Anti-Money Laundering Course for the Insurance Industry

We have already provided the definition of money laundering given by the U.S. Department of the Treasury. In short, it’s a process of hiding the origins or destination of the money by funneling it through a number of financial transactions. For example, drug dealers want to conceal the origin of their cash. On the other hand, some people or organizations may want to transfer legally obtained funds to finance terrorism.

Most criminals run their businesses in cash and try to make their payments (especially large ones) using cash. The U.S. government passed laws that prohibit large payments in cash, which forces criminals to find ways to legitimize the sources of cash or "launder money". Producers who sell life insurance, often have to accept large amounts of money, which makes such financial products popular in the money laundering techniques.

While criminals may be involved in money laundering, they are being confronted by government, law enforcement, business (i.e. insurance institutions). AML is a set of procedures, regulations, and laws created to prevent a specific area of illegal activity - turning the dirty money into clean ones.

Financial institutions (e.g. insurance companies) have to investigate the customer before opening an account or selling a financial product. Some insurance agents might be willing to break rules to earn large commissions when a money launderer is willing to buy an expensive policy. AML procedures should prevent this from happening.

One of the AML procedures is called Know Your Customer (KYC). KYC is the process organizations use to verify, collect, and classify a customer’s identity. This can be seen as a customer identification process where a customer’s identity, financial status, and address are verified. This verification process must be carried out before financial institutions (e.g. banks or insurance carriers) can onboard customers and open new accounts. You can find more details about the identification and verification of any person who applies to open an account in section 326 of the USA PATRIOT act.

When deciding whether to do business with a potential client, the insurance company has to establish facts about the client and analyze his or her behavior. Can we verify that the clients are who they say they are? Do the facts they tell us to match what we could find from other sources? Have they interacted with similar firms before? Is their behavior suspicious, requiring or investigation?

An insurance company needs to know its customers to comply with the relevant regulations and be reasonably certain that the prospect can become a client and receive insurance products. Typically, KYC controls include the following:

Treasury published a press release titled "2024 National Risk Assessments for Money Laundering, Terrorist Financing, and Proliferation Financing" (see https://home.treasury.gov/news/press-releases/jy2080). These reports highlight the most significant illicit finance threats, vulnerabilities, and risks facing the United States.

The reports detail recent, significant updates to the U.S. anti-money laundering/counter-financing of terrorism framework and explain changes to the illicit finance risk environment. These include the ongoing fentanyl crisis, foreign and domestic terrorist attacks and related financing, increased potency of ransomware attacks, the growth of professional money laundering, and continued digitization of payments and financial services. These assessments also address how significant threats to global peace and security—such as Russia’s ongoing illegal, unprovoked, and unjustified war in Ukraine and Hamas’s October 7, 2023 terrorist attacks in Israel—have shaped the illicit finance risk environment in the United States.

The USA PATRIOT act is a more than 300-page document passed by the U.S. Congress with bipartisan support and signed into law by President George W. Bush on October 26, 2001, just weeks after the September 11 terrorist attacks against the United States. The purpose of the USA PATRIOT Act is to deter and punish terrorist acts in the United States and around the world, to enhance law enforcement investigatory tools, and other purposes, some of which include:

Following the September 11 terrorist attacks, sU.S. government agencies such as the FBI and the Treasury Department significantly increased their focus on money laundering investigations. Laundered money was found to have played a crucial role in financing terrorist operations, making AML and CFT (Counter-Financing of Terrorism) measures essential in combating global security threats.

Money transfers coming from certain countries may require special attention, and the Global Terrorism Index 2018 (see http://visionofhumanity.org/indexes/terrorism-index/) represents "a comprehensive study analyzing the impact of terrorism for 163 countries and which covers 99.7 percent of the world’s population." Of particular interest are the sections covering the emerging hotspots of terrorism, as well as the drivers behind global terrorist recruitment.

The Office of Foreign Assets Control (OFAC), a division of the US Department of the Treasury, administers and enforces economic and trade sanctions aligned with U.S. foreign policy and national security objectives. These sanctions target:

*Foreign governments and regimes, *Terrorists, *International narcotics traffickers, *Entities engaged in the proliferation of weapons of mass destruction, and *Other threats to U.S. national security, foreign policy, or the economy.

