This article is a treasure trove of information and a powerful authority onthe topic.

Over 12,000 fraud crimes reported annually a 'growing concern', Oireachtas Finance Committee hears. 

Authorised push payments involving the likes of invoice redirection, romance fraud and investment fraud are made using money mules and gardaí say it is a growing area of concern for them.Senior members of the force told the Oireachtas Finance Committee this type of fraud is highly complex, can take place across several jurisdictions and is extremely lucrative.

https://www.rte.ie/news/2023/0531/1386748-economic-crime/

https://www.linkedin.com/feed/update/urn:li:activity:7069747425216745472

​16,000 Irish victims of iSpoof site had €40m taken from them – with criminals posing as banks, gardaí and the HSE

Up to 300 suspects using fraudster website to con innocent people have been identified.

You can see via the article two steps of the bog standard definition of moneylaundering, being layering and integration. One integration output includes a Lamborghini, two Range Rovers worth £110,000 and an £11,000 Rolex.

The predicate offences arise from:  

• Smishing – a combination of the words “SMS” and “phishing” – a scam where fraudsters use mobile phone text messages to trick a person into opening a malicious attachment or link.
• Vishing - convincing victims that a caller is from a trusted institution such as a bank or government department when it in fact it’s from a fraudster trying to get their financial information.

https://www.independent.ie/irish-news/crime/16000-irish-victims-of-ispoof-site-had-40m-taken-from-them-with-criminals-posing-as-banks-gardai-and-the-hse/a1038268151.html

https://www.linkedin.com/posts/peteroakes_moneylaundering-bitcoin-cryptocurrency-activity-7069727160097202176-cjBo

Ireland is at the centre of an international money laundering operation in which global criminal gangs are buying millions of euro of legitimate products to mask stolen money. 

Detective Chief Superintendent Pat Lordan, the head of the Garda National Economic Crime Bureau (GNECB), spoke to The Journal at the European Anti-Financial Crime Summit.

Lordan said that his detectives have seen significant successes against organised crime groups but that more work and adequate resourcing is needed to continue that trend.

“We’ve increased detections, charged and convicted more people – we’ve increased preventative methods – taken on organised crime groups.

“A lot of countries feel that it is better to not know about this because then they look okay but my view is that no country is okay in this realm – you have to dig in, find the crime and deal with it.
“Ireland is in a good place dealing with money laundering crimes but I am concerned about the new methods that have appeared in recent times,” he said.

Lordan said that one key method that has recently become prevalent, not jut in Ireland but across Europe, is “trade-based money laundering”.

This is a method whereby criminals will use money made through crime, drug dealing and fraud mostly, to then purchase legitimate goods which through a complex web of distributors and deals to remove the paper trail back to them.
“When they steal money in Ireland or where ever, they want to get that money back to their boss in their home country.
“The difficulty if carrying the money you have to go through an airport or a port and you may get stopped by customs or law enforcement and lose the money.

“One organised crime group we are dealing with is transferring that money into product, real goods such as pharmaceuticals, shoes, machinery, perfume anything that they can sell on.
“They are then shipping those goods to their home country and the full value of the goods is repatriated to the home country where the leadership is operating. The goods have been paid for with the money they have got through fraud here in Ireland,” he explained. 

Lordan has said that this is a multinational crime – spread across the European continent. He explained that the payments could be spread across three different accounts in three different countries to mask their original origin.
He said An Garda Síochána are liaising with German, Swiss, Belgian, Italy and French police to deal with the problem. 
There are also links between the GNECB and police in the US and South Africa.

“We are leading out on this along with some really expert help and advice with Interpol – we’ve done a lot of work in this area but there is more work needed,” he explained. 

https://www.thejournal.ie/money-laundering-pat-lordan-6077558-May2023/

This article provides a broad overview of money laundering issues relating to Ireland. It is a good authoritative source if you wished to drive home to your colleagues the view of garda on money laundering.

Ireland at the centre of an international money laundering operation in which global criminal gangs are buying millions of euro of legitimate products to mask stolen money.

