Professional Documents
Culture Documents
Booklet
Booklet
Contents..................................................................................................................... 1
Chapter 1: Introduction.............................................................................................. 2
Chapter 2: Rules and Regulations..............................................................................6
Chapter 3: Key Elements in KYC Policy.....................................................................11
Chapter 4: KYC Norms and Related Issues..............................................................21
Chapter 5 : Steps Taken for Reviewing KYC.............................................................27
Chapter 6: Important Aspects for KYC......................................................................32
Chapter 7: Indicative Guidelines For Other Account Holders....................................36
Chapter 1: Introduction
1.1Meaning:
Know your customer (KYC) is the due diligence and bank resolution that
financial institutions and other regulated companies must perform to identify
their client and ascertain relevant information pertinent to doing financial
business with them. In the USA, KYC is typically a policy implemented to
confirm to a customer identification program mandated under the under Bank
Security Act and USA Patriotic Act. Know your customer policies have
becoming increasingly important globally to prevent identify theft fraud, money
laundering and terrorist financing. In a simple form, rules may equate to
answering twelve questions about this is a tip of the ice berg and regulator now
expect much more. KYC should not be thought of as a form to be filled-it is a
process to be undergone from the start of a customer relationship to the end.
Know regular companies of all size, for the purpose of ensuring their
proposed agents ‘, consultants ‘or distributors’ anti-bribery compliance; also
employ Your Customer processes. Banks, insurers and export credit agencies
are increasingly demanding that customers provide detailed anti-corruption due
diligence information, to verify their probity and integer.
1.2Definition;
1.3Origin:
Among other national controllers, the Federal Reserve of the USA initiated,
almost immediately, proposal relating to the monitoring of customer
transactions and the reporting suspicious transaction. It requires the bank to
draw up the customer and transaction profiles, record sources of funds,
determine normal and expected transaction, identify those, which were
inconsistent and report suspicious ones to central monitoring authority. All the
banks in the USA are following these, religiously with quick punishments being
awarded by the regulators when serious aberrations are observed.
1.4Objectives:
Know Your Customer (KYC) process is meant to weed out the bad
customers, to protect good ones ( and the banks). It is, therefore, important that
banks continue to stay focused on business, on good customer relationship; get
to know more about client needs and preferences. The KYC process is the only
to ensure that banking operations are spotlessly clean; to help clients and balk
personnel proper conduct of the business.
Using such data for tracking customer transactions and to monitor the
account for possible abuse or illegal use is also one of the objectives of the “KYC”.
Growing incidents of banking channels being misused by individuals and
organized syndicates for purposes like money laundering have introduced new
dimensions and focus to the KYC rigour.
Chapter 2: Rules and Regulations
• Risk Management
• Monitoring of Transaction
The present RBI guidelines suggest monitoring of transactions above Rs 10
lakh; those below that level are exempt from scrutiny. These guidelines may be
revised at intervals and must be kept track of. The profile should be archived in
such a manner that it can be quickly accessed for verifying any transaction, when
such requirements arise. The RBI has been stipulating certain thresholds: these
needs to be followed meticulously as related to KYC in screening accounts,
monitoring, reporting suspicious transactions, etc.
• To help bank to know their customer and their financial transactions better,
this, in turn will help the banks to manage their risks prudently.
The RBI, for various KYC processes like, has prescribes detailed guidelines:
• The RBI also revises the guidelines based on national and international
experience
Banks should continue to ensure that any remittance of funds by way of DD,
mail/ telegraphic transfer or any other mode and issue of traveler’s cheques for
value of Rupees Fifty thousansd and above is affect by debit to the customer’s
account or against cheques and not against cash payment.
These guidelines are issued under section 35A of the banking Regulation
Act, 1949 and any contravention of or non-compliance with the same may attract
penalties under the relevant provisions of the Act. Once the policy framework is
ready and implemented by a bank, the instructions issued vide this circular will
supersede all instructions issued on ‘Know Your Customer’ and Anti-Money
Laundering measures till date.
The RBI has taken strong, stage-wise steps. Guidelines issued by it in 2002
have been refined continuously. Guidelines related to identification of customers
and systems and procedures that all banks should have in place for early detection
and prevention of financial frauds, money laundering, scrutiny and monitoring of
large value cash transaction, etc., under section 35 of the banking Regulation Act,
1949.
Guidelines where made sharper in November 29, 2004 in the light of the
recommendation made by the financial action task force (FATF) on Anti-Money
Laundering (AML) standards and on Combating Financing of Terrorists (CFT).
These standards are the international benchmarks of AML and CFT policies by the
Regulatory authorities in all countries.
Central Bank requires banks to follow the know Your Customer (KYC)
guidelines. In line with global traders, the Central Bank of Lesotho has issued the
financial Institutions Know Your Customer Guidelines, 2007. The guidelines
require financial instructions to ensure that they know their own customers.
When opening the account, the bank’s potential customers are required to
provide the following information:
a) Customer’s identity;
c) Location of customer
d) Mode of payments
e) Volume of turnover
g) Product type
h) Source of funds
i) Transaction type
j) Transaction value
k) Type of entity
• Risk Management
• Monitoring of transaction
All banks shall develop criteria for accepting any person as their customer to
restrict any anonymous accounts and ensure documentation mentioned in KYC.