OFAC acts under Presidential national emergency powers, and congressional legislation, imposing controls on financial transactions and freezing assets within U.S. jurisdiction. Many sanctions are derived from United Nations and international mandates, making them multilateral in scope and enforced in collaboration with allied governments.

As part of its enforcement efforts, OFAC publishes a list of individuals and companies owned or controlled by, or acting for or on behalf of, targeted countries. It also lists individuals, groups, and entities, such as terrorists and narcotics traffickers designated under programs that are not country-specific. Collectively, such individuals and companies are called "Specially Designated Nationals" (SDNs). Their assets are blocked and U.S. persons are generally prohibited from conducting business with them. The SDN list is publicly accessible at: https://www.treasury.gov/resource-center/sanctions/sdn-list/pages/default.aspx.

Financial Crimes Enforcement Network (FinCEN) was created in 1990 to support federal, state, local, and international law enforcement by analyzing the information required under the BSA, one of the nation’s most important tools in the fight against money laundering. The BSA’s recordkeeping and reporting requirements establish a financial trail for investigators to follow as they track criminals, their activities, and their assets.

FinCEN researches and analyzes this information, along with other critical forms of intelligence to support financial criminal investigations. The ability to link to a variety of databases provides FinCEN with one of the largest repositories of information available to law enforcement in the country. Safeguarding the privacy of the data it collects is an overriding responsibility of the agency and its employees-a responsibility that strongly influences all of its data management functions, and indeed, all that the agency does.

In June 2024, FinCEN published a document titled "Fact Sheet: Proposed Rule to Strengthen and Modernize Financial Institution AML/CFT programs" where CFT stands for counter-terrorist financing (see https://www.fincen.gov/sites/default/files/shared/Program-NPRM-FactSheet-508.pdf). These are the key elements of the proposed rule:

The rule includes technical changes to promote clarity and consistency across different types of financial institutions.

This proposed rule is part of FinCEN’s efforts to implement the Anti-Money Laundering Act of 2020 (see https://www.fincen.gov/anti-money-laundering-act-2020) and aims to create a more effective and risk-based regulatory and supervisory regime.

For more information about FinCEN see https://www.fincen.gov.

The Financial Action Task Force (FATF) is an independent inter-governmental body that sets standards and promotes the effective implementation of legal, regulatory, and operational measures for combating money laundering, terrorist financing and other related threats to the integrity of the international financial system. The FATF is, therefore, a "policy-making body" that works to generate the necessary political will to bring about national legislative and regulatory reforms in these areas.

The FATF has developed a series of recommendations that are recognized as the international standard for combating money laundering and the financing of terrorism and the proliferation of weapons of mass destruction. These recommendations form the basis for a coordinated response to threats to the integrity of the financial system and help ensure a level playing field.

The FATF monitors the progress of its members in implementing necessary measures, reviews money laundering and terrorist financing techniques and countermeasures, and promotes the adoption and implementation of appropriate measures globally. In collaboration with other international stakeholders, the FATF works to identify national-level vulnerabilities with the aim of protecting the international financial system from misuse.

The FATF Recommendations are recognised as the global AML and CFT standard. For more information about the FATF, please visit https://www.fatf-gafi.org

The NAIC (National Association of Insurance Commissioners) is the U.S. standard-setting and regulatory support organization for state insurance regulators. It consists of insurance regulators from all 50 states, the District of Columbia, and U.S. territories. The NAIC helps develop model laws and regulations, provides guidance on emerging insurance issues, and ensures uniformity in insurance oversight across different states.

For AML compliance, the NAIC works with FinCEN and other federal agencies to provide guidance on suspicious activity reporting (SARs), beneficial ownership reporting, and risk-based monitoring in the insurance industry.

You can find more details on their official website: www.naic.org.

In December 2023, U.S. Department of the Treasury released the document that includes actions to prevent and disrupt corruption (see https://home.treasury.gov/news/press-releases/jy1974). Below are the key actions and initiatives described in this document:

The Suspicious Activity Report (SAR) is a tool provided under the BSA for monitoring suspicious activities that would not ordinarily be flagged under other reports (such as the currency transaction report). Suspicious Activity Reports can cover almost any activity that is out of the ordinary. An activity may be included in the Suspicious Activity Report if the activity gives rise to a suspicion that the account holder is attempting to hide something or make an illegal transaction.

