This guide was last updated on May 16, 2022.

This research guide, or “source tool,” is a compilation of key AML laws, rules, and guidance applicable to “mutual funds” (i.e., open end investment companies as defined in Section 5(a)(1) of the Investment Company Act of 1940). Several statutory and regulatory provisions impose AML obligations on mutual funds. A wealth of related AML guidance materials is also available. To aid research efforts into AML requirements and to assist mutual funds with AML compliance, this source tool organizes key AML compliance materials and provides related source information.

When using this research tool, you should keep the following in mind:

First, mutual funds are responsible for complying with all AML requirements to which they are subject. Although this research guide summarizes some of the key AML obligations that are applicable to mutual funds, it is not comprehensive. You should not rely on the summary information provided but should refer to the relevant statutes, rules, orders, and interpretations.

Second, AML rules, regulations, and orders are subject to change and may change quickly. Statutes that include AML-related provisions may be amended from time to time, and new statutes may be enacted which include AML-related provisions. The Anti-Money Laundering Act of 2020 (AMLA) tasked the Secretary of the Treasury, in consultation with specified regulators and law enforcement, with undertaking a review of BSA regulations and guidance and directed the Secretary to make appropriate changes to improve the efficiency of the regulations and guidance.[1] Other provisions of AMLA and the Corporate Transparency Act require the Secretary to revise the AML program rules and beneficial ownership rule.[2]

Finally, you will find a list of telephone numbers and useful websites at the end of this guide. If you have questions concerning the meaning, application, or status of a particular law, rule, order, or interpretation, you should consult with an attorney experienced in the areas covered by this guide.

This source tool represents the views of the staff of the Division of Examinations. It is not a rule, regulation, or statement of the Securities and Exchange Commission (“Commission”). The Commission has neither approved nor disapproved its content.  This source tool, like all staff guidance, has no legal force or effect: it does not alter or amend applicable law, and it creates no new or additional obligations for any person.

The Division of Examinations regularly publishes Risk Alerts on its webpage, www.sec.gov/exams, some of which deal with AML topics, and also maintains a source tool regarding the AML obligations of broker-dealers.

TABLE OF CONTENTS

The following topics are addressed in this guide:

1. The Bank Secrecy Act
2. The USA PATRIOT Act
3. AML Programs
4. Customer Identification Programs
5. Beneficial Ownership
6. Due Diligence Programs for Correspondent Accounts
7. Due Diligence Programs for Private Banking Accounts
8. Suspicious Activity Monitoring and Reporting
9. Other Reporting and Recordkeeping Requirements
10. Information Sharing With Law Enforcement and Financial Institutions
11. Special Measures Imposed by the Financial Crimes Enforcement Network
12. Office of Foreign Asset Control (OFAC) Sanctions Programs and Other Lists
13. Selected Additional AML Resources
14. Useful Contact Information

1. The Bank Secrecy Act

The Bank Secrecy Act (BSA), initially adopted in 1970, established the basic framework for AML obligations imposed on financial institutions. Among other things, it authorizes the Secretary of the Treasury to issue regulations requiring financial institutions to keep records and file reports on financial transactions that may be useful in investigating and prosecuting money laundering and other financial crimes. Treasury has determined that mutual funds should be considered “financial institutions” for certain purposes and thus certain BSA rules are applicable to mutual funds. The Financial Crimes Enforcement Network (FinCEN), a bureau within Treasury, has regulatory responsibilities for administering the BSA.

Source Documents:

• Bank Secrecy Act: The Bank Secrecy Act is codified at 31 U.S.C. §§ 5311 et seq.
• Bank Secrecy Act Rules: The rules adopted by Treasury implementing the BSA are located at 31 C.F.R. Chapter X. 31 C.F.R. Chapter X is comprised of a “General Provisions Part” and separate financial-institution-specific parts for those financial institutions subject to FinCEN regulations. The General Provisions Part (Part 1010) contains regulatory requirements that apply to more than one type of financial institution, and in some cases, individuals. The financial-institution-specific parts contain regulatory requirements specific to a particular type of financial institution. Part 1024 pertains to mutual funds (31 C.F.R. §§ 1024.100 et seq.).

