finance

Technical Specialist Partners Limited – Key Lessons for Industry

Sara Barclay AML/CTF, Compliance, Corporate Governance, Due diligence, Guernsey , , , , , , , ,

Author: Sara Barclay – Technical Compliance Consultant. Contact: sara@tspgsy.com. 

Strengthening Financial Crime Frameworks 

This article looks at the key learning points in respect of the Guernsey Financial Services Commission’s latest enforcement action. The focus is on how Boards, senior management and operational teams can ensure that financial crime risks are properly understood, managed and resourced throughout the client lifecycle, while demonstrate strong governance, effective controls and meaningful oversight. 

Source of Wealth and Source of Funds 

A robust understanding of a client’s Source of Wealth (SoW) and Source of Funds (SoF) remains a cornerstone of an effective financial crime framework and understanding of a client relationship. 

Good practice requires that SoW and SoF: 

  • Are clearly established at onboarding, proportionate to the risk posed by the client, product, jurisdiction and delivery channel 
  • Are reasonable and plausible, taking into account the client’s background, occupation, business activities and geographic exposure 
  • Are supported by appropriate documentary evidence, particularly where higher-risk factors are present. Where the key person or business relationship is High risk this must be corroborated.  

Importantly, SoW and SoF are not oneoff exercises. Firms should ensure that: 

  • SoW and SoF are kept under review, are assessed and refreshed at periodic reviews and when trigger events occur 
  • New or additional funds entering a relationship are assessed for consistency with the known SoW profile and the validity of these funds are assessed and documented 
  • Any inconsistencies, gaps or changes over time and during trigger events or periodic reviews are identified, investigated and documented 

Boards and senior management should receive management information that enables them to understand: 

  • The quality and completeness of SoW/SoF information across the client base 
  • Where higher-risk, high risk or more complex profiles exist  
  • Whether remediation activity is timely and adequately resourced 

Customer Due Diligence (CDD) 

Effective Customer Due Diligence (CDD) underpins a firm’s ability to understand who its clients are and the risks they pose while reducing the potential for impersonation and fraud. 

Industry best practice includes ensuring that CDD: 

  • Meets current regulatory standards, including certification requirements 
  • Is legible, complete and understandable to staff relying on it 
  • Accurately reflects the client’s current circumstances, including residence, domicile, nationality and tax position 

Over time, clients may experience life events such as relocation, changes in personal circumstances or changes in business activities. While due diligence may not be subject to formal expiry, firms are expected to ensure that: 

  • CDD remains fit for purpose throughout the relationship 
  • Material changes trigger refresh or enhancement of documentation 
  • Tax information is assessed for accuracy and consistency, particularly where higher-risk jurisdictions are involved 

From a governance perspective, firms should be able to demonstrate that: 

  • CDD quality is reviewed, challenged and outcome documented  as part of periodic reviews or trigger events 
  • Deficiencies are identified, remediated and tracked 
  • The Board is aware of any systemic issues affecting CDD quality and the level of compliance with regulatory requirements.  

Though there are no specific requirements for CDD when Introducers or intermediaries fall outside of the controller aspect of the Handbook, there are requirements to understand and document the appropriateness, suitability and background/regulatory history as well as understanding their jurisdiction risk. This information coupled with the CDD information for the business relationship and Key Principals allows for a fuller understanding of the financial crime risks posed. 

Customer Risk Assessment 

A well-designed Customer Risk Assessment (CRA) is essential to understanding and managing financial crime risk at both an individual client and portfolio level. 

Good practice requires that CRAs: 

  • Reflect jurisdictional, product, delivery channel and client-specific risks 
  • Are informed by the firm’s Business Risk Assessment (BRA) and relevant national or sector risk assessments 
  • Are applied consistently across the client base 
  • Take into account any risks identified in respect of introducers or intemediaries of the business relationship  

CRAs should enable firms to: 

  • Identify high and higher-risk relationships and Key Principals  
  • Understand risk concentration across jurisdictions, products or intermediaries 
  • Apply appropriate mitigation where allowed, controls and monitoring in line with assessed risk 

Boards and senior management should be provided with MI that: 

  • Clearly shows the distribution of risk across their business relationships 
  • Highlights any areas of concentration or emerging risk 
  • Allowing them to demonstrate how risk assessments translate into operational controls and resourcing  

Ongoing Monitoring and Maintenance of Business Relationships 

Ongoing monitoring is a fundamental regulatory expectation and should be both proactive and reactive.  