Detective Chief Superintendent Pat Lordan, the head of the Garda National Economic Crime Bureau (GNECB) said that his detectives have seen significant successes against organised crime groups but that more work and adequate resourcing is needed to continue that trend.

“We’ve increased detections, charged and convicted more people – we’ve increased preventative methods – taken on organised crime groups.

“A lot of countries feel that it is better to not know about this because then they look okay but my view is that no country is okay in this realm – you have to dig in, find the crime and deal with it.

“Ireland is in a good place dealing with money laundering crimes but I am concerned about the new methods that have appeared in recent times,” he said.
​
Lordan said that one key method that has recently become prevalent, not jut in Ireland but across Europe, is “trade-based money laundering”.

Mark Bishop Head of Intelligence Operations with the National Crime Agency (NCA) in the UK spoke of the NCA’s efforts to rid London of Russian oligarch money laundering. 

​www.thejournal.ie/money-laundering-pat-lordan-6077558-May2023/

A trusted international gang member jailed for "industrial scale" money laundering has failed in an appeal against his six-year jail sentence and has been denied the return of a "high-end" Mercedes Benz that was seized by the State.
​
Thomas Rooney (53) had his Mercedes S350, worth around €50,000, forfeited to the State in January 2022 by order of the Special Criminal Court.

Rooney, of Betaghstown, Bettystown, Co Meath, was sentenced after he pleaded guilty at the Special Criminal Court to offences under Section 7 of the Criminal Justice (Money Laundering and Terrorism Financing) Act 2010.
He was found to be in possession of €289,770 and £65,025 (€77,000) in crime cash in a blue Nike hold-all at Spar car park, Donore Road, Drogheda on May 11th, 2020.

Rooney, who was described at sentencing as a "mid-to-high level" member of a transnational crime group, also pleaded guilty to possessing €254,840 in a black hold-all also at Donore Road and to possessing €7,650 at North Road, Drogheda, on the same date.

​https://www.breakingnews.ie/ireland/international-gang-member-fails-in-appealing-sentence-for-industrial-scale-money-laundering-1466861.html

A former League of Ireland footballer and two other men have been jailed after they moved just under €200,000 in criminal cash.
Edward Fitzpatrick, 39, of Ballyfermot Road, Ballyfermot, Dublin 10, pleaded guilty to one count of money laundering at the same address on February 12, 2021. Jonathon Barton, 42, with an address at Wheatfield Avenue, Clondalkin, Dublin 22 pleaded guilty to a count of money laundering at Circle K, Kilshane Cross, Finglas on February 12, 2021.
Gary O'Neill, 40, of Churchfields, Ashbourne, Co. Meath pleaded guilty to two counts of money laundering at Circle K, Kilshane Cross, Finglas on February 12, 2021. The former professional footballer has no previous convictions. At a previous Dublin Circuit Criminal Court sentence hearing, Garda Detective John Paul Flanagan told Fiona Crawford BL, prosecuting, that a surveillance operation of Barton began after gardaí received a confidential tip-off.
They observed a van driven by Barton pull up outside a property, later identified as Fitzpatrick's residence, at 3.25pm on the day in question. Barton parked the van in the driveway, then got out. Fitzpatrick emerged from the house and both men entered the property.

https://www.dublinlive.ie/news/dublin-news/former-league-ireland-player-among-26771374

A college student has received a suspended sentence for laundering money which was linked to a redirect scam in which another college student lost over €14,000 meant for her college fees.

The victim, originally from New Zealand and in her final year of studying medicine at UCD, contacted gardaí after money put into her bank account by her father for her college fees never arrived.

Detective Garda Barry Griffin told Pieter Le Vert BL, prosecuting, that the UCD student made arrangements with her father in New Zealand for him to transfer money for her college fees into her Bank of Ireland account.
​
When the money did not arrive, and the woman's father said he had already got a receipt for it, the woman made inquiries and found it had gone into an account in her name in Balbriggan, which she never set up.

https://www.breakingnews.ie/ireland/medical-student-lost-e14000-when-college-fees-were-redirected-in-money-laundering-scam-1445125.html

On 13 September 2022, the Central Bank of Ireland (the Central Bank) reprimanded and fined Danske Bank A/S, trading in Ireland as Danske Bank, €1,820,000 pursuant to its Administrative Sanctions Procedure for three breaches of the Criminal Justice (Money Laundering & Terrorist Financing) Act 2010, as amended (the CJA).