2. The USA PATRIOT Act

The USA PATRIOT Act was enacted by Congress in 2001 in response to the terrorist attacks on September 11, 2001. Among other things, the USA PATRIOT Act amended and strengthened the BSA. One provision of the Act mandated a study that ultimately contained recommendations for extending certain AML obligations to open-end investment companies, or mutual funds. Currently, as a result of the USA PATRIOT Act and its implementing rules, there are a number of BSA/AML obligations that are applicable to “mutual funds,” including:

• AML compliance programs;
• customer identification programs;
• obtaining beneficial ownership information and customer due diligence;
• monitoring, detecting, and filing reports of suspicious activity;
• due diligence for foreign correspondent accounts, including prohibitions on transactions with foreign shell banks;
• due diligence for private banking accounts;
• mandatory information-sharing (in response to requests by federal law enforcement);
• compliance with “special measures” imposed by FinCEN to address particular AML concerns; and
• other reporting and recordkeeping requirements, including requirements to file currency transaction reports and reports in connection with foreign bank and financial accounts.

Source Documents:

• USA PATRIOT Act: Title 3 of the Uniting and Strengthening America by Providing Appropriate Tools Required to Intercept and Obstruct Terrorism Act of 2001, Pub. L. No. 107-56, 115 Stat. 296 (2001).
• Report to Congress under the USA Patriot Act containing recommendations for applying anti-money laundering controls to investment companies, Joint Report of the SEC, Treasury, and the Board of Governors of the Federal Reserve System (Dec. 31, 2002).

3. AML Programs

Section 352 of the USA PATRIOT Act amended the BSA to require financial institutions to implement AML programs. Toward that end, FinCEN has implemented a rule that requires mutual funds to establish AML programs. Because mutual funds operate through a variety of different business models, one generic AML program is not possible; rather, each mutual fund must develop a program based upon its own business structure. As a result, each mutual fund complex should identify its vulnerabilities, understand applicable BSA requirements, identify the risk factors relating to these requirements, design the procedures and controls that will be required to reasonably assure compliance with these requirements, and periodically assess the effectiveness of the procedures and controls.

A mutual fund’s AML compliance program must be in writing, must be approved by the mutual fund’s board of directors, and must include at a minimum:

• policies, procedures, and internal controls reasonably designed to prevent the mutual fund from being used for money laundering or the financing of terrorist activities and to achieve compliance with the BSA and its implementing rules;
• the designation of a person or persons responsible for implementing and monitoring the operations and internal controls of the AML program (AML Officer);
• ongoing AML training for appropriate persons;
• an independent test of the mutual fund’s AML program conducted by the mutual fund’s personnel or by a qualified outside party. For the testing to be independent, it must not be done by the same employees involved in the operation or oversight of the AML program; and
• risk-based procedures for conducting ongoing customer due diligence. These should include, but not be limited to, procedures to: (1) identify and verify the identity of customers, (2) understand the nature and purpose of customer relationships so customer risk profiles can be developed, and (3) conduct ongoing monitoring to identify and report suspicious transactions as well as to maintain and update customer information, including beneficial ownership information.

Because mutual funds do not have direct employees, they may delegate certain aspects of their AML programs to their service providers; however, mutual funds remain responsible for assuring compliance with the rule and overseeing the performance of any delegated responsibilities. In addition, if a mutual fund delegates responsibility for its AML program to a service provider, the mutual fund must obtain a written consent that will ensure the ability of federal regulators to obtain information and records relating to the AML program and to inspect the third party for purposes of the program.

Rule 38a-1 under the Investment Company Act of 1940 requires investment companies, including mutual funds to establish and implement compliance programs that include provisions for compliance with the BSA and rules adopted thereunder. Under Rule 38a-1, fund compliance programs include oversight over the compliance efforts of service providers through which the fund conducts its business (e.g., the fund’s investment adviser, principal underwriter, administrator and transfer agent of the fund).

Source Documents:

• Mutual Fund AML Program Rule: 31 C.F.R. § 1024.210.
• Adopting Release: 67 Fed. Reg. 21117 (Apr. 29, 2002) (interim final rule).
• SEC Investment Company Compliance Program Rule: 17 C.F.R. § 270.38a-1.
• Adopting Release: 68 Fed. Reg. 74714 (Dec. 24, 2003).

4. Customer Identification Programs

Section 326 of the USA PATRIOT Act amended the BSA to require financial institutions to establish written customer identification programs (CIP). A joint SEC/FinCEN implementing rule imposes CIP obligations on mutual funds. The implementing rule requires mutual funds to establish, document, and maintain a written CIP that includes procedures for:

• obtaining customer identifying information from each customer prior to account opening;
• verifying the identity of each customer, to the extent reasonable and practicable, within a reasonable time before or after account opening;
• making and maintaining a record of all information obtained relating to customer identity and verification;
• determining within a reasonable time after account opening or earlier whether a customer appears on any list of known or suspected terrorist organizations designated by Treasury;[3] and
• providing each customer with adequate notice, prior to opening an account, that information is being requested to verify the customer’s identity.

