What are the three types of CDD
Customer Due Diligence (CDD) – it's basically the backbone of anti-money laundering (AML) stuff globally. Banks and other regulated places gotta identify and verify who they're dealing with, you know? Gotta assess the risk. So there's three main flavors of CDD, each one gets used depending on how risky the customer relationship looks.
What are the three main types of CDD?
So the three types are Simplified Due Diligence (SDD), Standard Due Diligence, and Enhanced Due Diligence (EDD). Each one matches a different risk level – from your super low-risk customers all the way up to the really dicey ones.
- Simplified Due Diligence (SDD): This is for low-risk folks where the chance of money laundering is pretty much zero. You don't need to do as much checking with these guys.
- Standard Due Diligence: This is the default for most customer relationships. You collect and verify their identity – name, address, date of birth – and figure out what the business relationship is all about.
- Enhanced Due Diligence (EDD): This kicks in for higher-risk customers – think politically exposed persons (PEPs), people from sketchy jurisdictions, or those with weird ownership structures. EDD means digging deeper, watching them constantly, and gathering way more info.
What is the difference between simplified and enhanced due diligence?
The big difference? It's all about risk and how deep you look. Simplified Due Diligence is basically streamlined – less paperwork, less verification. It's for the low-risk crowd. Enhanced Due Diligence though? That's the heavy stuff. Background checks, source of funds verification, continuous monitoring. SDD is about being efficient; EDD is about not getting burned.
When is Enhanced Due Diligence (EDD) required?
EDD gets triggered by specific red flags. It's mandatory if the customer is a PEP, from a country with weak AML rules, or has complicated ownership that's hard to follow. Also applies when transactions look weird or the customer's involved in cash-heavy businesses or cross-border stuff with risky countries.
According to the Financial Action Task Force (FATF), EDD measures should include obtaining additional information on the customer's source of funds and source of wealth, understanding the purpose and intended nature of the business relationship, and conducting enhanced monitoring of the business relationship.
What are the key steps in standard customer due diligence?
Standard Due Diligence follows a pretty systematic process to figure out who the customer is and how risky they might be. Here's what you do:
- Identify the customer using official documents – passport, driver's license, that sort of thing.
- Verify their identity through reliable, independent sources.
- Understand what the business relationship is for.
- Assess their risk level based on geography, job, transaction patterns.
- Keep monitoring transactions to make sure they match their profile.
Data Table: Comparison of CDD Types
| CDD Type | Risk Level | Verification Depth | Typical Customers | Monitoring Frequency |
|---|---|---|---|---|
| Simplified Due Diligence (SDD) | Low | Minimal | Low-value accounts, government entities, small personal accounts | Less frequent |
| Standard Due Diligence | Medium | Moderate | Most retail customers, small businesses | Regular |
| Enhanced Due Diligence (EDD) | High | Extensive | PEPs, high-risk jurisdictions, complex corporate structures | Continuous and intensive |
Checklist: Implementing CDD in Your Organization
- Assess the risk profile of each customer relationship.
- Apply SDD for low-risk customers where appropriate.
- Ensure Standard Due Diligence is completed for all customers.
- Identify triggers for Enhanced Due Diligence (e.g., PEPs, high-risk countries).
- Collect additional information for EDD: source of funds, source of wealth, and beneficial ownership.
- Implement ongoing transaction monitoring tailored to the risk level.
- Document all CDD measures and maintain records for regulatory compliance.
- Regularly review and update CDD policies based on regulatory changes.
Frequently Asked Questions
What is the legal basis for CDD requirements?
The legal basis comes from international standards set by the Financial Action Task Force (FATF) and then implemented through national laws – like the Bank Secrecy Act (BSA) in the US or the 4th and 5th AML Directives in the EU. These regulations force financial institutions to identify and verify customers to prevent money laundering and terrorist financing.
Can Simplified Due Diligence be applied to all customers?
Nope, Simplified Due Diligence is only for customers who pose a low risk of money laundering or terrorist financing. You can't use it for high-risk categories like PEPs or customers from risky jurisdictions. Misusing SDD can get you in regulatory trouble.
What documents are needed for Standard CDD?
For individuals, you usually need a government-issued photo ID (passport, driver's license) and proof of address (utility bill, bank statement). For companies, it's incorporation documents, proof of registered address, and identification of beneficial owners.
How often should CDD be reviewed?
It depends on the customer's risk profile. Low-risk customers might get reviewed every 3-5 years, while high-risk ones under EDD might need annual or even more frequent reviews. Regulatory changes or trigger events – like suspicious activity – also mean you gotta review right away.
Breve Resumo
- Três tipos de CDD: Due Diligence Simplificada (SDD), Due Diligence Padrão e Due Diligence Reforçada (EDD).
- Nível de risco: SDD para baixo risco, Padrão para risco médio, EDD para alto risco.
- Quando usar EDD: Para PEPs, jurisdições de alto risco e estruturas de propriedade complexas.
- Conformidade: A implementação correta dos três tipos é essencial para a conformidade com as regulamentações AML.