Canada: New Guidance From FINTRAC: Expanding Suspicious Transaction Requirements

Last Updated: January 24 2019
Article by Jacqueline Shinfield

The Financial Transactions and Reports Analysis Centre of Canada (FINTRAC) recently updated its industry guidance in respect of suspicious transaction reporting (Guidance) and released:

While the Guidance is helpful in that it sets out FINTRAC's expectations surrounding the filing of suspicious transaction reports (STRs), because FINTRAC views its Guidance as a regulatory expectation, the Guidance effectively provides new regulatory requirements for the filing of STRs and related compliance obligations. As such, regulated entities should review the Guidance carefully and update their compliance policies and procedures to address any requirements not currently addressed.

The following summarizes the key provisions of the Guidance:

  1. What does "Reasonable grounds to suspect" mean?
  2. Can service providers file STRs on behalf of regulated entities?
  3. How does FINTRAC review and validate STRs?
  4. What are FINTRAC's expectations for completing STRs?
  5. What are some common STR deficiencies?
  6. Information on completion instructions.
  7. How will FINTRAC assess compliance?

1. WHAT DOES "REASONABLE GROUNDS TO SUSPECT" MEAN?

The Proceeds of Crime (Money Laundering) and Terrorist Financing Act (PCMLTFA) requires regulated entities to file STRs for every financial transaction that occurs or is attempted in the course of their activities and in respect of which there are reasonable grounds to suspect that the transaction is related to the commission (or attempted commission) of a money laundering (ML) or terrorist financing (TF) offence.

The Guidance provides an overview of what FINTRAC views as "reasonable grounds to suspect". In that regard, the Guidance makes a distinction between "reasonable grounds to suspect" and "reasonable grounds to believe" and provides that reasonable grounds to suspect is a lower threshold than reasonable grounds to believe. In making this distinction, FINTRAC notes that reasonable grounds to suspect is only a step above "simple suspicion" meaning that there is a possibility of a ML or TF offence. As such, there is no requirement to prove any facts that lead to the suspicion, but rather, the requirement is to assess the facts, context and ML/TF indicators associated with the transaction to determine if there are "reasonable grounds" to suspect the occurrence of a ML/TF offence.

In respect of ML/TF indicators, the Guidance provides general and industry specific indicators of what factors may give rise to the suspicion of a ML/TF offence. In respect of the indicators, FINTRAC notes the following:

"On its own, a single ML/TF indicator may not appear suspicious. However, observing ML/TF indicator(s) could lead you to conduct an assessment of the transaction(s) to determine whether there are further facts, contextual elements or additional ML/TF indicators that require the submission of a STR".

This is different from the language in the previous Guideline 2 on STRs, which used the following language:

"A single indicator is not necessarily indicative of reasonable grounds to suspect ML or TF activity. However, if a number of indicators are present during a transaction...then you may want to take a closer look at other factors prior to making the determination of whether the transaction must be reported".

Although the difference in the language used between the previous STR Guideline and the current Guidance seems subtle, the change is material. Specifically, in our experience, if FINTRAC finds that there is only one indicator of ML/TF, it will expect regulated entities to file a STR on that activity. The change in the language in the Guidance reflects this expectation. As such, regulated entities should pay careful attention to the industry specific indicators included with the Guidance to ensure that their compliance policies and procedures track the indicators and ensure that STRs are filed in respect of even a single indicator, absent compelling evidence.

2. CAN SERVICE PROVIDERS FILE STRs ON BEHALF OF REGULATED ENTITIES?

The Guidance addresses service providers filing STRs on behalf of regulated entities. While the Guidance provides that there are no issues with having a service provider file STRs on behalf of a reporting entity, it states that notwithstanding any such delegation, it is the regulated entity that will ultimately be responsible for any filing mistakes or glitches, which has always been implicitly understood.

3. HOW DOES FINTRAC REVIEW AND VALIDATE STRs?

FINTRAC provides useful information and transparency in its practices in respect of the rules that FINTRAC uses to validate STRs. In that regard, FINTRAC notes that it looks to the following factors in validation:

  • Presence: Is there an entry in the field?
  • Format: Is the entry in the correct structure?
  • Content: Is the correct information entered in the appropriate field?

