Академический Документы
Профессиональный Документы
Культура Документы
A
S THE REQUIRED IMPLEMENTATION DATE of May 11, 2018 for
the Financial Crimes Enforcement Network’s (FinCEN’s) Customer Due
Diligence (CDD)/Beneficial Ownership rule creeps ever closer, the process and
procedural challenges that financial institutions may face are crystallizing. As is often
the case, a rule that initially seemed rather straightforward has yielded multiple devils in the details.
This article addresses some of those challenges and posits some possible solutions.
To recap briefly the basic tenets of the rule as expressed in FIN- tify its ultimate beneficial owner or owners and not ‘nominees’ or
2016-G003 (FinCEN’s first set of frequently asked questions (FAQs) ‘straw men’…The CDD Rule requires covered financial institutions
on the topic): “The CDD Rule outlines explicit customer due to establish and maintain written procedures that are reasonably
diligence requirements and imposes a new requirement for these designed to identify and verify the beneficial owners of legal en-
financial institutions to identify and verify the identity of beneficial tity customers. These procedures must enable the institution to
owners of legal entity customers, subject to certain exclusions and identify the beneficial owners of each customer at the time a new
exemptions…FinCEN intends that the legal entity customer iden- account is opened, unless the customer is otherwise excluded or the
4 | ABA BANK COMPLIANCE | MAY–JUNE 2018 SHUTTERSTOCK/ JORGEN MCLEMAN
account is exempted.” (www.ffiec. The second set of FAQs relevant to the CDD rule published by FinCEN
gov/bsa_aml_infobase/documents/ on April 3, 2018, confirms that the same stance applies to beneficial own-
FAQs_for_CDD_Final_Rule_(7_15_16). ership. The response to Question 12 of those FAQs begins by quoting the
pdf) Sounds easy, right? However, one of the same verbiage from January 2004 and then specifies a financial institution’s
issues that has proven to be the most vexing within the obligation: “For financial services or products established before May 11,
industry is, ironically, the definition of “new account” in the context above. 2018, covered financial institutions must obtain certified beneficial owner-
ship information of the legal entity customers of such products and services
The “New Account” Conundrum at the time of the first renewal following that date.” (www.fincen.gov/sites/
The CDD rule adopts the same basic definition of “account” as previously default/files/2018-04/FinCEN_Guidance_CDD_FAQ_FINAL_508_2.pdf)
expressed within the Customer Identification Program (CIP) rule issued in Thus, for example, a certificate of deposit owned by a legal entity will become
2003. The FAQs to that rule, published in January 2004, noted the following: a “new account” upon its first rollover after May 11, 2018.
“For purposes of the CIP rule, each time a loan is renewed or a certificate of Commercial loan renewals typically require involvement on the part of
deposit is rolled over, the bank establishes another formal banking relation- financial institution associates, affording an opportunity for the collection of
ship and a new account is established.” (www.fincen.gov/sites/default/files/ beneficial ownership information on a possibly long-standing commercial
guidance/finalciprule.pdf ) relationship. However, certificate of deposit renewals are often automatic, and
as a result, they do not allow for the collection of information. Thus, must enable the institution to identify the beneficial owners of
financial institutions are grappling with how to monitor renewals each customer at the time a new account is opened.” Thus, es-
of certificates of deposit owned by legal entities to ensure beneficial sentially, the beneficial owners must be known each time a new
ownership information is properly collected at the appropriate time. account is opened; if they were previously known and confirmed
With a new account, beneficial ownership information is to be col- to remain as such with the opening of subsequent accounts, the
lected prior to account opening; thus, financial institutions will need rule’s requirements would presumably be satisfied. Thus, some
to develop procedures to highlight upcoming (maybe within the financial institutions are opting for the inclusion on the beneficial
next thirty days?) relevant certificate of deposit renewals to begin ownership certification form, a re-certification statement along
the information collection process. The question then arises, what the lines of, “I certify that the beneficial ownership information
if the financial institution is unable to collect it? Presumably, in previously provided remains valid as of this date.”
