The FCG is designed to provide practical assistance and information for firms of all sizes and across all FCA-supervised sectors, to help them counter the risk that they might be used to further financial crime. By following the guidance, firms should easily be able to demonstrate a risk and outcomes-focused approach to financial crime systems and controls, assess and proactively address any gaps. Importantly, experience suggests that firms which can demonstrate they have considered the FCG and used it when developing their own financial crime control environment are better positioned to respond to FCA queries, investigations and enforcement action.
Originally borne out of the FCA's experience of thematic reviews in different parts of the market, the FCG has evolved over the years and continues to do so with this proposed version. The latest proposed revisions seek to align the FCG to various changes in legal and regulatory obligations in the financial crime compliance arena. There are more significant changes in relation to guidance around sanctions and proliferation financing.
Sanctions
The FCA conducted an extensive assessment of firms’ responses to increased sanctions due to Russia’s invasion of Ukraine and published its key findings in Autumn 2023. The proposed changes to the FCG would incorporate some of its learnings around good and poor practice and areas for improvement. For example, the updates propose more rigorous controls and checks to identify and block financial transactions that may breach sanctions. There is also more prescriptive guidance for reporting breaches and more emphasis on governance and oversight. The revised guidance emphasises the need for senior management to take clear responsibility for managing sanctions risks. The proposals also highlight the importance of Management Information (MI) with the expectation being around regular, calibrated MI reporting to provide senior management with a clear understanding of the firm's sanctions compliance risk. Effective customer due diligence and more informed risk assessment is also covered in the revised guidance as well as the use of up-to-date and effective screening systems that are appropriate to the business. Firms will also need to consider putting systems in place to identify potential sanctions evasion involving third parties.
Proliferation financing
The FCA is proposing to update FCG in light of changes brought about by the Money Laundering and Terrorist Financing (Amendment) (No 2) Regulations 2022, SI 2022/860, which (in the UK) implemented The Financial Action Task Force (FATF's) revised recommendations about proliferation financing risk assessment. The revised guidance will contain new references to proliferation financing throughout the FCG, to highlight that the risk of this (essentially the provision of funds or financial services connected to the manufacture and use of nuclear, chemical or biological weapons) is to be treated in the same way as other financial crime risks. However, it also clearly sets out the expectations for proliferation financing risk assessments to be undertaken, either as part of the existing business-wide risk assessment or as a standalone document. The key takeaway for firms is the need to assess exposure to proliferation financing and mitigate this exposure as necessary.
Other changes
The FCA is proposing to set out new guidance for firms on how they can implement and monitor more effective transaction monitoring systems. Calibration of tools and rules to key risks will remain of key importance.
Other proposed changes to FCG would add explicit reference to cryptoasset businesses, specifically in the context of risk assessment, Customer Due Diligence (CDD) and sanctions and counter proliferation financing compliance.
The FCA is also proposing changes to make it clear that firms should consider whether their systems and controls are proportionate and consistent with their obligations under the Consumer Duty, and to update some of the existing case studies.
Should you require assistance in responding to this consultation, please contact the authors.