1. Under Section 15A
of the Financial Services and Markets Regulations 2015 ("FSMR"), the Regulator has jurisdiction for the regulation of AML in ADGM. The AML Rulebook sets out the requirements imposed by the Regulator. The U.A.E. criminal law applies in the ADGM and, therefore, Persons in the ADGM must be aware of their obligations in respect of the criminal law as well as these Rules. Relevant U.A.E. criminal laws include Federal AML Legislation and Federal Law No. 3 of 1987 (the Penal Code of the United Arab Emirates). The Rules in the AML Rulebook should not be relied upon to interpret or determine the application of the criminal laws of the U.A.E.
2. The AML Rulebook has been designed to provide a single reference point for all Relevant Persons who are supervised by the Regulator for Anti-Money Laundering and Sanctions compliance in accordance with the scope of application outlined in Rule 1.2.1
. Accordingly it applies to Relevant Persons, but in different degrees as provided in Rule 1.2.2
(2). The AML Rulebook takes into consideration the fact that Relevant Persons have differing AML risk profiles. A Relevant Person should familiarise itself with the AML Rulebook, and assess the extent to which the Chapters and sections apply to it.
3. The AML Rulebook is not intended to be read in isolation from other UAE relevant legislation or developments in international policy and best practice and, to the extent applicable, Relevant Persons need to be aware of, and take into account, how these aforementioned matters may impact on the Relevant Person's day to day operations. This is particularly relevant when considering the list of terrorist organisations or persons issued under Article 63 of Federal Law No.7 of 2014 on Combatting Terrorism and the United Nations Security Council ("UNSC") Resolutions which apply in the ADGM, and Sanctions imposed by other jurisdictions which may apply to a Relevant Person depending on the Relevant Person's jurisdiction of origin, its business and/or customer base.
4. Chapter 1
specifies who is ultimately responsible for a Relevant Person's compliance with AML. The Regulator expects the Governing Body and Senior Management of a Relevant Person to establish a robust and effective AML and Sanctions compliance culture for the business.
5. Chapter 2
provides an overview of the AML Rulebook and Chapter 3
sets out the key definitions in the AML Rulebook.
6. Chapter 4
outlines the general compliance requirements including Group polices, notifications, record keeping requirements and the annual AML Return.
7. Chapter 5
explains the meaning of the risk-based approach ("RBA
"), which should be applied when complying with the AML Rulebook. The RBA requires a risk-based assessment of a Relevant Person's business (in Chapter 6
) and its customers (in Chapter 7
). A risk-based assessment should be a dynamic process involving regular review, and the use of these reviews to establish the appropriate processes to match the levels of risk. No two Relevant Persons will have the same approach, and implementation of the RBA and the AML Rulebook permits a Relevant Person to design and implement systems and controls that should be appropriate to their business and customers, with the obvious caveat being that such systems should be reasonable and proportionate in light of the AML risks. The Regulator expects the RBA to determine the breadth and depth of the Customer Due Diligence ("CDD
") which is undertaken for a particular customer under Chapter 8
, though the Regulator understands that there is an inevitable overlap between the risk-based assessment of the Customer in Chapter 7
and CDD in Chapter 8
. This overlap may occur at the initial stages of on-boarding of customers but may also occur when undertaking on-going CDD.
8. Chapter 9
sets out where a Relevant Person may rely on a third party to undertake all or some of its CDD obligations. Reliance on third-party CDD reduces the need to duplicate CDD already performed for a customer. Alternatively, a Relevant Person may outsource some or all of its CDD obligations to a service provider.
9. Chapter 10
sets out certain obligations in relation to correspondent banking, wire transfers and other matters which are limited to Authorised Persons (other than a Credit Rating Agency) and Recognised Bodies and, in particular, to banks.
10. Chapter 11
sets out a Relevant Person's obligations in relation to UNSC Resolutions and Sanctions, and government, regulatory and international findings (in relation to AML, terrorist financing and the financing of weapons of mass destruction).
11. Chapter 12
sets out the obligation for a Relevant Person to appoint an MLRO and the responsibilities of such a Person.
12. Chapter 13
sets out the requirements for AML training and awareness. A Relevant Person should adopt the RBA when complying with Chapter 13
, so as to make its training and awareness proportionate to the AML risks of the business and the Employee role.
13. Chapter 14
contains the obligations applying to all Relevant Persons concerning Suspicious Activity Reports, which are required to be made under Federal AML Legislation.
14. Chapter 15
sets out additional obligations applying to DNFBPs, including registration and notification requirements.
15. Chapter 16
sets out the obligations applying to Relevant Persons that are NPOs.