Effective monitoring frameworks include: 

  • Trigger event reviews due to unexpected activity of a client or regulation change 
  • Periodic reviews conducted in line with the client’s risk rating 
  • Screening for sanctions, PEP exposure and adverse media 
  • Review of the of SoW, SoF, CDD and CRA where relevant reassessment and authorisation of the continuance of the business relationship 

Where adverse information is identified, good practice requires firms to: 

  • Assess relevance and materiality rather than dismissing information without analysis 
  • Obtain further information or documentation where appropriate 
  • Contact clients or their representatives to establish facts 
  • Clearly document conclusions and rationale for the resulting action to taken  

The existence of adverse information does not automatically indicate suspicion; however, failure to investigate and record decisions can expose the firm to regulatory risk. 

Red Flags and Escalation – Practical Lessons from GFSC Enforcement 

The recent GFSC enforcement action demonstrates that red flags were present, identifiable and documented, but were not escalated, challenged or acted upon with sufficient rigour. The Commission made clear that this failure materially contributed to the seriousness of the outcome and the potential for the business and the jurisdiction being susceptible to financial crime. 

Red flags must be assessed individually and cumulatively across the client base to identify trends, with decisions supported by evidence and clearly recorded. 

Key Red Flags Highlighted by the GFSC 

The enforcement action identified recurring red flag scenarios that firms should treat as requiring prompt escalation and investigation: 

  • Large, unsolicited or unexpected payments inconsistent with the client’s known Source of Wealth or Source of Funds, including sudden increases in premium payments. 
  • Failure or refusal to provide information, including noncompletion of updated SoF questionnaires following unusual activity. 
  • Requests to return funds to a different bank account from which they originated, raising potential layering or misdirection concerns. 
  • Delayed identification of PEP status or adverse media, resulting in clients remaining incorrectly riskrated for extended periods. 
  • Inconsistencies in client data, including multiple variations of names, addresses or jurisdictions without adequate investigation. 
  • Highrisk jurisdictions combined with weak corroboration, including highvalue transactions supported by outdated or poorly evidenced SoW/SoF. 

The Commission was critical of instances where such indicators were dismissed as administrative issues or poor client communication, rather than treated as potential financial crime risk. 

Escalation and Decision-Making Expectations 

The GFSC reiterated that: 

  • The presence of red flags does not automatically require a disclosure, but 
  • Failure to investigate, escalate and document decisions exposes firms and individuals to an increase in potential financial crime and enforcement action. 

Firms are expected to ensure that: 

  • Red flags are escalated promptly to suitably experienced personnel. 
  • Investigations are proportionate and evidencebased, taking account of cumulative risk. 
  • Decisions—whether to continue, restrict, enhance monitoring or exit a relationship—are clearly documented, including the rationale. 
  • Where risks cannot be mitigated, firms consider enhanced controls, relationship exit and disclosure obligations. 

Wider Control and Governance Implications 

The GFSC made clear that repeated failures to act on red flags often indicate: 

  • Overreliance on triggerevent reviews 
  • Weak screening or data quality 
  • Insufficient challenge within MLRO or Compliance functions 
  • Inadequate escalation to senior management and Boards 
  • Failure to implement remediation and appropriate controls and regulatory requirements 

Where red flag handling weaknesses are systemic or material, firms are expected to notify the GFSC promptly, supported by a credible remediation plan and delivery timeline. 

