|
|
Home
| Databases
| WorldLII
| Search
| Feedback
Papua New Guinea Sessional Legislation |
PAPUA NEW GUINEA
Anti-Money Laundering and Counter Terrorist Financing Act 2015.
No. 20 of 2015.
Certified on: 20 JAN 2016
ARRANGEMENT OF SECTIONS.
PART 1 - PRELIMINARY.
1. Compliance with constitutional requirements.
2. Act to bind the State.
3. Application of Criminal Code.
4. Application.
5. Interpretation.
"account"
"AML/CTF"
"AML/CTF compliance rule"
"AML/CTF program"
"assets"
"bearer negotiable instrument"
"beneficial owner"
"business relationship"
"conduct"
"correspondent banking relationship"
"Court"
"criminal conduct"
"criminal property"
"currency"
"customer"
"Director"
"DNFBP"
"domestic electronic funds transfer"
"electronic funds transfer"
"FASU"
"financial group"
"financial institution"
"foreign counterpart agency"
"foreign indictable offence"
"international electronic funds transfer"
"money laundering"
"occasional transaction"
"payable-through account"
"person"
"policeman"
"politically exposed person"
"precious metal"
"precious stone"
"premises"
"record"
"regulatory authority"
"risk assessment"
"Sanctions Secretariat"
"shell bank"
"terrorist financing"
"third party financial institution or DNFBP"
"transaction"
"trust or company service provider"
"unincorporated entity"
"warrant".
PART II. - OBLIGATIONS ON FINANCIAL INSTITUTIONS.
Division I. - Risk assessments and anti-money laundering and counter terrorist financing programs.
6. Risk assessments.
7. Requirements for risk based AML/CTF program.
8. Requirement to appoint an AML/CTF compliance officer.
9. Review and audit of risk assessment and AML/CTF program.
10. Appointment of an external auditor to conduct independent audit.
11. External auditor may have regard to the results of previous audit.
12. External auditors.
13. Financial groups to implement group-wide AML/CTF program.
14. Offence of failure to comply with risk assessment, AML/CTF program and appointment of external auditor obligations.
Division 2. - Due diligence.
Subdivision 1. - General due diligence requirements.
15. Reliance on risk assessment and AML/CTF program.
16. Basis for verifying identity.
17. Ongoing due diligence.
18. Reliance on third party financial institution or DNFBP for customer due diligence.
19. Where customer due diligence cannot be completed under Subdivision 2 or 3 or must be ceased.
Subdivision 2. - Customer due diligence requirements.
20. Obligation to conduct customer due diligence.
21. Circumstances where simplified customer due diligence may be applied.
22. Simplified customer due diligence - identity and verification requirements.
23. Circumstances where standard customer due diligence applies.
24. Standard customer due diligence - identity requirements.
25. Standard customer due diligence - verification of identity requirements.
26. Circumstances where enhanced customer due diligence applies.
27. Enhanced customer due diligence - identity requirements.
28. Enhanced customer due diligence - verification of identity requirements.
29. Enhanced customer due diligence - additional requirements for politically exposed persons.
Subdivision 3. - Customer due diligence requirements for electronic funds transfers.
30. Overview of customer due diligence requirements for electronic funds transfers.
31. Electronic funds transfers - identity and verification of identity requirements for ordering financial institutions.
32. Electronic funds transfers - requirements for intermediary financial institutions.
33. Electronic funds transfers - identity and verification of identity requirements for beneficiary financial institutions.
Subdivision 4. - Due diligence requirements for correspondent banking relationships.
34. Due diligence for correspondent banking relationships.
35. Where due diligence cannot be completed under Subdivision 4.
Subdivision 5. - Offences.
36. Failure to comply with due diligence requirements.
37. Offence of opening or operating anonymous accounts and accounts in false names.
38. Offence of establishing or continuing a business relationship involving a shell bank.
Division 3. - Reporting obligations.
Subdivision 1. - Reporting obligations and offences.
39. Threshold reporting obligations.
40. Obligation to report assets of a designated person or entity.
41. Suspicious matter reporting obligations.
42. Providing false or misleading report or information.
43. Obligation not to disclose a report, etc.
44. Obligation not to disclose information or suspicion.
45. Protection of identity in relation to suspicious matter reports.
Subdivision 2. - Other offences.
46. Structuring offence.
Division 4. - Record keeping by financial institutions.
47. Obligations to keep transaction records.
48. Obligations to keep identity and verification records.
49. General obligations to keep other records.
50. Interaction with other legislation.
51. Failure to comply with record keeping requirements.
PART III. - OBLIGATIONS ON DESIGNATED NON-FINANCIAL BUSINESSES AND PROFESSIONS.
52. Obligations on DNFBPs.
53. Offences.
PART IV. - ADDITIONAL OBLIGATIONS APPLYING TO FINANCIAL INSTITUTIONS AND DESIGNATED NON-FINANCIAL BUSINESSES AND PROFESSIONS.
54. Foreign branches and majority-owned foreign subsidiaries to comply with PART II and PART III.
55. Failure to comply with requirements relating to foreign branches and majority-owned foreign subsidiaries.
56. Protection from liability for acts done in good faith.
57. Requirement to register with FASU.
58. Failure to register with FASU.
PART V. - BENEFICIAL OWNERSHIP INFORMATION AND FIT AND PROPER CONTROLS.
59. Obligations on financial institutions and DNFBPs to disclose beneficial ownership information.
60. Obligations on regulatory authorities and FASU regarding beneficial ownership information and fit and proper controls.
PART VI. - SUPERVISION AND ENFORCEMENT.
Division 1. - Financial Analysis and Supervision Unit.
Subdivision 1. - Establishment of Financial Analysis and Supervision Unit.
61. Establishment of FASU.
62. Status of the Director.
63. Appointment of the Director.
64. Term of appointment.
65. Dismissal of the Director.
66. Vacancy of Director's position.
67. Officers of FASU.
68. Functions and powers of FASU to vest in the Director.
69. Duties of the Director.
70. Delegation of Authority.
71. Protection from liability for acts done in good faith.
Subdivision 2. - Functions of Financial Analysis and Supervision Unit.
72. Functions of FASU.
73. FASU may prepare AML/CTF compliance rules.
74. Legal effect of an AML/CTF compliance rule.
75. FASU to produce annual report.
76. FASU to maintain register of financial institutions and DNFBPs.
77. FASU to maintain a database.
78. FASU to destroy suspicious matter reports.
Division 2. - Information gathering and monitoring powers.
79. Power to receive reports and information:
80. Power to request information from other bodies.
81. Power to request information and records from a financial institution or DNFBP.
82. Determining if a person is a financial institution or a DNFBP.
83. Complying with a request for documents or information.
84. Failure to comply with a request for documents or information.
85. FASU may conduct an on-site inspection.
86. Conduct of an on-site inspection.
87. Inspection of premises pursuant to a warrant.
88. Requirements regarding entry pursuant to a warrant.
89. Powers that can be exercised under the warrant.
90. Assistance in exercising monitoring powers.
91. Restore premises.
92. Offence of obstructing the execution of a warrant and tampering with or destroying records.
93. Powers to ask questions and seek production of records.
Division 3. - Use and disclosure of confidential information.
94. Confidential information.
95. Offence of disclosing confidential information.
96. Circumstances in which confidential information may be disclosed.
97. Sharing confidential information with a foreign counterpart agency.
98. Restrictions on sharing confidential information with a foreign counterpart agency.
Division 4. - Enforcement.
99. Possible enforcement measures.
100. Formal warning.
101. Infringement notice.
102. Enforceable undertaking.
103. Enforcement of undertaking.
104. Performance injunctions.
105. Restraining injunctions.
106. Notice of non-compliance.
PART VII. - MISCELLANEOUS.
107. Conduct by Director, servant or agent.
108. Power to make Regulations.
No. of 2015.
AN ACT
entitled
Anti-Money Laundering and Counter Terrorist Financing Act 2015,
Being an Act which enables the Government of Papua New Guinea to detect and deter money laundering and terrorist financing,
MADE by the National Parliament to come into operation in accordance with a notice in the National Gazette by the Head of State, acting with, and in accordance with, the advice of the Minister.
PART I. - PRELIMINARY.
1. COMPLIANCE WITH CONSTITUTIONAL REQUIREMENTS.
(1) This Act, to the extent that it regulates or restricts a right or freedom referred to in Subdivision III.3.C (qualified rights) of the Constitution, namely -
(a) the liberty of the person conferred by Section 42; and
(b) the right to freedom from arbitrary search and entry conferred by Section 44; and
(c) the right to freedom of assembly and association conferred by Section 47; and
(d) the right to freedom of employment conferred by Section 48; and
(e) the right to privacy conferred by Section 49; and
(f) the right to freedom of information conferred by Section 51; and
(g) the right to protection from unjust deprivation of property conferred by Section 53,
of the Constitution, is a law that is made for the purpose of complying with Section 38 of the Constitution, that is necessary for the purpose of giving effect to the public interest in public safety, public order and public welfare and is reasonably justifiable in a democratic society having proper respect and regard for the rights and dignity of mankind, taking into account the National Goals and Directive Principles and Basic Social Obligations.
(2) Subject to Subsection (1), this law gives effect to certain international obligations of Papua New Guinea and meets relevant Financial Action Task Force Recommendations because of the risk that money laundering and terrorist financing poses to public safety, public order and public welfare as well as to the successful economic and human development of Papua New Guinea and its citizens and to the stability of the State of Papua New Guinea.
2. ACT TO BIND THE STATE.
This Act binds the State.
3. APPLICATION OF CRIMINAL CODE ACT 1974.
The Criminal Code Act 1974 applies to all offences under this Act.
4. APPLICATION.
This Act applies in Papua New Guinea.
5. INTERPRETATION.
(1) In this Act, unless the contrary intention appears –
"account" includes -
- (a) any facility or arrangement by which a financial institution or DNFBP does any of the following:
- (i) accepts deposits of assets; or
- (ii) allows withdrawals or transfers of assets; or
- (iii) pays, collects or draws on a bearer negotiable instrument on behalf of any other person; or
- (iv) supplies a safety deposit box or any other form of safe deposit; and
- (b) for the avoidance of doubt, any account which may be closed or inactive or has a nil balance;
"AML/CTF" means anti-money laundering and counter terrorist financing;
"AML/CTF compliance rule" means a compliance rule approved by the Governor of the Bank of Papua New Guinea under Section 73(6);
"AML/CTF program" means a program established under Section 7;
"assets" means funds, property and financial resources of every kind, whether tangible or intangible, corporeal or incorporeal, moveable or immovable, however acquired and legal documents or instruments in any form, including electronic or digital, evidencing title to, or interest in such assets, including but not limited to currency, bank credits, deposits, traveller's cheques, bank cheques, money orders, shares, securities, bonds, drafts and letters of credit, and any interest, dividends, income or value accruing from, generated by or derived from such assets;
"bearer negotiable instrument" means -
- (a) a bill of exchange; or
- (b) a cheque; or
- (c) a promissory note; or
- (d) a bearer bond; or
- (e) a traveller's cheque; or
- (f) a money order, postal order or similar order; or
- (g) a negotiable instrument not covered by any of the above Paragraphs;
"beneficial owner" means a natural person who -
- (a) has ultimate control, directly or indirectly, of a customer; or
- (b) ultimately owns, directly or indirectly, the customer;
"business relationship" means an on-going business, professional or commercial relationship between a financial institution or DNFBP and a customer;
"conduct" means an act or omission when used in relation to an offence;
"correspondent banking relationship" means a relationship that involves the provision of banking business services by one financial institution (the correspondent) to another (the respondent) where -
- (a) the correspondent carries on banking business at or through a permanent place of business in one country; and
- (b) the respondent carries on banking business at or through a permanent place of business in another country; and
- (c) the relationship between the correspondent and the respondent relates, in whole or in part, to the provision of banking services between those permanent places of business;
"Court" means the National Court of Papua New Guinea;
"criminal conduct" has the meaning given by Section 508A of the Criminal Code Act 1974;
"criminal property" has the meaning given by Section 508A of the Criminal Code Act 1974;
"currency" means legal tender in physical or non-physical form, or tender that is customarily used and accepted as a medium of exchange in Papua New Guinea or a foreign country;
"customer" means -
- (a) a person or unincorporated entity -
- (i) for whom the financial institution or DNFBP carries out a transaction; or
- (ii) with whom the financial institution or DNFBP conducts a business relationship,
- and includes -
- (b) a person or unincorporated entity who attempts to carry out a transaction or business relationship with the financial institution or DNFBP; and
- (c) an existing or new customer;
"Director" means the Director of FASU;
"DNFBP" means a Designated Non-financial Business or Profession in Papua New Guinea and includes one or more of the following:
- (a) a casino; and
- (b) a real estate agent; and
- (c) a dealer in precious metals; and
- (d) a dealer in precious stones; and
- (e) a lawyer, notary public, other independent legal professional or an accountant when preparing for, engaging in, or carrying out one or more transactions for a client concerning one or more of the following activities:
- (i) buying and selling real estate; and
- (ii) managing client currency, securities or other assets; and
- (iii) managing bank, savings or securities accounts; and
- (iv) organising contributions for the creation, operation or management of bodies corporate; and
- (vi) creating, operating or managing bodies corporate or unincorporated entities; and
- (f) buying and selling businesses; and
- (i) a trust or company service provider; and
- (g) a motor vehicle dealer,
and includes any other business or profession as prescribed by regulations;
"domestic electronic funds transfer" means an electronic funds transfer, or a chain of electronic funds transfers, where all of the parties to the transaction are located in Papua New Guinea;
"electronic funds transfer" means a transaction carried out on behalf of a person (the sender) through a financial institution by electronic means with a view to making an amount of currency available to a person (the receiver, who may also be the sender) at another financial institution and excludes transfers and settlements between financial institutions if both the sender and the receiver are financial institutions acting on their own behalf and credit and debit card transactions if the credit or debit card number accompanies the transaction;
"FASU" means the Financial Analysis and Supervision Unit established under Section 61;
"financial group" means a group that consists of a parent company or any other type of body corporate exercising control and coordinating functions over the rest of the group, and includes foreign branches and majority-owned subsidiaries of a financial institution or DNFBP in Papua New Guinea that are part of such a group;
"financial institution" means any person or unincorporated entity that conducts in Papua New Guinea one or more of the activities listed below for or on behalf of a customer -
- (a) acceptance of deposits and other repayable funds from the public, including private banking; and