The CIP rule provides that, under certain defined circumstances, mutual funds may rely on the performance of another financial institution to fulfill some or all of the requirements of the mutual fund’s CIP. For a mutual fund to rely on another financial institution, the reliance must be reasonable. The financial institution being relied on by the mutual fund must be subject to an AML program rule and be regulated by a federal functional regulator. The mutual fund and the other financial institution must enter into a contract, and the other financial institution must certify annually to the mutual fund that it has implemented an AML program. The other financial institution must also certify to the mutual fund that the financial institution will perform the specified requirements of the mutual fund’s CIP.[4]

Source Documents:

• Customer Identification Program Rule: 31 C.F.R. § 1024.220 (see also 17 C.F.R. 270.0-11).
• Joint FinCEN/SEC Final Rule Release: 68 Fed. Reg. 25131 (May 9, 2003).
• Treasury and SEC Staff Views: Staff Q&A Regarding the Mutual Fund Customer Identification Program Rule (Aug. 11, 2003).
• Other Related SEC Staff Views: No-Action Letters to the Securities Industry and Financial Markets Association (SIFMA) (formerly the Securities Industry Association) (Feb. 12, 2004; Feb. 10, 2005; July 11, 2006; Jan. 10, 2008; Jan. 11, 2010; Jan. 11, 2011; Jan. 9, 2015; Dec. 12, 2016, Dec. 12, 2018, Dec. 9, 2020, and Dec. 9, 2022). (The letters provide staff no-action statements regarding broker-dealers relying on investment advisers to conduct the required elements of the CIP rule. Among other things, the 2015 letter addresses the reasonableness of a broker-dealer’s reliance on an investment adviser and the investment adviser’s prompt reporting to the broker-dealer of potentially suspicious or unusual activity detected as part of the CIP being performed on the broker-dealer’s behalf.)

5. Beneficial Ownership

Covered financial institutions are required to establish and maintain written procedures that are reasonably designed to identify and verify beneficial owners of legal entity customers and to include such procedures in their anti-money laundering compliance program required under 31 U.S.C. 5318(h) and its implementing regulations.

Legal entity customer means an account holder that is a corporation, limited liability company, or other entity that is created by the filing of a public document with a Secretary of State or similar office, a general partnership, and any similar entity formed under the laws of a foreign jurisdiction.

Beneficial owner means each of the following:

1. Each individual, if any, who, directly or indirectly, through any contract, arrangement, understanding, relationship or otherwise, owns 25 percent or more of the equity interests of a legal entity customer; and
2. A single individual with significant responsibility to control, manage, or direct a legal entity customer, including:
   1. An executive officer or senior manager (e.g., a chief executive officer, chief financial officer, chief operating officer, managing member, general partner, president, vice president or treasurer); or
   2. Any other individual who regularly performs similar functions.
3. If a trust owns directly or indirectly, through any contract, arrangement, understanding, relationship or otherwise, 25 percent or more of the equity interests of a legal entity customer, the beneficial owner shall mean the trustee. If an entity that is excluded from the definition of “legal entity customer” owns directly or indirectly, through any contract, arrangement, understanding, relationship or otherwise, 25 percent or more of the equity interests of a legal entity customer, no individual need be identified with respect to that entity’s interests.

Source Documents:

• Beneficial Ownership Requirements for Legal Entity Customers: 31 C.F.R. § 1010.230.
• Adopting Release: 81 Fed. Reg. 29398 (May 11, 2016).
• Joint Guidance Issued by FinCEN, SEC, and other federal regulators: Guidance on Obtaining and Retaining Beneficial Ownership Information (Mar. 2010).
• FinCEN Guidance:
  • FAQs Regarding Customer Due Diligence Requirements for Financial Institutions (Aug. 3, 2020).
  • FAQs Regarding Customer Due Diligence Requirements for Financial Institutions (Apr. 3, 2018).
  • FAQs Regarding Customer Due Diligence Requirements for Financial Institutions (July 19, 2016).

6. Due Diligence Programs for Correspondent Accounts and Enhanced Due Diligence for Certain Foreign Bank Correspondent Accounts

Section 312 of the USA PATRIOT Act amended the BSA to, among other things, impose special due diligence requirements on financial institutions that establish, maintain, administer, or manage a private banking account or a “correspondent account” in the United States for a “non-United States person.”