Board and Senior Management Oversight 

Across all areas, effective governance is critical. Boards and senior management are expected to: 

  • Set a clear risk appetite in respect of their business objectives in relation to the potential for financial crime 
  • Ensure that frameworks, policies and controls are adequately designed and resourced to meet the needs of the business undertaken and the regulatory requirements 
  • Challenge management where weaknesses or delays in remediation are identified 

Management information provided to Boards should be: 

  • Relevant, accurate and timely 
  • Focused not only on risk ratings but also on control effectiveness and trends 
  • Sufficient to enable informed decisionmaking 

A strong tone from the top, combined with effective oversight and accountability, is central to maintaining a resilient and compliant business. 

Call to Action for Boards, Senior Management and MLRO Functions 

Recent GFSC enforcement action demonstrates that financial crime frameworks fail not because firms lack policies, but because controls are do not take account of the National Risk Assessment and industry findings, are poorly implemented, insufficiently resourced, or not embedded into daytoday operations.  

The consequences of failing are no longer theoretical—regulators are willing to impose significant financial penalties, public censure and individual sanctions where firms cannot evidence effective compliance to local regulatory frameworks, oversight, challenge and remediation. 

Boards and senior management should therefore: 

  • Move beyond assurance on paper and obtain evidence that financial crime controls are operating effectively in practice. 
  • Challenge the quality, timeliness and regulatory and business relevance of Customer Due Diligence, Source of Wealth/Source of Funds and risk assessments—not simply their existence. 
  • Ensure that known issues are remediated promptly, rather than deferred to future trigger events or periodic reviews, and appropriate controlls can identify areas requiring remediation 
  • Confirm that the MLRO and Compliance functions are sufficiently supported with technical expertise, data capability and capacity to discharge their responsibilities. 
  • Act early where gaps are identified—waiting for regulatory intervention materially increases cost, disruption and reputational damage. 

The GFSC has been clear: good intentions and historic controls are not enough. Firms must be able to demonstrate that financial crime risks are understood, monitored and acted upon in real time, with clear accountability and evidence of challenge, while maintaining an up to date and regulatory compliant financial crime framework. 

Engaging experienced technical specialists at an early stage allows firms to: 

  • Address weaknesses before they become systemic 
  • Strengthen governance and confidence at Board level 
  • Reduce the likelihood of enforcement, financial penalties and reputational harm 
  • Ensure that a firm complies with regulatory requirements and guidance 

Technical Specialist Partners Limited offers pragmatic, hands-on support to help firms move from policy compliance to  effective, defensible financial crime frameworks that are regulatory compliant. We also offer health checks, reviews and assistance for proactive remediation. For more information, see: https://technicalspecialistpartners.com 

Enhancing Compliance: Navigating the GFSC Handbook and High Risk Requirements

Sara Barclay AML/CTF, Compliance, Corporate Governance, Due diligence, Guernsey , , , , , , , ,

In today’s fast-paced regulatory environment, Guernsey financial institutions must ensure they are not only compliant but also adaptive to ever-evolving domestic and international standards. The Guernsey Financial Services Commission (GFSC)Handbook provides a critical framework for ensuring Guernsey financial institutions uphold the highest standards of governance when countering financial crime, countering the financing of terrorism, and countering the Financing of Proliferation (CFC,CTF,CPF or Financial Crime) when undertaking their business activities. One of the most crucial sections, Chapter 8, delves into enhanced customer due diligence (ECDD) measures required for high-risk business relationships and situations. This blog will explore these ECDD measures and how organisations can align their operations and compliance frameworks with the Guernsey regulatory expectations set out in Chapter 8 of the GFSC Handbook.

Understanding the GFSC Handbook: A Regulatory Pillar

The GFSC Handbook is a guiding document that helps regulated entities in Guernsey comply with legislative and regulatory requirements, specifically around CFC, CTF, CPF and operational soundness to prevent and detect financial crime. By addressing both international and local standards, the Handbook covers areas such as:

  • Corporate governance
  • Risk management
  • Due diligence
  • Customer relationships
  • Transaction monitoring

However, when dealing with high-risk scenarios, standard measures are often insufficient. Chapter 8 is designed to mitigate risk in such situations through ECDD, enhanced monitoring, and enhanced reporting requirements to provide for effective corporate governance.