- (b) lending, including, but not limited to, consumer credit, mortgage credit, factoring (with or without recourse) and financing of commercial transactions, including forfeiting; and
- (c) financial leasing other than with respect to arrangements relating to consumer products; and
- (d) the transfer of currency or value; and
- (e) issuing and managing means of payment including, but not limited to, credit and debit cards, cheques, traveller's cheques, money orders and bankers' drafts and currency in non-physical form; and
- (f) issuing financial guarantees and commitments; and
- (g) trading in -
- (i) bearer negotiable instruments; or
- (ii) foreign exchange; or
- (iii) exchange, interest rate and index instruments; or
- (iv) transferable securities; or
- (v) commodity futures trading;
- (h) participation in securities issues and the provision of financial services related to such issues; and
- (i) individual and collective portfolio management; and
- (j) safekeeping and administration of physical currency, bearernegotiable instruments or liquid securities on behalf of other persons; and
- (k) investing, administering or managing assets on behalf of other persons; and
- (l) underwriting and placement of insurance, including insurance intermediation by agents and brokers; and
- (m) currency changing;
"foreign counterpart agency" means an agency of another country that performs similar functions to FASU;
"foreign indictable offence" means an offence against the law of another country that, if the relevant act or omission had occurred in Papua New Guinea, would be an indictable offence;
"international electronic funds transfer" means an electronic funds transfer, or a chain of electronic funds transfers, where at least one party to the transaction is located outside Papua New Guinea;
"money laundering" means conduct which constitutes an offence under Section 508B or Section 508C of the Criminal Code Act 1974;
"occasional transaction" means a transaction that takes place outside an existing business relationship;
"payable-through account" means an account used directly by a third party customer of a respondent to transact business for that party or on behalf of another person;
"person" means a natural person and a body corporate;
"policeman" means a member of the Police Force;
"politically exposed person" means -
- (a) a person who is or has been entrusted in a foreign country with prominent public functions, including but not limited to, a Head of State or the head of a government, a senior politician, a senior government official, a senior judicial official or a senior military official; or
- (b) a person who is or has been a senior executive in a foreign country of a state-owned company of that foreign country; or
- (c) a person who is or has been a senior political party official in a foreign country; or
- (d) a person who is or has been entrusted with a prominent function by an international organisation, including but not limited to directors, deputy directors and members of the board or equivalent positions; or
- (e) a person who is or has been entrusted in Papua New Guinea with prominent public functions, including but not limited to a Head of State, a politician, a senior political party official, a senior government official, a senior judicial official, a senior military official or any person who is or has been a senior executive of a State-owned company; or
- (f) any person who is a family member or close associate of a person mentioned in Paragraphs (a) to (e);
"precious metal" means -
- (a) gold, silver, platinum, palladium, iridium, osmium, rhodium or ruthenium; or
- (b) an alloy or other substance containing any of the metals referred to in Paragraph (a);
"precious stone" means a substance with gem quality market-recognised beauty, rarity and value and includes diamond, corundum (including rubies and sapphires), beryl (including emeralds, aquamarines), chrysoberyl, spinel, topaz, zircon, tourmaline, garnet, crystalline and cryptocrystalline quartz, olivine peridot, tanzanite, jadeite jade, nephrite jade, spodumene, feldspar, turquoise, lapis lazuli and opal;
"premises" includes -
- (a) a structure, building, vehicle, aircraft or vessel; or
- (b) a place, whether or not it is enclosed or built upon; or
- (c) a part of a premises;
"record" means information recorded or retained in any form which can be accessed in or from Papua New Guinea and which can be read or understood by a person, computer system or other device;
"regulatory authority" means an agency or body established in Papua New Guinea by or under a Constitutional Law or an Act whose functions include -
- (a) setting, monitoring or enforcing compliance with standards or obligations prescribed by or under that or another Constitutional Law or Act; or
- (b) granting a licence, practising certificate, registration or other equivalent permission by or under that or another Constitutional Law or Act;
"risk assessment" means an assessment of the risk of money laundering and terrorist financing undertaken in accordance with Section 6;
"Sanctions Secretariat" means the Sanctions Secretariat referred to under Section 25 of the United Nations Financial Sanctions Act 2015;
"shell bank" means a corporation that -
- (a) is incorporated in a foreign country; and
- (b) is authorised to carry on banking business in its country of incorporation; and
- (c) does not have a physical presence in its country of incorporation; and
- (d) is not affiliated with another corporation that -
- (i) is incorporated in a particular country; and
- (ii) is authorised to carry on banking business in its country of incorporation; and
- (iii) is sufficiently supervised and monitored in carrying on its banking business; and
- (iv) has a physical presence in its country of incorporation;
"terrorist financing" means conduct which constitutes an offence of terrorist financing under Section 508J of the Criminal Code Act 1974;
"third party financial institution or DNFBP" means -
- (a) a financial institution or DNFBP who performs customer due diligence on behalf of another financial institution or DNFBP under Section 18; or
- (b) a person or unincorporated entity that carries out financial activities equivalent to those carried out by a financial institution, or conducts a non-financial business or profession equivalent to a non-financial business or profession carried out by a DNFBP, and who -
- (i) is monitored and supervised by a foreign counterpart agency or an authority that regulates such persons or unincorporated entities; and
- (ii) performs customer due diligenceon behalf of another financial institution or DNFBP under Section 18.
"transaction" means -
- (a) a purchase, sale, loan, pledge, gift, transfer, delivery or other disposition or the arrangement of such purchase, sale, loan, pledge, gift, transfer, delivery or other disposition and includes, but is not limited to -
- (i) the opening of an account; or
- (ii) any deposit, withdrawal, exchange or transfer of assets in any currency whether -
- (A) in physical currency; or
- (B) by cheque or other bearer negotiable instrument; or
- (C) in non-physical currency;
- (iii) the use of a safety deposit box or other form of safe deposit; or
- (iv) entering into any fiduciary relationship; or
- (v) any payment made or received in satisfaction, in whole or in part of any contractual or other legal obligation; or
- (vi) any payment made in respect of a lottery, bet or other game of chance; or
- (vii) establishing or creating a body corporate or unincorporated entity; and
- (b) for the avoidance of doubt, a reference to a 'transaction' includes a reference to an attempted transaction;
"trust or company service provider" means a person who or an unincorporated entity which provides one or more of the following services to another person or unincorporated entity:
- (a) forming, registering or managing a body corporate; or
- (b) acting as, or arranging for another person to act:
- (i) as a director or secretary or other office holder of a company; or
- (ii) as partner of a partnership; or
- (iii) in a similar position in relation to a body corporate; or
- (c) providing a registered office, business address or accommodation, correspondence or administrative address for anybody corporate or unincorporated entity; or
- (d) acting as, or arranging for another person to act as, a trustee of a trust or other similar unincorporated entity; or
- (e) acting as, or arranging for another person to act as, a nominee shareholder for another person;
"unincorporated entity" includes any unincorporated group, undertaking, organisation or legal arrangement such as a trust or an unincorporated partnership;
"warrant" means a warrant issued under Section 87.
(2) For the purposes of a "shell bank" as defined in this section –
(a) a corporation has a physical presence in a country if -
- (i) the corporation carries on banking business at a place in that country; and
- (ii) banking operations of the corporation are managed and conducted from that place; and
(b) a corporation is affiliated with another corporation if -
- (i) the corporation is a subsidiary of the other corporation; or
(ii) both corporations are under common effective control.
(3) For the purpose of a "beneficial owner" as defined in this section -
(a) "control" includes control as a result of, or by means of, trusts, agreements, arrangements, understandings and practices, whether or not having legal or equitable force and whether or not based on legal or equitable rights, and includes exercising control through the capacity to make decisions about financial and operating policies; and
(b) "owns" means ownership, either directly or indirectly, of 25% or more of a person or unincorporated entity.
PART II. - OBLIGATIONS ON FINANCIAL INSTITUTIONS.
Division I. - Risk assessments and anti-money laundering and counter terrorist financing programs.
6. RISK ASSESSSMENTS.
(1) A financial institution must undertake a risk assessment.
(2) A risk assessment must -
(a) be in writing, which includes it being stored electronically; and
(b) identify and assess the nature and level of money laundering and terrorist financing risk that the financial institution may reasonably expect to face in the course of its business; and
(c) be maintained and updated as required to take into account new and emerging risks.
(3) In identifying and assessing the nature and level of risk for the purpose of Subsection (2)(b), a financial institution must have regard to the following:
(a) the nature, size and complexity of its business; and
(b) the products and services it offers; and
(c) the methods by which it delivers products and services to its customers; and
(d) the types of customers it deals with, including politically exposed persons, residents in high risk countries and customers involved in high risk business activities; and
(e) the countries or geographic areas it deals with and whether they are high risk countries or geographic areas; and
(f) new and developing technologies and products and new business practices, used by the financial institution or its customers that might assist the commission of money laundering or terrorist financing; and
(g) the entities it deals with; and
(h) any applicable guidance produced by FASU or the regulatory authority that regulates the financial institution.
7. REQUIREMENTS FOR RISK BASED AML/CTF PROGRAM.
(1) A financial institution must establish, implement and maintain an AML/CTF program.
(2) An AML/CTF program must be in writing, which includes it being stored electronically.
(3) A financial institution':,s AML/CTF program must be based on its risk assessment and include effective procedures, policies and controls, approved by senior management, for -
(a) managing and mitigating the risks identified in its risk assessment; and
(b) monitoring the risks identified in its risk assessment; and
(c) complying with the due diligence requirements in Division 2 of this Part including, but not limited to -
- (i) ensuring that on-going due diligence is conducted in accordance with Section 17; and
- (ii) determining when a financial institution may rely on a third party financial institution or DNFBP to conduct customer due diligence in accordance with Section 18; and
- (iii) determining when simplified customer due diligence might be permitted under Section 21; and
- (iv) determining when enhanced customer due diligence must be conducted under Section 26; and
- (v) determining the conditions under which a financial institution may complete verification of identity after the establishment of a business relationship, in accordance with Sections 25(3) and 28(3); and
(d) complying with the other requirements of this Act including, but not limited to
- (i) appointing an AML/CTF compliance officer in accordance with Section 8; and
- (ii) reporting a suspicious matter under Section 41; and
- (iii) record keeping under Division 4 of this Part; and
(e) vetting an employee to ensure he is fit and proper person to engage in AML/CTF related duties; and
(f) providing training to an employee that is engaged in AML/CTF matters.
8. REQUIREMENT TO APPOINT AN AML/CTF COMPLIANCE OFFICER.
(1) A financial institution must appoint a person with suitable qualifications and experience as its AML/CTF compliance officer to administer and maintain its AML/CTF program.
(2) An AML/CTF compliance officer must have direct access to senior management of the financial institution.
(3) A person appointed under Subsection (1) may be, but is not required to be, an employee of the financial institution.
(4) Notwithstanding Subsection (3), a financial institution has the ultimate responsibility for ensuring compliance with its obligations under this Act.
9. REVIEW AND AUDIT OF RISK ASSESSMENT AND AML/CTF PROGRAM.
(1) A financial institution must review its risk assessment and AML/CTF program on a regular basis to -
(a) ensure its risk assessment and AML/CTF program remain current; and
(b) identify and address any deficiencies in the effectiveness of its risk assessment and AML/CTF program.
(2) A financial institution must periodically engage an external auditor to provide an independent review of its risk assessment and AML/CTF program and make recommendations for improvements.
10. APPOINTMENT OF AN EXTERNAL AUDITOR TO CONDUCT INDEPENDENT AUDIT.
(1) FASU may, by written notice, require a financial institution to appoint an external auditor to conduct an independent audit of the financial institution's risk assessment and AML/CTF program.
(2) In conducting an independent audit under Subsection (1), an external auditor must -
(a) assess whether the financial institution's risk assessment and AML/CTF program are current; and
(b) identify any deficiencies in the effectiveness of the financial institution's risk assessment and AML/CTF program; and
(c) make recommendations to address any deficiencies identified under Paragraph (b) and improve the financial institution's risk assessment and AML/CTF program.
(3) The financial institution must provide FASU with a copy of the external auditor's written report within the period specified in Subsection (4)(c).
(4) A written notice under Subsection (1) must specify -
(a) the matters to be covered by the audit; and
(b) the form of the audit report; and
(c) the period within which the financial institution must provide a copy of the external auditor's report to FASU.
(5) A person is not eligible to be appointed as an external auditor by a financial institution if -
(a) the person is an officer, employee or agent of the financial institution; or
(b) the financial institution is part of a group, and the person is an officer, employee or agent of another member of that group.
(6) For the avoidance of doubt, all costs associated with the appointment of an external auditor under this section must be borne by the financial institution.
11. EXTERNAL AUDITOR MAY HAVE REGARD TO THE RESULTS OF PREVIOUS AUDIT.
In conducting an independent audit under Section 10, an external auditor may have regard to the results of any previous audit if -
(a) an external audit was completed under that section within the last preceding two years; and
(b) the external auditor is satisfied that the previous audit is still relevant.
12. EXTERNAL AUDITORS.
(1) FASU may prescribe, in writing, a list of specified persons or firms who may be appointed as an external auditor for the purpose of Section 10(1).
(2) A financial institution or DNFBP must appoint an external auditor prescribed by FASU under Subsection (1), unless FASU has, in writing, approved the appointment of another auditor.
