Integrity in Mobile Financial Services AFI, SBS Peru and WB Forum, - - PowerPoint PPT Presentation
Integrity in Mobile Financial Services AFI, SBS Peru and WB Forum, Lima Peru, May 12-13 2011 Pierre Laurent Chatain Wameek Noor Najah Dannaoui Lead Financial Sector Specialist Consultant Consultant (Financial Systems) (Financial Systems)
AFI, SBS Peru and WB Forum, Lima Peru, May 12-13 2011
Pierre Laurent Chatain Lead Financial Sector Specialist (Financial Systems) The World Bank Wameek Noor Consultant (Financial Systems) The World Bank Najah Dannaoui Consultant (Financial Systems) The World Bank
Anatomy of Current Mobile
Money Business Models
New Outcomes in terms of Risk Stocktaking of Regulatory
Practices and Related Policy Guidance Currently Observed
KYC/CDD Agents Regulation Reporting Obligations Supervisory/Enforcement
Responsibilities
Other Contentious Issues
2
UK, France, Russia, Kenya, Zambia, Malaysia, Philippines and Mexico
3
From Regulators
IT security consumer protection AML/CFT
From Industry
Too much regulation kills the business
From Policymaker
Financial inclusion impeded
4
5
6
7
Transferred the corresponding amount to a mobile phone Amount transferred to a mobile phone through G-Cash Transferred the corresponding amount to a Transferred the corresponding amount to a
G-Cash business center
account
Iphone was never received by
Mr E. cashed out victim’s money using his mobile phone
account
account
through Ebay
8
Money collected through G-Cash remittances the promised deployment abroad never materialized
Advertised fake overseas employment offers as caregivers and nurses
VICTIMS
Sent between $65 and $975 for training and processing fees
Smaller payments (size of transactions and volume of
Limitations of cross-border operations and operations in
Geographical restrictions Limitation to one account for one cellular phone. Irrespective of business model, sophisticated internal
9
Type of Risk Possible ML/TF Risks Key Control Measures Anonymity
Off-the-branch or non-face-to-face customer origination Innovative KYC and identity verification procedures MTN Banking – SA Wizzit - SA Unauthorized use of mobile phones for financial transactions Advanced identification mechanisms
Elusiveness
Use of mobile phone at the layering stage
Use of multiple m-FS accounts Limits on transactions
Customer profiling
Reporting
Monitoring
Cross-border mobile-to-mobile remittances In-field service risk assessment
Identification of sender
10
Type of Risk Possible ML/TF Risks Key Control Measures Rapidity Lack of capacity to monitor/freeze real-time messaging and settlement Integrated system of internal controls
Managing risk of 3rd party service providers
External Legal issue: Poor
Oversight loopholes for providers Guidelines on m-FS and risk management
Lack of regulation, supervision of new providers M-FS Shell companies Regulator-provider collaboration (Philippines, Malaysia) New e-finance laws and guidelines to m-FS providers (Korea) Clear licensing of non-bank m-FS (Malaysia, Korea) IT & AML supervision capacity (Philippines) AML/CFT training (South Africa)
11
HOW TO UNDERSTAND AND INTERPRET THE FATF CDD/KYC STANDARDS: Under Rec. 5, customer should be identified and his identity verified
FATF allows reduced CDD/KYC measures (not full exemption of CDD/KYC)
in circumstances when low risk can be PROVEN
A Risk Assessment can be used to prove cases of low risk, which would merit
reduced CDD/KYC measures
Full exemption of CDD/KYC for certain financial activities (not specific
financial transactions) is only permitted if:
(I) policymakers are able to prove that the risk is low i.e. they can demonstrate
that specific and unique circumstances around the activity generate a low level
(ii) that they are able to provide evidence in that respect
12
Customers do not have the relevant identification
Flexibility accorded to KYC/CDD standards not always
Countries have not tailored AML/CFT standards to the
Policymakers feel lack of clarity/guidance on KYC/CDD
13
Source: Financial Access Database
Percentage of countries that require certain criteria to open an account
14
1.
2.
3.
15
16
Gradual KYC scheme adopted by Moneybookers LTD, an internet payment provider in the UK
Source: Word Bank
Different approaches in ways AML/CFT regulations
Uncertainty about agent AML obligations, including
Do agents needs to be regulated? Do they need to
17
Agents (Retailers) should not be regulated
Under FATF standards, they are not required to be license
They are not the account providers They are not the “outsourcee” of the MNO in the sense of
They act on behalf of the Account Provider Impossible to regulate and supervise thousands of agents
Principle monitors all regulation and supervision of agents
18
Agents should be covered by certain AML/CFT
Perform some AML/CFT checks including KYC on the
Record keeping STRs to the Account Provider
Duties should be specified between the agency
19
Ultimate Legal Liability
Ultimate Legal Liability lies on the AP
KYA (Know Your Agent)
Principal (Account Provider) held accountable for AML/CFT
Should perform KYC/CDD on agents prior to recruitment, fit
20
Example of Countries where Providers Assume Liability for Agents
In the Philippines, the e-money circular explicitly states that it is the
responsibility of the institutions to ensure that their agents comply with all AML laws, rules and regulations. Section 4 (e) states the following: “it is the responsibility of the electronic money issuers to ensure that their distributors/e-money agents comply with all applicable requirements of the Anti-Money Laundering laws, rules and regulations.” Similar Situation found in Brazil, Colombia, Brazi and Peru. Exception currently only is Kenya, where the provider does not assume liability for its agents legally
21
FATF Standards
Financial Institutions are required to report suspicious activity to the FIU
The Current Challenge
Since Mobile Money involves multiple entities such as agents/retailers, there
is uncertainty in terms of who should bear the final reporting responsibilities to the FIU
Uncertainty in terms of scope and nature of information to be reported in
the particular context of mobile money, including consumer communications data and need to respect consumer data privacy issues Our Proposed Solutions
Agents should report suspicions to the AP AP should be responsible for reporting STRs to national authorities as they
are the principal manager (and should be legally held responsible) for account records and transactions
22
FATF Standards
R. 29: supervisors should have adequate powers to monitor and
ensure compliance by financial institutions with requirements to combat ML/TF including the authority to conduct inspection The Current Challenge
Mobile Banking is a new category of financial activity involving new
types of players not familiar to supervisory agencies
Confusion about who is the primary supervisor for MNOs Possible conflict between Agencies that hold supervisory
responsibilities (Central Bank, Communications Commission and FIU)
Complexity of supervision for cross-border transactions and cross-
border mobile remittances
23
Many countries have chosen the Central Bank to be
There is more pros in favor of entrusting the Central
Cons include: scarce human resources, limited budget,
24
Supervisors need to be entrusted with the same
Supervisors should be allowed to conduct onsite
Supervisors should also have access to personally
25
Low risk low value products (accounts, payment and remittance services)
Adopt risk-based and tiered approaches to regulation / supervision
Foster public / private dialogue to ensure practicality, proportionality
Clarify some thorny issues in relation to Agents, Supervision, STRs
Simplified identification requirements – including on verification
Creativity in and tailoring of CDD requirements (types of identifiers for instance)
26
Industry to engage in dialogue with national authorities to
Establish clear contractual arrangements between mobile
Provide ongoing training to their staff as well as their retailers Establish effective internal control mechanisms to trace
27
Pierre-Laurent Chatain
pchatain@worldbank.org
Wameek Noor snoor@worldbank.org Najah Dannaoui ndannaoui@worldbank.org
28