A correspondent account includes any account established for a foreign financial institution (including a foreign bank) to receive deposits from, or to make payments or other disbursements on behalf of, the foreign financial institution, or to handle other financial transactions related to the foreign financial institution.

FinCEN’s regulations implementing the special due diligence requirements provide, among other things, that a “covered financial institution” (which includes a mutual fund) is required to establish a risk-based due diligence program reasonably designed to enable the mutual fund to detect and report money laundering conducted through, or involving, a foreign correspondent account established, maintained, administered, or managed by the covered financial institution in the United States for a foreign financial institution.

In the case of a correspondent account established, maintained, administered, or managed in the United States for certain foreign banks, the due diligence program must include “enhanced” due diligence procedures in accordance with certain requirements specified in FinCEN’s regulations.

Source Documents:

• Correspondent Account Due Diligence Rule: 31 C.F.R. § 1010.610. See also 31 C.F.R. § 1010.605 (definitions).
• Adopting Release: 71 Fed. Reg. 496 (Jan. 4, 2006).
• Extension of Applicability Date: 71 Fed. Reg. 16040 (Mar. 30, 2006).
• Enhanced Due Diligence Adopting Release: 72 Fed. Reg. 44768 (Aug. 9, 2007).
• Other Rulemaking Documents:
  • Enhanced Due Diligence Re-Proposed Rule: 71 Fed. Reg. 516 (Jan. 4, 2006).
  • Proposed Rule: 67 Fed. Reg. 37736 (May 30, 2002).
  • Interim Final Rule: 67 Fed. Reg. 48348 (July 23, 2002).
• SEC Staff Views: Staff Bulletin: Risks Associated with Omnibus Accounts Transacting in Low-Priced Securities (Nov. 12, 2020)
• FinCEN Guidance:
  • Fact Sheet: Section 312 of the USA PATRIOT Act (Dec. 2005).
  • FIN-2006-G008: Application of the Regulations Requiring Special Due Diligence Programs for Certain Foreign Accounts to NSCC Fund/SERV Accounts (May 3, 2006).

7. Due Diligence Programs for Private Banking Accounts

Section 312 of the USA PATRIOT Act amended the BSA to, among other things, impose special due diligence requirements on financial institutions that establish, maintain, administer, or manage a private banking account or a “correspondent account” in the United States for a “non-United States person.” FinCEN regulations provide that a “covered financial institution” is required to maintain a due diligence program that includes policies, procedures, and controls that are reasonably designed to detect and report any known or suspected money laundering or suspicious activity conducted through or involving a “private banking account” that is established, maintained, administered, or managed in the U.S. by the financial institution. In addition, the regulations set forth certain minimum requirements for the required due diligence program with respect to private banking accounts and require enhanced scrutiny to any such accounts where the nominal or beneficial owner is a “senior foreign political figure.”

The regulations define a “private banking account” as an account that: (a) requires a minimum deposit of assets of at least $1,000,000; (b) is established or maintained on behalf of one or more non-U.S. persons who are direct or beneficial owners of the account; and (c) has an employee assigned to the account who is a liaison between the financial institution and the non-U.S. person.

The definition of “senior foreign political figure” extends to any member of the political figure’s immediate family, and any person widely and publicly known to be a close associate of the foreign political figure as well as any entities formed for the benefit of such persons (such persons are commonly referred to as PEPs, or Politically Exposed Persons).

The definition of “beneficial owner” is limited to individuals with control over the account (as opposed to passive investors with only financial interests). Although the definition of a “covered financial institution” under FinCEN’s regulations includes mutual funds, FinCEN acknowledged when it adopted its rule that, “as a general matter,” accounts held by public corporations, mutual funds, or other collective investment vehicles would not fall within the definition of “private banking account.” In addition, in December 2005, FinCEN stated that “mutual funds do not currently offer private banking accounts.”

Source Documents:

• Private Banking Due Diligence Rule: 31 C.F.R. § 1010.620. See also 31 C.F.R. § 1010.605 (definitions).
• Adopting Release: 71 Fed. Reg. 496 (Jan. 4, 2006).
• Other Rulemaking Documents:
  • Proposed Rule: 67 Fed. Reg. 37736 (May 30, 2002).
  • Interim Final Rule: 67 Fed. Reg. 48348 (July 23, 2002).
  • Extension of Applicability Date: 71 Fed. Reg. 16040 (Mar. 30, 2006).
• FinCEN Guidance:
  • Fact Sheet: Section 312 of the USA PATRIOT Act (Dec. 2005).
  • FIN-2006-G009: Application of the Regulations Requiring Special Due Diligence Programs for Certain Foreign Accounts to the Securities and Futures Industries (May 10, 2006).