13. FINANCIAL GROUPS TO IMPLEMENT GROUP-WIDE AML/CTF PROGRAM.
(1) A financial group must implement a group-wide AML/CTF program, which must -
(a) be applicable and appropriate to all branches and majority-owned subsidiaries of the financial group; and
(b) cover the requirements in Sections 7 to 12; and
(c) include policies and procedures for sharing information required for the purposes of customer due diligence and AML/CTF risk management; and
(d) include policies and procedures for branches and majority-owned subsidiaries to provide customer account and transaction information to the financial group when necessary; and
(e) have adequate safeguards on the confidentiality and use of information exchanged.
(2) For the purpose of this section, a "group-wide AML/CTF program" means a program established by a financial group in accordance with Subsection (1).
14. OFFENCE OF FAILURE TO COMPLY WITH RISK ASSESSMENT, AML/CTF PROGRAM AND APPOINTMENT OF EXTERNAL AUDITOR OBLIGATIONS.
(1) A person who intentionally engages in conduct that contravenes a requirement of Section 6, 7, 8 or 9 is guilty of a crime.
Penalty: A fine not exceeding -
(a) K500,000.00 or imprisonment for a term not exceeding five years or both for a natural person; or
(b) K1,000,000.00 for a body corporate.
(2) A person who recklessly engages in conduct that contravenes a requirement of Section 6, 7, 8 or 9 is guilty of a crime.
Penalty: A fine not exceeding -
(a) K250,000.00 or imprisonment for a term not exceeding three years or both for a natural person; or
(b) K500,000.00 for a body corporate.
(3) A person who intentionally fails to comply with a notice under Section 10(1) is guilty of a crime.
Penalty: A fine not exceeding -
(a) K100,000.00 for a natural person; or
(b) K200,000.00 for a body corporate.
(4) A person who recklessly fails to comply with a notice under Section 10(1) is guilty of a crime.
Penalty: A fine not exceeding -
(a) K50,000.00 for a natural person; or
(b) K100,000.00 for a body corporate.
(5) For the purpose of Subsections (1) and (3), intention can be inferred from objective factual circumstances.
Division 2. - Due Diligence.
Subdivision 1. - General due diligence requirements.
15. RELIANCE ON RISK ASSESSMENT AND AML/CTF PROGRAM.
When assessing risk, including the nature and level of risk, for the purpose of complying with this Division, a financial institution must assess risk in accordance with its risk assessment and the procedures, policies and controls approved by senior management for managing and mitigating identified risks as set out in its AML/CTF program.
16. BASIS FOR VERIFYING IDENTITY.
A financial institution must only use reliable and independent source documents, data or information to verify the identity of -
(a) a person or unincorporated entity referred to in Section 20(1) in accordance with the requirements of Subdivision 2 of this Division; and
(b) a sender or receiver of an electronic funds transfer in accordance with the requirements of Subdivision 3 of this Division; and
(c) a respondent financial institution in accordance with the requirements of Section 34.
17. ONGOING DUE DILIGENCE.
(1) A financial institution is under an obligation to conduct ongoing due diligence in respect of all of its business relationships.
(2) When conducting ongoing due diligence, a financial institution must, at a minimum, do the following:
(a) maintain current and up to date information and records relating to its customers and their beneficial owners; and
(b) ensure that transactions carried out on behalf of its customers are consistent with its knowledge of the customer, the customer's commercial or personal activities and risk profile, and where necessary, the source of the funds; and
(c) ensure that ongoing enhanced due diligence is conducted with respect to politically exposed persons in accordance with Sections 29(3)(b) and 29(6)(b); and
(d) ensure that ongoing due diligence is conducted with respect to correspondent banking relationships in accordance with Section 34(2).-13-
18. RELIANCE ON THIRD PARTY FINANCIAL INSTITUTION OR DNFBP FOR CUSTOMER DUE DILIGENCE.
(1) Subject to Subsection (4), a financial institution may rely on a third party financial institution or DNFBP to conduct customer due diligence on a person or unincorporated entity referred to Section 20(1), as required by Subdivision 2 or 3 of this Division, if the financial institution -
(a) has no suspicion of money laundering or terrorist financing; and
(b) is satisfied that the third party financial institution or DNFBP
- (i) is able to provide, without delay, copies of information regarding the identity and verification of identity of the person or unincorporated entity referred to in Section 20(1), information on the nature and purpose of the business relationship, and any other information relating to customer due diligence upon request; and
- (ii) is subject to the jurisdiction of a State which is not considered a high risk jurisdiction and where the third party financial institution or DNFBP is subject to AML/CTF requirements at least equivalent to those specified in this Act, and is supervised for compliance with those requirements in a manner at least equivalent to that which is specified in this Act; and
(c) is satisfied that the third party financial institution or DNFBP cannot rely on or claim legal professional privilege, confidentiality or other contractual agreement when responding to a request for information referred to in Paragraph (b)(i).
(2) Subject to Subsection (3), where a financial institution relies on a third party financial institution or DNFBP to conduct customer due diligence in accordance with Subsection (1), it must obtain the information referred to in Subsection (1)(b)(i) from the third party financial institution or DNFBP before -
(a) establishing a new business relationship; or
(b) carrying out an occasional transaction of an amount in currency equal to or greater than K20,000.00; or
(c) making a payment to a beneficiary pursuant to a life insurance policy; or
(d) ordering an electronic funds transfer of an amount in currency equal to or greater than K2,500.00 in the case of an ordering financial institution within the meaning of Section 31(1).
(3) The verification of the identity of the person or unincorporated entity referred to in Section 20(1) may be completed as soon as reasonably practicable after the establishment of the business relationship where -
(a) the risk of money laundering or terrorist financing is not high and is effectively managed by the financial institution; and
(b) a delay in verification is essential in order not to interrupt the regular conduct of business of the financial institution.
(4) A financial institution has the ultimate responsibility for compliance with this Act.
19. WHERE CUSTOMER DUE DILIGENCE CANNOT BE COMPLETED UNDER SUBDIVISION 2 OR 3 OR MUST BE CEASED.
(1) Where a financial institution is unable to conduct customer due diligence required by Subdivision 2 or 3 of this division, the financial institution -
(a) must not establish a business relationship with the new customer; and
(b) must terminate any existing business relationship with the customer; and
(c) must not carry out an occasional transaction with or for the customer; and
(d) must not, if it is an ordering financial institution within the meaning of Section 31(1), carry out an electronic funds transfer if it is not transmitted with the information required under Section 31(5); and
(e) must, if it is an intermediary financial institution within the meaning of Section 32(1), consider whether to carry out, reject or suspend an electronic funds transfer pursuant to Section 32(3); and
(f) must, if it is a beneficiary financial institution within the meaning of Section 33(1), consider whether to carry out, reject or suspend an electronic funds transfer pursuant to Section 33(3); and
(g) must consider whether to make a suspicious matter report under Section 41(4); and
(h) may, under Section 41(11), communicate to FASU any suspicions it may have prior to making a suspicious matter report.
(2) Where a financial institution forms a suspicion of money laundering or terrorist financing and the financial institution has reasonable grounds to believe that performing customer due diligence will tip-off the customer, the financial institution -
(a) must cease to conduct customer due diligence; and
(b) must comply with Subsections (1)(a) to (f) and (h); and
(c) must file a suspicious matter report under Section 41(4).
Subdivision 2. - Customer due diligence requirements.
20. OBLIGATION TO CONDUCT CUSTOMER DUE DILIGENCE.
(1) Subject to Subsection (2), a financial institution must conduct customer due diligence on -
(a) a customer; and
(b) any beneficial owner of a customer; and
(c) any person or unincorporated entity acting on behalf of a customer; and
(d) a beneficiary of an insurance policy.
(2) A financial institution that is required to conduct customer due diligence in the circumstances described in this Subdivision is not required to obtain or verify any documents, data or information that it has previously obtained and verified for the purposes of carrying out customer due diligence in accordance with this Division, unless there are reasonable sounds for the financial institution to doubt the adequacy or veracity of the documents, data or information 'previously obtained.
21. CIRCUMSTANCES WHERE SIMPLIFIED CUSTOMER DUE DILIGENCE MAY BE APPLIED.
(1) Subject to Subsection (2), a financial institution may conduct simplified customer due diligence in accordance with Section 22 in the following circumstances:
(a) if standard customer due diligence is not required under Subdivision 2 of this Division; and
(b) if enhanced customer due diligence is not required under Subdivision 2 of this Division; and
(c) if the financial institution takes the view that the customer is not resident in a high risk country; and
(d) if the financial institution does not suspect money laundering or terrorist financing; and
(e) if the financial institution takes the view that the customer is a low risk customer.
(2) A financial institution must conduct customer due diligence in accordance with the requirements of Subdivision 3 of this Division in relation to an electronic funds transfer of an amount in currency equal to or greater than K2,500.00.
22. SIMPLIFIED CUSTOMER DUE DILIGENCE - IDENTITY AND VERIFICATION REQUIREMENTS.
(1) A financial institution must obtain such information in relation to a person or unincorporated entity referred to in Section 20(1), as may be necessary to establish his identity.
(2) The information may include -
(a) for a natural person, his full name and address; and
(b) for a body corporate its corporate name, address of the registered office, proof of incorporation, identities of directors, provisions governing the authority to bind the body corporate and such information as is necessary to understand the ownership and control of the body corporate; and
(c) for an unincorporated entity, the name of trustees, the settlor and the beneficiary of any trusts or persons in equivalent or similar positions and any other parties with authority to manage, vary or otherwise control the entity; and
(d) for a person who is not the customer, the person's relationship to the customer.
(3) A financial institution must verify the identity information obtained under Subsection (2), so that it is satisfied that the information obtained is correct.
(4) Simplified customer due diligence must be conducted before carrying out a transaction.
23. CIRCUMSTANCES WHERE STANDARD CUSTOMER DUE DILIGENCE APPLIES.
(1) A financial institution must conduct standard customer due diligence in accordance with the requirements of Sections 24 and 25 in the following circumstances:
(a) if a new customer wishes to establish a business relationship with a financial institution, including if a new customer wishes to open an account or establish an insurance policy with a financial institution; or
(b) if a customer wishes to carry out an occasional transaction of an amount in currency equal to or greater than K20,000.00, whether conducted as a single transaction or by way of several transactions that appear to be linked; or
(c) if, in respect of an existing customer and according to the level of risk involved, doubt exists about the veracity or adequacy of previously obtained customer information; or
(d) if, during the establishment, or during the course of, a business relationship, or when conducting an occasional transaction, there is a suspicion of money laundering or terrorist financing involving the customer or the customer's account.
(2) In addition to the requirement to conduct standard customer due diligence in the circumstances described in Subsection (1), a financial institution must conduct customer due diligence in accordance with the requirements of Subdivision 3 of this Division in relation to an electronic funds transfer of an amount in currency equal to or greater than K2,500.00.
24. STANDARD CUSTOMER DUE DILIGENCE - IDENTITY REQUIREMENTS.
(1) A financial institution must obtain such information in relation to a person or unincorporated entity referred to in Section 20(1), as may be necessary to establish his identity, which may include but is not limited to the following -
(a) for a natural person, his full name, address, date of birth, place of birth, occupation and such other information as is necessary to establish his identity; and
(b) for a body corporate, its corporate name, address of the registered office, proof of incorporation, identities of directors, provisions governing the authority to bind the body corporate and such information as is necessary to understand the ownership and control of the body corporate; and
(c) for an unincorporated entity, the name of trustees, the settlor and the beneficiary of any trusts, or persons in equivalent or similar positions and any other parties with authority to manage, vary or otherwise control the entity; and
(d) for a person who is not the customer, the person's relationship to the customer.
(2) A financial institution must also obtain the following information when conducting standard due diligence:
(a) sufficient information to allow it to understand the purpose and nature of the intended business relationship; and
(b) where the customer is a body corporate or unincorporated entity, sufficient information to allow it to understand the nature and business of the customer.
25. STANDARD CUSTOMER DUE DILIGENCE - VERIFICATION OF IDENTITY REQUIREMENTS.
(1) A financial institution must, at a minimum, undertake the following verification of identity requirements of a person or unincorporated entity referred to in Section 20(1), when conducting standard due diligence -
(a) take reasonable steps to satisfy itself that the information obtained under Section 24 is correct; and
(b) according to the nature and level of risk involved, take reasonable steps to verify any beneficial owner's identity so that the financial institution is satisfied that it knows who the beneficial owner is; and
(c) if the person is acting on behalf of the customer, according to the nature and level of risk involved, take reasonable steps to verify the person's identity and also verify that they are so authorised to act on behalf of the customer.
(2) Subject to Subsection (3), a financial institution must verify the identity of a person or unincorporated entity referred to in Section 20(1) before -
(a) establishing a business relationship; or
(b) carrying out an occasional transaction; or
(c) making a payment to a beneficiary pursuant to an insurance policy.
(3) The verification of the identity of a person or unincorporated entity referred to in Section 20(1) may be completed as soon as reasonably practicable after the establishment of a business relationship where -
(a) the risk of money laundering or terrorist financing is not high and is effectively managed by the financial institution; and
(b) a delay in verification is essential in order not to interrupt the regular conduct of business of the financial institution.
26. CIRCUMSTANCES WHERE ENHANCED CUSTOMER DUE DILIGENCE APPLIES.
(1) A financial institution must conduct enhanced customer due diligence in accordance with the requirements of Sections 27 and 28 in the following circumstances:
(a) if it takes the view that the customer is a resident in a high risk country; or
(b) if it takes the view that the customer is involved in a high risk business activity; or .
(c) if it takes the view that the customer is a politically exposed person; or
(d) if it takes the view that the customer or a beneficiary of an insurance policy is a high risk; or
(e) if it takes the view that the risk of money laundering or terrorist financing is high; or
(f) if the customer is not physically present for the purposes of identification.
(2) In addition to the requirement to conduct enhanced customer due diligence in the circumstances described in Subsection (1), a financial institution must conduct customer due diligence in accordance with the requirements of Subdivision 3 of this Division in relation to an electronic funds transfer of an amount in currency that is equal to or greater than K2,500.00.
