
  2. the financial institution has no knowledge of facts that would reasonably call into question the reliability of such information.

7. Sub-Accounts and Trading Accounts
FinCEN has provided a degree of additional clarity regarding the beneficial ownership treatment of accounts. The beneficial ownership requirement applies to a “new account,” which is defined to mean “each account opened … by a legal entity customer”. An account (or sub-account) relating to a legal entity customer will not be considered a “new account” or an “account” for purposes of the Rule when a financial institution creates such an account (or sub-account) for its own administrative or operational purposes and not at the customer’s request.

8. Product or Service Renewals
FinCEN has offered additional clarify around the issue of product or service renewals with regards to beneficial ownership information. Under this classification, FinCEN maintains consistency with the definition of “account” as per CIP rules.

9. Pre-existing accounts (Monitoring & Scheduled Reviews)
As previously confirmed, no formal look-back is required for pre-existing accounts, however, the obligation to update existing records is triggered when a financial institution becomes aware of information about the customer during the course of normal monitoring relevant to assessing or re-assessing the risk posed by the customer, and where such information indicates a possible change of beneficial ownership. If no specific risk events are identified during the normal monitoring process, there is no obligation on the financial institution to request or update beneficial ownership information for existing accounts. FinCEN has clarified the following:

10. Legal Entity Customer Exclusions
As per previous guidance; a financial institution may rely on information provided by the legal entity customer to determine whether the legal entity is excluded from the definition of a legal entity customer, provided that it has no knowledge of facts that would reasonably call into question the reliability of such information. FinCEN has re-confirmed the position for US listed entity exclusion and has restated that this exclusion does not apply to foreign listed entities.

11. Legal Entity Owned By Trust

Where the legal entity is owned by a Trust, then the appropriate beneficial owner is the trustee. The FAQ states that for LE-owned by trusts and managed by multiple trustees, then covered financial institutions should ID&V a single trustee, as a minimum, and additional co-trustees on a risk-based approach.

12. Currency Transaction Report (CTR)
Covered FIs are not required to list the beneficial owners during a standard CTR filing. They must, however, list a beneficial owner in Part 1 of the CTR only if the financial institution has knowledge that the transaction(s) requiring the filing is made on behalf of the beneficial owner and results in either cash in or cash out totalling more than $10,000 during any one business day.

The FAQ clarifies that unless the FI is in possession of information to the contrary, they may presume that businesses which share a common owner are completely separate and operating independently and, therefore, transactions across these separate businesses should not be aggregated for CTR purposes. The FAQ provides examples of when this might not be the case, i.e. where businesses are staffed by the same employees and are located at the same address, the accounts of one business are repeatedly used to pay the expenses of another business or of the common owner: in such a scenario, the transactions would be aggregated for CTR purposes.

13. Nature & Purpose of Account
This information should be used to develop a baseline against which customer activity, such as the customer’s expected use of wires or typical number of deposits in a month, can be assessed for possible suspicious activity reporting. If account activity changes, particularly with regard to what should be anticipated based on the original nature and purpose of the account, risk-based monitoring may identify a need to update customer information, including, as appropriate, beneficial ownership.

A clear requirement of the CDD rule is that FIs understand “the nature and purpose of customer relationships to develop a customer risk profile.” There has been a degree of uncertainty in how this should be documented and against what parameters. The FAQ provides some guidance by noting that the profile may, but doesn’t necessarily have to, include a system of risk ratings or categories of customers. Accordingly, the documentation that is required to demonstrate an understanding of the nature and purpose of a customer relationship would vary with the type of customer, account, service, or product.

FinCEN has acknowledged that they may issue additional FAQs/guidance or grant exceptive relief as appropriate.