compliance with the requirements of the rule, the renewal would The second set of FAQs relevant to the CDD rule confirms
not occur; and the certificate of deposit would be redeemed to FinCEN’s acceptance of this strategy. Quoting from the response
the owners. to question 10 within those FAQs, “However, an institution that
FinCEN did provide some light at the end of the tunnel on this has already obtained a Certification Form (or its equivalent) for
topic, however, regarding future renewals and rollovers. Again the beneficial owner(s) of the legal entity customer may rely on
that information to fulfill the beneficial ownership requirement
for subsequent accounts, provided the customer certifies or con-
firms (verbally or in writing) that such information is up-to-date
Thus, essentially, the beneficial owners and accurate at the time each subsequent account is opened and
the financial institution has no knowledge of facts that would
must be known each time a new account reasonably call into question the reliability of such information.”
However, this article began by noting that there were multiple
is opened; if they were previously devils in the details; and this possible solution represents one of
known and confirmed to remain as such those. If a financial institution chooses to opt for a re-certification
statement, the previously provided beneficial ownership informa-
with the opening of subsequent accounts, tion must presumably be accessible to the new account associ-
ate and in a manner to be provided to or at least viewed by the
the rule’s requirements would customer opening the new account. Consider this scenario: a
presumably be satisfied. commercial builder that operates as an LLC is negotiating multiple
development deals, two of which are finalized in the same week.
The builder’s beneficial ownership information is provided at
the time of application of the first deal, and that application then
winds its way through the underwriting and approval process.
quoting from the second set of FAQs relevant to the CDD rule, “In When the same builder finalizes the second deal of the week a
the case of a loan renewal or CD rollover, because we understand few days later, and again approaches the financial institution for
that these products are not generally treated as new accounts by financing, the builder’s representative states that the beneficial
the industry and the risk of money laundering is very low, if at ownership information is the same as it was at the time of the
the time the customer certifies its beneficial ownership infor- first application.
mation, it also agrees to notify the financial institution of any However, that first application has yet to be approved. Thus, the
change in such information, such agreement can be considered beneficial ownership information is on the certification form ac-
the certification or confirmation from the customer and should companying that first loan’s application. However, that information
be documented and maintained as such, so long as the loan or CD has yet to be entered into the financial institution’s core system.
is outstanding.” That is certainly helpful, but financial institutions If the second application is being discussed with a different loan
will need to consider how best to document that agreement from officer, or if a different representative of the builder is negotiating
the customer onto the beneficial ownership certification form the second request for credit, then the usage of the re-certification
(possibly by adding a statement to that effect that is unique for statement would require the retrieval of the beneficial ownership
CD and loan products). certification form from the first application to know what was
truly being re-certified.
Collection of Information Similar scenarios could be imagined with a start-up business
Do we really have to collect beneficial ownership information attempting to open multiple deposit accounts in its first week.
every time a new account is opened? When the final rule was Thus, while the usage of a re-certification statement to confirm
first released, initial readings and commentaries did interpret previously provided information, would satisfy the requirements
the rule as requiring the collection of beneficial ownership in- of the rule, a financial institution must consider the effects on
formation with every new account. However, the rule appears its workflow and processes. In some situations, it may just be
to be more nuanced than that; referencing the same quote from simpler to collect beneficial ownership information with each
above from the rule’s FAQs, a financial institution’s “procedures account opening.