The three CJA breaches stem from the failure by Danske Bank A/S (Danske) to ensure that its automated transaction monitoring system monitored the transactions of certain categories of customers of its Irish branch1, for a period of almost nine years, between 2010 and 2019.

The root cause of this failure was historic data filters that were applied within Danske’s automated transaction monitoring system, first implemented in 2005 and rolled out to the Irish branch in 2006. Danske failed to consider the appropriateness of these historic data filters within the system or make any adjustments to the system to take account of the specific requirements of the CJA when it came into force in Ireland in 2010. This led to the erroneous exclusion of certain categories of customers from transaction monitoring, including some customers rated by Danske as high and medium risk, which caused the three breaches of the CJA in this case.

In May 2015, Danske became aware, as a result of an internal audit report, of the inadequacies in its transaction monitoring system and the nature of the risks they posed, yet it failed to notify the Irish branch of these issues and to take adequate action for almost four years. It is estimated that between 31 August 2015 and 31 March 2019, 348,321 transactions, equating to approximately one in forty or 2.43% of all transactions processed through the Irish branch were not monitored for money laundering and terrorist financing risk.

The Central Bank has determined the appropriate fine to be €2,600,000, which has been reduced by 30%2 to €1,820,000 in accordance with the early settlement discount scheme provided for in the Central Bank’s Administrative Sanctions Procedure (ASP).

This is the first penalty that the Central Bank has imposed on a financial institution which is incorporated and supervised outside of Ireland (i.e. in Denmark) but which operates in Ireland as a branch on a passport basis3. The Central Bank has responsibility for Anti-Money Laundering/Countering the Financing of Terrorism (AML/CFT) supervision of Danske’s branch operations in Ireland.

The three breaches comprised of failures by Danske under the CJA relating to:

• Transaction Monitoring: Danske failed to ensure that its automated transaction monitoring system monitored the transactions of certain categories of customer for money laundering and terrorist financing risk at its Irish branch for a period of almost nine years.
• Enhanced Customer Due Diligence: In failing to conduct automated transaction monitoring in respect of certain categories of customers, Danske’s Irish branch did not take into consideration an important part of due diligence i.e. transaction monitoring data, which is necessary to identify and assess money laundering/terrorist financing risks specific to those customers and identify where any consequential additional measures might be required.
• Anti-money laundering / Countering the Financing of Terrorism policies, procedures and controls: The policies, procedures and controls put in place by Danske did not operate to identify the erroneous exclusion of certain categories of customers from automated transaction monitoring.

The three breaches have been admitted by Danske.

The Central Bank’s Director of Enforcement and Anti-Money Laundering, Seana Cunningham, said: “The importance of transaction monitoring in the global fight against money laundering and terrorist financing cannot be overstated. It is imperative that firms implement robust transaction monitoring controls which are appropriate to the money laundering risks present and the size, activities, and complexity of their business. These controls must be applied to all customers, irrespective of their risk rating, as they enable firms to detect unusual transactions or patterns of transactions and where required apply enhanced customer due diligence to determine whether the transactions are suspicious.

The Central Bank recognises that while firms may rely on automated solutions for transaction monitoring, they must ensure that systems employed for this purpose are appropriately monitored, and calibrated correctly to take account of the actual money laundering or terrorist financing risk to which the firm is exposed. In this case, the transaction monitoring system used by the Irish branch was a Danske group wide automated system that had applied historic data filters which operated to erroneously exclude certain categories of customers from being monitored for a period of almost nine years. This led to the serious breaches in this case.

This case highlights the requirement for firms, including those operating in Ireland on a branch basis, to ensure that group systems, controls, policies and procedures are compatible with Irish legal requirements and to ensure that their governance framework and risk management measures operate effectively. These should be risk-based and proportionate, informed by firms’ business risk assessment of their money laundering and terrorist financing risk exposure.