27. ENHANCED CUSTOMER DUE DILIGENCE - IDENTITY REQUIREMENTS.
A financial institution must, in relation to a person or unincorporated entity referred to in Section 20(1), obtain the following information when conducting enhanced due diligence:
(a) the identity information required for standard customer due diligence as set out in Section 24; and
(b) information relating to the source of the assets or the wealth of the customer; and
(c) where the beneficiary of an insurance policy is a body corporate or an unincorporated entity, take steps to identify the beneficial owner of the beneficiary.
28. ENHANCED CUSTOMER DUE DILIGENCE - VERIFICATION OF IDENTITY REQUIREMENTS.
(1) A financial institution must, at a minimum, undertake the following verification requirements of a person or unincorporated entity referred to in Section 20(1) when conducting enhanced due diligence:
(a) conduct the verification of identity requirements for standard due diligence as set out in Section 25; and
(b) take reasonable steps to verify information relating to the source of the assets or the wealth of the customer; and
(c) where the beneficiary of an insurance policy is a body corporate or an unincorporated entity, take steps to verify the identity of the beneficial owner of the beneficiary.
(2) Subject to Subsection (3), a financial institution must verify the identity of a person or unincorporated entity referred to in Section 20(1) before -
(a) establishing a new business relationship; or
(b) carrying out an occasional transaction of an amount in currency equal to or greater than K20,000.00; or
(c) making a payment to a beneficiary pursuant to an insurance policy.
(3) The verification of the identity of a person or unincorporated entity referred to in Section 20(1), and the identity of a beneficial owner of a beneficiary of an insurance policy, may be completed as soon as reasonably practicable after the establishment of the business relationship where -
(a) the risk of money laundering or terrorist financing not high and is effectively managed by the financial institution; and
(b) a delay in verification is essential in order not to interrupt the normal conduct of business of the financial institution.
29. ENHANCED CUSTOMER DUE DILIGENCE - ADDITIONAL REQUIREMENTS FOR POLITICALLY EXPOSED PERSONS.
(1) A financial institution must take all reasonable steps to identify whether a customer or beneficial owner is a politically exposed person.
(2) Where a financial institution takes the view that a customer or beneficial owner is a politically exposed person, it must conduct the additional measures as set out in Subsection (3).
(3) If a financial institution takes the view that a customer or beneficial owner with whom it is establishing a business relationship, or has established a business relationship, is a politically exposed person, it must -
(a) obtain the approval of senior management to commence or continue the business relationship with the customer or the beneficial owner; and
(b) conduct ongoing enhanced due diligence of the business relationship.
(4) A financial institution must take all reasonable steps to identify whether a beneficiary of an insurance policy or beneficial owner of the beneficiary is a politically exposed person.
(5) Where a financial institution takes the view that a beneficiary of an insurance policy or beneficial owner of the beneficiary is a politically exposed person, it must conduct the additional measures as set out in Subsection (6).
(6) If a financial institution takes the view that a beneficiary of an insurance policy or beneficial owner of the beneficiary is a politically exposed person and the nature and level of risk is high, it must, before making a payment to the beneficiary under the insurance policy –
(a) obtain the approval of senior management to make the payment; and
(b) conduct enhanced due diligence of the business relationship relating to the insurance policy; and
(c) consider making a suspicious matter report under Subsection 41(4).
Subdivision 3. - Customer due diligence requirements for electronic funds transfers.
30. OVERVIEW OF CUSTOMER DUE DILIGENCE REQUIREMENTS FOR ELECTRONIC FUNDS TRANSFERS.
(1) A financial institution that is required to conduct customer due diligence in the circumstances described in this Subdivision is not required to verify any documents, data or information that it has previously verified for the purposes of carrying out customer due diligence in accordance with this Division, unless there are reasonable grounds for the financial institution to doubt the adequacy or veracity of the documents, data or information previously obtained.
(2) A financial institution that is required to conduct customer due diligence in the circumstances described in this Subdivision must also -
(a) conduct standard customer due diligence in accordance with the requirements of Sections 24 and 25 if any of the circumstances described in Section 23 apply; and
(b) conduct enhanced customer due diligence in accordance with the requirements of Sections 27, 28 and 29 if any of the circumstances described in Section 26 apply.
31. ELECTRONIC FUNDS TRANSFERS - IDENTITY AND VERIFICATION OF IDENTITY REQUIREMENTS FOR ORDERING FINANCIAL INSTITUTIONS.
(1) This section applies to a financial institution that receives a request from a sender to execute an electronic funds transfer of an amount in currency equal to or greater than K2,500.00 (an ordering financial institution).
(2) In the case of a request to execute an electronic funds transfer, an ordering financial institution must -
(a) in the case of an international electronic funds transfer or a domestic electronic funds transfer, identify the sender of the electronic funds transfer by obtaining the following identity information:
- (i) the sender's full name; and
- (ii) the sender's account number or such other identifying information that allows the transaction to be traced back to the sender; and
- (iii) any one of the following:
- (A) the sender's address; or
- (B) the sender's customer identification number; or
- (C) the sender's place and date of birth; or
(b) in the case of an international electronic funds transfer, identify the receiver of the electronic funds transfer by obtaining the following identity information:
- (i) the receiver's full name; and
- (ii) the receiver's account number or other identifying information that allows the transaction to be traced back to the receiver.
(3) An ordering financial institution must, based on the nature and level of risk, verify the sender's identity so that it is satisfied that the information obtained under Subsection 2(a) is correct.
(4) An ordering financial institution must verify the sender's identity before ordering the electronic funds transfer.
(5) An ordering financial institution must transmit -
(a) the identity information about the sender that it has obtained under Subsection (2)(a) and verified under Subsection (3); and
(b) the identity information about the receiver that it has obtained under Subsection (2)(b),
with the electronic funds transfer.
32. ELECTRONIC FUNDS TRANSFERS - REQUIREMENTS FOR INTERMEDIARY FINANCIAL INSTITUTIONS.
(1) This section applies to a financial institution that receives a request to act as an intermediary in a chain of electronic funds transfers of an amount in currency equal to or greater than K2,500.00 (an intermediary financial institution).
(2) Subject to Subsection (3), an intermediary financial institution must transmit all of the identity information it receives under Section 31(5) from an ordering financial institution with the electronic funds transfer.
(3) Where an intermediary financial institution does not receive all of the identity information required to accompany an electronic funds transfer under Section 31(5), it must, based on the nature and level of risk, assess whether to carry out, reject or suspend that electronic funds transfer.
33. ELECTRONIC FUNDS TRANSFERS — IDENTITY AND VERIFICATION OF IDENTITY REQUIREMENTS FOR BENEFICIARY FINANCIAL INSTITUTIONS.
(1) This section applies to a financial institution that receives a request to receive an electronic funds transfer of an amount in currency equal to or greater than K2,500.00 on behalf of a receiver (beneficiary financial institution).
(2) A beneficiary financial institution must, based on the nature and level of risk, verify the receiver's identity so that it is satisfied that the information obtained by the ordering financial institution under Section 31(2)(b) is correct.
(3) Where a beneficiary financial institution does not receive all of the information required to accompany an electronic funds transfer from an ordering financial institution under Section 31(5) or from an intermediary financial institution under Section 32(2), it must, based on the nature and level of risk, assess whether to carry out, reject or suspend that electronic funds transfer.
Subdivision 4. - Due diligence requirements for correspondent banking relationships.
34. DUE DILIGENCE FOR CORRESPONDENT BANKING RELATIONSHIPS.
(1) Where a financial institution enters or proposes to enter into a correspondent banking relationship, it must undertake the following due diligence prior to the commencement of that relationship -
(a) identify and verify the identity of the respondent with which it proposes to conduct a correspondent banking relationship; and
(b) take steps to understand the nature of the respondent's business activities; and
(c) determine from publicly available information the reputation of the respondent, including whether the respondent has been subject to a money laundering or terrorist financing investigation or regulatory action; and
(d) assess the respondent's AML/CTF controls to ascertain that those controls are adequate and effective; and
(e) obtain approval from senior management before establishing a new correspondent banking relationship; and
(f) establish an agreement which sets out the respective responsibilities of each party under the correspondent banking relationship; and
(g) in the case of a payable-through account, ensure that the respondent has verified its own customer's identity, has implemented mechanisms for ongoing due diligence with respect to its customers and is capable of providing relevant identification information on request.
(2) A financial institution must conduct ongoing due diligence of a respondent financial institution.
35. WHERE DUE DILIGENCE CANNOT BE COMPLETED UNDER SUBDIVISION 4.
Where a financial institution is unable to conduct due diligence required by this Subdivision, the financial institution must not establish the correspondent business relationship.
Subdivision 5. - Offences.
36. FAILURE TO COMPLY WITH DUE DILIGENCE REQUIREMENTS.
(1) A person who intentionally engages in conduct that contravenes a requirement of this Division is guilty of a crime.
Penalty: A fine not exceeding -
(a) K500,000.00 or imprisonment for a term not exceeding five years or both for a natural person; or
(b) K1,000.000.00 for a body corporate.
(2) For the purpose of Subsection (1), intention can be inferred from objective factual circumstances.
(3) A person who recklessly engages in conduct that contravenes a requirement of this Division is guilty of a crime.
Penalty: A fine not exceeding -
(a) K250,000.00 or imprisonment for a term not exceeding three years or both for a natural person; or
(b) K500,000.00 for a body corporate.
37. OFFENCE OF OPENING OR OPERATING ANONYMOUS ACCOUNTS AND ACCOUNTS IN FALSE NAMES.
(1) A person who intentionally opens or operates an anonymous account or an account in a false name is guilty of a crime.
Penalty: A fine not exceeding -
(a) K500,000.00 or imprisonment for a term not exceeding five years or both for a natural person; or
(b) K1,000,000.00 for a body corporate.
(2) For the purpose of Subsection (1), intention can be inferred from objective factual circumstances.
(3) A person who recklessly opens or operates an anonymous account or an account in a false name is guilty of a crime.
Penalty: A fine not exceeding -
(a) K250,000.00 or imprisonment for a term not exceeding three years or both for a natural person; or
(b) K500,000.00 for a body corporate.
38. OFFENCE OF ESTABLISHING OR CONTINUING A BUSINESS RELATIONSHIP INVOLVING A SHELL BANK.
(1) A person who intentionally -
(a) establishes or takes steps to establish a shell bank in Papua New Guinea; or
(b) enters into or continues a business relationship with a shell bank or a correspondent financial institution in a foreign country that permits its accounts to be used by a shell bank; or
(c) allows an occasional transaction to be conducted through it by a shell bank or a correspondent financial institution in a foreign country that permits its accounts to be used by a shell bank is guilty of a crime.
Penalty: A fine not exceeding -
(a) K500,000.00 or imprisonment for a term not exceeding five years or both for a natural person; or
(b) K1,000,000 .00 for a body corporate.
(2) For the purpose of Subsection (1), intention can be inferred from objective factual circumstances.
(3) A person who recklessly -
(a) establishes or takes steps to establish a shell bank in Papua New Guinea; or
(b) enters into or continues a business relationship with a shell bank or a correspondent financial institution in a foreign country that permits its accounts to be used by a shell bank; or
(c) allows an occasional transaction to be conducted through it by a shell bank or a correspondent financial institution in a foreign country that permits its accounts to be used by a shell bank, is guilty of a crime.
Penalty: A fine not exceeding -
(a) K250,000.00 or imprisonment for a term not exceeding three years or both for a natural person; or
(b) K500,000.00 for a body corporate.
Division 3. - Reporting obligations.
Subdivision 1. - Reporting obligations and offences.
39. THRESHOLD REPORTING OBLIGATIONS.
(1) A financial institution must report to FASU a transaction of an amount in physical currency, or in the form of a bearer negotiable instrument, equal to or greater than K20,000.00 that is carried out as a single transaction or two or more transactions that appear to be linked.
(2) A financial institution must report to FASU an international electronic funds transfer of an amount in currency equal to or greater than K20,000.00, that is carried out as a single transaction or two or more transactions that appear to be linked.
(3) A financial institution must report to FASU under Subsection (1) or (2), as soon as reasonably practicable and in any event within 10 working days from the date of the transaction where it is a single transaction, or from the date of the last transaction, where there are two or more transactions that appear to be linked.
(4) A financial institution must provide a report required under Subsection (1), in accordance with any form and procedure specified by FASU.
(5) Compliance with Subsection (1), does not affect the obligation of a financial institution to make a suspicious matter report under Section 41(4).
(6) A person who intentionally fails to make a report under Subsection (1) or (2), is guilty of a crime.
Penalty: A fine not exceeding -
(a) K500,000.00 or imprisonment for a term not exceeding five years or both for a natural person; or
(b) K1,000,000.00 for a body corporate.
(7) For the purpose of Subsection (6), intention can be inferred from objective factual circumstances.
(8) A person who recklessly fails to make a report under Subsection (1) or (2), is guilty of a crime.
Penalty: A fine not exceeding -
(a) K250,000.00 or imprisonment for a term not exceeding three years or both for a natural person; or
(b) K500,000.00 for a body corporate.
40. OBLIGATION TO REPORT ASSETS OF A DESIGNATED PERSON OR ENTITY.
(1) A financial institution must report to FASU any assets of a designated person or entity which it holds, as soon as is reasonably practicable and in any event within 10 working days from the date it receives notification of a designation under Section 12(e)(/) of the United Nations Financial Sanctions Act 2015.
(2) A financial institution must provide a report required under Subsection (1), in accordance with any form and procedure specified by FASU.
(3) For the purpose of this section -
(a) "asset" has the meaning given by Section 5 of the United Nations Financial Sanctions Act 2015; and
(b) "designated person or entity" has the meaning given by Section 5 of the United Nations Financial Sanctions Act 2015.
(4) A person who intentionally fails to make a report under Subsection (1), is guilty of a crime.