Requirement for Information ger. However, the original beneficial ownership certification form
What is the retention requirement for past beneficial ownership would still exist and should be maintained in accordance with
information that is no longer valid or no longer required to be record retention requirements for account opening documents.
maintained? Remember Testament LLC? Well, let us assume for The second set of FAQs relevant to the CDD rule addresses this
the sake of argument that Snidely Whiplash was not happy with very point; specifically, in the response to question nine, FinCEN
having to provide beneficial ownership information. Thus, after states that, “Covered financial institutions are required to retain
the initial opening of the account, Mr. Whiplash returns with all beneficial ownership information collected about a legal entity
updated ownership documents revealing that another entity— customer. Identifying information, including the Certification
Grimm Enterprises LLC, owned by Benjamin J. Grimm—now Form or its equivalent, must be maintained for a period of five
owns 10% of Testament LLC, thus diluting every other beneficial years after the legal entity’s account is closed.” Additionally, actions
owner’s ownership percentage to below 25%. such as these would seem suspicious and ideally should prompt a
At that point, should a financial institution just delete in its review of the relationship, possibly leading to a SAR filing.
systems, the beneficial ownership information previously recorded The example above is exaggerated, but there will be many non-
but for the one controlling authority? Presumably, yes, as no one controversial occurrences where one owner simply sells his inter-
individual would own 25% or more of the legal entity any lon- est in a legal entity to another individual. Such occurrences will
Four Elements of the CDD Program: aspects of enhanced CDD and beneficial owner- Who is a Legal Entity Customer?
Under the rule, the Customer Due Diligence ship are explored below. ■■ A corporation, limited liability company, or
(CDD) program for many businesses and other other entity that is created by the filing of a
Who is a Beneficial Owner?
legal entities will now consist of the following public document with a secretary of state or
Beneficial owners are broken into two catego-
four elements: similar office;
ries: individuals who own more than 25% of an
■■ Identifying and verifying the identity of entity (the “ownership” prong) and individuals ■■ A general partnership;
customers; who control an entity (the “control” prong). A ■■ A limited partnership or business trust
■■ Identifying & verifying the identity of point of clarification: the individual(s) owning an created by a filing with a state office; or
beneficial owners with 25% or more equity entity and the individual(s) controlling an entity
■■ An entity similar to the above, but formed
interest of your legal entity customers; may or may not be the same. Let’s define those
under the laws of a foreign jurisdiction.
■■ Understanding of the nature and purpose two prongs:
of customer relationships (to develop a ■■ Ownership may be direct or indirect. The A legal entity customer does not include (for the
customer risk profile); and rule does not explicitly define indirect purposes of this rule):
■■ Ongoing monitoring and reporting of ownership, but the intention is that the ■■ Sole proprietorships and unincorporated
suspicious transactions and, on a risk-basis, legal entity customer should identify the associations—even if those businesses filed
maintaining and updating of customer ultimate beneficial owner(s), not nominees with the Secretary of State;
information. or “straw owners.” However, the rule
■■ Financial institutions or banks regulated by a
does provide some guidance on indirect
The Beneficial Ownership rule applies federal or state banking regulator;
ownership, describing an owner as someone
primarily to privately held business entities that
who, “through any contract, arrangements, ■■ Departments or agencies of the United
are opening new accounts. Depending on your
understanding, relationship or otherwise, States, of any state, or of any political
institution’s customer base, the privately held
owns 25 percent or more of the equity subdivision of any state;
“limitation” could affect your financial institu-
interests of a legal entity customer.” ■■ Entities established under the laws of
tion greatly. Of course, as we know, whether it
■■ Control of an entity is defined as “significant the United States, of any state, or of any
directly affects current customer relationships
responsibility to control, manage, or direct a political subdivision of any state, or under an
or not, your program will need to be revised
legal entity.” This includes, but is not limited interstate compact between two or more
to address the new requirements. The “who”
to, executive officers or senior managers. states, that exercise governmental authority
on behalf of the United States or any such ■■ Non-U.S. governmental departments, A BO U T THE AU THO RS
state or political subdivision; agencies, or political subdivisions that engage DAVID MCCREA, CRCM, a Director with Treliant,
■■ Entities whose common stock or analogous only in governmental activities; and
is an experienced executive with a background
equity interests are listed on the New ■■ Private banking customers (because they are in compliance, Bank Secrecy Act/Anti-Money
York Stock Exchange, the American Stock already subject to FinCEN’s private banking Laundering (BSA/AML), operations, vendor manage-
Exchange, or the NASDAQ Stock Exchange; account rule).
