Upload
informa-australia
View
266
Download
6
Tags:
Embed Size (px)
DESCRIPTION
Warren Dickins delivered the presentation at the 2014 Anti-Money Laundering Summit. The 2014 Anti-Money Laundering Summit discussed the current AG review into AML and the impending regulatory changes. For more information about the event, please visit: http://bit.ly/AMLSummit14
Citation preview
Anti-Money Laundering Summit Sydney
11th September 2014
Warren DickinsFinancial Crime Officer – GE Capital International
Setting Policies to satisfy multiple parties
2
Warren Dickins| September 2014
What is a policy?
Warren Dickins| September 2014
A policy is not just a book on a shelf.
It’s your approach to consistently managing a risk or event
type.
Building a policy
Warren Dickins| September 2014
Don’t write the policy document
until you’ve built the foundations.
Building a policy
Warren Dickins| September 2014
Building a policy – key decisions upfront
Warren Dickins| September 2014
+ What audience does the policy cover?
* Who is captured?
* Who is exempt – why?
+ What is the purpose of the policy?
* Legal requirement or drive consistency?
* What happens if you don’t have it?
+ What is your approach?
* Assess each topic to decide if its needed.
* Prescriptive or risk based?
Setting a policy that works
+ Simple is best* Don’t add to the complexity
+ Make it easy to understand (critical)* Avoid clutter – use supporting docs.* Where does the policy fit in?* Are there Guidelines / Standards as well?
+ Make it realistic – can it be achieved?* Prepared for exceptions?* Implementation period?
+
7
Warren Dickins| September 2014
Setting a policy that works
+ Impact on stakeholders* Do you know?* Do you care?
+ Keep it generic enough to operationalise* E.g. Transaction Monitoring (Manual or Automated)?* Record keeping (as per local law or set a number)?* Training – centrally produced or local?
+ Let the business work in its jurisdiction* Rigidity may cost sales.* Governance of issues.
8
Warren Dickins| September 2014
Warren Dickins| September 2014
Set a policy ‘risk’ appetite!
Inform the Board / Senior Management upfront.
Explain likely issues / inconsistencies.
Get their input /acceptance for flexibility (or not!).
Provide examples of what are likely to be gaps.
Understand the desire for central or distributed control.
Is there any appetite at all?
This will be critical for more multi-jurisdiction businesses
Policy Risk Appetite
+ Risk Appetite- What is “must have”- What is “nice to have”- Are you prepared to compromise?- Are you prepared to get out?
+ What do you want?- Compliance with local laws?- Compliance with FATF Standards?- Compliance to the high water mark?- Consistency?
10
Warren Dickins| September 2014
Working with overseas group members to overcome cross border challenges
11
Warren Dickins| September 2014
The complexity of multi-jurisdictional business
Warren Dickins| September 2014
The complexity of multi-jurisdictional business
Warren Dickins| September 2014
Everybody believes they are different
Warren Dickins| September 2014
Cross border challenges
+ Basic challenges- time zones- languages- different laws- cultural
15
Warren Dickins| September 2014
Cross border challenges
+ Regulatory- Who are you trying to satisfy? - Does the home Regulator have higher standards?- Does the home Regulator fall short of FATF?- Are some of your jurisdictions short of FATF?
+ Political- Are you based in conflicting locations?- Sanctions from one office against another?- Refusal of one location to work with another?
16
Warren Dickins| September 2014
Cross border challenges
+ Global visibility- What does the home Regulator expect you to see?- Can you see it all / Do you need to?- Metrics / Issues reporting
+ Privacy / Data Protection- COEs – cross jurisdictional processes- Shared systems- Barriers to sharing?- Local laws vs desired state
- What is your policy risk appetite?
17
Warren Dickins| September 2014
Deal with complexity piece by piece
18
Warren Dickins| September 2014
Deal with complexity piece by piece
19
Warren Dickins| September 2014
Setting a policy that works
+ Simple is best* Don’t add to the complexity
+ Consider Customer ID* Do you want name / address / dob / Govt ID / other?* Do you want Directors / CEO / Board members?* Do you dictate how it must be collected?* Where is it stored?
+ Customer reviews* Periodic – how often?* Event based?
20
Warren Dickins| September 2014
Setting a policy that works
+ UBOs* 25% / 10% (Is it possible?) * Will you force it? (or allow thresholds?)
+ Watchlist screening* Standard lists plus options?* Timing of screening / Adverse media?* What about push back?
+ PEPs* Domestic & International?
* Material PEPs or all?
21
Warren Dickins| September 2014
Back to Risk Appetite
+ What is must have?
+ What is nice to have?
+ What is your expectation?- Compliance with local laws?- Compliance with FATF Standards?- Compliance to the high water mark?
Decide at the right level – before writing policy.
22
Warren Dickins| September 2014
Influencing partners to adopt your standards without direct control
23
Warren Dickins| September 2014
Control of your business
> Do you own 100% of your businesses?
> What about Joint Ventures- majority owned and controlled- equal control / shared model- minority
> What about 3rd parties acting on your behalf?
24
Warren Dickins| September 2014
The view your overseas offices wants you to have.
Warren Dickins| September 2014
The view according to your home Regulator.
26
Warren Dickins| September 2014
Regulator view - control
> What does the Regulator think you control?
> What percentage gives you control?100%? 51%? 49%? 25%?
> What about a sub-JV?
> Does it depend on the jurisdiction or JV partner?
> Do you negotiate? RISK APPETITE AGAIN
27
Warren Dickins| September 2014
Consider those you own / control
> “Must comply with global policy” right?
> Your standards impact their business. Ignore or accept local differences – thresholds / exemptions;
> If you don’t compromise they may not be able to comply. Will they tell you that? “Better a friendly denial than unwilling compliance.”
> Relationship is key. Develop / educate / support.
28
Warren Dickins| September 2014
Non control - Different strategies apply.What does your risk appetite say?
3rd parties
Must comply with
contract – but its
your obligation.
Are they a cultural
fit?
What is their
incentive?
Joint control
Is it equal in all
regards or front
office / back
office?
Does the
agreement say
they will follow
your Standard?
Trust in the other
partner?
Influence
Minority – no real
control.
Inform them of
your standard.
Negotiate piece by
piece.
Educate them /
staff rotations.
Sub- JVs
What visibility do
you have?
What visibility does
your JV partner
have – can you
rely on them?
May lack control
but aim for MI.
Educate them /
staff rotations.
29
Warren Dickins| September 2014
Control of your business
> Back to appetite again
> Do you advise Regulator what you can/cant do?
> Do you sell out of the business?
> These are not decisions to be made at low level
30
Warren Dickins| September 2014
Recap
Policy is more than a book
• Collect material then build
• Action upfront may avoid
exemptions
Cross border
• Are you global or local?
• Do you embrace the difference?
Risk Appetite
• Know where you stand
• It’s wider than financial crime
Influence
Accept
Or remove
31
Warren Dickins| September 2014
Presenter – Warren DickinsEmail [email protected] 0414 107 653