The guidelines pertaining to this policy are reasonable clear and exhaustive.
There are explicit criteria for acceptance or non-acceptance of a customer and
his/her relationship with the bank. Broad aspects of the policy could be:
The policy approved by the board of banks should clearly spell out the
customer identification procedure to be carried out at different stages i.e. while
establishing a banking relationship; carrying out a financial transaction or when the
bank has a doubt about the authencity/ veracity or the adequacy of the previously
obtained customer identification data.
(i) Verify the legal status of the legal person/entity through proper and
relevant documents,
(ii) Verify that any person supporting to act on behalf of the legal
person/entity is so authorized and identify and verify the identity of that
person,
(iii) Understand the ownership and control structure of the customer and
determine who are the natural persons who ultimately control the legal
person.
Banks may, however, can frame their own internal guidelines based
on their experience of dealing with such persons/entities, normal bankers’
prudence and the legal requirements as per established practices. If the bank
decides to accept such accounts in terms of the Customer Acceptance Policy, the
bank should take reasonable measures to identify the beneficial owner(s) and
verify his/her/their identity in a manner so that it is satisfied that it knows who are
the beneficial owner(s) is/are.
Customer Identification Procedure
customers
Features Documents
Accounts of individual (i) Passport (ii) PAN card (iii) Voter’s
• Legal name and any other names Identity Card (iv) Driving license (v)
used Identity card (subject to the bank’s
satisfaction) (vi) Letter from a
• Correct permanent address recognized public authority or public
servant verifying the identity and
residence of the customer to the banks
satisfaction
• Mailing address of the company those who have authority to operate the
account (iii) Power of Attorney granted
• Telephone/Fax Number
to its manager, officers or employees to
transact business on its behalf (iv) Copy
of PAN allotment letter (v) Copy of the
telephone bill
Account of partnership firms (i) Registration certificate, if registered
(ii) Partnership deed (iii) Power of
• Legal name Attorney granted to a partner or an
• Address employee of the firm to transact
• Names of all partners and their business on its behalf (iv) Any officially
addresses valid document identifying the partners
• Telephone numbers of the firms and the persons holding the Power of
and partners Attorney and their addresses (v)
Telephone bill in the name of
firm/partners
Accounts of trusts & foundations (i) Certificate of registration, if
registered (ii) Power of Attorney granted
• Names of trustees, settlers, to transact business on its behalf (iii)
beneficiaries and signatories Any officially valid document to
• Names and addresses of the identify the trustees, settlers,
founder , the managers/directors beneficiaries and those holding Power of
and the beneficiaries Attorney, founders/managers/directors
• Telephone/Fax numbers and their addresses (iv) Resolution of
the managing body of the
foundation/association (v) Telephone
bill
Banks would need to categorize their customers as low, medium and high
risks:
These are individuals 9other than high net worth individuals) and
entities whose identities and sources of funds can be verified easily;
transactions in whose accounts are in conformity with known Customers and
Transaction profiles. For this category, it should be adequate if the basic
requirements of verifying the identity and location of the customers are met.
Salaried employees, Government owned companies, Government
departments, regulators, regulatory bodies, etc. fall in this category.
This is a critical aspect. The policy and the procedures should clearly
help the parameterizing of the type and size of normal transactions in a
customer’s account and the quick identification, for further enquiry, of and
abnormal transaction like the one that falls outside the normal level and
pattern if activity recorded.
Taking a leaf out of the US book, the RBI too directed all banks to
implement KYC guidelines for all new accounts, imposing KYC norms was
a little difficult, so RBI issued guidelines for the same at the end of 2004.
The KYC guidelines state that besides knowing the customers, banks
should know about the customer’s means of earning income, source of
funds, customer’s customer, etc. So, an additional responsibility has been
laid upon the bankers at the time of opening the accounts, operation of the
accounts and during the time of transactions.
In short, banks are liable till closure of the accounts unlike in earlier
days. Even after closure of the accounts, the law requires preservation of
records with respect to the accounts for a minimum of 10 years. In short,
bank officers have to go beyond introduction.
• Review KYC program and procedures. Are they designed to flag high-risk
accounts?
• Review BSA training for staff. Does it train staff to watch high-risk
activities and to recognize situations or transactions that is suspicious and
should be reported?
• Monitor cash aggregation reports and wire transfers. Consider whether these
identify transaction accounts that should be reviewed and monitored.
Do not accept photocopies. You must see the original and copy it yourself.
Although this is obvious, it is surprising how many businesses are happy to
da business on the strength of the photocopies or faxes. Just because
someone has a copy of passport it does not mean it is his or hers –
photocopying technology is such that it is easy to put another ID photograph
on a document and for it not to be obvious on the resulting photocopy.
The use of International Business Companies, shell companies and the like
poses problems for KYC procedures. You may be in the situation in which
you are presented with a business entity with nominee directors who produce
ID that is valid and acceptable.
