AML Compliance Guidelines: New Zealand

Anti-money laundering (AML) compliance is crucial for financial institutions and businesses across the globe, including New Zealand, to prevent illicit activities such as money laundering and terrorism financing. In New Zealand, AML regulations are set out to protect the country’s financial system from abuse, ensure compliance with international standards, and maintain national and international trust in the financial system. 

This comprehensive guide will provide an overview of the AML compliance framework in New Zealand, detailing the key requirements, processes, and best practices for businesses to follow.

{{snippets-guide}}

Understanding AML in New Zealand

New Zealand has a robust regulatory framework for combating money laundering and terrorism financing, and it is designed to comply with international obligations, particularly the Financial Action Task Force (FATF) recommendations. The core of New Zealand’s anti-money laundering efforts rests on the Anti-Money Laundering and Countering Financing of Terrorism Act 2009 (AML/CFT Act), which provides a comprehensive legal framework for preventing money laundering and the financing of terrorism.

This legislation applies to a range of businesses and sectors in New Zealand, particularly those that are considered to be in high-risk industries such as financial institutions, real estate, casinos, lawyers, accountants, and other designated non-financial businesses and professions (DNFBPs). The AML/CFT Act was strengthened and amended by the Anti-Money Laundering and Countering Financing of Terrorism Amendment Act 2017 to align with global standards and close regulatory gaps.

Key Components of AML/CFT Regulations in New Zealand

Customer Due Diligence (CDD)

Customer Due Diligence (CDD) is a cornerstone of the AML/CFT compliance framework in New Zealand. CDD refers to the process of identifying and verifying the identity of customers to ensure that they are not engaging in money laundering or terrorism financing activities. The level of due diligence depends on the risk profile of the customer and the nature of the business relationship.

There are three key types of due diligence:

• Standard CDD: This is typically carried out for most customers, where the business must verify the customer’s identity using reliable, independent documentation such as a passport, driver’s license, or utility bill.
• Enhanced CDD (ECDD): Enhanced CDD is required for higher-risk customers. This includes individuals who are politically exposed persons (PEPs), those who are involved in high-risk industries, or customers from high-risk jurisdictions. Enhanced procedures may include additional checks and an in-depth understanding of the source of funds.
• Simplified CDD: In certain low-risk situations, businesses may apply simplified due diligence measures, which are less comprehensive but still ensure that the customer is not engaging in illegal activities.

Ongoing Monitoring of Transactions

One of the critical elements of AML/CFT compliance is the ongoing monitoring of transactions. Financial institutions and businesses must actively monitor their customers' transactions for suspicious activity or patterns that may indicate money laundering or terrorism financing. This means that businesses must have systems in place to continuously track the flow of funds, especially when dealing with large, complex, or international transactions.

Ongoing monitoring includes:

• Tracking the volume, size, and nature of transactions.
• Identifying transactions that are inconsistent with the customer’s known activities, risk profile, or source of funds.
• Flagging any transactions that involve high-risk jurisdictions or countries that are subject to international sanctions.

Businesses must report suspicious activities to the New Zealand Police Financial Intelligence Unit (FIU), which can then investigate further.

Suspicious Transaction Reporting

As per the AML/CFT Act, businesses must report suspicious transactions to the New Zealand Police Financial Intelligence Unit (FIU). These reports must be filed when there are reasonable grounds to suspect that a transaction may involve money laundering or the financing of terrorism.

Key points related to suspicious transaction reporting:

• Reasonable Suspicion: Suspicious transaction reports should be filed when there is a reasonable suspicion that a transaction is connected to criminal activities. This may include unusual patterns, such as transactions involving large sums of money, unexplainable transfers, or transactions involving known high-risk countries or individuals.
• Timeliness: The AML/CFT Act specifies that reports must be filed promptly. Businesses must ensure that their compliance systems can flag suspicious activities quickly, enabling timely reporting.
• Confidentiality: The reporting business must maintain confidentiality and must not disclose to the customer or others that a report has been made.

Record-Keeping Requirements

AML/CFT compliance requires businesses to maintain comprehensive records for a specified period to facilitate oversight and investigations. The records must include:

• Customer Identification Records: Businesses must retain records that verify the identity of customers and other relevant details, such as the type of business relationship.
• Transaction Records: Records related to customer transactions must be kept for at least five years after the transaction is completed. This includes documentation related to the nature, date, and amount of transactions.
• Suspicious Activity Reports (SARs): Any SARs filed must be retained for at least five years, as they are crucial for investigations into possible financial crime.