Danske became aware that its automated transaction monitoring system erroneously excluded certain categories of customers in May 2015 but failed to rectify it or notify the Irish branch or the Central Bank of this issue. It was only in October 2018 when the Irish branch identified the issue that steps were taken to rectify it, which were completed in March 2019. However, the Central Bank was not informed of the issue until February 2019. The failures to rectify the issue and to notify the Central Bank promptly are aggravating factors in this case. The Central Bank expects firms to bring failures to its attention at the earliest opportunity and to act expediently to address identified errors. The Central Bank will hold firms, including those operating in Ireland on a passporting basis, fully accountable where they fail to take such actions.

Anti-money laundering and countering the financing of terrorism compliance is, and will remain, a key priority for the Central Bank. This case demonstrates our willingness to pursue enforcement actions and impose sanctions where firms fail in their anti-money laundering/countering the financing of terrorism compliance.”

Background
Danske is a credit institution incorporated in Denmark and authorised there by the Danish Financial Supervisory Authority (the Danish FSA). It is the largest bank in Denmark serving personal, business, corporate and institutional clients and operates in a number of other countries via a branch network.

Danske’s Irish branch operates on a ‘freedom of establishment’ basis i.e. because Danske is established and authorised in Denmark, it is entitled to ‘passport’ in to Ireland and establish a branch here. The Irish branch is not a separate legal entity to Danske, and it is for this reason that Danske is the named party in the enforcement action. Supervision of the Irish branch sits predominantly with the Danish FSA (as home regulator) but the Central Bank (as host country) regulates it for conduct of business rules and is responsible for supervision of compliance by Danske’s branch operations in Ireland with AML/CFT obligations under the CJA.

Danske’s Irish branch predominantly provides banking services to large corporate and institutional customers including the public sector in Ireland4. Consequently, transaction volumes through the Irish branch, including cross-border funds transfers, are substantial. The Irish branch utilises a group wide automated transaction monitoring system that is implemented and managed by Danske from Denmark.

The Legislative Framework
The CJA requires a credit and financial institution to monitor any business relationship that it has with a customer to the extent reasonably warranted by the risk of money laundering/terrorist financing (ML/TF). ‘Transaction Monitoring’ forms part of a broader system of interconnected elements that comprise a firm’s defence against ML/TF and is an important method which assists firms in identifying high risk situations which may require enhanced due diligence on a customer.
Firms are also required to adopt and maintain a system of policies, procedures and controls in relation to AML/CFT, and to monitor compliance with those policies, procedures and controls. Such policies, procedures and controls include, inter alia, those dealing with the monitoring of transactions for the identification and scrutiny of any complex, large or unusual patterns of transactions.

The Investigation
The Central Bank’s investigation confirmed serious inadequacies within Danske’s automated transaction monitoring system. Historic filters were applied to Danske’s automated transaction monitoring system which erroneously excluded certain categories of customers from transaction monitoring. This led to Danske being in breach of certain obligations under the CJA which gave rise to the three breaches in this case (see below under Prescribed Contraventions for further detail).

The investigation found that the exclusion of certain categories of customers from transaction monitoring was first identified in a May 2015 internal audit report. The May 2015 internal audit report also identified inadequacies with Danske’s transaction monitoring policies for certain categories of customers. However, these internal audit findings were not communicated by Danske to either its Irish branch or the Central Bank. Steps were only taken to monitor the transactions of these customers in October 2018 when the Irish branch became aware of the issue, which were completed by the end of March 2019. The Central Bank was not informed of this issue until February 2019.

To illustrate the scale of the failure to monitor, it is estimated that, during the period from 2015 to 2019 when Danske was aware of the issue, 348,321 transactions, equating to approximately one in every forty or 2.43% of all transactions processed through the Irish branch were not monitored.