8. Suspicious Activity Monitoring and Reporting

Section 356 of the USA PATRIOT Act amended the BSA to require financial institutions to monitor for, and report, suspicious activity (so-called SAR reporting).

Under FinCEN’s SAR rule (31 C.F.R. § 1024.320), a mutual fund is required to file a suspicious activity report if: (i) a transaction is conducted or attempted to be conducted by, at, or through a mutual fund; (ii) the transaction involves or aggregates funds or other assets of at least $5,000; and (iii) the mutual fund knows, suspects, or has reason to suspect that the transaction:

1. involves funds derived from illegal activity or is intended or conducted to hide or disguise funds or assets derived from illegal activity as part of a plan to violate or evade any federal law or regulation;
2. is designed to evade any requirements set forth in regulations implementing the BSA;
3. has no business purpose or apparent lawful purpose or is not the sort in which the particular customer would normally be expected to engage, and the broker-dealer knows of no reasonable explanation for the transaction after examining the available facts, including the background and possible purpose of the transaction; or
4. involves use of the broker-dealer to facilitate criminal activity. 

Mutual funds must report the suspicious activity using FinCEN SAR Form 111, which is confidential. FinCEN maintains instructions for filing the form, which detail, among other things, the minimum information requirements for the form.

Mutual funds must maintain a copy of any SAR filed and supporting documentation for a period of five years from the date of filing the SAR.

The rule recognizes that the activity of a particular mutual fund shareholder may involve more than one mutual fund in a mutual fund complex, so the rule permits all the mutual funds involved in a particular suspicious transaction to file a single joint report. As with other AML requirements applicable to mutual funds, the adopting release acknowledges that a mutual fund may contract with a service provider to perform the reporting obligation as the mutual fund’s agent, and thus the service provider will be aware of the circumstances surrounding the filing of the SAR. Nevertheless, the mutual fund remains responsible for assuring compliance with the rule and must maintain an active working relationship with the service provider’s compliance personnel to oversee the performance of its SAR reporting obligations.

In situations that require immediate attention, such as terrorist financing or ongoing money laundering schemes, mutual funds should immediately notify law enforcement in addition to filing a SAR. In addition, if a mutual fund wishes to immediately report suspicious activities, in addition to filing a SAR, they may call FinCEN’s Hotline at 1-866-556-3974.[5]

Source Documents:

• Fund SAR Rule: 31 C.F.R. § 1024.320.
• Adopting Release: 71 Fed. Reg. 26213 (May 4, 2006).
  • Confidentiality of Suspicious Activity Reports, 75 Fed. Reg. 75593 (Dec. 3, 2010) (amending FinCEN’s regulations regarding the confidentiality of SAR reports).
• BSA E-Filing System and BSA Forms and Filing Requirements.
• FinCEN Guidance:
  • Interpretative Release No. 2004-02 — Unitary Filing of Suspicious Activity and Blocking Reports, 69 Fed. Reg. 76847 (Dec. 23, 2004).
    • FIN-2006-G013: Frequently Asked Questions: Suspicious Activity Reporting Requirements for Mutual Funds (Oct. 4, 2006).
  • FIN-2006-G014: Potential Money Laundering Risks Related to Shell Companies (Nov. 9, 2006).
  • FIN-2007-G003: Suspicious Activity Report Supporting Documentation (June 13, 2007).
  • FIN-2007-G002: Requests by Law Enforcement for Financial Institutions to Maintain Accounts (June 13, 2007).
  • Suggestions for Addressing Common Errors Noted in Suspicious Activity Reporting (Oct. 10, 2007).
  • Guidance to Financial Institutions on Filing Suspicious Activity Reports regarding the Proceeds of Foreign Corruption (Apr. 17, 2008).
  • Sharing Suspicious Activity Reports by Securities Broker-Dealers, Mutual Funds, Futures Commission Merchants, and Introducing Brokers in Commodities with Certain U.S. Affiliates (Nov. 23, 2010).
  • Sharing Suspicious Activity Reports by Depository Institutions with Certain U.S. Affiliates (Nov. 23, 2010).
  • FIN-2016-A005: Advisory to Financial Institutions on Cyber-Events and Cyber-Enabled Crime.
  • SAR Activity Reviews: These are available on FinCEN’s website at: https://www.fincen.gov/sar-activity-review-trends-tips-issues.[6]