The Importance of Chapter 8: Enhanced Measures for High-Risk Situations

Chapter 8 of the GFSC Handbook specifically addresses scenarios where standard due diligence may not suffice to adequately mitigate risks of high risk business relationships. In such situations, Guernsey financial institutions and their directors and controllers are expected to employ ECDD measures to ensure robust risk management. These high-risk situations may arise from the following:

  • High-risk customers: Individuals or entities from jurisdictions with weaker CFC, CTF, CPF frameworks or with susceptibility to financing of terrorism or proliferation activities, politically exposed persons (PEPs), or clients involved in industries with higher susceptibility to financial crime.
  • Complex or unusual transactions: Large transactions that are inconsistent with the customer’s known profile or operations, or where the source of funds or rationale for the transaction is unclear.
  • Higher-risk products and services: Financial services that pose higher risks, such as correspondent banking, nominee services, and some services involving virtual assets.

Enhanced Customer Due Diligence (ECDD)

One of the critical components of Chapter 8 is ECDD, which goes beyond standard customer identification and verification processes. ECDD measures may include:

  • Additional documentation: Guernsey Financial institutions must collect more extensive documentation to verify the customer’s identity, business activities and rationale, and the source of their funds and wealth of their beneficial owners .
  • More in-depth investigations: Guernsey Financial institutions are required to dig deeper into a client’s background, including reviewing ownership structures, past transactions, and financial history (source of wealth and source of funds).
  • Regular updates: Ongoing due diligence must be performed more frequently, ensuring that any changes to the customer’s profile are promptly captured, investigated, and where required that documentation is obtained to confirm the continued legitimacy of the business relationship.

Key Requirements under Chapter 8 of the GFSC Handbook

To successfully implement Chapter 8, Guernsey Financial institutions need to address several critical areas:

  • Customer Due Diligence (CDD) and understanding and documenting the rationale of the business relationship and its components. 

Under Chapter 8, financial institutions must enhance their CDD and while documenting and clearing demonstration the rationale and purpose of the business relationship. This includes verifying the identity of beneficial owners, understanding the nature and purpose of business relationships, and ensuring continuous monitoring. For high-risk customers, ECDD measures require more rigorous background checks, additional verification, a deeper understanding of the client’s source of wealth and funds, and ensuring that it the take on and continuation of the business relationship is signed off by a higher level of authority and oversight.

  • Transaction Monitoring and Risk Profiling

Guernsey Financial institutions must implement more extensive and frequent transaction monitoring for high-risk clients. Chapter 8 mandates continuous monitoring of business relationships to detect suspicious activities promptly. This includes having lower thresholds for transaction monitoring, greater scrutiny and documentation of transactions, activity undertaken,  and their rationale, to flag unusual patterns or irregular transactions that might indicate money laundering, terrorist financing or proliferation activity.

  • Source of Funds and Wealth Verification, Documentation and Monitoring

Enhanced measures under Chapter 8 place significant emphasis on identifying and verifying the source of funds and wealth and holding up to date documentation on this area. This goes beyond just knowing where the money comes from; Guernsey Financial institutions need to understand how the funds were acquired, the activities that generated them, and ensure they are legitimate. For example, funds coming from high-risk jurisdictions for terrorism or industries require additional scrutiny to prevent bribery and corruption, or activities that may be linked to proliferation activities.

  • Enhanced Monitoring and Reporting

Monitoring business relationships is a continuous process of both day-to-day review of the transactions and verification subjects and more frequent periodic reviews of the business relationship, especially for high-risk clients. Chapter 8 requires Guernsey financial institutions to apply more scrutiny to transactions for high risk business relationships and escalate suspicious activities to the Money Laundering Reporting Officer and where necessary to the authorities, such as the Financial Intelligence Unitor for sanctions to the Guernsey Policy Council . Guernsey Financial Institutions must ensure they have robust internal mechanisms to report suspicious transactions regardless of monetary value, or sanctions while maintaining comprehensive documentation to support their findings.