The retention of records is essential for ensuring transparency, supporting investigations, and facilitating audits by regulatory bodies. All records must be stored in a secure manner, in line with privacy and data protection requirements.

Risk-Based Approach

Under the AML/CFT Act, businesses are required to adopt a risk-based approach to identify, assess, and mitigate the risks of money laundering and terrorism financing. This approach allows businesses to tailor their AML/CFT policies and procedures according to the level of risk posed by different customers, transactions, and activities.

The risk-based approach involves:

• Risk Assessments: Conducting regular risk assessments to evaluate the specific risks posed by customers, products, services, and geographical locations.
• Mitigation Measures: Businesses must implement proportionate measures to mitigate identified risks. This includes applying enhanced due diligence for high-risk customers or transactions.
• Adapting to Changing Risks: AML/CFT compliance is an ongoing process that requires businesses to be flexible and adaptable to emerging risks. New financial crimes, technological developments, and changes in geopolitical factors can increase or shift risks, necessitating adjustments to compliance programs.

AML/CFT Compliance Program

Businesses in New Zealand must develop and maintain an AML/CFT compliance program, which is the backbone of any AML compliance system. The program must be tailored to the business’s size, complexity, and risk profile.

Key elements of an effective AML/CFT compliance program include:

• Internal Policies and Procedures: Clear, written policies and procedures outlining the business’s approach to compliance, including customer identification, transaction monitoring, and reporting.
• Designated Compliance Officer: A senior staff member should be appointed as the AML/CFT compliance officer, responsible for overseeing the implementation of compliance measures and ensuring that the business meets all regulatory requirements.
• Employee Training: Regular training programs must be conducted to ensure that employees are aware of AML/CFT obligations, can recognise suspicious activities, and know how to respond effectively. Training must be updated regularly to reflect changes in regulations and emerging threats.
• Independent Audits: The business must conduct periodic independent audits to assess the effectiveness of its AML/CFT program and identify areas for improvement.

Penalties for Non-Compliance

Failure to comply with the AML/CFT Act can lead to significant penalties for businesses. These penalties include both financial penalties and criminal sanctions for individuals within the organisation who fail to meet their obligations.

Penalties may include:

• Fines: Businesses that fail to comply with AML/CFT regulations can face substantial fines. For example, the maximum fine for a body corporate can be up to NZD 5 million.
• Imprisonment: In cases of serious non-compliance or deliberate evasion of the law, individuals involved may face imprisonment.
• Reputational Damage: Non-compliance can lead to reputational damage, loss of business, and regulatory scrutiny, which can have long-term consequences for the company’s viability.

AML/CFT Obligations for Non-Financial Businesses and Professions

In addition to financial institutions, other businesses in New Zealand, such as real estate agents, lawyers, accountants, and casinos, must also comply with AML/CFT regulations. These businesses are classified as Designated Non-Financial Businesses and Professions (DNFBPs), and they must implement similar AML/CFT measures as financial institutions.

For DNFBPs, key compliance requirements include:

• CDD for Clients: Verifying the identity of clients, particularly when there is a significant transaction or when the client is a politically exposed person (PEP).
• Reporting Suspicious Transactions: DNFBPs must report suspicious transactions or activities to the New Zealand Police Financial Intelligence Unit.
• Keeping Records: Like financial institutions, DNFBPs must maintain records for at least five years.

{{snippets-case}}

Conclusion: AML Compliance For New Zealand

AML compliance in New Zealand is a multifaceted and dynamic process that requires businesses to adopt a proactive and risk-based approach to meet regulatory requirements. The AML/CFT Act establishes a comprehensive framework that covers a wide range of industries and ensures that businesses take the necessary steps to prevent money laundering and terrorism financing. 

By following these guidelines—implementing robust customer due diligence, monitoring transactions, reporting suspicious activity, maintaining records, and developing comprehensive compliance programs—businesses can ensure they meet their obligations and contribute to the overall security and integrity of New Zealand’s financial system.

Complying with AML/CFT regulations not only helps businesses avoid penalties but also strengthens the nation’s ability to combat financial crime on a global scale. Given the evolving nature of financial crime, continuous vigilance, adaptation, and training are essential to keep businesses compliant with changing regulations and emerging risks.

sanctions.io is a highly reliable and cost-effective solution for global sanctions screening. With AI-powered technology, an enterprise-grade API boasting 99.99% uptime, and an easy-to-use portal, it’s no surprise that customers worldwide trust sanctions.io to enhance their compliance processes.

Book a free Discovery Call now. We also encourage you to take advantage of our free 7-day trial (no credit card is required).