9. Other Reports and Recordkeeping Requirements

Mutual funds have other reporting obligations imposed by the BSA. They include:

Currency Transaction Reports (CTRs): Mutual funds are obligated to file with FinCEN CTRs (Form 112, formerly IRS Form 4789) for certain currency transactions involving the transfer of more than $10,000 in currency. ’The CTR filing obligation covers incoming, outgoing, and exchange transactions in currency. Under the CTR rule, a financial institution must treat multiple transactions as a single transaction if the financial institution has knowledge that the transactions are conducted by or on behalf of the same person and result in either cash in or cash out totaling more than $10,000 during any one business day.

Reports of Foreign Bank and Financial Accounts (FBARs): Mutual funds may be required to file FBARs if the mutual fund has a financial interest in, or signature authority over, any bank account, securities account, or “other financial account” (as defined in 31 C.F.R. § 1010.350(c)(3)) in a foreign country and the aggregate value of these accounts exceeds $10,000. FBARs are filed using Form 114.

The Recordkeeping and Travel Rule and Related Recordkeeping Requirements: Mutual funds are subject to requirements relating to the creation and retention of records involving the transmittal of funds (Recordkeeping and Travel Rule). The rule applies to transmittals of funds in amounts that equal or exceed $3,000, and requires the transmittor’s financial institution to obtain and retain name, address, and other information about the transmittor and the transaction. The Recordkeeping and Travel Rule requires the recipient’s financial institution and, in certain instances, the transmittor’s financial institution to obtain or retain identifying information about the recipient. The rule also requires that certain information obtained or retained by the transmittor’s financial institution “travel” with the transmittal order through the payment chain.

FinCEN’s amendment to the definition of “financial institution” also resulted in mutual funds being required to create and retain records for certain extensions of credit and cross-border transfers of currency, monetary instruments, checks, investment securities, and credit. These requirements apply to transactions in amounts exceeding $10,000.

These rules provide for exceptions for certain transactions entered into by the mutual fund, including transactions with banks, broker-dealers and federal, state, and local governments.

Source Documents:

• CTR: 31 C.F.R. §§ 1010.311, 1010.306, 1010.312.
• FBAR: 31 C.F.R. §§ 1010.350, 1010.306, 1010.420.
• Adopting Release: 76 Fed. Reg. 10234 (Feb. 24, 2011).
• CMIR: 31 C.F.R. §§ 1010.340, 1010.306.
• BSA E-Filing System and BSA Forms and Filing Requirements.
• FinCEN Guidance:
  • FinCEN Ruling 2003-1: Regarding the Aggregation of Currency Transactions Pursuant to 31 CFR Section 103.22 (Oct. 3, 2002).
  • Guidance on Interpreting Financial Institution Policies in Relation to Recordkeeping Requirements under 31 C.F.R. 103.29 (Nov. 2002).
  • FinCEN Ruling 2005-6: Suspicious Activity Reporting (Structuring) (July 15, 2005).
• Recordkeeping and Travel Rule: 31 C.F.R. § 1010.410.
  • Adopting Release: 75 Fed. Reg. 19241 (Apr. 14, 2010).
  • Proposing Release: 74 Fed. Reg. 26996 (June 5, 2009).
• FinCEN Guidance:
  • FinCEN Advisory: Funds Transfers: Questions & Answers (June 1996).[7]
  • FinCEN Advisory: Funds “Travel” Regulations: Questions & Answers (Nov. 2010).

10. Information Sharing with Law Enforcement and Financial Institutions

Two provisions relating to information sharing were added to the BSA by the USA PATRIOT Act. One provision requires broker-dealers to respond to mandatory requests for information made by FinCEN on behalf of federal law enforcement agencies. The other provides a safe harbor to permit and facilitate voluntary information sharing among financial institutions.

Mandatory Information Sharing (Section 314(a) Requests): FinCEN’s BSA information sharing rules, under Section 314(a), authorize law enforcement agencies with criminal investigative authority to request that FinCEN solicit, on the agency’s behalf, certain information from a financial institution (including a mutual fund). These requests are often referred to as “Section 314(a) information requests.” Upon receiving such a request, a financial institution is required to search its records to determine whether it has accounts for, or has engaged in transactions with, any specified individual, entity, or organization. If the financial institution identifies an account or transaction identified with any individual, entity or organization named in the request, it must report certain relevant information to FinCEN.