SARs are used to prevent and report activities that seem to be related to money laundering. These reports can generate leads for law enforcement agencies. The insurance broker notifies the insurance carrier when suspicious activity occurs. Insurance carriers file SARs with FinCEN.

In AML efforts, willful blindness means not questioning a transaction when one suspects that something is amiss. The motivation for insurance agents to engage in willful blindness would usually relate to being paid a commission on the transaction if it is executed. To protect themselves from charges of willful blindness, agents must report any suspicious activity to the AML compliance officer and retain a copy of the information for their records. The penalties for willful blindness can be as severe as those for money laundering.

FinCEN regulations impose AML compliance program requirements and SAR obligations only on insurance companies; there are no independent obligations for brokers and agents. However, the insurance company is responsible for the conduct and effectiveness of its AML compliance program, which includes agent and broker activities. These insurance regulations apply only to a limited range of products that may pose a higher-risk of abuse by money launderers and terrorist financiers.

Money launderers and terrorist organizations have considerable knowledge of life insurance companies and intermediaries and take extreme measures to hide their financial activities and make them indistinguishable from legitimate transactions. A risk-based approach in creating the AML compliance program is designed to make it more difficult for these criminal elements to use life insurance companies and intermediaries due to the increased focus on the identified higher risk activities that are being undertaken by these criminal elements.

In addition, a risk-based approach allows life insurance companies and intermediaries to more efficiently and effectively adjust and adapt as new money laundering and terrorist financing methods are identified.

According to the BSA/AML Examination Manual published by the Federal Financial Institutions Examination Council, a covered product, for purposes of an AML compliance program, includes:

Each of the above products has a cash value that can be transferred, and these products fall under AML regulations. On the other hand, there are products with a low risk of money laundering (e.g., health or term life insurance), and they are exempt from AML procedures.

Banks often engage in insurance sales to their customers, and in such cases, the insurance company may rely on the bank’s AML compliance program to address issues at the time of sale of the covered product. However, the bank may need to establish specific policies, procedures, and processes for its insurance sales in order to submit information to the insurance company for AML compliance.

Likewise, if a bank, as an agent of the insurance company, detects unusual or suspicious activity related to insurance sales, it can file a joint SAR on the common activity with the insurance company.

FinCEN has provided the “Frequently Asked Questions” document to assist insurance companies in understanding the scope of the final rules. The title of this document is "Anti-Money Laundering Program and Suspicious Activity Reporting Requirements for Insurance Companies," and it can be accessed at https://content.naic.org/sites/default/files/committee_related_documents/committees_d_antifraud_meetingcc_faqsinsurance_103105.pdf.

Federal law requires financial institutions to keep records of cash purchases and file reports of cash transactions exceeding $10,000. Besides cash, criminals may try using cryptocurrency for their money–laundering schemes. Let’s get familiar with some terms related to cryptocurrency.

If a typical bank or other financial institution can serve as a central ledger and clearing center for its customers, with cryptocurrencies there is no centralized ledger (server). All the data is distributed among the holders of the cryptocurrency. Let’s explore the basics of cryptocurrency.

Most likely, you’ve heard the words Bitcoin and blockchain. While Bitcoin is the name of the specific cryptocurrency, blockchain is the name of the underlying technology that allows data to be stored in a distributed fashion without having any centralized ledger. In blockchain, every transaction is stored in each computer that’s participated in the blockchain.

While fiat money is a government-issued paper currency that is not backed by a commodity such as gold, cryptocurrency is simply a digital record replication in a database distributed among multiple computers.

Cryptocurrency is not backed by any commodities and is created "out of thin air". A participant of a particular blockchain may compete in finding a solution to a specific mathematical problem. Whoever finds it first is awarded cryptocurrency, e.g. a Bitcoin. As long as there are people who are willing to use this cryptocurrency (also known as virtual currency), they can offer it to pay for goods or services.

FinCEN requires that money services businesses register with FinCEN and develop, implement, and maintain an AML compliance program. In the Anti-Money Laundering Act of 2020 (see https://www.fincen.gov/anti-money-laundering-act-2020), Congress explicitly stated that businesses that exchange or transmit virtual currencies qualify as regulated entities.