  • Risk-Based Approach

Chapter 8 promotes a risk-based approach, where enhanced measures are applied based on the level of risk posed by the customer, transaction, service or product provider and any higher risk area identified. Institutions must create internal policies and procedures that reflect this principle, ensuring flexibility in responding to varying levels and types of risk.

Implementing ECDD Measures: Best Practices

To successfully align with Chapter 8 and the broader GFSC Handbook requirements, organizations should consider the following best practices:

  • Comprehensive Risk Assessment: Conduct regular risk assessments to identify customers, products, and services that pose higher risks. This will help prioritize where ECDD measures are necessary.
  • Training and Awareness: Ensure that staff at all levels are trained to recognize high-risk scenarios and know when to apply ECDD measures and what ECDD measures are required.
  • Technological Integration: Utilize advanced technology such as automated sanction screening and transaction monitoring, to flag suspicious activity, and conduct more thorough and continuaous due diligence.
  • Documentation and Record-Keeping: Hold and maintain detailed records of all due diligence processes, transactions, and enhanced measures taken. This is crucial for regulatory reporting and audits.
  • Regular Reviews and Updates: Chapter 8 requires ongoing monitoring and re-assessment of business relationships inclusive of the verification subjects, so Guernsey financial institutions should regularly review their procedures, especially when regulatory changes occur or there are changes to the business plan and sphere of operation.

Conclusion: Staying Ahead of Compliance Obligations

Complying with Chapter 8 of the GFSC Handbook requires a proactive and well-structured approach by the Directors and relevant senior employees in managing high-risk scenarios. Guernsey financial institutions must be vigilant in applying enhanced customer due diligence, monitoring, and reporting, ensuring that all procedures meet the stringent regulatory requirements of the GFSC. By adopting best practices, leveraging technology, and promoting a culture of compliance, Guernsey financial institutions can better manage higher risks and maintain a strong relationship with regulators and stake holders in the Guernsey regualtory framework.

Staying compliant isn’t just about ticking boxes—it’s about detailing the approach to risk, applying the measures and documenting their effectiveness in protecting the local and international financial system from abuse in order to safeguard the reputation of your business and third-parties that provide services to you and your clients.

By carefully and proactively integrating the ECDD measures detailed in Chapter 8 of the Handbook, Guernsey financial institutions can navigate the financial crime risks posed successfully, maintain compliance with GFSC rules and regulations, reporting requirements, and better protect themselves from investigations, enforcement actions and financial crime while providing products and services to those business relationships and persons who are high risk.

Stay ahead of the curve—ensure your compliance regarding Enhanced Due Diligence and high risk business relationships are up to date!

Join us at Technical Specialist Partners in fostering a culture of integrity and accountability by contacting us at hello@technicalspecialistpartners.com to discuss your requirements and the services that we can provide. Together we can build a compliant and ethical work place.

The Application of Enhanced Measures for Specific Business Relationships and Occasional Transactions (GFSC Handbook, Chapter 8, Paragraphs 102-125)

Sara Barclay AML/CTF, Compliance, Corporate Governance, Due diligence, Guernsey , , , , , , ,

For Guernsey financial services, enhanced measures are critical for mitigating risks related to money laundering, terrorist financing, and proliferation financing (Financial Crime). The Guernsey Financial Services Commission (GFSC) outlines when and how enhanced measures should be applied, particularly in certain high-risk and higher risk business relationships and occasional transactions. Chapter 8 of the GFSC Handbook, specifically paragraphs 102–125, provides detailed guidance for Guernsey financial institutions on applying these enhanced measures to manage higher-risk and high-risk scenarios.

This post focuses on the application of enhanced measures as they relate to:

  • Non-resident customers
  • Private banking services
  • Personal asset holding vehicles
  • Customers with nominee shareholders

Non-Resident Customers (Paragraphs 106–110)

A Guernsey Financial institution when dealing with a non-resident customer must look at the reasons for that customer using the Bailiwick, especially where the same services are offered in their own country or territory, as these customers, who wish to establish a business relationship or conduct occasional transactions, may present a heightened risk of Financial Crime. For non-resident customers, Guernsey financial institutions must adopt enhanced measures to mitigate these risks.