Regarding compliance requirements, FINTRAC notes that regulated entities should have their own proactive quality assurance (QA) practices independent of FINTRAC's review and validation of reports. On this basis, we would expect FINTRAC to look for documented QA practices in its review of regulated entities' compliance policies and procedures.

4. WHAT ARE FINTRAC'S EXPECTATIONS FOR COMPLETING STRs?

FINTRAC provides new guidance in respect of its expectations for completing STRs. The following summarizes their expectations:

  • A regulated entity's anti-money laundering (AML) policies must include details on the process used to identify, assess and submit STRs to FINTRAC
  • A person with appropriate knowledge and training is expected to be able to determine whether a transaction is related to ML/TF
  • Training employees to be able to identify transactions that may be ML/TF related is considered part of a regulated entity's compliance program
  • STRs submitted must be comprehensive and of high quality.

In respect of the quality of STRs submitted to FINTRAC, FINTRAC notes that a well completed STR should consider the following questions:

  1. Who are the parties to the transaction?

    – FINTRAC provides detailed descriptions in respect of what it is looking for in this category, including listing signing authorities, providing clear information in respect of each person's role in the transaction, explaining the relationship between the individual's involved, etc.

  2. When was the transaction completed/attempted?
  3. What are the financial instruments or mechanisms to conduct the transaction?
  4. Where did the transaction take place?
  5. Why is the transaction related to the commission of a ML/TF offence?

    – FINTRAC expects the indicators to be provided along with the suspected criminal offence if known.

  6. How did the transaction take place?

Based on the foregoing and FINTRAC changing its compliance examinations to focus on "effectiveness", it is likely that the quality of STRs will become an examinable matter. This is reflected in the following statement found in the Guidance: "STRs must be detailed and of high quality, as they provide invaluable financial intelligence for FINTRAC's analysis...". It is likely that this expectation will be confirmed in the new guidance on compliance examinations that FINTRAC is expected to release shortly.

Another important matter in the Guidance addresses circumstances where a regulated entity has already filed a STR in respect of a client. Specifically, the Guidance provides that "[o]nce you have reached reasonable grounds to suspect, you must keep reporting as long as the suspicion remains".

What this means on a practical level is that if a regulated entity has a suspicion that a client is involved in ML or TF and has filed a STR in respect of that client, the regulated entity is required to continue to file STRs in respect of all activity carried on by that client as long as that suspicion remains (unless presumably the source of funds from the transaction is clearly identifiable as not being related to the proceeds of crime). By way of example, if a client has a chequing account with a regulated entity, once a STR has been filed in respect of that client, all transactions related to the account (or any other account or product held or used by that client) must be reported to FINTRAC as STRs (i.e., deposits, ATM transactions, cheque writing, etc.).

Similarly, if a client has an arrangement with a regulated entity where it is required to make monthly payments (for example on a mortgage, an insurance policy or a loan) then in those circumstances, once a regulated entity has filed an STR in respect of a client, it is required to continually file STRs in respect of all monthly payments made by that client. Depending of the business of the regulated entity, this will likely lead to more de-risking practices.

5. WHAT ARE SOME COMMON STR DEFICIENCIES?

FINTRAC provides useful information in the Guidance regarding common STR deficiencies. These deficiencies should be viewed as a "heads up" as to what FINTRAC will look for in an examination when it is assessing the STRs filed by regulated entities. The identified deficiencies are as follows:

  1. Using a higher threshold as a basis for reporting: FINTRAC distinguishes between reasonable grounds to believe and reasonable grounds to suspect and clarifies that it is the lower standard that requires the filing of an STR.
  2. Failing to list all of the transactions and accounts relevant to your suspicion: FINTRAC notes that regulated entities are required to report all transactions and accounts that led to the determination to file a STR. Providing a summary in Part G is not sufficient. Again, regulated entities will likely be examined to this standard.
  3. Not listing or naming all parties to the transaction when the information is available: The Guidance provides that all parties to the transaction must be listed, including third parties (for example for wires including ordering client and beneficiary). One important point that FINTRAC makes is: "FINTRAC acknowledges that this information may not always be at your disposal, but when you know it, it should be provided". This reflects a FINTRAC expectation that in the event that a regulated entity has any information in its possession in respect of a client or a transaction, that information must be included in the report.
  4. Part G does not elaborate on your grounds for suspicion or link them to the transactions reported in Parts B through F: FINTRAC notes that regulated entities are required to articulate the grounds upon which there are reasonable grounds to suspect that a transaction is related to the commission of a ML/TF offence. They also note that this deficiency is observed when a reporting entity does not articulate its reason for suspicion or does not explain why certain information is relevant to their suspicion.