FinCEN has made clear that AML obligations extend to Decentralized Finance, commonly referred to as DeFi, a blockchain-based form of finance that does not rely on central financial intermediaries. According to FinCEN, DeFi exchanges that use peer-to-peer (P2P) technology are required to comply with the BSA obligations that apply to money transmitters, including registering with FinCEN as a money service business and complying with AML requirements, such as filing Suspicious Activity Reports as described later in this course.

SEC Chairman Gary Gensler warned in April 2022 that regulatory loopholes in the crypto markets could undermine 90 years of securities law. He has also likened the crypto industry to the "Wild West" and cautioned that stablecoins may facilitate those seeking to sidestep AML policy.

In March 2022, President Biden signed an Executive Order (EO) on Ensuring Responsible Development of Digital Assets (see https://bit.ly/3sZuOVD). This EO outlined the first whole-of-government approach to addressing the risks and harnessing the potential benefits of digital assets and their underlying technology. This document identified six key priorities: * consumer and investor protection; * promoting financial stability; * countering illicit finance; * U.S. leadership in the global financial system and economic competitiveness; * financial inclusion; * responsible innovation.

Crypto and DeFi insurance is insurance for cryptocurrencies and digital assets like Bitcoin, Ethereum, and more. Crypto insurance providers offer insurance policies on cryptocurrencies stored in wallets or exchanges via a traditional insurance policy model. DeFi insurance is offered via trustless smart contracts that insure DeFi holdings that are on the blockchain and being used for staking, yield farming, liquidity pools, lending, and more. These are some of the Crypto & DeFi Insurance currently available: BitGo, Blockdaemon, InsurAce, Harpie, Nexus Mutual, Bridge Mutual.

Typically, cryptocurrency advocates have strongly opposed the idea of regulation due to its decentralized nature. But frauds and scams (e.g. search for OneCoin scam) are happening in the world of cryptocurrencies and you can hear more and more calls for regulatory management. To improve trust in crypto, anti–money laundering and Know Your Customer procedures should be used when dealing with crypto businesses.

According to the Federal Trade Commission, in the 14 months to Q1 2022, fraudsters stole more than $1 billion from 46,000 people in crypto-scams. The privacy-enhancing properties of the decentralized blockchain platform that cryptocurrencies are based upon provide an ideal playground for money laundering and cybercriminal activity.

Blockchain analytics company Chainalysis recorded a 1,964% increase in cryptocurrency laundered through decentralized finance (DeFi) protocols, which equates to about $900 million in laundered money.

A recent DIFC Fintech conference provided some insights into the current situation in terms of regulations and cryptocurrencies, including:

During the placement stage, the criminal wants to get rid of cash by placing it into a legitimate financial system. Imagine a drug dealer who needs to get a large sum of smaller currency bills into a banking system. During this stage, money launderers are the most vulnerable to being caught because a customer that brings a large amount of cash always raises a red flag to the workers of a bank.

After the placement stage comes layering, which refers to the process of moving illicit funds through a complex series of transactions to obscure their origin. This is the most complex stage and often involves transferring funds internationally. The main goal of this stage is to separate illicit money from its source.

Criminals may purchase various financial instruments that can later be converted into clean money. For example, they can buy multiple permanent life insurance policies (e.g., whole or universal life).

Note: Both structuring and layering exploit weaknesses in financial oversight. AML frameworks, like those enforced by the Financial Action Task Force (FATF) or national regulators, aim to counter these tactics with tools like suspicious activity reports (SARs), enhanced due diligence, and real-time monitoring. For instance, banks might flag a customer who repeatedly deposits just under the CTR threshold (structuring) or one whose funds zigzag through high-risk jurisdictions (layering).

Key Differences:

During this stage, the illicit money is being used with the appearance of legitimate funds by moving the money back into the legal monetary system. A criminal may invest the money into the business, or sell expensive items (e.g. houses and yachts) bought during the layering stage.

If the money launderer managed to buy a permanent life insurance policy, he can borrow the money against this policy’s cash value or even surrender the policy (or annuities), and the check arrives from the insurance company.

If the goal of money laundering was terrorist financing, during the integration phase, the money will be distributed to terrorist organizations.