188ÌåÓý

Checking a business’s compliance under The Money Laundering, Terrorist Financing and Transfer of Funds (Information on the Payer) Regulations 2017 (MLR 2017) includes checking that it is complying with the relevant requirements to:

• Carry out a risk assessment (RA) and keep an up-to-date record in writing of the steps taken to identify and assess the risks of money laundering, terrorist financing and proliferation financing (ML/TF/PF) relating to its business activities, and that its risk management practices are appropriate for the size and nature of the business â€� see ECSH33205 for guidance on checking risk assessment and management.
• Establish policies, controls and procedures (PCPs) to mitigate and effectively manage the ML/TF/PF risks identified in its RA and maintain a record in writing
• Communicate its PCPsÌýto relevant staff and/or agents if applicable.
• Make relevant employees (and agents) aware of the law relating to ML/TF/PF and the requirements of data protection; and provide regular training on how to recognise and deal with suspicious activity â€� see ECSH33220Ìýfor guidance on anti money laundering training.

There is also specific guidance for money transmitters who must also comply with the requirements of the Funds Transfer Regulations.

You may also need to check other aspects of the business’s compliance depending on the type of case you are working which may include:

• Customer due diligence measures.
• Internal controls and compliance monitoring.
• Record keeping, reliance and GDPR.
• Internal reporting and suspicious activity reports.

Full details of the “relevant requirementsâ€� of the MLR 2017 which a supervised business MUST comply with, are listed in .Ìý

Additionally, groups of related contraventions can be found atÌýECSH82791.