Enhanced Measures for Non-Resident Customers:

  • Understand the Customer’s Rationale: Firms should investigate why the customer, who is not resident in the Bailiwick, is seeking to establish a business relationship or carry out a transaction. Simply stating “tax planning” or “asset protection” is insufficient; firms must delve into the legitimate underlying reasons for the business relationship. This must also be verified by obtaining such documents or precise of such documents, explantions, from appropriate practicioners or external sources.
  • Leverage External Data: Firms should use external data sources to gather information about the customer’s country of residence and potential risks. This helps build a comprehensive risk profile, similar to what would be available for a resident customer. This can be from the Appendix I & H of the handbook and those identified risks must be mitigated.
  • Verify Source of Funds: Establishing the source of funds (SoF) that will be used or generated in the business relationship is critical. The firm must consider whether the origin of the funds aligns with its understanding of the customer’s risk profile and the rationale for the business relationship. This is especially important when funds come from countries with capital controls, high bribery and corruption risks or financial instability.

Private Banking Services (Paragraphs 111–115)

Private banking services, which involve high-value, non-standardized, and tailored services to high-net-worth individuals.  This is not just in respect of banking activities but could also involve the provision of services by an Investment licensee or a fiduciary Licensee except where the service is part of its duties as a trustee. The significant risks due to the complexity and cross-border nature of the transactions involved. Enhanced measures must be applied to mitigate these risks.

Enhanced Measures for Private Banking Services:

  • More frequent Review of Business Relationship: The firm should conduct more frequent reviews of the business relationship, ensuring that customer due diligence (CDD) measures are still appropriate. Transaction monitoring and thresholds should be adjusted as necessary to provide greater oversight.
  • Understand Source of Wealth and Source of Funds: Special attention must be given to understanding the source of the customer’s SoF and Source of Wealth (SoW) in line with the requirements of the GFSC Handbook and the GFSC Thematic. This is particularly important in private banking relationships where the risk of illicit activities is higher due to the large sums of money involved.
  • Tailored Monitoring: Given the bespoke nature of private banking services, enhanced monitoring and controls should be tailored to each customer’s specific circumstances and the nature of the use of the product and service. The firm should carefully scrutinize large or unusual transactions to ensure they meet the known and evidenced rationale.

Personal Asset Holding Vehicles (Paragraphs 116–121)

Personal asset holding vehicles (legal persons and legal arrangements), often used for holding investments, can obscure the true identity of the beneficial owner or the source of wealth and funds. Therefore, the use of such vehicles presents a higher risk of Financial Crime.

Enhanced Measures for Personal Asset Holding Vehicles:

  • Assess Rationale for the Vehicle: Firms must determine why the customer is using a personal asset holding vehicle rather than holding assets in their own name. The firm must ensure that the use of such a vehicle has a legitimate and genuine purpose. This must also be verified by obtaining such documents or precise of such documents, explantions, from appropriate practicioners or external sources.
  • Understand Source of Wealth and Source of Funds: Special attention must be given to understanding the source of the customer’s SoF and SoW in line with the requirements of the GFSC Handbook and the GFSC Thematic. This includes investigating the activities that generated the SoF and SoW, and any potential risks associated with transferring those funds to and from the Bailiwick.

Customers with Nominee Shareholders (Paragraphs 122–125)

The use of nominee shareholders can complicate the process of determining the true beneficial ownership of a legal person or arrangement, making it easier for customers to obscure their identity. Enhanced measures are necessary to mitigate the risks associated with such structures.

