If you are the busy owner of a firm which has to comply with the Anti-Money Laundering (AML) laws and regulations, hardly a day will go past without someone trying to sell you "digital onboarding". But what exactly is it? And can it (indeed, can anything) really be "quicker, easier, cheaper, better" without compromising on that old-fashioned quality of 'doing a job properly'? Some people reading this may associate digital onboarding exclusively with e.g. the use of mobile phone apps to dispense with the need for a physical passport check in the office, and/or with screening tools which will crawl the internet for sanctions, PEPs and adverse media "hits". But in reality, those are just one part of a bigger whole which, if done in totality, can save you hundreds or even thousands of man-hours per year, as well as protecting you against fines and penalties . So, as a guide for the uninitiated, we summarise below all the things that it's now possible to do with, and within, a digital onboarding platform. Remember that the big, game-changing difference is that the end-client is providing all their required information and documentation direct into one, single upload link which you send to them, and that from then on, all that data and documentation can be sent to any of your other systems, without need for human intervention. And we'll assume for the sake of argument that we are comparing this with a (non-digital) onboarding model whose primary mechanism is the sending, completion and return of PDF documents to and from clients via email, with subsequent extraction and onward use by staff members of the information contained in them. (NB A word of warning in advance: if some clients, for whatever reason, aren't comfortable, competent and/or enabled with technology, then you're still going to have to do it the old way – so don't ditch the old skills completely.) Basic data capture & validation Allows end-clients to input core information digitally, without the need for emails, meetings and phone calls. Highlights where information is missing or inconsistent and warns the client immediately (so that you don’t waste time chasing them after you discover it two weeks later.) Also saves the time of staff no longer engaged in re-keying data into practice management and accounting systems. Validation-based risk alerts Silently highlights the presence of static identified risks, e.g. businesses where cash or crypto is, unexpectedly, the main method of payment, or where the stated turnover is very high for the number of employees. How long would it take you to spot this? UBO Builder – ownership self-declaration Allows entity end-clients to create an organogram of their ownership structure and to make legally necessary declarations which can then be verified from public sources. AI-enabled business model and source of wealth enquiries Prompts end-clients to provide an appropriate level of detail on their business models and SoW. Reads answers and raises silent alerts where clients have failed to provide the requested level of detail, enabling human follow-up. Generally results in much higher quality levels in what is a major area of concern for regulators. AI-enabled automated risk alerts As above but raises silent alerts where it detects business activities with heightened financial crime risk – for example, connections to defence, precious metals, fine art, luxury goods and other high-risk sectors. Would all your staff spot such issues themselves? Remote ID&V (e-verify) UK Allows end-client to be legally identified and their address verified without the need for documentation, e.g. for electoral roll and other trusted government sources. Saves time on production and review of ID&V documentation, in a way which is acceptable to regulators and won’t result in negative inspection findings. Remote ID&V (mobile phone) Allows end-client legally to identify themselves through remote matching of a live video against an uploaded ID document such as a passport or driving licence. Saves time and trouble on office visits and photocopying of physical documents, in a way which is acceptable to regulators and won’t result in negative inspection findings. General document upload Allows end-client to upload soft copies of documents such as passports, driving licences and utility bills and save them to a centralized but client-specific location. Saves time and trouble on office visits and photocopying of physical documents and/or on staff having to detach email attachments and manually save them to the (correct) file. Automated screening (Sanctions/PEPs/Adverse Media) Conducts automated silent background checks against end-client during onboarding and alerts firm to Sanctions, PEP or Adverse Media risk. Saves time and removes human error from staff having to re-key names and details into separate search and screen software programmes. Source of Funds - Open Banking checks Conducts automated checks into end client’s bank account to verify stated sources of funds such as salaries, pensions and investment income. Reduces time taken by staff in the analysis of source of funds documentation. Automated risk assessment & scoring Automatically calculates a pre-final risk score based on end-client input of information during onboarding. Can be onboarder-supplemented for final risk rating. Injects consistency and discipline into the process and reduces the risk of the firm being adversely affected by poor staff understanding of risk assessment requirements. Digital signature of documents and notices Allows end-client digitally to acknowledge and sign required contractual and regulatory agreements, notices and terms & conditions. Saves time and trouble on staff having to detach email attachments and manually save them to the (correct) file. AI NLP Biz-model validation – Positive Screening Conducts automated silent ‘genuineness’ checks against entity end-clients to search for positive indicators that their business operations are genuine - e.g. by analysing their staff profiles, marketing/outreach and customer review activities against known genuine businesses of the same type. Saves time on staff having to conduct multiple manual web searches to obtain the same results (which many will not have the skill or experience to do anyway). AI-enabled document analysis Reads documents such as passports, utility bills and bank statements uploaded by end-clients to check that they are within date and are of the type stated. Saves time on staff review of documentation and reduces human error – e.g. failing to spot that documents are out of date. Companies House API - Active Directors auto-upload Auto-imports the names and details of current active directors of entities during onboarding and asks end-clients to confirm or change. Easier for clients to complete and saves time on manual research on the Companies House website. Companies House API – Persons of Significant Control auto-upload As above but for Persons of Significant Control. Onboarding pipeline tracker and management tool Allows you to keep track of how many new clients have either completed, or have yet to complete, onboarding (plus their relevant assigned fee-earners) and to intervene if things are going too slowly. Tim Parkman Managing Director, Lessons Learned Ltd