6. FIELD COMPLETION INSTRUCTIONS

Similar to the previous STR Guideline, the Guidance provides detailed field completion instructions in respect of the STR form. Contained within those instructions are a few useful pieces of information. In respect of providing the address of the client, FINTRAC provides examples of addresses that are not considered to be valid addresses. These include a P.O. Box without a complete physical address, a general delivery address or only a suite number without additional address information. There is also guidance provided on the level of detail required when collecting and providing a person's occupation.

7. HOW WILL FINTRAC ASSESS COMPLIANCE?

In respect of "reasonable grounds to suspect" the Guidance provides information on how FINTRAC will assess a regulated entity's compliance in making that determination. Based on the Guidance, it is clear that FINTRAC will use these standards as part of their examination criteria. In that regard, during an examination, FINTRAC would expect a regulated entity to be able to:

  • Confirm that it has an ongoing monitoring process that would allow it to detect, assess and when applicable, file STRs
  • Explain how the regulated entity's process for detecting and assessing suspicious transactions is reasonable, effective and consistent with the entity's risk assessment
  • Demonstrate how the regulated entity identifies relevant transactions
  • Show the regulated entity's record-keeping and decision-making process.

FINTRAC also notes that as a best practice a regulated entity "may want to document" the rationale and keep a record as to why suspicion was negated. It notes that "[k]eeping a record of these decisions is not required but may be useful to you in the context of a FINTRAC assessment".

Given the foregoing, it is important for regulated entities to document their decision-making process in choosing not to file an STR. FINTRAC, in its examinations will often request unusual transaction reports that were not filed as STRs to determine if it agrees with a regulated entity's decision-making process, in effect engaging in a subjective look back. This is different from the U.S. approach where the Bank Secrecy AML Manual provides that "[b]y their nature, SAR narratives are subjective, and examiners generally should not criticize the bank's interpretation of the facts."

In addition to the foregoing, it should be noted that consistent with its public comments, the Guidance reflects FINTRAC moving away from a "tick the box" approach in regulatory examinations to an effectiveness approach. In other words, FINTRAC will look at the overall effectiveness of a regulated entity's program in terms of identifying, assessing and submitting STRs.

FINTRAC provides some guidance on how a regulated entity can self-assess its compliance with its obligations to submit STRs. In that regard, FINTRAC provides some examples for regulated entities to consider, including:

  • Assessing STRs with similar scenarios to ensure that a regulated entity is applying consistency to STR determinations
  • The continuation of submitting STRs for clients in respect of which a regulated entity has already filed a STR
  • Working with industry to identify how others are reaching the "reasonable grounds to suspect" threshold
  • Being able to explain the reasons for suspicion in such a way that others with similar knowledge would reach the same conclusion
  • Conducting reviews of files to ensure that timing requirements are complied with
  • Assessing the quality of STRs (FINTRAC couples this process with the integrity of a regulated entity's know-your-client information)
  • Double checking the quality of STRs in order to ensure that if a regulated entity has access to information, that it is included in the STR reports.

It is likely that the above examples will form the basis of what FINTRAC will look to in a regulatory examination.

The Guidance sets out FINTRAC's expectations in respect of an effective STR compliance program. However, many of the matters set out in the Guidance go beyond the legal requirements set out in the PCMLTFA. As such, regulated entities should review the Guidance and ensure that their STR policies and practices are aligned with FINTRAC's expectations.

For permission to reprint articles, please contact the Blakes Marketing Department.

© 2018 Blake, Cassels & Graydon LLP.