Penalty: A fine not exceeding -
(a) K500,000.00 or imprisonment for a term not exceeding five years or both for a natural person; or
(b) K1,000,000.00 for a body corporate.
(5) For the purpose of Subsection (4), intention can be inferred from objective factual circumstances.
(6) A person who recklessly fails to make a report under Subsection (1), is guilty of a crime.
Penalty: A fine not exceeding -
(a) K250,000.00 or imprisonment for a term not exceeding three years or both for a natural person; or
(b) K500,000.00 for a body corporate.
41. SUSPICIOUS MATTER REPORTING OBLIGATIONS.
(1) This section applies where a financial institution has reasonable grounds to suspect that information that is known to it may -
(a) be relevant to the detection, investigation or prosecution of a person for money laundering, terrorist financing, an offence under Section 15 or 16 of the United Nations Financial Sanctions Act 2015 or any other indictable offence; and
(b) be relevant to the-detection, investigation or prosecution of a person for a foreign indictable offence; and
(c) concern criminal property.
(2) For the avoidance of doubt, Subsection (1) applies where a suspicion is formed after this Act comes into operation, but that suspicion may be based on information obtained before this Act came into operation.
(3) Where Subsection (1) applies, a financial institution must take reasonable measures to ascertain the following information:
(a) the purpose of the transaction; and
(b) the origin of the funds; and
(c) where the funds will be sent; and
(d) the name and address of the person who will receive the funds; and
(e) any other information that may be relevant to the prosecution or investigation of -
- (i) an offence of the kind referred to in Subsection (1)(a); or
- (ii) any proceedings under this Act; or
- (iii) a proceeds of crime law of Papua New Guinea.
(4) Where Subsection (1) applies, a financial institution must make a suspicious matter report to FASU as soon as is reasonably practicable and in any event within five working days from the date the suspicion first arose.
(5) A report under Subsection (4) must include -
(a) such information referred to in Subsection (3) that is known to the financial institution; and
(b) any other information required by FASU that is known to the financial institution; and
(c) the basis on which the suspicion has arisen.
(6) A financial institution must provide a report under Subsection (4) in accordance with any form and procedure specified by FASU.
(7) A financial institution that has made a report in accordance with Subsection (4) must, if requested to do so by FASU, provide to FASU any further information that it has relating to the suspicion.
(8) A person who intentionally fails to make a report under Subsection (4) is guilty of a crime.
Penalty: A fine not exceeding -
(a) K500,000.00 or imprisonment for a term not exceeding five years or both for a natural person; or
(b) K1,000,000.00 for a body corporate.
(9) For the purpose of Subsection (8), intention can be inferred from objective factual circumstances.
(10) A person who recklessly fails to make a report under Subsection (4) is guilty of a crime.
Penalty: A fine not exceeding -
(a) K250,000.00 or imprisonment for a term not exceeding three years or both for a natural person; or
(b) K500,000.00 for a body corporate.
(11) Nothing in this section precludes a financial institution from communicating to FASU any suspicions it may have prior to the making of a report under Subsection (4).
42. PROVIDING FALSE OR MISLEADING REPORT OR INFORMATION.
(1) A person who furnishes information which he knows to be false or misleading in any material way for the purpose of, or in connection with, making any report or providing any information required by this Division, is guilty of a crime.
Penalty: A fine not exceeding -
(a) K500,000.00 or imprisonment for a term not exceeding five years or both for a natural person; or
(b) K1,000,000.00 for a body corporate.
(2) For the purpose of Subsection (1), knowledge can be inferred from objective factual circumstances.
(3) A person who furnishes information recklessly as to whether it is false or misleading in any material way for the purpose of or in connection with, making any report or providing any information required by this Division, is guilty of a crime.
Penalty: A fine not exceeding -
(a) K250,000.00 or imprisonment for a term not exceeding three years or both for a natural person; or
(b) K500,000.00 for a body corporate.
43. OBLIGATION NOT TO DISCLOSE A REPORT ETC.
(1) Where a financial institution has made or makes a report to FASU under Section 39(1), 39(2), 40(1) or 41(4), the financial institution must not, unless required to do so under this Act, disclose to anyone else -
(a) the report; or
(b) that the report has been or may be made to FASU; or
(c) any other information from which a person could reasonably infer that a report has been or may be made to FASU.
(2) Subsection (1) does not apply to a disclosure made by the financial institution to -
(a) FASU in accordance with this Act; or
(b) a policeman for any law enforcement purpose; or
(c) an officer or employee or agent of the financial institution for any purposeconnected with the performance of that person's AML/CTF duties; or
(d) a lawyer for the purpose of obtaining legal advice or representation in relation to the matter.
(3) Subsection (1) does not apply where a court is satisfied that disclosure is necessary in the interests of justice.
(4) A person who intentionally discloses information in contravention of Subsection (1) is guilty of a crime.
Penalty: A fine not exceeding -
(a) K500,000.00 or imprisonment for a term not exceeding five years or both for a natural person; or
(b) K1,000,000.00 for a body corporate.
(5) For the purpose of Subsection (4), intention can be inferred from objective factual circumstances.
(6) A person who recklessly discloses information in contravention of Subsection (1) is guilty of a crime.
Penalty: A fine not exceeding -
(a) K250,000.00 or imprisonment for a term not exceeding three years or both for a natural person; or
(b) K500,000.00 for a body corporate. •
44. OBLIGATION NOT TO DISCLOSE INFORMATION OR SUSPICION.
(1) Where Section 41(1) applies, the financial institution must not, unless required to do so under this Act, disclose to anyone else -
(a) that the financial institution has formed a suspicion under Section 41(1); or
(b) that a suspicion has been or may be communicated to FASU under Section 41(11); or
(c) any other information from which a person could reasonably infer any of the matters in Paragraph (a) or (b).
(2) Subsection (1) does not apply to disclosures made by the financial institution to -
(a) FASU in accordance with this Act; or
(b) a policeman for any law enforcement purpose; or
(c) an officer or employee or agent of the financial institution for any purpose connected with the performance of that person's AML/CTF duties; or
(d) a lawyer for the purpose of obtaining legal advice or representation in relation to the matter.
(3) Subsection (1) does not apply where a court is satisfied that disclosure is necessary in the interests of justice.
(4) A person who intentionally discloses information in contravention of Subsection (1) is guilty of a crime.
Penalty: A fine not exceeding -
(a) K500,000.00 or imprisonment for a term not exceeding five years or both for a natural person; or
(b) K1,000,000.00 for a body corporate.
(5) For the purpose of Subsection (4), intention can be inferred from objective factual circumstances.
(6) A person who recklessly discloses information in contravention of Subsection (1) is guilty of a crime.
Penalty; A fine not exceeding -
(a) K250,000.00 or imprisonment for a term not exceeding three years or both for a natural person; or
(b) K500,000.00 for a body corporate.
45. PROTECTION OF IDENTITY IN RELATION TO SUSPICIOUS MATTER REPORTS.
(1) A person who intentionally discloses any transaction, communication, report or information that will identify, or is likely to identify, the person who prepared or made a report or provided information under Section 41 is guilty of a crime.
Penalty: A fine not exceeding -
(a) K500,000.00 or imprisonment for a term not exceeding five years or both for a natural person; or
(b) K1,000,000.00 for a body corporate.
(2) For the purpose of Subsection (1), intention can be inferred from objective factual circumstances.
(3) A person who recklessly discloses any transaction, report or information that will identify, or is likely to identify, the person who prepared or made a report or provided information under Section 41 is guilty of a crime.
Penalty: A fine not exceeding -
(a) K250,000.00 or imprisonment for a term not exceeding three years or both for a natural person; or
(b) K500,000.00 for a body corporate.
(4) Subsections (1) and (2) do not apply to disclosures made by the financial institution to -
(a) a policeman for any law enforcement purpose; or
(b) an officer or employee or agent of the financial institution for any purpose connected with the performance of that person's AML/CTF duties; or
(c) a lawyer for the purpose of obtaining legal advice or representation in relation to the matter; or
(d) FASU in accordance with this Act.
Subdivision 2. - Other offences.
46. STRUCTURING OFFENCE.
(1) A person who -
(a) conducts two or more transactions by whatever means that are equivalent to K20,000.00 or more; and
(b) conducts the transactions for the dominant purpose of ensuring, or attempting to ensure, that no report in relation to the transactions would need to be made under Section 39,
is guilty of a crime.
Penalty: A fine not exceeding -
(a) K500,000.00 or imprisonment for a term not exceeding five years or both for a natural person; or
(b) K1,000,000.00 for a body corporate.
(2) For the purpose of Subsection (1)(b), a Court may have regard to -
(a) the manner and form in which the transactions were conducted, including, but not limited to, any of the following:
- (i) the value of the currency involved in each transaction; and
- (ii) the aggregated value of the currency involved in the transactions; and
- (iii) the period of time over which the transactions occurred; and
- (iv) the interval of time between any of the transactions; and
- (v) the locations at which the transactions were initiated or conducted; and
(b) any explanation made by the person as to the manner or form in which the transactions were conducted.
Division 4. - Record keeping by financial institutions.
47. OBLIGATIONS TO KEEP TRANSACTION RECORDS.
(1) In relation to every transaction conducted by or through a financial institution, the financial institution must keep such records as are reasonably necessary to enable that transaction to be readily reconstructed at any time.
(2) Without limiting Subsection (1), records must contain the following information:
(a) the nature of the transaction; and
(b) the date of the transaction; and
(c) the amount of the transaction and the type of currency; and
(d) the parties to the transaction; and
(e) the type and identifying number of any account with the financial institution involved in the transaction; and
(f) if the transaction involves a bearer negotiable instrument -
- (i) the name of the drawer of that instrument; and
(ii) the name of the institution on which it was drawn; and
(iii) the name of the payee (if any); and
- (iv) the amount and date of the instrument; and
- (v) the number (if any) of the instrument; and
- (vi) details of any endorsements appearing on the instrument; and
(g) the name and address of the financial institution and name of the officer, employee or agent of the financial institution who handled the transaction, if that officer, employee or agent -
- (i) has face-to-face dealings in respect of the transaction with any of the parties to the transaction: and
- (ii) has formed a suspicion under Section 41(1),
(3) A financial institution must retain the records it has kept, in accordance with this section, for -
(a) at least seven years after the completion of that transaction; or
(b) any longer period that FASU may prescribe by regulations.
48. OBLIGATIONS TO KEEP IDENTITY AND VERIFICATION RECORDS.
(1) In respect of each case in which a financial institution is required to identify and verify the identity of a person or unincorporated entity under Division 2 of this Part, a financial institution must keep such records as are reasonably necessary to enable the nature of the evidence used for the purposes of that identification and verification to be readily available at any time.
(2) Without limiting Subsection (1), those records may comprise of -
(a) a copy of the evidence so used; or
(b) if it is not practicable to retain that evidence, any information as is reasonably necessary to enable that evidence to be obtained.
(3) A financial institution must retain the identity and verification records for seven years -
(a) after the end of the business relationship; or
(b) after carrying out an occasional transaction of an amount in currency equal to or greater than K20,000.00, whether conducted as a single transaction or by way of several transactions that appear to be linked; or
(c) after payment to a beneficiary pursuant to an insurance policy; or
(d) after entering into a correspondent banking relationship with another financial institution; or
(e) after carrying out an electronic funds transfer of an amount in currency equal to or greater than K2,500.00; or
(f) after conducting due diligence in any other circumstance as set out in Division 2 of this Part as the case may be appropriate.
49. GENERAL OBLIGATIONS TO KEEP OTHER RECORDS.
(1) A financial institution must also keep the following records:
(a) records that relate to a risk assessment, AML/CFT program and audit undertaken in accordance with Division 1 of this Part; and
(b) records that are relevant to the establishment of the business relationship with the customer; and
(c) other customer records including but not limited to account files and business correspondence, relating to and obtained during the course of a business relationship that are reasonably necessary to establish the nature and purpose of and activities relating to that business relationship with the customer.
(2) A financial institution must retain the records kept by it in relation to Subsection (1)(a) for at least seven years and in relation to Subsection (1 )(b) and (c) for at least seven years after the end of the business relationship.
50. INTERACTION WITH OTHER LEGISLATION.
Nothing in this Division affects the obligation of a financial institution to retain records in accordance with the requirements of any other applicable legislation.
51. FAILURE TO COMPLY WITH RECORD KEEPING REQUIREMENTS.
(1) A person who intentionally engages in conduct that contravenes a requirement of this Division is guilty of a crime.
Penalty: A fine not exceeding -
(a) K500,000.00 or imprisonment for a term not exceeding five years or both for a natural person; or
(b) K1,000,000.00 for a body corporate.
(2) For the purpose of Subsection (1), intention can be inferred from objective factual circumstances.
(3) A person who recklessly engages in conduct that contravenes a requirement of this Division is guilty of a crime.
Penalty: A fine not exceeding -
(a) K250,000.00 or imprisonment for a term not exceeding three years or both for a natural person; or
(b) K500,000.00 for a body corporate.
PART III. - OBLIGATIONS ON DESIGNATED NON-FINANCIAL BUSINESSES AND PROFESSIONS.
52. OBLIGATIONS ON DNFBPS.
(1) Subject to Subsection (2), a DNFBP is required to comply with the obligations set out in Part II, as if the references in that Part to a financial institution were a reference to a DNFBP, in the following circumstances:
(a) a casino - when a customer engages in a transaction equal to or greater than K10,000.00; or
(b) a real estate agent - when it is involved in a transaction for a client concerning the buying and selling of real estate; or
(c) a dealer in precious metals - when it engages in a transaction with a customer in currency equal to or greater than K40,000.00; or
(d) a dealer in precious stones - when it engages in a transaction with a customer in currency equal to or greater than K40,000.00; or
(e) a lawyer, notary public, other independent legal professional or an accountant-when preparing for, engaging in, or carrying out one or more transactions for a client concerning any of the following activities:
- (i) buying and selling real estate; or
- (ii) managing client money, securities or other funds; or
- (iii) managing bank, savings or securities accounts; or
- (iv) organising contributions for the creation, operation or management of bodies corporate; or
- (v) creating, operating or managing bodies corporate or unincorporated entities; or
- (vi) buying and selling businesses; or
(f) when a person or unincorporated entity provides one or more of the services listed in the definition of a trust or company service provider to another person or unincorporated entity.