Enhanced Measures for Nominee Shareholders:

  • Determine the Purpose of Nominee Shareholders: Firms must investigate why a customer or a legal person that owns the customer is using nominee shareholders. The rationale should be legitimate and not solely for obscuring beneficial ownership and must be verified and documented.
  • Leverage External Data: To assess the risk posed by nominee shareholders, firms should utilize external data sources to check the fitness and propriety of the nominee shareholder, as well as the particular risks associated with the nominee’s jurisdiction.
  • CDD for Intermediaries: Where nominee shareholders are used in intermediary relationships, firms must follow the specific CDD measures laid out in the GFSC Handbook at Chapter 9, ensuring that appropriate controls are in place to mitigate the risk.

Conclusion

The application of enhanced measures is essential when dealing with higher-risk and  high-risk customers or transactions. Whether the customer is non-resident, utilizing private banking services, operating through a personal asset holding vehicle, or involving nominee shareholders, firms must conduct thorough due diligence to mitigate the potential higher risk of financial crime. By following the guidance outlined in Chapter 8 of the GFSC Handbook, having appropriate policies, procedures and controls,  firms can ensure they remain compliant, demonstrate good corporate governance, while protecting the integrity of their operations.

By carefully applying these enhanced measures, Guernsey financial institutions can better protect themselves from the risks associated with Financial Crime, while meeting the rigorous standards set by the GFSC.

Stay ahead of the curve—ensure your compliance is up to date! Join us at Technical Specialist Partners in fostering a culture of integrity and accountability by contacting us at hello@technicalspecialistpartners.com to discuss your requirements and the services that we can provide. Together we can build a compliant and ethical work place. https://technicalspecialistpartners.com/home/

GFSC Handbook Requirements for Source of Wealth and Source of Funds

Sara Barclay AML/CTF, Compliance, Compliance Monitoring, Corporate Governance, Due diligence, Guernsey , , , , , , , , ,

The Guernsey Financial Services Handbook for Countering Financial Crime, Countering Terrorist Financing and Countering Proliferation Financing (GFSC Handbook or Handbook)  sets forth comprehensive guidelines on how Guernsey financial institutions should address Source of wealth (SoW) and (SoF) as part of their customer due diligence (CDD) and enhanced due diligence (EDD) processes. These requirements are particularly stringent when dealing with high or higher-risk customers or complex transactions. Some of the key aspects include:

Collection of Information

Guernsey financial institutions must collect sufficient information about the client’s SoW and SoF  to properly assess the legitimacy of their customers financial activities and rationale for the use of the Bailiwick. As detailed in the GFSC Handbook this may involve:

  • Verifying employment income through pay slips, tax returns, or employer references confirming salary.
  • Confirming inheritance via probate or legal documentation.
  • Assessing investment income by reviewing dividend statements, property sales records, or portfolio valuations.

The Handbook stresses that for high-risk customers, Guernsey financial institutions must obtain more granular detail to fully understand the journey to and/or origin of wealth and funds of the person and/or business relationship.

Verification of Information

It is not enough to simply collect SoW and SoF information—institutions must also verify and document it! Verification can include independent checks through public databases, third-party documentation, and government records and the generation of a SoW and SoF memo or document comprising these information sources. 

The GFSC Handbook and the Thematic Review provide a clear roadmap for Guernsey Financial institutions to manage risks related to SoW and SoF effectively. By following these guidelines, institutions can enhance their Countering Financial Crime, Countering Terrorist Financing and Countering Proliferation Financing (CFC,CTF,CPF) frameworks, protect their reputations, their third party suppliers and ensure good corporate governance while meeting domestic and internal regulatory obligations and requirements.

For higher and high-risk business relationships and scenarios, additional layers of verification are required, often involving more detailed documentation, such as bank statements, legal contracts, or public filings.

Ongoing Monitoring

SoW and SoF checks are not a one-off exercise. Institutions are required to monitor the source of wealth and funds on an ongoing basis, particularly when dealing with politically exposed persons (PEPs), high-net-worth individuals, or clients from jurisdictions with weaker CFC,CTF,CPF frameworks. If any red flags arise, institutions must investigate further and escalate the matter internally to their Money Laundering Reporting Officer (MLRO) who may externalise a report to the relevant authorities if necessary.