The content of this article is intended to provide a general guide to the subject matter. Specialist advice should be sought about your specific circumstances.

To print this article, all you need is to be registered on Mondaq.com.

Click to Login as an existing user or Register so you can print this article.

Authors
Events from this Firm
30 Oct 2019, Other, Toronto, Canada

The materials on the Blakes Business Class website are provided for informational purposes only. Accessing this information does not create a lawyer-client relationship.

 
In association with
Related Topics
 
Related Articles
 
Up-coming Events Search
Tools
Print
Font Size:
Translation
Channels
Mondaq on Twitter
 
Mondaq Free Registration
Gain access to Mondaq global archive of over 375,000 articles covering 200 countries with a personalised News Alert and automatic login on this device.
Mondaq News Alert (some suggested topics and region)
Select Topics
Registration (please scroll down to set your data preferences)

Mondaq Ltd requires you to register and provide information that personally identifies you, including your content preferences, for three primary purposes (full details of Mondaq’s use of your personal data can be found in our Privacy and Cookies Notice):

  • To allow you to personalize the Mondaq websites you are visiting to show content ("Content") relevant to your interests.
  • To enable features such as password reminder, news alerts, email a colleague, and linking from Mondaq (and its affiliate sites) to your website.
  • To produce demographic feedback for our content providers ("Contributors") who contribute Content for free for your use.

Mondaq hopes that our registered users will support us in maintaining our free to view business model by consenting to our use of your personal data as described below.

Mondaq has a "free to view" business model. Our services are paid for by Contributors in exchange for Mondaq providing them with access to information about who accesses their content. Once personal data is transferred to our Contributors they become a data controller of this personal data. They use it to measure the response that their articles are receiving, as a form of market research. They may also use it to provide Mondaq users with information about their products and services.

Details of each Contributor to which your personal data will be transferred is clearly stated within the Content that you access. For full details of how this Contributor will use your personal data, you should review the Contributor’s own Privacy Notice.

Please indicate your preference below:

Yes, I am happy to support Mondaq in maintaining its free to view business model by agreeing to allow Mondaq to share my personal data with Contributors whose Content I access
No, I do not want Mondaq to share my personal data with Contributors

Also please let us know whether you are happy to receive communications promoting products and services offered by Mondaq:

Yes, I am happy to received promotional communications from Mondaq
No, please do not send me promotional communications from Mondaq
Terms & Conditions

Mondaq.com (the Website) is owned and managed by Mondaq Ltd (Mondaq). Mondaq grants you a non-exclusive, revocable licence to access the Website and associated services, such as the Mondaq News Alerts (Services), subject to and in consideration of your compliance with the following terms and conditions of use (Terms). Your use of the Website and/or Services constitutes your agreement to the Terms. Mondaq may terminate your use of the Website and Services if you are in breach of these Terms or if Mondaq decides to terminate the licence granted hereunder for any reason whatsoever.

Use of www.mondaq.com

To Use Mondaq.com you must be: eighteen (18) years old or over; legally capable of entering into binding contracts; and not in any way prohibited by the applicable law to enter into these Terms in the jurisdiction which you are currently located.

You may use the Website as an unregistered user, however, you are required to register as a user if you wish to read the full text of the Content or to receive the Services.

You may not modify, publish, transmit, transfer or sell, reproduce, create derivative works from, distribute, perform, link, display, or in any way exploit any of the Content, in whole or in part, except as expressly permitted in these Terms or with the prior written consent of Mondaq. You may not use electronic or other means to extract details or information from the Content. Nor shall you extract information about users or Contributors in order to offer them any services or products.

In your use of the Website and/or Services you shall: comply with all applicable laws, regulations, directives and legislations which apply to your Use of the Website and/or Services in whatever country you are physically located including without limitation any and all consumer law, export control laws and regulations; provide to us true, correct and accurate information and promptly inform us in the event that any information that you have provided to us changes or becomes inaccurate; notify Mondaq immediately of any circumstances where you have reason to believe that any Intellectual Property Rights or any other rights of any third party may have been infringed; co-operate with reasonable security or other checks or requests for information made by Mondaq from time to time; and at all times be fully liable for the breach of any of these Terms by a third party using your login details to access the Website and/or Services

however, you shall not: do anything likely to impair, interfere with or damage or cause harm or distress to any persons, or the network; do anything that will infringe any Intellectual Property Rights or other rights of Mondaq or any third party; or use the Website, Services and/or Content otherwise than in accordance with these Terms; use any trade marks or service marks of Mondaq or the Contributors, or do anything which may be seen to take unfair advantage of the reputation and goodwill of Mondaq or the Contributors, or the Website, Services and/or Content.