(2) A DNFBP is not required to comply with the due diligence requirements set out in Subdivisions 3 and 4 of Part II.
53. OFFENCES.
Where a DNFBP is required to comply with an obligation under Part II and the DNFBP fails to comply with that obligation, any offence and penalty provision relating to the obligation that is applicable to a financial institution is also applicable to a DNFBP.
PART IV. - ADDITIONAL OBLIGATIONS APPLYING TO FINANCIAL INSTITUTIONS AND DESIGNATED NON-FINANCIAL BUSINESSES AND PROFESSIONS.
54. FOREIGN BRANCHES AND MAJORITY-OWNED FOREIGN SUBSIDIARIES TO COMPLY WITH PART II AND PART III.
(1) A financial institution of Papua New Guinea must ensure that its foreign branches and majority-owned foreign subsidiaries located outside Papua New Guinea apply to the extent permitted by the law of that foreign country, measures broadly equivalent to those set out in Part II.
(2) If the law of a foreign country does not permit the application of the equivalent measures in Subsection (1), the financial institution must, as soon as is reasonably practicable, inform FASU accordingly and take such additional measures as are permitted to implement the requirements of Part II.
(3) A DNFBP of Papua New Guinea must ensure that its foreign branches and majority-owned foreign subsidiaries located outside Papua New Guinea apply to the extent permitted by the law of that foreign country, measures broadly equivalent to those set out in Part III.
(4) If the law of a foreign country does not permit the application of the equivalent measures in Subsection (3), the DNFBP must, as soon as is reasonably practicable, inform FASU accordingly, and take such additional measures as are permitted to implement the requirements of Part III.
55. FAILURE TO COMPLY WITH REQUIREMENTS RELATING TO FOREIGN BRANCHES AND MAJORITY-OWNED FOREIGN SUBSIDIARIES.
(1) A person who intentionally engages in conduct that contravenes a requirement of Section 54 is guilty of a crime.
Penalty: A fine not exceeding -
(a) K500,000.00 or imprisonment for a term not exceeding five years or both for a natural person; or
(b) K1,000,000.00 for a body corporate.
(2) For the purpose of Subsection (1), intention can be inferred from objective factual circumstances.
(3) A person who recklessly engages in conduct that contravenes a requirement of Section 54 is guilty of a crime.
Penalty: A fine not exceeding -
(a) K250,000.00 or imprisonment for a term not exceeding three years or both for a natural person; or
(b) K500,000.00 for a body corporate.
56. PROTECTION FROM LIABILITY FOR ACTS DONE IN GOOD FAITH.
(1) No financial institution, member of its governing body or officer, employee or agent of the financial institution, and no person who has been a member of its governing body or who has been an officer, employee or agent of the financial institution shall be subject to any civil or criminal liability, action, claim or demand for anything done or omitted to be done in good faith in the discharge of their obligations under this Act.
(2) No DNFBP, member of its governing body or officer, employee or agent of the DNFBP and no person who has been a member of its governing body or who has been an officer, employee or agent of the DNFBP shall be subject to any civil or criminal liability, action, claim or demand for anything done or omitted to be done in good faith in the discharge of their obligations under this Act.
(3) For the avoidance of doubt, nothing in Subsection (1) or (2) precludes the prosecution of a person for money laundering, terrorist financing or offences arising under other laws.
57. REQUIREMENT TO REGISTER WITH FASU.
(1) A financial institution and a DNFBP must register with FASU for the purpose of this Act.
(2) FASU may specify the form, content and procedure for such registration.
58. FAILURE TO REGISTER WITH FASU.
A person who fails to register with FASU under Section 57 is guilty of a crime.
Penalty: A fine not exceeding K25,000.00 for a natural person or a fine not exceeding K50,000.00 for a body corporate.
PART V. - BENEFICIAL OWNERSHIP INFORMATION AND FIT AND PROPER CONTROLS.
59. OBLIGATIONS ON FINANCIAL INSTITUTIONS AND DNFBPS TO DISCLOSE BENEFICIAL OWNERSHIP INFORMATION.
(1) A financial institution or DNFBP must provide information on the beneficial ownership and control and the source of funds used to pay the capital of the financial institution or DNFBP, to its regulatory authority prior to applying for a licence, practising certificate, registration or other equivalent permission.
(2) Where a financial institution or DNFBP has obtained a licence, practising certificate, registration or other equivalent permission from its regulatory authority prior to this Act coming into operation, it must provide information on the beneficial ownership and control and the source of funds used, to pay the capital of the financial institution or DNFBP to its regulatory authority as soon as reasonably practicable upon this Act coming into operation.
(3) A financial institution or a DNFBP must inform its regulatory authority of any changes to the information provided under Subsection (1) or (2) as soon as reasonably practicable.
(4) A person who intentionally engages in conduct that contravenes a requirement of this section is guilty of a crime.
Penalty: A fine not exceeding -
(a) K500,000.00 or imprisonment for a term not exceeding five years or both for a natural person; or
(b) K1,000,000.00 for a body corporate.
(5) For the purpose of Subsection (4), intention can be inferred from objective factual circumstances.
(6) A person who recklessly engages in conduct that contravenes a requirement of this section is guilty of a crime.
Penalty: A fine not exceeding -
(a) K250,000.00 or imprisonment for a term not exceeding three years or both for a natural person; or
(b) K500,000.00 for a body corporate.
60. OBLIGATIONS ON REGULATORY AUTHORITIES AND FASU REGARDING BENEFICIAL OWNERSHIP INFORMATION AND FIT AND PROPER CONTROLS.
(1) A regulatory authority must ensure that -
(a) it verifies and maintains up to date records of the beneficial ownership and control and the source of funds used to pay the capital of the financial institutions or DNFBPs it regulates; and
(b) it makes beneficial ownership and control information of the financial institutions or DNFBPs it regulates available to FASU when requested and on a timely basis.
(2) FASU or a regulatory authority must ensure that Directors, Chief Executives, Senior Managers or persons in other equivalent positions in the regulated financial institution or DNFBP and beneficial owners of the regulated financial institution or DNFBP meet fit and proper criteria on an initial and ongoing basis.
(3) For the purpose of Subsection (2), fit and proper criteria are those criteria set out by FASU or the regulatory authority of the financial institution or DNFBP it regulates, in AML/CTF compliance rules, guidelines, forms or other directions as may be appropriate.
PART VI. - SUPERVISION AND ENFORCEMENT.
Division 1. - Financial Analysis and Supervision Unit.
Subdivision 1. - Establishment of Financial Analysis and Supervision Unit.
61. ESTABLISHMENT OF FASU.
(1) FASU is established within the Bank of Papua New Guinea.
(2) FASU shall be an operationally independent unit with the functions and powers specified under this Act and can institute proceedings on behalf of the Bank of Papua New Guinea for the purpose of this Act.
(3) FASU shall be comprised of a Director and officers.
62. STATUS OF THE DIRECTOR.
The Director is an officer of the Bank of Papua New Guinea in accordance with the Central Banking Act 2000.
63. APPOINTMENT OF THE DIRECTOR.
(1) The appointment of the Director must be by written instrument made by the Governor of the Bank of Papua New Guinea, who may, in making the appointment, consult with the following:
(a) the Commissioner of Police; and
(b) the Departmental Head of the department responsible for national justice administration.
(2) Prior to making an appointment under Subsection (1), the Governor of the Bank of Papua New Guinea may also consult with a relevant regulatory authority or government department or agency of Papua New Guinea.
(3) A person is qualified for appointment as the Director of FASU if he -
(a) has relevant and sufficient qualifications, skills and experience to deal with matters of the kind that may be dealt with by FASU; and
(b) is of the highest integrity and good reputation; and
(c) has the capacity to maintain the independence of the position of Director.
(4) Any contract or agreement regarding the terms and conditions of the Director's appointment must be consistent with the Director's functions under this Act.
64. TERM OF APPOINTMENT.
(1) The Director may be appointed for an initial term not exceeding five years.
(2) The Director may be reappointed for a second term not exceeding five years.
(3) After the second term of appointment, a new appointment process must be undertaken for the position of Director.
(4) A person who has previously held the position of Director may apply for that position under the appointment process referred to in. Subsection (3).
65. DISMISSAL OF THE DIRECTOR.
The Director may be dismissed by the Governor of the Bank of Papua New Guinea, in consultation with the Commissioner of Police and the Departmental Head of the department responsible for national justice administration, if the Director:
(a) has been found guilty of any criminal offence under the law of Papua New Guinea or a foreign law, whether before, on or after the commencement of this Act; or
(b) has breached a term or condition of his appointment; or
(c) acts in a manner that is grossly prejudicial to the performance of the duties of his office; or
(d) is an, undischarged bankrupt or insolvent; or
(e) is of unsound mind within the meaning of any law relating to the protection of the person and property of persons of unsound mind.
66. VACANCY OF THE DIRECTOR'S POSITION.
(1) The Governor of the Bank of Papua New Guinea must appoint a senior officer of FASU as the Acting Director where -
(a) the Director resigns in writing, prior to the expiry of his term of appointment; or
(b) the Director's position becomes vacant for any other reason.
(2) The Director must designate a senior officer of FASU as the Acting Director where the Director takes a temporary leave of absence for any purpose.
(3) An Acting Director can exercise all the powers and functions and carry out the duties of the Director under this Act.
(4) The Governor of the Bank of Papua New Guinea must appoint a person as the Director in accordance with Sections 63 and 64 as soon as reasonably practicable after the Director resigns or his position becomes vacant.
67. OFFICERS OF FASU.
(1) Officers of FASU are officers of the Bank of Papua New Guinea in accordance with the Central Banking Act 2000.
(2) Notwithstanding Subsection (1), officers of FASU are at all times solely under the operational direction and control of the Director in the performance of their duties as officers of FASU.
(3) The Director is responsible for recruiting officers of FASU and may consult with the Governor of the Bank of Papua New Guinea or his delegate and any other appropriate persons with respect to their recruitment.
68. FUNCTIONS AND POWERS OF FASU TO VEST IN THE DIRECTOR.
The functions and powers of FASU under this Act are vested in the Director.
69. DUTIES OF THE DIRECTOR.
(1) The Director is responsible for implementing the functions and powers of FASU under this Act.
(2) In the exercise of the functions and powers of FASU under this Act, the Director is operationally independent.
70. DELEGATION OF AUTHORITY.
(1) The Director may delegate, in writing, to an officer of FASU all or any of his powers and functions under this Act, other than -
(a) the power of delegation conferred by this section; and
(b) the recruitment of officers of FASU under Section 67(3); and
(c) a decision to exercise an enforcement power under Division 4 of this Part.
(2) For the avoidance of doubt, the Director may delegate the exercise of particular enforcement powers under Division 4 of this Part to an officer of FASU, provided that the Director does not delegate the decision to exercise such powers.
71. PROTECTION FROM LIABILITY FOR ACTS DONE IN GOOD FAITH.
The Bank of Papua New Guinea, FASU, the Director, an officer, employee or agent of FASU, or a person who has been the Director, or who has been an officer, employee or agent of FASU shall not be subject to any civil or criminal liability, action, claim or demand for anything done or omitted to be done in good faith in performance of their functions, duties and powers under this Act.
Subdivision 2. - Functions of Financial Analysis and Supervision Unit.
72. FUNCTIONS OF FASU.
(1) The functions of FASU under this Act are to -
(a) carry out financial intelligence and analysis concerning suspected money laundering and associated predicate offences, terrorist financing and proceeds of crime; and
(b) monitor and enforce compliance with this Act; and
(c) receive reports and information provided to it under Part II of the Proceeds of Crime Act 2005 and disseminate such reports and information in accordance with the Proceeds of Crime Act 2005 and this Act.
(2) In carrying out its functions under Subsection (1), FASU may -
(a) receive, request, collect, analyse and disseminate reports or other relevant information concerning suspected money laundering and associated predicate offences, terrorist financing and proceeds of crime; and
(b) develop risk assessments and typology reports in relation to and raise awareness of money laundering and terrorist financing and obligations on financial institutions and DNFBPS under this Act; and
(c) co-operate with domestic agencies and regulatory authorities and foreign counterpart agencies as provided for under this Act to -
- (i) monitor and assess the risk of money laundering and terrorist financing; and
- (ii) ensure the effective implementation of this Act; and (a') supervise financial institutions and DNFBPs for the purpose of this Act, including enforcing compliance with this Act; and
(e) co-ordinate with other regulatory authorities for the purpose of supervising financial institutions and DNFBPs in enforcing compliance with the obligations under this Act; and
(f) produce AML/CTF compliance rules to assist financial institutions and DNFBPs to comply with their obligations under this Act.
73. FASU MAY PREPARE AML/CTF COMPLIANCE RULES.
(1) FASU may prepare AML/CIF compliance rules.
(2) An AML/CTF compliance rule must be in writing, which includes it being stored electronically.
(3) The purpose of an AML/CTF compliance rule is to provide a statement of practice, guidance or clarification that assists a financial institution or DNFBP to comply with its obligations under this Act.
(4) In preparing an AML/CTF compliance rule, FASU may consult with a relevant regulatory authority or government department, agency or authority of Papua New Guinea, having regard to the subject matter of the proposed AML/CTF compliance rule.
(5) FASU may, in writing, amend or revoke an AML/CTF compliance rule.
(6) The Governor of the Bank of Papua New Guinea must approve in writing an AML/CTF compliance rule, an amendment to a rule and the revocation of a rule.
(7) An AML/CTF compliance rule or an amendment to or revocation of an AML/CTF compliance rule, comes into operation on the date that it is approved by the Governor of the Bank of Papua New Guinea.