Record Keeping

Maintaining thorough records of all SoW and SoF inquiries, documentation, and verification processes is mandatory. These records are essential for audit trails and for satisfying GFSC’s requirements during compliance reviews or in the event of an on-site regulatory visit, thematic reviews, request for information from a regulatory or law enforcement authority and when making disclosures to the Guernsey FIU.

Insights from the Thematic Review: A Focus on Private Wealth Management

The Thematic Review conducted by the GFSC on Source of Funds and Source of Wealth in the private wealth management sector highlights several critical findings and areas for improvement within the Guernsey financial industry. This review provides deeper insight into how Guernsey financial institutions can bolster their compliance with SoW and SoF requirements.

Key Findings:

  • Insufficient Depth in SoW/SoF Information: The Thematic Review found that many institutions were not gathering enough detailed information on SoW and SoF, particularly for high-risk clients. A common issue was reliance on customer declarations without independent verification. The GFSC expects institutions to dig deeper, especially when there are signs of complexity or higher risk within a business relationship or transaction.
  • Lack of Independent Verification: While most institutions collected some form of SoW and SoF data, verification was often lacking. The GFSC stresses that for high-net-worth individuals, high-risk clients or clients with complex wealth structures, institutions must take extra steps to verify the authenticity of their SoW and SoF.
  • Inconsistent Risk-Based Approach: Many institutions had policies in place but did not apply them appropriately or consistently, particularly in identifying and managing higher and high-risk scenarios. The GFSC noted that this inconsistency poses a significant risk to effective of a Guernsey financial institutions CFC, CTF, CPF controls and the wider compliance with the Handbook’s corporate governance requirements.

Best Practices for Strengthening SoW and SoF Compliance

To better align with the GFSC’s expectations and the findings of the Thematic Review, Guernsey financial institutions should adopt the following best practices:

  •  Implement a Robust Risk-Based Approach

A risk-based approach to SoW and SoF inquiries ensures that the level of investigation and verification matches the customer’s risk profile. High-risk clients, such as PEPs, those in or conducting transactions with high risk jurisdictions,  or those involved in complex financial arrangements, should undergo enhanced due diligence (EDD), which includes more thorough SoW and SoF checks.

  •  Increase Depth of Information Collection

Institutions must ensure that they gather comprehensive information about the client’s SoW and SoF. This includes not only basic facts but also deeper context, such as the history of wealth accumulation and the specific details behind large transactions. 

  •  Utilize Independent Sources for Verification

To avoid over-reliance on customer-provided information, institutions should use independent and reliable sources to verify SoW and SoF. This may involve using public records, financial databases, or independent experts.

  •  Enhance Staff Training and Awareness

Staff at all levels should be trained to understand the importance of SoW and SoF checks, and how to conduct these inquiries effectively. Training should also cover the red flags to watch for potentially risky transactions or clients that may trigger a suspicion to the MLRO.

  •  Ongoing Monitoring and Review

Regular reviews and continuous monitoring of client profiles and their transactions are vital. Institutions must be prepared to escalate any concerns about SoW or SoF to their MLRO , ensuring that these concerns are investigated and, if necessary, reported to the Guernsey FIU.

Conclusion: Ensuring Compliance and Mitigating Risk

Ensuring compliance with SoW and SoF requirements not only helps in meeting regulatory expectations but also plays a key role in maintaining the integrity of the Bailiwick and the global financial system.

For Guernsey financial institutions and those international firms wishing to set up in the Bailiwick, the message is clear: robust, well-documented, and verified SoW and SoF processes are critical for reducing exposure to financial crime risks and ensuring long-term success in the Guernsey Financial Sector for your business.

You can access the GFSC’s full Thematic Review on Source of Funds and Source of Wealth in the Private Wealth Management sector here .

Stay ahead of the curve—ensure your compliance is up to date! Join us at Technical Specialist Partners in fostering a culture of integrity and accountability by contacting us at hello@technicalspecialistpartners.com  to discuss your requirements and the services that we can provide. Together we can build a compliant and ethical work place. website link