Mondaq reserves the right, in its sole discretion, to take any action that it deems necessary and appropriate in the event it considers that there is a breach or threatened breach of the Terms.

Mondaq’s Rights and Obligations

Unless otherwise expressly set out to the contrary, nothing in these Terms shall serve to transfer from Mondaq to you, any Intellectual Property Rights owned by and/or licensed to Mondaq and all rights, title and interest in and to such Intellectual Property Rights will remain exclusively with Mondaq and/or its licensors.

Mondaq shall use its reasonable endeavours to make the Website and Services available to you at all times, but we cannot guarantee an uninterrupted and fault free service.

Mondaq reserves the right to make changes to the services and/or the Website or part thereof, from time to time, and we may add, remove, modify and/or vary any elements of features and functionalities of the Website or the services.

Mondaq also reserves the right from time to time to monitor your Use of the Website and/or services.

Disclaimer

The Content is general information only. It is not intended to constitute legal advice or seek to be the complete and comprehensive statement of the law, nor is it intended to address your specific requirements or provide advice on which reliance should be placed. Mondaq and/or its Contributors and other suppliers make no representations about the suitability of the information contained in the Content for any purpose. All Content provided "as is" without warranty of any kind. Mondaq and/or its Contributors and other suppliers hereby exclude and disclaim all representations, warranties or guarantees with regard to the Content, including all implied warranties and conditions of merchantability, fitness for a particular purpose, title and non-infringement. To the maximum extent permitted by law, Mondaq expressly excludes all representations, warranties, obligations, and liabilities arising out of or in connection with all Content. In no event shall Mondaq and/or its respective suppliers be liable for any special, indirect or consequential damages or any damages whatsoever resulting from loss of use, data or profits, whether in an action of contract, negligence or other tortious action, arising out of or in connection with the use of the Content or performance of Mondaq’s Services.

General

Mondaq may alter or amend these Terms by amending them on the Website. By continuing to Use the Services and/or the Website after such amendment, you will be deemed to have accepted any amendment to these Terms.

These Terms shall be governed by and construed in accordance with the laws of England and Wales and you irrevocably submit to the exclusive jurisdiction of the courts of England and Wales to settle any dispute which may arise out of or in connection with these Terms. If you live outside the United Kingdom, English law shall apply only to the extent that English law shall not deprive you of any legal protection accorded in accordance with the law of the place where you are habitually resident ("Local Law"). In the event English law deprives you of any legal protection which is accorded to you under Local Law, then these terms shall be governed by Local Law and any dispute or claim arising out of or in connection with these Terms shall be subject to the non-exclusive jurisdiction of the courts where you are habitually resident.

You may print and keep a copy of these Terms, which form the entire agreement between you and Mondaq and supersede any other communications or advertising in respect of the Service and/or the Website.

No delay in exercising or non-exercise by you and/or Mondaq of any of its rights under or in connection with these Terms shall operate as a waiver or release of each of your or Mondaq’s right. Rather, any such waiver or release must be specifically granted in writing signed by the party granting it.

If any part of these Terms is held unenforceable, that part shall be enforced to the maximum extent permissible so as to give effect to the intent of the parties, and the Terms shall continue in full force and effect.

Mondaq shall not incur any liability to you on account of any loss or damage resulting from any delay or failure to perform all or any part of these Terms if such delay or failure is caused, in whole or in part, by events, occurrences, or causes beyond the control of Mondaq. Such events, occurrences or causes will include, without limitation, acts of God, strikes, lockouts, server and network failure, riots, acts of war, earthquakes, fire and explosions.

By clicking Register you state you have read and agree to our Terms and Conditions