ment, security, and fraud/loss control at banks,
■■ Subsidiaries of any entity that is organized Additional Key Take-Aways of the Rule: thrifts, and a core banking software company.
under the laws of the United States or of He currently serves as a Faculty Member of the
■■ The new rule applies only to some
any state and at least 51 percent of whose
businesses and other legal entities, not American Bankers Association’s (ABA) Compliance
common stock or analogous equity interest is
personal accounts. School, is an instructor for an Executive
owned by the listed entity;
■■ Beneficial owners are those individual(s) who Development Program provided to several state
■■ Issuers of securities registered under Section
own more than 25% of the entity or who banking associations, and is a frequent speaker for
12 of the Securities Exchange Act of 1934;
control the entity. state banking associations. He can be reached at
■■ Investment companies, investment advisors,
■■ Banks are responsible for collecting identity dmccrea@treliant.com.
and any other entities registered with the
information of beneficial owners but are not
Securities and Exchange Commission; KATHLEEN W. YEH, CRCM, an independent
responsible for verifying the actual ownership
■■ Exchange or clearing agencies; consultant, is a compliance professional with
or control.
a background in Bank Secrecy Act/Anti-Money
■■ Registered entities, commodity pool operators, ■■ Individual(s) authorized to open the account
Laundering (BSA/AML), deposit/retail banking,
commodity trading advisors, retail foreign need to provide the information on the
exchange dealers, swap dealers, or major lending, risk management, and compliance man-
beneficial owners of the legal entity and
swap participants that are registered with the agement systems. She has experience in leading
certify the accuracy of the information
Commodity Futures Trading Commission; BSA/AML/deposit/lending compliance programs
provided.
■■ Public accounting firms; and has served as the compliance subject matter
■■ Customer Identification Program (CIP)
expert for new product rollouts, system implemen-
■■ Pooled investment vehicles that are operated information for beneficial owners must
tations, and system upgrades. She has successfully
or advised by a financial institution; be collected with every new account, and
led banks and thrifts through regulatory changes,
■■ State-regulated insurance companies; confirmed with each subsequent account,
not just when the customer is new to the designed and facilitated regulatory compliance
■■ Financial market utilities designated by the
financial institution. training, developed and evaluated internal controls,
Dodd-Frank Act;
and managed examination processes. She can be
■■ Financial institutions must have the capability
■■ Foreign financial institutions established in reached at katsw@hotmail.com.
to perform initial, periodic, and ad hoc OFAC
jurisdictions where the regulator of such
screening of beneficial owners.
institutions maintains beneficial ownership
information;
“The rule implementing Section 314(a)…does not authorize the matching individual’s only connection to the financial institution
reporting of Beneficial Ownership information associated with is as a beneficial owner (most institutions likely do this already).
an account or transaction matching a named subject.” (www. Second, the ownership code used to identify beneficial owners
federalregister.gov/documents/2016/05/11/2016-10567/customer- within a financial institution’s core system could be added as a
due-diligence-requirements-for-financial-institutions.) Notice the data point on the 314(a) query’s output.
distinction in verbal phrases—“does not require” versus “does not Finally, despite what the letter of the rules and FAQ state, it does
authorize”—when describing the reporting of beneficial ownership seem somewhat counter-intuitive that law enforcement would not
information associated with an account or transaction matching want to know that an individual on the 314(a) list owns a legal entity
a named 314(a) subject. that banks with your financial institution. It is hoped that the up-
In either case, the rule appears to state that there is no require- coming guidance referenced above will provide clarity on this issue.