Some mutual funds register directly with FinCEN to receive Section 314(a) notices; others rely on their affiliated bank or broker-dealer intermediaries to register and conduct these searches. Mutual funds should maintain the confidentiality of any request and any responsive reports to FinCEN. Mutual funds with questions concerning Section 314(a) requests should contact FinCEN.

Source Documents:

• Section 314(a) Rule: 31 C.F.R. § 1010.520. See also 31 C.F.R. § 1010.505 (definitions).
• Adopting Release: 67 Fed. Reg. 60579 (Sept. 26, 2002).
• Proposed Rule Release: 74 Fed. Reg. 58926 (Nov. 16, 2009).
• Broadening Access to the 314(a) program: 75 Fed. Reg. 6560 (Feb. 10, 2010).
• FinCEN Guidance:
  • FinCEN 314(a) Fact Sheet (June 30, 2020).
  • Changing your Point of Contact for 314(a) (Nov. 2019).

Voluntary Information Sharing Among Financial Institutions: Section 314(b): A separate safe harbor provision encourages and facilitates voluntary information sharing among participating financial institutions. The safe harbor provision, added to the BSA by Section 314(b) of the USA PATRIOT Act, protects financial institutions, including investment companies, from certain liabilities in connection with sharing certain AML related information with other financial institutions for the purposes of identifying and reporting activities that may involve terrorist acts or money laundering activities. FinCEN’s implementing regulations (31 C.F.R. § 1010.540) require that a financial institution or an association of financial institutions that intends to share information pursuant to the regulations must file an annual notice with FinCEN, maintain procedures to protect the security and confidentiality of the information, and take reasonable steps to verify that the financial institution or association of financial institutions with which it intends to share the information has filed the required notice with FinCEN. This may be done by checking a list that FinCEN makes available. FinCEN’s website contains an online registration system for section 314(b) notifications.

Source Documents:

• Section 314(b) Rule: 31 C.F.R. § 1010.540.
• Adopting Release: 67 Fed. Reg. 60579 (Sept. 26, 2002).
• Other Rulemaking Documents:
  • Interim Final Rule: 67 Fed. Reg. 9874 (Mar. 4, 2002).
• FinCEN 314(b) Webpage (provides information on section 314(b) and an online registration system).

11. Special Measures Imposed by the Secretary of the Treasury

Section 311 of the USA PATRIOT Act amended the BSA to authorize the Secretary of the Treasury to require financial institutions, including mutual funds, to take “special measures” to address particular money laundering concerns. The Secretary of the Treasury may impose special measures on foreign jurisdictions, financial institutions, or transactions and accounts found to be of “primary money laundering concern.” FinCEN’s BSA Rules include special measures that, among other things, prohibit “covered financial institutions” (which includes open-end investment companies registered with the Commission) from opening or maintaining certain correspondent accounts.

Source Documents:

• Section 311 Special Measures

12. OFAC Sanctions Programs and Other Lists

OFAC is an office within Treasury that administers and enforces economic and trade sanctions, based on U.S. foreign policy and national security goals, against targeted foreign countries, terrorism sponsoring organizations, international narcotics traffickers, and those engaged in activities related to the proliferation of weapons of mass destruction. OFAC acts under presidential wartime and national emergency powers, as well as authority granted by specific legislation, to impose controls on transactions and freeze foreign assets under U.S. jurisdiction.

OFAC’s sanctions programs are separate and distinct from, and in addition to, the AML requirements imposed on mutual funds under the BSA.

As a tool in administering sanctions, OFAC publishes lists of sanctioned countries and persons that are continually being updated. Its list of Specially Designated Nationals and Blocked Persons (SDNs) lists individuals and entities from all over the world whose property is subject to blocking and with whom U.S. persons cannot conduct business. OFAC also administers country-based sanctions that are broader in scope than the “list-based” programs.

In general, OFAC regulations require funds to:

• block accounts and other property or property interests of entities and individuals that appear on the SDN list and blocked persons or entities that are blocked by operation of law;
• block accounts and other property or property interests of governments, other entities and individuals subject to blocking under OFAC country-based programs; and
• reject prohibited, unlicensed trade and financial transactions, including those  with OFAC-sanctioned countries.