Danske has confirmed to the Central Bank that by the end of March 2019 it had fully deactivated the erroneous historic filters which gave rise to the breaches in this case. Danske has also confirmed that by April 2020, it completed a third party review exercise for the period 2016 to 2019. Danske has advised that the outcome of the review showed that the risk of suspicious transactions amongst those examined was very low.

Prescribed Contraventions
The Central Bank's investigation identified three breaches of the CJA, as set out below.

Breach by failure to conduct transaction monitoring
Between 15 July 2010 and 31 March 2019 Danske breached sections 30B(1)(a), 35(3) and 36A(1) (as applicable) of the CJA by failing to monitor the transactions of certain categories of customers for money laundering and terrorist financing risk. The failure meant that the Irish branch was not in a position to:

• Scrutinise these customers’ transactions to the extent reasonably warranted by the risk of ML/TF;
• Determine whether any of the unmonitored transactions were complex, unusually large, of an unusual pattern or whether they had an apparent economic or lawful purpose; or
• Identify and assess the risk of ML/TF having regard to the relevant business risk assessment for the purposes of determining the extent of measures to be taken under section 35(3) of the CJA in relation to these customers.

Breach in relation to enhanced customer due diligence measures
Between 14 June 2013 and 31 March 2019 Danske breached section 39 of the CJA on the basis that by failing to conduct transaction monitoring on certain categories of customers, it did not take into consideration an important part of due diligence i.e. transaction monitoring data, which is necessary to identify and assess ML/TF risks specific to those customers and identify whether additional measures were required on these certain categories of customers.

Breach in adopting ML/TF policies and procedures
Between 15 July 2010 and 31 March 2019, Danske breached sections 54(1), 54(2) and 54(4) of the CJA on the basis that the policies, procedures and controls that were in place did not operate to identify the erroneous exclusion of certain categories of customers from transaction monitoring as set out above. The May 2015 internal audit report identified inadequacies with Danske’s transaction monitoring policies for certain categories of customers and Danske took some steps in 2015 to address this by introducing a new AML/CFT policy. Nonetheless, certain categories of customers continued to be excluded from transaction monitoring in the Irish branch.

Penalty Decision Factors
In deciding the appropriate penalty to impose, the Central Bank had regard to the Outline of the Administrative Sanctions Procedure, dated 2018 and the ASP Sanctions Guidance, dated November 2019. It considered the need to impose a level of penalty proportionate to the nature, seriousness and impact of the contraventions.

The following particular factors are highlighted in this case:

The Nature, Seriousness and Impact of the Contraventions
Two of the breaches were ongoing for almost nine years, and the other was ongoing for almost six years. The breaches represent serious weaknesses in Danske’s internal AML/CFT controls. Monitoring transactions, ensuring that an important part of due diligence is taken into consideration to identify where additional measures are required, and having effective policies, procedure and controls are critical parts of a firm’s internal AML/CFT framework. Danske’s failures in this regard in respect of certain categories of customers that transacted through its Irish branch reveal serious weaknesses in these controls.

From its May 2015 internal audit report, Danske became aware of the inadequacies in its transaction monitoring system, the nature of the ML/TF risks that they posed and that it was at risk of non-compliance with legal requirements. Despite this, Danske failed to take adequate action for almost four years or to inform the Irish branch of these internal audit findings. The breaches of the CJA after this point were reckless.

The Central Bank considers that the breaches in this case represent a serious departure from the required standard.

Two Aggravating Factors
Failure to Report and Failure to Remediate promptly
Danske was on notice of the inadequacies in its transaction monitoring system which erroneously excluded certain categories of customer from the time that they were uncovered in the May 2015 internal audit report but it did not report the matter to the Central Bank until February 2019, almost four years later. Furthermore, Danske continued to exclude certain categories of customers from transaction monitoring until March 2019.
The Central Bank views both of these failures as particularly aggravating given the context of increased supervisory engagement it initiated in July 2018 with Danske following media reports of AML/CFT concerns in other jurisdictions in relation to Danske.

Both of these failings are serious aggravating factors in this case.

