Sanctions Compliance

Question 1

What is dual control?

Answer 1

Dual control is a principle whereby at least two employees are required in order to complete an internal control task. / Also maker-checker or four eyes principle.

Question 2

Where can the dual control process apply?

Answer 2

It can vary based on institution size, it can reside solely within the second line defense or involve the first line, including the operations department. The escalation paths and related dual-control functions depend on the size and complexity of both the institution and business profile.

Question 3

What are the core elements of sanctions due diligence?

Answer 3

• Understanding of the sanctions exposure that emanates from the customer and its business
• geographic risk exposure/ customer’s risk exposure to sanctioned countries
• how the customer’s supply chain can be exposed to sanctions risk, even indirectly

Question 4

What are the key elements of the concept of beneficial ownership?

Answer 4

The phrases “ultimate effective control” refer to situations in which ownership or control is exercised through a chain of ownership or by means of control other than direct control. This definition should also apply to the beneficial owner of a beneficiary under a life or other investment linked insurance policy.

Question 5

Who has beneficial ownership of a bank account?

Answer 5

A person in whose name an account is opened with a bank is not necessarily the person who ultimately controls such funds. This distinction is impt because the focus of AML efforts needs to be on the person who has this ultimate level of control.

Question 6

What are the criteria set by EU to determine when a person or entity is controlled by another person?

Answer 6

• having the right or exercising the power to appoint or remove a majority of the members of the administrative, management, or supervisory body of such legal person or entity
• having appointed solely from one’s voting rights a majority of the members of the admin, mgmt, or supervisory bodies of entity who have held office during the present and previous financial year
• controlling alone, pursuant to an agreement with other shareholders in or members of a legal person or entity, a majority of shareholders’ or members’ voting rights in that legal person or entity
• having the power to exercise a dominant influence pursuant to an agreement.

Question 7

How does the OFAC 50% rule apply on an aggregate level?

Answer 7

If a company that is an SDN (Company A) owns 50% or more in another company (Company B), which holds 50% or more of another company (Company C), Company C also is subject to the same sanctions restrictions that apply to Company A.

Question 8

What are the three significant differences between OFAC and the EU’s European Best Practice Guidance concerning SDD and beneficial ownership?

Answer 8

1. The EU’s rule applies when a sanctions target owns more than 50% of a legal entity.
2. The EU has not yet implemented the aggregate rule.
3. The EU requires that assets be frozen when a sanctions target “controls” or exercises influence over an entity.

Question 9

What % is often applied for an EU AML programme?

Answer 9

25%, because the EU AML Directives have required that FIs collect KYC for companies holding 25% or more ownership of an entity.

Question 10

When a sanctioned target divests interest, what is the difference btw the application of US and EU sanctions?

Answer 10

Although divestment may circumvent US sanctions, under the EU rule regarding control, it may not be sufficient, as divestment does not necessarily divest control.

Question 11

What are the considerations about the nature of a customer’s business that are specifically relevant to sanctions risk?

Answer 11

• Activity of subsidiaries or affiliated third parties (relationship, commercial connection to a sanctioned target through payments, linked accounts, or other names)
• parties forming part of the supply chain
• duration of current business activities

Question 12

What does a bill of lading identify?

Answer 12

Means of transport, info about the goods, points of loading, transshipment points, final unloading destination, and the date on which the goods are to be shipped.

Question 13

What info needs to be obtained re free trade zones?

Answer 13

If FTZs are part of the planned shipping arrangements, it is critical to understand the reason for stopping at or transferring goods at them. This includes obtaining information about the owners and controllers of any companies formed in an FTZ that are acting as the recipient or sender of goods.

Question 14

What are the customer risk indicators in the Wolfsberg Correspondent Banking questionnaire?

Answer 14

An org must determine:

• the parent company and its branches and equivalents
• the executive committee, or equivalent, and the supervisory board
• ant other significant controlling interests and their ultimate beneficial owners
• the geographic regions in which their customer base is located

Question 15

What are the risks specific to insurance companies as customers?

Answer 15

• does the customer use brokers or intermediaries in jurisdictions known to be high risk for SDD purposes?
• are their brokers required to do SDD checks on individuals for whom they underwrite policies?
• who is the target customer base?
• what are their procedures to identify the beneficial owner of their customers?

Question 16

What is an Inequalities List?

Answer 16

A list of words or names that automated screening tools often mistake as matches and thereby create potential matches to targets named on sanctions lists. These are words or names that the organization’s compliance team has checked and confirmed not actually match up, such as Andrew and Andrea.

Question 17

What is pass-through sanctions risk?

Answer 17

The incorrect assumption that the sanctions risks associated with a customer’s affiliates or subsidiaries is simply a problem for the customer to assess and manage. Regulators in the UK and US require all parties within a transaction chain to check for possible sanctions risks. It is important for financial institutions to ask for and review information about a customer’s affiliates and subsidiaries.

Question 18

Country risk assessment for AML should always be included for sanctions risk assessment. True or false?

Answer 18

False

Question 19

How long does a counterparty relationship last?

Answer 19

For the life of the transaction.

Question 20

Automated screening tools can detect many red flags, but what red flag usually requires human assessment to find?

Answer 20

There is an abnormal shipping route for the product and destination.

Question 21

What was significant abt the 2017 case or ACCESS USA Shipping?

Answer 21

Access USA set up an internal straw buyer to help the client evade sanctions.

Question 22

How does the scope of KYC information used for sanctions compliance differ from that used for AML requirements?

Answer 22

The scope of KYC information used for sanctions compliance can be more limited than for AML compliance

Question 23

How is information collected re the nature of a customer’s business and its products and services different for AML vs sanctions?

Answer 23

Although the info is collected as part of the process of assessing AML risks, the way it is assessed for SDD is different.

Question 24

What are the four steps for gathering KYC into in the sanctions due diligence research model?

Answer 24

Assess, explore, organise and present

AEOP

Question 25

What are the identifiers on the Denied Persons List?

Answer 25

• Registered or incorporation name and registration number
• Registered or legal address or any known operating address
• Jurisdiction associated with the entity and/ or its activities
• Types of goods or services involved
• Penalties imposed for noncompliance

Question 26

What is mirror trading?

Answer 26

Investors buying securities in one currency and then selling identical ones in another currency.

Question 27

What is the difference between name screening and payment screening?

Answer 27

Unlike name screening, payment screening takes place with current customers and is performed before a payment or message is processed. Payment screening relies on payment messages using predefined templates, codes, and acronyms to describe certain information. The info provided in these predefined templates is typically provided by a third party, therefore the firm has little, if any, control over how the data is presented.

Question 28

What is Edit Distance or Levenshtein?

Answer 28

This method examines how many character changes it takes to get from one name to another. For example, timmy and tymmi have an edit distance of 1 since i and y are merely transposed.