Financial institutions are required to adhere to customer due diligence (CDD) requirements as per the Federal Decretal-Law No. (20) of 2018 on Anti-Money Laundering and Combating the Financing of Terrorism and Illegal Organizations, specifically Article 8.
The minimum CDD requirements include:
When should CDD be undertaken?
Financial institutions should conduct CDD measures in the following cases:
For natural persons, the following details should be collected as part of the CDD requirements:
Companies and structures presenting a higher level of risk include:
Additional risks arise with companies operating in the following sectors:
To manage additional risks, all companies or partnerships and their beneficial owners should be brought under the ambit of full CDD procedures, and additional CDD information should be obtained on the nature of the business undertaken.
Account opening for registered and private companies in Dubai requires the following information:
Documents required to evidence the company are:
For private companies and unincorporated businesses, the following documents are required:
Politically exposed persons (PEPs) are classified as higher risk, and additional inquiries and due diligence measures should be undertaken for accounts and relationships involving PEPs. This includes establishing the source of wealth and the source of funds to be used in the relationship. Documents required for PEPs include a certified passport, proof of address, statement of source of wealth, and media articles on the customer as part of screening.
For customers categorized as PEPs, their accounts should be subject to additional review every month as part of the enhanced due diligence process. The results of these reviews should be recorded in the customer file and signed off by the compliance officer and senior management. Prior approval of the general manager is required for opening new accounts for PEPs from foreign countries or where there are concerns about the domestic/international PEP.
Risk pertaining to cash transactions:
Cash transactions, particularly large cash transactions, present a risk to financial institutions (FIs) as there is little or no supporting information to substantiate the source of funds. Accordingly, transactions involving cash should be subject to additional scrutiny, especially in cases where the transaction is not consistent with the FI's knowledge of the customer. Any questionable activity must be examined to establish the source of funds and/or wealth, if appropriate, and to determine and document the reason for the cash transaction. Third parties depositing cash into customer accounts should be asked to provide documentary evidence of their link to the account holder.
Managers and department managers should be aware of customers whose businesses are cash-intensive, such as retail outlets or restaurants, and this information should be included in the customer profile. The FI should, based on discussions with the customer, understand the expected size and frequency of cash deposits made by customers. Cash transactions should be reasonable for the customer's business, based on knowledge of the customer, and cash transactions that appear inconsistent with the FI's knowledge of the customer should be subject to review.
In addition, large and frequent foreign currency cash transactions are potentially suspicious, particularly if they are inconsistent with the customer's business activities. If, on a single day, the established cash limit is exceeded, or if there is no such limit and cash transactions exceed the legal threshold or its equivalent, then the staff should review the transactions at the end of the day to confirm that no suspicious activity is involved. Cash transactions conducted by customers that exceed the legislated threshold are to be reported to the financial intelligence unit.
Enhanced due diligence and monitoring of higher-risk accounts:
Enhanced due diligence (EDD) and enhanced account monitoring procedures should be put in place to oversee accounts that are considered high risk, such as accounts of politically exposed persons (PEPs), correspondent banking accounts, and those related to trade finance.
CDD, EDD, and Ongoing Monitoring for NPPS:
As innovative technologies emerge and commerce and economic activity increasingly grow online, merchants and consumers are relying on a diverse array of New Payment Products and Services (NPPS). NPPS are new and innovative payment products and services that offer an alternative to traditional financial services. Examples of NPPS include prepaid cards, mobile payments, and internet-based payment services.
Under Article 5 of the AML-CFT Decision, FIs should conduct CDD before or during the establishment of the business relationship or account, or before executing a transaction for a customer with whom there is no business relationship. FIs must perform, no matter the customer type, all the elements of CDD required, which include customer identification and verification, beneficial owner identification, understanding of the nature of the customer's business and purpose of the business relationship, and ongoing monitoring.
In addition to these mandatory elements, FIs should consider the following additional elements of CDD that are particularly important in the context of NPPS:
As per Article 7 of the AML-CFT Decision, all customers must be subject to ongoing monitoring to ensure that CDD information on file is accurate, complete, and up-to-date, and to ensure that transactions conducted are consistent with the expected customer profile. FIs should apply solutions that ensure the accuracy and completeness of their data. Ongoing monitoring for merchant relationships should include an examination of chargebacks, customer complaints, and refund requests to identify fraudulent activities.