Other Considerations
The following were also taken into consideration when determining the appropriate sanction:

• The Irish branch’s financial position and the need to impose a proportionate level of penalty. The Central Bank notes Danske’s cooperation in this investigation and this enforcement action against Danske is now concluded.
• The need to have an appropriate deterrent impact on Danske and the regulated financial services sector in general.

1 This included a range of customers, including those categorised by Danske as banks, insurance, stockbrokers and specialised lending customers.
2 Further information is available on the Early Discount Scheme at point 4 of the Notes section.
3 In this case, Danske is “passporting in” to Ireland i.e. it uses an authorisation obtained in Denmark to sell its products or services in Ireland. The legal entity remains in Denmark, and it operates in Ireland by way of a ‘branch’. Further information on ‘passporting’ is available at point 8 of the Notes section.
4 This includes the Central Bank.

Notes

1. The fine imposed by the Central Bank was imposed under Section 33AQ of the Central Bank Act 1942. The maximum penalty under Section 33AQ is €10,000,000, or an amount equal to 10% of the annual turnover of a regulated financial service provider, whichever is the greater.
2. This is the Central Bank’s 150th enforcement outcome, bringing the total fines imposed by the Central Bank to just under €300 million.
3. Funds collected from penalties are included in the Central Bank’s Surplus Income, which is payable directly to the Exchequer, following approval of the Statement of Accounts. The penalties are not included in general Central Bank revenue.
4. The fine reflects the application of an early settlement discount of 30%, as per the discount scheme set out at pages 24 – 25 of the Central Bank’s Outline of the Administrative Sanctions Procedure 2018, which is here. Under the ‘Early Settlement Discount Scheme’, the Central Bank may allow a discount up to a set maximum to be applied to a sanction that it would otherwise expect to be imposed on a regulated entity after considering the sanctioning factors. Any discount applied pursuant to the Early Settlement Discount Scheme will be applied to the overall sanction, which will have been arrived at by reference to the relevant sanctioning factors. Further information on the ‘Early Settlement Discount Scheme’ is included as an FAQ on the Central Bank website.
5. A copy of the ASP Sanctions Guidance November 2019 is available here. This guidance provides further information on the application of the sanctioning factors set out in the Outline of the Administrative Sanctions Procedure 2018 and the Inquiry Guidelines prescribed pursuant to Section 33BD of the Central Bank Act 1942 (a copy of which is here).These documents should be read together.
6. Transaction monitoring is a supervisory priority for the Central Bank. Reference was made to its importance in an AML Bulletin issued in October 2020 and in a speech given by the Deputy Governor (Consumer and Investor Protection), Derville Rowland in January 2020.
7. In September 2019, the Central Bank issued the Anti-Money Laundering and Countering the Finance of Terrorism Guidelines for the Financial Sector.
8. Passporting is an EU mechanism which enables banks and financial services companies that are authorised in any EU/EEA state to trade in any other EU/EEA state with minimal additional authorisation. Passporting is possible because all firms operating within the EU/EEA must comply with the same prudential rules and regulations when providing financial products and services. Firms availing of the passporting mechanism to provide services or establish a branch in another EU/EEA state must also comply with national legislative requirements. Further information on "passporting".

​

• https://www.centralbank.ie/news-media/press-releases/danske-bank-a-s-fined-by-the-central-bank-of-ireland-for-transaction-monitoring-failures-15-september-2022

Anti-money laundering expert sentenced for allowing criminal money to be sent abroad

The former chairman of a UK group that represents the payment services industry has been sentenced today for an offence in connection with the laundering of the proceeds of an investment fraud worth £850,000 and involving more than 60 victims.

Dominic Thorncroft, 56, was sentenced to 18 months' imprisonment suspended for 18 months at Southwark Crown Court of one count of failing to alert the authorities to money laundering, one count of breaching money laundering regulations and four counts of retaining a wrongful credit. Thorncroft was the former Chair of the Association of UK Payment Institutions who worked with lawmakers and financial regulators providing anti-money laundering advice and training.
Thorncroft held himself out as a money laundering expert whose role was to protect members of the public and businesses from economic crime. However, he was a professional enabler to fraudsters, allowing his business to transfer their criminal proceeds abroad.