(8) Nothing in Subsection (7) precludes an AML/CTF compliance rule or an amendment to or revocation of an AML/CTF compliance rule from coming into operation at a date which is specified in the AML/CTF compliance rule.
74. LEGAL EFFECT OF AN AML/CTF COMPLIANCE RULE.
(1) In deciding whether a person has committed an offence under this Act, the Court must consider an AML/CTF compliance rule which was in operation at the time of the relevant conduct.
(2) A financial institution or DNFBP complies with an obligation imposed on it under this Act by complying with the provisions of an AML/CTF compliance rule that state a means of satisfying the obligation.
(3) Notwithstanding Subsection (2), a financial institution or DNFBP may use means that are different to those specified in an AML/CTF compliance rule to satisfy an obligation under this Act.
75. FASU TO PRODUCE ANNUAL REPORT.
(1) FASU must produce and submit an annual report by 30 March of each year to the Board of the Bank of Papua New Guinea.
(2) An annual report must include -
(a) a summary of the activities of FASU; and
(b) a summary of reports received by FASU; and
(c) an analysis of current money laundering and terrorist financing trends.
(3) FASU must, as soon as is reasonably practicable after the Board of the Bank of Papua New Guinea has considered the annual report -
(a) provide a copy of the report to the Departmental Head of the department responsible for national justice administration; and
(b) make a copy of the report publicly available.
(4) The report under Subsection (3)(b) must not contain information that refers to or otherwise enables the identification of any particular person.
76. FASU TO MAINTAIN REGISTER OF FINANCIAL INSTITUTIONS AND DNFBPS.
FASU must establish and maintain an updated register which includes -
(a) the name of every financial institution and DNFBP which has obligations under this Act; and
(b) the address of the principal place of business at which every financial institution or DNFBP carries on its business; and
such other information as may be considered necessary by FASU to identify a financial institution or DNFBP and monitor its compliance with this Act.
77. FASU TO MAINTAIN A DATABASE.
FASU must maintain an up to date database containing reports received in accordance with this Act and other relevant information, statistics and records relating to money laundering and terrorist financing.
78. FASU TO DESTROY SUSPICIOUS MATTER REPORTS.
FASU must destroy, or make arrangements for the destruction of, any suspicious matter reports received by FASU under Section 41(4) or 52 on the expiry of -
(a) 10 years after the date of receipt of the report if there has been no further activity or information relating to the report or the persons named in the report; or
(b) 10 years from the date of the last activity relating to the person or to the report.
Division 2. - Information gathering and monitoring powers.
79. POWER TO RECEIVE REPORTS AND INFORMATION.
For the purpose of carrying out its functions as set out in Section 72, FASU may -
(a) receive, request and collect reports and information under Sections 39(1) and (2), 40(1), 41(4), (7), (11) and 52 and this Part; and
(b) receive reports and information under Sections 14(4) and (7), 16(3), 17(3) and 19(4) of the Proceeds of Crime Act 2005; and
(c) analyse and disseminate such reports or information received under Paragraph (a) in accordance with Division 3 of this Part.
80. POWER TO REQUEST INFORMATION FROM OTHER BODIES.
(1) FASU may request, in relation to any report or information it has received under this Act, any information it deems necessary to carry out its functions from -
(a) a regulatory authority; or
(b) a law enforcement agency; or
(c) any other government department, agency or authority of Papua New Guinea.
(2) FASU may enter into an arrangement or memoranda of understanding with a regulatory authority, law enforcement agency or any other government department, agency or authority of Papua New Guinea with respect to information sharing and usage.
(3) Any arrangement or memorandum of understanding entered into under Subsection (2) must be made in accordance with the requirements of Division 3 of this Part.
81. POWER TO REQUEST INFORMATION AND RECORDS FROM A FINANCIAL INSTITUTION OR DNFBP.
(1) For the purpose of monitoring and enforcing compliance with this Act, FASU may request, in writing, that a financial institution or a DNFBP provide information or produce records in its possession or subject to its control.
(2) FASU may specify the manner in which and a reasonable period within which information or records are to be provided.
(3) A request made under Subsection (1) may include a continuing obligation to keep FASU informed as circumstances change or on such regular basis as FASU may specify.
(4) Where a request is made for the production of records FASU may -
(a) keep copies of or extracts from any records so produced; and
(b) request any person producing a record to give an explanation of it in writing.
82. DETERMINING IF A PERSON IS A FINANCIAL INSTITUTION OR A DNFBP.
(1) For the purpose of monitoring and enforcing compliance with this Act, FASU may, if it believes on reasonable grounds that a person or unincorporated entity is a financial institution or DNFBP that has obligations under this Act, by notice in writing require that person or unincorporated entity to provide any information, or produce any records, relevant to determining whether that person or unincorporated entity is a financial institution or DNFBP within the meaning of this Act.
(2) FASU may specify the manner in which and a reasonable period within which information or records are to be provided.
(3) Where a request is made for the production of documents FASU may -
(a) keep copies of or extracts from any record so produced; and
(b) request any person producing a record to give an explanation of it in writing.
83. COMPLYING WITH A REQUEST FOR DOCUMENTS OR INFORMATION.
(1) A person required under Section 81 or 82 to disclose any information or produce any record must comply with a request made under Section 81 or 82, regardless of any grounds of confidentiality based on any other Acts or contractual obligations.
(2) For the avoidance of doubt, this section does not affect any privileges under the underlying law or any constitutional law.
84. FAILURE TO COMPLY WITH A REQUEST FOR DOCUMENTS OR INFORMATION.
(1) A person who -
(a) refuses to comply with a request for information or records under Section 81 or 82; or
(b) produces any record or gives any information knowing it is false in any material way, in response to a request for information or records under Section 81 or 82; or
(c) with intent to evade the provisions of Section 81 or 82 destroys, mutilates, defaces, conceals or removes any record, is guilty of a crime.
Penalty: A fine not exceeding -
(a) K250,000.00 or imprisonment for a term not exceeding three years or both for a natural person; or
(b) K500,000.00 for a body corporate.
(2) For the purpose of Subsection (1), intention and knowledge can be inferred from objective factual circumstances.
(3) A person who -
(a) fails within the time and in the manner specified to comply with a request for information or records made under Section 81 or 82; or
(b) produces any record, or gives any information, reckless as to whether it is false in any material way in response to such a request, is guilty of a crime.
Penalty: A fine not exceeding -
(a) K100,000.00 or imprisonment for a term not exceeding one year or both for a natural person; or
(b) K200,000.00 for a body corporate.
(4) A person does not commit a crime under Subsection (1) or (2) if the person -
(a) has a reasonable excuse for their failure to comply with a request under this subdivision; or
(b) relies on a privilege referred to in Section 83(2).
85. FASU MAY CONDUCT AN ON-SITE INSPECTION.
(1) FASU may conduct an on-site inspection of the premises of, or used by, a financial institution or DNFBP, for the purpose of determining whether the financial institution or DNFBP has complied with, or is complying with, its obligations under this Act.
(2) FASU may request the assistance of a regulatory authority, policeman or other person in conducting an on-site inspection under Subsection (I).
(3) Before conducting an on-site inspection under Subsection (1) -
(a) FAS U must provide written notice of the proposed entry prior to or at the time; and
(b) the officer of FASU appointed to monitor compliance must identify himself; and
(c) the officer of a regulatory authority, policeman or other person assisting FASU under Subsection (2) must identify himself.
(4) For the avoidance of doubt, written notice of the proposed entry may be provided at the time FASU seeks to enter the premises of, or used by, a financial institution or DNFBP.
86. CONDUCT OF AN ON-SITE INSPECTION.
(1) When conducting an on-site inspection under Section 85(1) FASU and any regulatory authority, policeman or other person assisting FASU, may -
(a) inspect the premises to obtain any information, records or items that are kept at or accessible from the premises that relates to a financial institution's or DNFBP's obligations under this Act; and
(b) take copies or make videos or audio recordings of any record, activity or matter that relates to a financial institution's or DNFBP's obligations under this Act.
(2) FASU may request that the occupier of the premises provides FASU and any regulatory authority, policeman or other person assisting FASU, with such assistance as is reasonably required to conduct an on-site inspection including, but not limited to, the following:
(a) facilitating access to electronic equipment; and
(b) unlocking doors, cabinets, drawers and other items; and
(c) producing records and items; and
(d) responding to questions about records and items.
(3) FASU must, within a reasonable period after the on-site inspection, restore the premises or cause the premises to be restored, as nearly as possible, to the same state of cleanliness and neatness that existed immediately before the commencement of the inspection.
(4) For the avoidance of doubt, this section does not affect any privileges under the underlying law or any constitutional law.
87. INSPECTION OF PREMISES PURSUANT TO A WARRANT.
(1) A policeman may apply to a court under Section 6 of the Search Act 1977 for a warrant to search the premises of, or used by, a financial institution or DNFBP.
(2) An application for a warrant must be made in accordance with the requirements of Division 2 of Part III of the Search Act 1977 and Subsection (3).
(3) An application for a warrant under Subsection (1) must also -
(a) specify that there are reasonable grounds for suspecting that there is, on the premises of, or used by, the financial institution or DNFBP -
- (i) any record or item in respect of which any offence under this Act has been or is believed, on reasonable grounds, to have been committed; and
- (ii) any record or item in respect of which there are reasonable grounds for believing that the record or item is likely to afford evidence of the commission of an offence under this Act; or
- (iii) any record or item in respect of which there are reasonable grounds for believing the record or item is intended to be used to commit an offence under this Act; and
(b) specify whether it is sought that an officer of FASU is a named person for the purpose of Section 7(a) of the Search Act 1977; and
(c) specify whether it is sought that an officer of a regulatory authority or any other person is a named person for the purpose of Section 7(a) of the Search Act 1977.
(4) If it is impracticable for the application to be made in person for reasons of urgency, the application may be made by fax, email or such other means of communication approved by the court.
(5) The application may be heard ex parte and may be heard in closed court or in chambers.
(6) The court may issue a warrant if it is satisfied that the requirements of Section 6 of the Search Act 1977 and Subsection (3) of this section have been met.
(7) For the purpose of this section, "court" has the meaning given in Section 1(1) of the Search Act 1977.
(8) For the avoidance of doubt, Part III of the Search Act 1977 applies to the execution of a warrant issued under this section.
88. REQUIREMENTS REGARDING ENTRY PURSUANT TO A WARRANT.
(1) Before conducting a search pursuant to a warrant -
(a) a policeman and any other person named in the warrant must identify himself to the occupier of the premises, or a person representing the occupier of the premises; and
(b) a policeman must make a copy of the warrant available to the occupier of the premises or a person representing the occupier of the premises.
(2) The occupier of the premises or a person representing the occupier of the premises may observe the execution of the warrant.
89. POWERS THAT CAN BE EXERCISED UNDER THE WARRANT.
(1) A warrant authorises a policeman and any other person named in the warrant to exercise the powers under Division 3 of Part III of the Search Act 1977 in addition to the powers set out in Subsection (2).
(2) A policeman and any other person named in the warrant may exercise the following powers when conducting a search pursuant to a warrant:
(a) enter the premises; and
(b) search the premises for any records or items that -
- (i) are kept at, or accessible from, the premises; and
- (ii) relate to a financial institution's or DNFBP's obligations under this Act; and
(c) in relation to the records and items referred to in Paragraph (b) -
- (i) search for, and operate any electronic equipment, including any data storage device, used by a financial institution or a DNFBP for keeping those records or items; and
- (ii) unlock any doors, cabinets, drawers or other storage facilities that may contain records or items; and
- (iii) take copies of, or extracts from, those records; and
- (iv) bring onto the premises such equipment as is reasonably necessary to examine, detect, transport or process records or items that may be found during the exercise of the monitoring powers; and
- (v) take any steps which may appear to be necessary for preserving, or preventing interference with, those records or items; and
(d) take photographs or make videos or audio recordings on the premises of any record, item, activity or matter that relates to a financial institution's or DNFBP's obligations under this Act; and
(e) in relation to entry pursuant to a warrant, use reasonable force to break into or open -
(i) the premises to which the warrant relates; or
(ii) part of, or anything on, the premises.
(3) In addition to the powers in Subsection (1), a policeman can seize a record or item for the purposes of investigation or prosecution of an offence under this Act.
(4) If a record or item is seized under Subsection (2), a policeman -
(a) may take possession of and may make copies of the record or item, or take extracts from the record; and
(b) may retain possession of the record or item for such period as is necessary for the purposes of the investigation to which the record or item relates; and
(c) must provide a copy of that record or item to FASU.
(5) While retaining the record or item, a policeman must allow a person who would otherwise be entitled to inspect the record or item to do so at the time that the person would ordinarily be able to do so.
(6) If the retention of the record or item by the policeman is not, or ceases to be, reasonably necessary for the purposes of the investigation or a prosecution to which the record or item relates, the policeman must cause it to be delivered to the person who appears to the policeman to be entitled to possession of the record or item.
(7) A policeman must make a record of all documents or things seized under a warrant.
(8) A record or document seized by a policeman under a warrant under this Act is admissible in evidence against a person in criminal proceedings for -
(a) an offence under this Act; or
(b) an offence of money laundering or terrorist financing under the criminal code; or
(c) an offence under the United Nations Financial Sanctions Act 2015.
90. ASSISTANCE IN EXERCISING MONITORING POWERS.
A policeman and any other person authorised to execute the warrant may require an occupier of premises to provide such assistance as is reasonably required to execute the warrant including, but not limited to -
(a) facilitating access to electronic equipment; and
(b) unlocking doors, cabinets, drawers and other items.
91. RESTORE PREMISES.
The persons authorised to execute the warrant must, within a reasonable period after the conclusion of a search of premises restore the premises or cause the premises to be restored as nearly as possible to the same state of cleanliness and neatness that existed immediately before the commencement of the search.