Funds must report all blockings and rejections of prohibited transactions to OFAC within 10 days of their being identified and then annually. OFAC has the authority to impose substantial civil penalties administratively. To guard against engaging in OFAC prohibited transactions, it is advisable that funds or their service providers “screen against the OFAC list.” U.S. investment companies and their investment managers also should conduct the necessary due diligence to ensure that their investment decisions do not violate U.S. sanctions. OFAC has stated that it will take into account the adequacy of a firm’s OFAC compliance program when it evaluates whether to impose a penalty if an OFAC violation has occurred.

Investment companies and their investment managers should also be aware of other lists, such as the Financial Action Task Force (“FATF”) publications that identify “high risk and other monitored jurisdictions” and list countries with weak measures to combat money laundering and terrorist financing. If transactions originate from, or are routed to, any FATF-identified countries, it might be an indication of suspicious activity.[8]

Source Documents:

• OFAC Regulations:
  • 31 C.F.R. §§ 501 et seq.
• OFAC Guidance:
  • Program information, including the SDN list and countries subject to OFAC sanctions, is available on the OFAC website at: www.treas.gov/ofac.
  • OFAC Resource Center.
  • Adopting Release, Economic Sanctions Enforcement Guidelines, 74 Fed. Reg. 57593 (Nov. 9, 2009).
  • Interim Final Rule, Economic Sanctions Enforcement Guidelines, 73 Fed. Reg. 51933 (Sept. 2, 2008).
  • Opening Securities and Futures Accounts from an OFAC Perspective (Nov. 5, 2008).
  • Risk Factors for OFAC Compliance in the Securities Industry (Nov. 5, 2008).
  • OFAC Frequently Asked Questions.
• FinCEN Guidance:
  • Interpretative Release No. 2004-02 — Unitary Filing of Suspicious Activity and Blocking Reports, 69 Fed. Reg. 76847 (Dec. 23, 2004).
• Other lists of countries supporting international terrorism may be available at:
  • U.S. State Dept.: https://www.state.gov/country-reports-on-terrorism/.
  • FATF: www.fatf-gafi.org.
  • FinCEN High Intensity Financial Crimes Areas Designation: https://www.fincen.gov/‌hifca.

13. Selected Additional AML Resources

SEC Staff Materials:

• Leaders of CFTC, FinCEN, and SEC Issue Joint Statement on Activities Involving Digital Assets (Oct. 11, 2019).
• Driscoll, Peter, “Staying Vigilant to Protect Investors,” Remarks at the SIFMA Operations Conference & Exhibition (May 8, 2019).
• Kevin Goodman, “Anti-Money Laundering: An Often-Overlooked Cornerstone of Effective Compliance” (June 18, 2015).
• Examinations/NEP Risk Alert: Broker-Dealer Controls Regarding Customer Sales of Microcap Securities (Oct. 9, 2014).
• David W. Blass, Broker-Dealer Anti-Money Laundering Compliance — Learning Lessons from the Past and Looking to the Future” (Feb. 29, 2012).

FinCEN Materials:

• FinCEN Advisories/Bulletins/Fact Sheets
• National Strategy for Combating Terrorist and Other Illicit Financing (2020).
• Remarks of FinCEN’s Deputy Director, Jamal El-Hindi, SIFMA AML and Financial Crimes Conference (Feb. 6, 2020).
• Remarks of FinCEN Director, Kenneth A. Blanco, SIFMA AML and Financial Crimes Conference (Feb. 4, 2019).
• 2018 National Money Laundering Risk Assessment.
• 2018 National Terrorist Financing Risk Assessment.

Other:

• FFIEC AML Examination Manual (This examination manual, issued by the federal banking regulators regarding the AML requirements applicable to banks, contains guidance that may be of interest to securities firms.)
• FATF: Anti-money Laundering and Counter-Terrorist Financing Measures: Mutual Evaluation of the United States (Dec. 2016).
• Risk Based Approach Guidance for the Securities Sector, FATF (2018)

14. Useful Contact Information

FinCEN
Financial Institutions Hotline:	1-866-556-3974
Regulatory Helpline:	1-800-949-2732
Office of Public Affairs:	703-905-3770
General Information:	703-905-3591
FinCEN website:	www.fincen.gov
Securities and Futures:	http://www.fincen.gov/‌financial_institutions/‌secs_futures/
OFAC
Hotline:	1-800-540-6322
OFAC website:	www.treas.gov/ofac
SEC Staff
Division of Investment Management, Office of Regulatory Policy	202-551-6729
Division of Examinations, Office of Chief Counsel	202-551-6460
Examination Hotline for SEC-Registered Entities	202-551-EXAM (3926)
SEC SAR Alert Message Line	202-551-SARS (7277)
SEC website	www.sec.gov