An investigation by the Metropolitan Police, which began in 2016, found evidence that linked Thorncroft to an investment fraud which took place in 2014. This investigation revealed that Thorncroft had allowed his Money Service Bureau business to be used by the fraudsters to transfer money to Hong Kong and China.

The CPS and the police were able to prove that Thorncroft should have known or suspected that the money passing through his business’s bank accounts was criminal property. Despite his substantial knowledge and expertise of money laundering, Thorncroft failed to alert the authorities to the suspicious activity and allowed it to continue.

Stephane Pendered of the CPS said: “Dominic Thorncroft did not commit the fraud himself. However, his actions have allowed £850,000 defrauded from 60 individuals to be dispersed across the world.

“Thorncroft promoted himself as an anti-money laundering expert but failed to live up to the standards he set for others, so when his business was clearly being used to launder criminal property, he failed to follow his own advice and report what was happening to the authorities.”

The CPS is committed to continue to work alongside law enforcement to bring prosecutions where professional enablers are seen to assist criminals in this way. The CPS is also committed to working more widely with banks, businesses, charities and beyond, to help educate others so that they can avoid becoming victims of economic crime.

This case was prosecuted by the Specialist Fraud Division of the CPS, a dedicated prosecuting team which deals with the most serious, complex, and difficult economic crime cases, including corruption and money-laundering.

Notes to editors

• Stephane Pendered specialist prosecutor for the CPS Specialist Fraud Division
• Dominic Thorncroft (DOB: 19/09/64) was sentenced to 18 months' imprisonment suspended for 18 months and ordered to do 250 hours of unpaid work
• The Specialist Fraud Division is a dedicated CPS team playing a leading role in the fight against serious and complex economic crime and the financial exploitation of the public, using specialist legal expertise to deliver justice.

​https://www.ft.com/content/9418b322-ea5b-4220-af79-f061931ede50
​https://www.cps.gov.uk/cps/news/anti-money-laundering-expert-sentenced-allowing-criminal-money-be-sent-abroad

As bizarre customer care exchanges go, one we featured on this page last week between a reader and Revolut is hard to top. You may recall that our reader had Ryan as his surname and it led to him being contacted by his virtual bank and repeatedly asked – without anything by way of an explanation – if he was related to Eamon Ryan, the Green Party leader.

Mystified, our Ryan refused to answer what he believed to be a pointlessly random question and as a result his account was locked. Unable to get any kind of resolution, he mailed us and we mailed Revolut. It told us that it was merely doing what it was legally obliged to do under EU anti-money laundering rules.

It said it was obliged to perform what it said was “enhanced due diligence” on so-called “politically exposed persons” and legally required to establish “whether a customer is a close relative or a close associate of a politically exposed person”.
The statement said that our reader – and its customer – shared a name with a relative of an Irish politician and “on that basis the customer was asked whether he was related to that politician”.

Revolut was right about having to follow the rules but even as we were writing the story, we realised it was asking more questions that it was answering. What is a politically exposed person(PEP)? How far down the political food chain does it reach? How did Revolut know our reader shared a first name with a relative of Eamon Ryan? What would have happened if he had answered the question with a yes? Or what if he had simply said no? Are other people similarly impacted? How do other banks deal with this EU directive?

And that was just for starters.

So we set about trying to answer some of the questions.

First things first. The EU Anti-Money Laundering Directive was transposed into Irish law in 2018 as an amendment to the Criminal Justice (Money Laundering and Terrorist Financing) Act of 2010. The law says that a “politically exposed person” is an individual “who is, or has at any time in the preceding 12 months, been entrusted with a prominent public function”.

‘Due diligence’
This includes a “head of state, head of government, government minister or deputy or assistant government minister”. TDs, members of the “supreme court, constitutional court or other high level judicial body whose decisions, other than in exceptional circumstances, are not subject to further appeal” also feature as do members of a court of auditors or the board of a central bank, ambassador, chargé d’affairs or high-ranking officers in the armed forces.