92. OFFENCE OF OBSTRUCTING THE EXECUTION OF A WARRANT AND TAMPERING WITH OR DESTROYING RECORDS.
(1) A person who intentionally prevents, hinders or obstructs the execution of a warrant, including by tampering with or destroying a record, is guilty of a crime.
Penalty: A fine not exceeding -
(a) K250,000.00 or imprisonment for a term not exceeding three years or both for a natural person; or
(b) K500,000.00 for a body corporate.
(2) For the purpose of Subsection (1), intention can be inferred from objective factual circumstance
93. POWERS TO ASK QUESTIONS AND SEEK PRODUCTION OF RECORDS.
(1) Where an officer of FASU enters the premises of a financial institution or DNFBP pursuant to a warrant, that officer may ask the occupier to -
(a) answer any questions and produce any records which may be relevant to monitoring compliance or detecting non-compliance with this Act; and
(b) where such records are produced, require the person producing them to provide an explanation of such records.
(2) A statement made by a person in compliance with Subsection (1), may be used in evidence against him.
(3) A person requested to disclose any information or produce any record under Subsection (1), must comply with a request, regardless of any grounds of confidentiality based on any other Acts or contractual obligations.
(4) For the avoidance of doubt, this section does not affect any privileges under the underlying law or any constitutional law.
(5) A person who -
(a) refuses to comply with a request under Subsection (1) to disclose any information or produce any records; or
(b) produces any record, or gives any information, knowing it to be false in any material way, in response to a request for information or records under Subsection (1); or
(c) with intent to evade Subsection (3) destroys, mutilates, defaces, conceals or removes any record, is guilty of a crime.
Penalty: A fine not exceeding -
(a) K250,000.00 or imprisonment for a term not exceeding three years or both for a natural person; or
(b) K500,000.00 for a body corporate.
(6) A person who produces any record, or gives any information, reckless as to whether it is false in any material way in response to such a request is guilty of a crime.
Penalty: A fine not exceeding -
(a) K100,000.00 or imprisonment for a term not exceeding one year or both for a natural person; or
(b) K200,000.00 for a body corporate.
(7) A person does not commit a crime under Subsection (1) or (2) if the person -
(a) has a reasonable excuse for their failure to comply with a request under this subdivision; or
(b) relies on a privilege referred to in Subsection (4).
Division 3. - Use and disclosure of confidential information.
94. CONFIDENTIAL INFORMATION.
For the purpose of this Division, "confidential information" is information supplied to or obtained by FASU in the exercise of its functions and powers under this Act, but does not include -
(a) information which is factually the same as the confidential information and which is already in the public domain; or
(b) information which is presented so that it does not refer to, or otherwise enable the identification of, any particular person.
95. OFFENCE OF DISCLOSING CONFIDENTIAL INFORMATION.
(1) An officer of FASU must not disclose confidential information except as permitted under this Division.
(2) A person who intentionally discloses confidential information in contravention of this Division is guilty of a crime.
Penalty: A fine not exceeding K100,000.00 or imprisonment for a term not exceeding one year or both.
(3) For the purpose of Subsection (2), intention can be inferred from objective factual circumstances.
(4) A person who recklessly discloses confidential information in contravention of this Division is guilty of a crime.
Penalty: A fine not exceeding K50,000.00.
96. CIRCUMSTANCES IN WHICH CONFIDENTIAL INFORMATION MAY BE DISCLOSED.
(1) An officer of FASU may disclose confidential information to a regulatory authority or government department, agency or authority for the purpose of -
(a) exercising any of its functions or powers under this Act; or
(b) the detection, investigation or prosecution of money laundering, terrorist financing, an offence under Section 15 or 16 of the United Nations Financial Sanctions Act 2015 or any other indictable offence; or
(c) investigations or the taking of action under the Proceeds of Crime Act 2005; or
(d) assisting a regulatory authority or government department, agency or authority to exercise its functions or powers.
(2) An officer of FASU may disclose confidential information to a foreign counterpart agency in accordance with Section 97.
(3) FASU must immediately provide to the Sanctions Secretariat a copy of a report received under -
(a) Section 40(1) or 52; or
(b) Section 41(4) or 52, in relation to a suspicion under Section 41(1)(a) of an offence under Section 15 or 16 of the United Nations Financial Sanctions Act 2015.
(4) No person shall be compelled to disclose, in any civil or criminal proceeding, any confidential information relating to -
(a) a suspicious matter report provided under Section 41(4) or 52, including information that will identify, or is likely to identify, the person who prepared or made a suspicious matter report; or
(b) information relating to a suspicion provided under Section 41(7) or (11) or Section 52 in relation to communicating a suspicion,
unless the Court is satisfied that the disclosure of the information is necessary in the interests of justice.
97. SHARING CONFIDENTIAL INFORMATION WITH A FOREIGN COUNTERPART AGENCY.
(1) FASU may enter into an agreement or arrangement to share confidential information with a foreign counterpart t agency, subject to the restrictions on sharing confidential information under Section 98.
(2) On the request of a foreign counterpart agency, FASU may -
(a) search its own records; and
(b) search other records to which FASU has direct or indirect access, including law enforcement records, public records, administrative records and commercially available records; and
(c) provide information obtained from its search to the foreign counterpart agency subject to the restrictions on sharing confidential information under Section 98.
98. RESTRICTIONS ON SHARING CONFIDENTIAL INFORMATION WITH A FOREIGN COUNTERPART AGENCY.
(1) FASU may share confidential information with a foreign counterpart agency for the purposes of -
(a) detecting, investigating or prosecuting a foreign indictable offence; or
(b) enforcing or taking action under a proceeds of crime law in the foreign counterpart agency's jurisdiction; or
(c) supervising and enforcing compliance with an AML/CTF regulation and supervision law in the foreign counterpart agency's jurisdiction.
(2) FASU may disclose information under Subsection (1), only when FASU has obtained written agreement from the foreign counterpart agency that -
(a) the information can only be used for the purpose for which the information was sought; and
(b) the information will not be further disclosed without the consent of FASU.
Division 4. - Enforcement.
99. POSSIBLE ENFORCEMENT MEASURES.
(1) FASU may do one or more of the following where it has reasonable grounds to believe that a financial institution or DNFBP has failed to comply with an obligation under this Act:
(a) issue a formal warning under Section 100, or
(b) issue an infringement notice under Section 101, or
(c) accept an enforceable undertaking under Section 102 and seek an order from the Court for breach of that undertaking under Section 103, or
(d) seek a performance injunction from the Court under Section 104, or
(e) seek a restraining injunction from the Court under Section 105; or
(f) publish a notice non- compliance under Section 106.
(2) For the avoidance of doubt, this Act does not affect a power of a regulatory authority to issue, revoke, impose conditions upon or amend the conditions of a licence, practising certificate, registration or other equivalent permission granted to a financial institution or DNFBP by that regulatory authority or to exercise any of its other powers or functions.
100. FORMAL WARNING.
(1) FASU may issue a formal warning to a financial institution or DNFBP where FASU has reasonable grounds to believe that the financial institution or DNFBP has engaged in conduct that has contravened a requirement of this Act.
(2) A formal warning may specify any remedial action that FASU believes the financial institution should take.
(3) FASU may publish a formal warning issued to the financial institution or DNFBP.
101. INFRINGEMENT NOTICE.
(1) FASU may serve an infringement notice, in writing, to a financial institution or DNFBP where FASU has formed the view based on reasonable grounds to believe that the financial institution or DNFBP has engaged in, or may engage in, conduct which constitutes an offence under this Act.
(2) If FASU intends to issue an infringement notice, it must do so as soon as possible after it has become aware that the financial institution or DNFBP has engaged in, or may engage in, conduct which constitutes an offence under this Act.
(3) The infringement notice must require the financial institution or DNFBP to pay a penalty not exceeding -
(a) K1,000.00 for an individual; or
(b) K5,000.00 for a body corporate,
as stated in the notice within 30 days of the date the notice was served.
(4) FASU may publish an infringement notice issued to the financial institution or DNFBP.
(5) A financial institution or DNFBP on whom an infringement notice has been served under Subsection (1) and payment of which remains outstanding after the completion of the 30 day period, shall pay, in addition to the penalty, interest at the rate of 8% of the amount of unpaid penalty for each five day period or part of the five day period, beginning on the day after the notice was served on the financial institution or DNFBP and ending on the day the penalty has been paid in full.
(6) Where FASU serves an infringement notice under Subsection (1), a prosecution in respect of that offence may only be commenced if the penalty remains unpaid 30 days after payment was due, and the Court may take account of any unpaid penalty and interest accrued when imposing a penalty in respect of such action.
102. ENFORCEABLE UNDERTAKING.
(1) FASU may request a written undertaking from a financial institution or DNFBP in connection with compliance with this Act.
(2) Without limiting Subsection (1), a written undertaking may relate to an activity of a financial institution or DNFBP or to an officer, employee, agent or a group of officers, employees or agents of the financial institution or DNFBP.
(3) A financial institution or DNFBP may give FASU a written undertaking in connection with compliance with this Act.
(4) For the avoidance of doubt, the terms of an undertaking must be lawful and in compliance with this Act.
103. ENFORCEMENT OF UNDERTAKING.
(1) Where FASU considers that a financial institution or DNFBP has breached one or more of the terms of an undertaking it provided under Section 102, FASU may apply to the Court for an order under Subsection (2).
(2) If the Court is satisfied that -
(a) the financial institution or DNFBP has breached one or more of the terms of its undertaking; and
(b) the undertaking was relevant to the financial institution's or DNFBP's obligations under this Act,
the Court may make an order directing the financial institution or DNFBP to comply with any of the terms of the undertaking.
104. PERFORMANCE INJUNCTIONS.
(1) FASU may apply to the Court for an injunction requiring a person to do an act or thing in order to comply with this Act.
(2) Further to an application under Subsection (1), the Court may grant an injunction requiring a person to do an act or thing under this Act if it is satisfied that -
(a) a person has refused or failed, or is refusing or failing, or is proposing to refuse or fail, to do an act or thing; and
(b) the refusal or failure was, is or would be a contravention of this Act. - 49 -
(3) An injunction granted by the Court under Subsection (2), may relate to an officer, employee or agent, or a group of officers, employees or agents of the financial institution or DNFBP.
(4) An application made under Subsection (1), may be made ex parte and the Court may grant an interim injunction under Subsection (2), without the defendant being heard when the Court considers it appropriate to do so.
105. RESTRAINING INJUNCTIONS.
(1) FASU may apply to the Court for an injunction restraining a person from engaging in conduct in contravention of this Act.
(2) Further to an application under Subsection (1), the Court may grant an injunction restraining a person from engaging in conduct in contravention of this Act if it is satisfied that -
(a) a person has engaged, is engaging or is proposing to engage, in any conduct; and
(b) the conduct was, is or would be a contravention of this Act.
(3) An injunction under Subsection (2), may relate to an officer, employee or agent, or a group of officers, employees or agents of the financial institution or DNFBP.
(4) An application made under Subsection (1), may be made ex par te and the Court may grant an interim injunction under Subsection (2), without the defendant being heard if the Court considers it appropriate to do so.
106. NOTICE OF NON-COMPLIANCE.
(1) Where the Court has granted an injunction under Section 104 or 105, FASU may publish a notice which sets out the details of the financial institution's or DNFBP's non-compliance and any remedial action ordered by the Court.
(2) Where a financial institution or DNFBP has failed to comply with an injunction granted by the Court under Section 104 or 105, FASU may publish a notice of that non-compliance and any other remedial action as ordered by the Court.
PART VII. - MISCELLANEOUS.
107. CONDUCT BY THE DIRECTOR, SERVANT OR AGENT.
(1) For the purpose of this Act, the state of mind of a person may be established in accordance with this section.
(2) Conduct engaged in for a body corporate is taken for this Act, to have been engaged in by the body corporate if it was engaged in -
(a) by a director, servant or agent of the body corporate within the scope of his actual or apparent authority; or
(b) by another person, if -
- (i) it was done at the direction or with the consent or agreement, whether expressed or implied, of a director, servant or agent of the body corporate; and
- (ii) giving the direction, consent or agreement was within the scope of the actual or apparent authority of the director, servant or agent.
(3) To establish the relevant state of mind for conduct engaged in, or taken under Subsection (2), to have been engaged in, by a body corporate, it is sufficient to show that a director, servant or agent of the body corporate who engaged in the conduct within the scope of his actual or apparent authority had that state of mind.
(4) Conduct engaged in for a person, other than a body corporate, is taken, for this Act, to have been engaged in by the person if it was engaged in by -
(a) a servant or agent of the person within the scope of the servant or agent's actual or apparent authority; or
(b) by another person at the direction or with the consent or agreement, whether express or implied, of a servant or agent of the first-mentioned person, if the giving of the direction, consent or agreement is within the scope of the actual or apparent authority of the servant or agent.
(5) To establish the relevant state of mind for conduct taken under Subsection (4), to have been engaged in by a person, other than a body corporate, it is sufficient to show that a servant or agent of the person who engaged in the conduct within the scope of his actual or apparent authority had that state of mind.
(6) A reference in this section to the state of mind of a person includes the person's knowledge, intention, opinion, belief or purpose and the person's reasons for that intention, opinion, belief or purpose.
108. POWER TO MAKE REGULATIONS.
The Head of State, acting on advice, may make regulations not inconsistent with this Act, prescribing all matters which are by this Act required or permitted to be prescribed or necessary or convenient to be prescribed for giving effect to this Act.
I hereby certify that the above is a fair print of the Anti-Money Laundering and Counter Terrorist Financing Act 2015 which has been made by the National Parliament.
Acting Clerk the National Parliament.
20 JAN 2016
I hereby certify that the Anti-Money Laundering and Counter Terrorist Financing Act 2015 was made by the National Parliament on 30 July 2015, by an absolute majority as required by the Constitution.
Speaker of the National Parliament.
20 JAN 2016
PacLII:
Copyright Policy
|
Disclaimers
|
Privacy Policy
|
Feedback
URL: http://www.paclii.org/pg/legis/num_act/alactfa2015529