Friday 25 July 2025
When Boards Break—and How the Corporate Governance Code tries to pull them back
Friday 11 July 2025 The compliance landscape continues to shift as regulators implement new frameworks and businesses adapt. Below are the latest developments across four core areas of financial crime compliance. Anti-Money Laundering & Counter-Terrorist and Proliferation Financing The European Anti-Money Laundering Authority (AMLA) officially began operations on 1 July 2025, gaining direct and indirect supervisory powers over high-risk financial entities to harmonise AML/CFT standards across the EU. Denmark also introduced new requirements on the same date, mandating that operators providing gambling services across EU/EEA markets register in the Danish Gambling Authority’s Money Laundering Register to curb illicit transactions. 🔗 Read more: Clarity on the implementation timeline for a strengthened EU AML/CFT framework (Arendt) 🔗 Read more: Denmark updates anti-money laundering requirements (ReadWrite) 2. Anti-Fraud The Home Office published its latest update to the Independent Review of Disclosure and Fraud Offences on 3 July 2025, highlighting the need for enhanced whistleblowing mechanisms, public–private partnerships, and legislative reforms to tackle fraud, which now accounts for an estimated 43% of crime in England and Wales. Meanwhile in Indonesia, the Financial and Development Supervisory Agency (BPKP NTB) convened a focus group on 2 July to accelerate fraud risk assessment in regional governments, calling for stronger early-detection controls and a fraud-aware culture. 🔗 Read more: Independent Review of Disclosure and Fraud Offences: update July 2025 (GOV.UK) 🔗 Read more: BPKP NTB urges stronger local anti-fraud measures (ANTARA News) 3. Anti-Bribery & Corruption The latest “Anti-Bribery Compliance in 2025” report outlines significant global updates: an expanded scope covering both public- and private-sector bribery (including foreign bribery), tougher sanctions tied to global turnover, and new offences for evidence tampering and whistleblower retaliation. In the UK, anti-corruption priorities are heating up as the government appoints Tom Hayhoe as Covid Anti-Corruption Commissioner and Margaret Hodge as Anti-Corruption Champion, with a new national strategy expected to steer enforcement in the months ahead. 🔗 Read more: Anti-Bribery Compliance in 2025: Key Global Updates (JDSupra) 🔗 Read more: Hot Topics in Anti-Bribery and Corruption for 2025 (UK Finance) 4. Ethics & Codes of Conduct The ICAEW Code of Ethics 2025 took effect on 1 July, embedding new requirements around professional mindset, technology use, integrity in group audits, and non-compliance reporting (NOCLAR). Down under, the Strata Community Association Australasia launched a unified National Code of Ethics for strata managers and service providers in Australia and New Zealand, setting ten core principles and an Ethical Decision-Making Framework to raise industry standards. 🔗 Read more: Code of Ethics 2025: are you ready? (ICAEW) 🔗 Read more: SCA Unveils National Strata Ethics Code (Mirage News) Lessons Learned Ltd works with multilateral institutions, private sector corporations and NGOs to embed best practices in financial crime compliance and business ethics through leadership, governance, policies and training.
Friday 4 July 2025
Friday 27 June 2025
13 June 2025 The financial crime compliance landscape continues to evolve, with regulators tightening enforcement and businesses adapting to new risks. Below is a summary of recent developments across key areas of financial crime compliance. 1. Anti-Money Laundering & Counter-Terrorist and Proliferation Financing The Financial Action Task Force (FATF) has updated its recommendations, reinforcing measures to combat money laundering and terrorist financing. The UK government has also enhanced AML training requirements, ensuring businesses remain compliant with evolving regulations. Additionally, the latest AML Supervision Report highlights the importance of risk-based monitoring and cooperation between financial institutions and regulators. Read more: FATF Recommendations , HMRC AML Training , UK AML Supervision Report 2. Anti-Bribery & Corruption The C5 International Anti-Corruption Conference in London brought together global experts to discuss enforcement trends and compliance strategies. Meanwhile, UK Finance has identified three key priorities for anti-corruption efforts in 2025, including corporate liability for fraud and enhanced regulatory oversight. The Economic Crime and Corporate Transparency Act is set to reshape corporate compliance, making it easier to prosecute companies for bribery and corruption. Read more: Anti-Corruption Conference , UK Finance ABC Trends , Economic Crime Act 3. Anti-Fraud The UK Finance Annual Fraud Report reveals that fraud losses exceeded £1.1 billion in 2024, with Authorised Push Payment (APP) fraud declining but remote purchase fraud increasing. The Economic Crime & Corporate Transparency Act (ECCTA) introduces a new corporate offence for failure to prevent fraud, requiring businesses to implement reasonable prevention procedures. Compliance experts are advising firms on how to prepare for these new fraud prevention measures before enforcement begins in September 2025. Read more: Annual Fraud Report , ECCTA Fraud Prevention , Failure to Prevent Fraud 4. Ethics & Codes of Conduct The ICAEW Code of Ethics has been updated, introducing new provisions on professional behaviour, technology risks, and role expectations for accountants. In Scotland, the Police Ethics, Conduct & Scrutiny Act is set to enhance ethical oversight within law enforcement. Meanwhile, corporate compliance programs are being strengthened, with businesses updating their Codes of Ethics to align with evolving regulatory expectations. Read more: ICAEW Code of Ethics , Scottish Police Ethics Act , Corporate Ethics Code Lessons Learned Lessons Learned works with multilateral institutions, private sector corporations and NGOs to help promote and embed best practice in financial crime compliance and business ethics and integrity through leadership, governance, policies and training. For more insights, visit Lessons Learned or follow us on LinkedIn .