The Central Bank has said banks are obliged to carry out “enhanced customer due diligence” in relation to “politically exposed persons” as well as their immediate families and known close associates.
“That’s because people who hold – or have held – a high political profile can pose a higher money-laundering risk to firms as their position may make them vulnerable to corruption such as accepting bribes or contributions to election campaigns and political parties in return for advantages”, the director general for financial conduct Derville Rowland said some time ago.

The piece we carried about reader Ryan and Eamon Ryan prompted others who have had similar experiences when dealing with Revolut. Three of them stood out.

First we heard from the daughter of an ex-county councillor in the west of Ireland who described a “truly bizarre situation”. She said her father had lost his seat in 2014 elections but Revolut still “badgered me through multiple messages asking was I related to [her father]. When I finally gave in and said yes, he’s my dad, they wanted to know what was his political affiliation, does he still hold those views, do I agree with them, will he go for a higher political position in the future and so on. A bit mental considering he was only a local councillor. They made me feel so uncomfortable I just cancelled the application, will stick with good old AIB.”

Then there was the former minister’s son who said Revolut asked if he was related to the minister in question. “They just blocked my account with no explanation and I was really taken aback,” he said. “It was so bizarre and concerning. I asked them why they asked me about dad and they said they couldn’t disclose that information. It seems very irregular for a bank to ask for such information,” he said.

His account remains blocked.

We also heard from a former TD and Senator’s brother who was asked by Revolut if he was any relation. “I answered truthfully yes. I was informed that it was due to EU money laundering regs. My account is now frozen, I loaded up some documents, proof of savings but they now want to see proof of my employer’s account where my payslip wages come from. I don’t have the authority to give third-party details to anyone let alone Revolut. It looks like I am going to have to walk away from Revolut over this because I don’t wish to load confidential info up to an app to God knows who.”
We highlighted these stories to Revolut. A spokesman stressed that all financial institutions “are required to identify immediate family members or close associates of PEPs using their products”. He said while such “questions may appear intrusive to those unfamiliar with regulatory requirements, establishing whether someone is a PEP is a legal obligation for all financial institutions.

In relation to the daughter of the former councillor from the west of Ireland, the Revolut spokesman said it could “not locate any questions about the political affiliations of the individual’s father, his views, or his political future”. He said such questioning did not form part of its screening processes.

The brother of the TD’s account was indeed limited until he supplied the requested documentation which Revolut said was its legal requirement. Similarly with the son of the former minister, the spokesman said the company was legally obliged to “verify his source of funds”, adding that it “should have explained to our customer that we are required by law to establish whether or not he was connected to a PEP. As made clear previously, we are updating our processes to ensure that this obligation is made clear in the future.”

Humans not computers
We also contacted Rachel Woolley, the global director of financial crimes at Fenergo, a company which among other things develops compliance software for financial institutions.
She questioned Revolut’s approach as outlined by our readers although she stressed that all banks are obliged to follow anti-money laundering legislation.

Anyone who opens a bank account will be asked for a lot of information and many application forms now have a section to declare if you are a politically exposed person or related to someone who is. Answering yes is not a bad thing, Woolley stresses, and not a black mark “but it does mean the account is monitored more closely”.
​
The names of existing account holders, Woolly says, can also be thrown up as potential matches to PEPs or their friends and family through routine trawls of third- party software. “It is an ongoing process and if my mother becomes a politician that would come up as part of routine screening. Then an enhanced level of scrutiny would be applied to my account to confirm the source of funds and the source of wealth.”

For a virtual bank such as Revolut, the source of the funds is typically another bank account and the source of the wealth is, more likely than not, a job. “Generally speaking this can be confirmed via a written statement or even an email but it should be an uncomplicated process,” she says. “It is not impossible to ask for pay- slips but it is certainly uncommon.”

She says that financial institutions need to be compliant but should not be asking “completely out-of-context questions. This needs to be done in a sensible way and that is not always by trusting what the computer tells you to do. You always need a human at the end of the process to establish if this makes sense”.

• https://www.irishtimes.com/news/consumer/revolut-asks-user-if-she-is-related-to-former-county-councillor-1.4494032​