ment to report the beneficial owners of a matching legal entity
when responding to a 314(a) request. However, the verbiage from Monitoring
the Federal Register appears to suggest that, not only is there no When identifying your trigger events for updating beneficial own-
requirement to do so, but also there is no authorization to do so. ership information, consider how monitoring will occur. Surveys
In effect, a financial institution might find itself at risk by doing and questionnaires circulating throughout the industry over the
so. (This would not, of course, preclude the reporting of such last two years have revealed some fairly common trigger events
information on a SAR that might result from an investigation that most financial institutions plan on adopting, including:
prompted by the appearance of the entity on a 314(a) list.) ■■ The opening of a new account;
■■ Re-classification of a customer to a higher level of risk; and
■■ Change in address if a major change (generally into another
The second set of FAQs relevant to the state or country).
The monitoring of such events will largely rely on associate
CDD rule (published April 4, 2018) were notification and/or action, whether that associate is on the front
certainly beneficial in clarifying some line or in the BSA department. Thus, training and testing of the
CDD rule’s requirements and the related implementation strate-
of the issues discussed above…but gies, are essential.
However, one common trigger event was not mentioned
implementation challenges remain. above—knowledge of a change in ownership. If identifying as a
trigger event, financial institutions need to word this one carefully.
However, for most financial institutions, that is not the most Simply designating “a change in ownership” as a trigger event would
relevant question related to 314(a) requests. Rather, most wonder seemingly obligate a financial institution to know of every change
what to do if a beneficial owner—but not the entity that he/she in ownership of a legal entity, on its books. Describing the trigger
owns—is a match to a 314(a) request. Adopting the premise of event as “knowledge of a change in ownership” is preferable, as
the statements from the rule and FAQ referenced above, the as- the knowledge must exist before the requirement to update the
sumption would be that beneficial ownership alone is not enough information is triggered. Of course we need to remember that if
to justify the reporting of a positive match. Consider the instruc- one person at the institution “knows,” then the institution knows
tions for 314(a) searches: “The financial institutions must query and that the concept of “should have known” is lurking behind
their records for data matches, including accounts maintained by the “knowledge” label as well.
the named subject during the preceding 12 months and transac- Cognizant of the fact that many changes in legal entity owner-
tions conducted within the last six months. Financial institutions ship occur without any notification to the entity’s financial institu-
have two weeks from the posting date of the request to respond tion and without any public reporting, some financial institutions
with any positive matches. If the search does not uncover any have chosen to not focus on trigger events. Instead they simply
matching of accounts or transactions, the financial institution update beneficial ownership information for all relevant legal
is instructed not to reply to the 314(a) request.” (www.fincen. entity customers on a periodic basis, typically annually. Not only is
gov/sites/default/files/shared/314afactsheet.pdf .) The specific this a daunting task, but financial institutions choosing to pursue
reference to “accounts maintained by…” suggests that a matched this path should consider the risks of inconsistent results. Let us
party must be an owner or signer on an account, which a beneficial assume that Awesome Bank has five legal entity customers with
owner may not be. existing beneficial ownership information, none of which has been
Thus, if no reporting requirements are added, then what’s the changed in the last year. Awesome Bank sends re-certification
challenge? As most financial institutions utilize a querying system requests to each customer; three of the five customers respond,
that matches all customer records to the 314(a) list once received, noting no changes, but two do not. Repeated attempts to get the
financial institutions must now be cognizant of the fact that there two remaining customers to respond, yield no results. Awesome
may be some positive matches that should not be reported. Pro- Bank then attempts to re-verify the information by other means
cedurally, the identification of such matches could be achieved in but is unsuccessful. Thus, they have no way of knowing if the
two ways. First, each positive match could be closely scrutinized beneficial ownership information is still accurate.
and investigated before reporting, allowing the discovery that the Similar to the discussion above about lowering the 25% owner-
RESOURCES