• Before giving finance at any branch level, making sure that the person has
no links with notified terrorist entities and reporting any such ‘suspect;’
accounts to the government.
• Regular ‘Internal Audit’ by internal and concurrent auditors to check if the
KYC guidelines are being properly adhered to or not by the banks.
• Most important, banks must keep an eye out for all banking transactions and
identify suspicious ones. Such transactions will be immediately reported to
the bank’s head office and authorities and norms shall also be laid down for
freezing of such accounts.
Chapter 6: Important Aspects for KYC
Where banks desire to collect information for purpose other than KYC, it
should not be through account opening forms (i.e. the relative question should not
be the part of the form). Answering to queries should also be at the option of the
customer.
Information collected should not be divulged to others nor put to use for
commercial purposes. Strict privacy should be maintained. Banks could be
maintained. Banks could include these aspects in their KYC policy document.
The staffs in the front desks have to be trained to deal with the customers.
Employees have to be trained on an ongoing basis in KYC procedures as the
rationale behind the policies have to be understood by various levels of staff and
implemented consistently.
Banks should pay special attention to any money laundering threats that may
arise from new or developing technologies including internet banking that might
favour anonymity, and take measures, if needed, to prevent their use in money
laundering schemes. Also with the normal account holders, the banks should pay
their attention and implement the KYC procedure to the following account holders.
When the bank has knowledge or reason to believe that the client account
opened by a professional intermediary is on behalf of a single client, that client
must be identified. Banks may hold ‘pooled’ accounts managed by professional
intermediaries on behalf of entities like mutual funds, pension funds or other types
of funds. Where funds held by the intermediaries are not co-mingled at the bank
and there are ‘sub-accounts’, each of them attributable to a beneficial owner, all the
beneficial owner, all the beneficial owners must be identified. Where such funds
are co-mingled at the bank, the bank should still look through to the beneficial
owners. Where the banks rely on the ‘customer due diligence’ (CDD) done by an
intermediary, they should satisfy themselves that the intermediary is regulated and
supervised and has adequate systems in place to comply with the KYC
requirements. It should be understood that the ultimate responsibility for knowing
the customer lies with the bank.
Politically exposed persons are individuals who are or have been entrusted
with prominent public functions in a foreign country, e.g. Heads of States or of
Governments, senior executives of state-owned corporations, important political
party officials, etc. Banks should gather sufficient information on any
person/customer of this category intending to establish a relationship and check all
the information available on the person in the public domain. This decision to open
an account for PEP should be taken at senior level, which should be spelt out in
Customer Acceptance Policy. Banks should also subject such accounts to enhanced
monitoring on an ongoing basis. The above norms may also be applied to the
accounts of the family members or close and combatting financing of terrorism
relatives of PEPs.
With the new account holders, banks should apply the same policy to the
existing customers on the basis of materiality and risk. However, transactions in
existing accounts should be continuously monitored and any unusual pattern in the
operation of the account should trigger a review of the CDD measures. Banks may
consider applying monitory limits to such accounts based on the nature and type of
the account. Banks may also ensure that term/recurring deposit accounts or
accounts of similar nature are treated as new accounts at the time of renewal and
subjected to revise KYC procedures.
Where the bank is unable to apply appropriate KYC measures due to non-
furnishing of information and / or non-cooperation by the customer, the bank may
consider closing the account or terminating the banking/business relationship after
issuing due notice to the customer explaining the reasons for taking such a
decision. Such decisions need to be taken at a reasonably senior level.
Practical Hassles:
After the introduction of new KYC norms, a question that the bankers face is
whether introduction is needed? The answer is emphatic no, since the identity of
the customer is verified by the documents issued by the government/public
authorities. This is all the more relevant because most banks having place a system
whereby the software allows opening of the account only when a minimum score is
reached.
The KYC guidelines are exhaustive in nature and expect the bankers to go
beyond establishing the identity of the person opening an account. The guidelines
emphasize on obtaining introduction and other important information about the
customer regarding his credentials. The purpose of opening the account is to be
ascertained ; expected turnover and sources of funds are to be obtained, the
transactions in the account are to be monitored and in short, till the account is
closed, a watchful eye has to be kept on the account.
From the angle of curbing black money, avoiding benami accounts, hindering
flow of funds to terrorism, etc., the KYC measures have yielded significant results
also the bankers and customers have got acquainted with the procedures enunciated
in the RBI circular and certain genuine exemptions have been given for some
categories of people. The KYC norms will definitely help all the banks and
financial institutions do legitimate business with legitimate entities.
First, make sure the KYC policy is specifically a part of the banks compliance
with the banks Secrecy Act and is clearly defined as such in the guidelines and
manuals. Second, review the language of the KYC policies to make sure it is
specific and the purpose is clearly stated to identify money laundering and other
criminal activity.
If a stated purpose for the KYC policy is to preserve the good name of the bank
or maintain good relationships with its customers and the community, a claim for
failure to live up to those very general standards is more likely. Until, or unless, the
government expands safe harbor provisions to include the application of KYC
policy, financial institutions will continue to be subjected to claims for filure to
properly follow those policies.
Bibliography:
Journals:
www.rbi.com
www.google.com