THE EUROPEAN PARLIAMENT AND THE COUNCIL OF THE EUROPEAN UNION,
Having regard to the Treaty establishing the European Community, and in particular Article 47(2), first and third sentences, and Article 95 thereof,
Having regard to the proposal from the Commission,
Having regard to the opinion of the European Economic and Social Committee(),
Having regard to the opinion of the European Central Bank(),
Acting in accordance with the procedure laid down in Article 251 of the Treaty(),
Whereas:
(1) Massive flows of dirty money can damage the stability and reputation of the financial sector and threaten the single market, and terrorism shakes the very foundations of our society. In addition to the criminal law approach, a preventive effort via the financial system can produce results.
(2) The soundness, integrity and stability of credit and financial institutions and confidence in the financial system as a whole could be seriously jeopardised by the efforts of criminals and their associates either to disguise the origin of criminal proceeds or to channel lawful or unlawful money for terrorist purposes. In order to avoid Member States' adopting measures to protect their financial systems which could be inconsistent with the functioning of the internal market and with the prescriptions of the rule of law and Community public policy, Community action in this area is necessary.
(3) In order to facilitate their criminal activities, money launderers and terrorist financers could try to take advantage of the freedom of capital movements and the freedom to supply financial services which the integrated financial area entails, if certain coordinating measures are not adopted at Community level.
(4) In order to respond to these concerns in the field of money laundering, Council Directive 91/308/EEC of 10 June 1991 on prevention of the use of the financial system for the purpose of money laundering() was adopted. It required Member States to prohibit money laundering and to oblige the financial sector, comprising credit institutions and a wide range of other financial institutions, to identify their customers, keep appropriate records, establish internal procedures to train staff and guard against money laundering and to report any indications of money laundering to the competent authorities.
(5) Money laundering and terrorist financing are frequently carried out in an international context. Measures adopted solely at national or even Community level, without taking account of international coordination and cooperation, would have very limited effects. The measures adopted by the Community in this field should therefore be consistent with other action undertaken in other international fora. The Community action should continue to take particular account of the Recommendations of the Financial Action Task Force (hereinafter referred to as the FATF), which constitutes the foremost international body active in the fight against money laundering and terrorist financing. Since the FATF Recommendations were substantially revised and expanded in 2003, this Directive should be in line with that new international standard.
(6) The General Agreement on Trade in Services (GATS) allows Members to adopt measures necessary to protect public morals and prevent fraud and adopt measures for prudential reasons, including for ensuring the stability and integrity of the financial system.
(7) Although initially limited to drugs offences, there has been a trend in recent years towards a much wider definition of money laundering based on a broader range of predicate offences. A wider range of predicate offences facilitates the reporting of suspicious transactions and international cooperation in this area. Therefore, the definition of serious crime should be brought into line with the definition of serious crime in Council Framework Decision 2001/500/JHA of 26 June 2001 on money laundering, the identification, tracing, freezing, seizing and confiscation of instrumentalities and the proceeds of crime().
(8) Furthermore, the misuse of the financial system to channel criminal or even clean money to terrorist purposes poses a clear risk to the integrity, proper functioning, reputation and stability of the financial system. Accordingly, the preventive measures of this Directive should cover not only the manipulation of money derived from crime but also the collection of money or property for terrorist purposes.
(9) Directive 91/308/EEC, though imposing a customer identification obligation, contained relatively little detail on the relevant procedures. In view of the crucial importance of this aspect of the prevention of money laundering and terrorist financing, it is appropriate, in accordance with the new international standards, to introduce more specific and detailed provisions relating to the identification of the customer and of any beneficial owner and the verification of their identity. To that end a precise definition of ‘beneficial owner’ is essential. Where the individual beneficiaries of a legal entity or arrangement such as a foundation or trust are yet to be determined, and it is therefore impossible to identify an individual as the beneficial owner, it would suffice to identify the class of persons intended to be the beneficiaries of the foundation or trust. This requirement should not include the identification of the individuals within that class of persons.
(10) The institutions and persons covered by this Directive should, in conformity with this Directive, identify and verify the identity of the beneficial owner. To fulfil this requirement, it should be left to those institutions and persons whether they make use of public records of beneficial owners, ask their clients for relevant data or obtain the information otherwise, taking into account the fact that the extent of such customer due diligence measures relates to the risk of money laundering and terrorist financing, which depends on the type of customer, business relationship, product or transaction.
(11) Credit agreements in which the credit account serves exclusively to settle the loan and the repayment of the loan is effected from an account which was opened in the name of the customer with a credit institution covered by this Directive pursuant to Article 8(1)(a) to (c) should generally be considered as an example of types of less risky transactions.
(12) To the extent that the providers of the property of a legal entity or arrangement have significant control over the use of the property they should be identified as a beneficial owner.
(13) Trust relationships are widely used in commercial products as an internationally recognised feature of the comprehensively supervised wholesale financial markets. An obligation to identify the beneficial owner does not arise from the fact alone that there is a trust relationship in this particular case.
(14) This Directive should also apply to those activities of the institutions and persons covered hereunder which are performed on the Internet.
(15) As the tightening of controls in the financial sector has prompted money launderers and terrorist financers to seek alternative methods for concealing the origin of the proceeds of crime and as such channels can be used for terrorist financing, the anti-money laundering and anti-terrorist financing obligations should cover life insurance intermediaries and trust and company service providers.
(16) Entities already falling under the legal responsibility of an insurance undertaking, and therefore falling within the scope of this Directive, should not be included within the category of insurance intermediary.
(17) Acting as a company director or secretary does not of itself make someone a trust and company service provider. For that reason, the definition covers only those persons that act as a company director or secretary for a third party and by way of business.
(18) The use of large cash payments has repeatedly proven to be very vulnerable to money laundering and terrorist financing. Therefore, in those Member States that allow cash payments above the established threshold, all natural or legal persons trading in goods by way of business should be covered by this Directive when accepting such cash payments. Dealers in high-value goods, such as precious stones or metals, or works of art, and auctioneers are in any event covered by this Directive to the extent that payments to them are made in cash in an amount of EUR 15 000 or more. To ensure effective monitoring of compliance with this Directive by that potentially wide group of institutions and persons, Member States may focus their monitoring activities in particular on those natural and legal persons trading in goods that are exposed to a relatively high risk of money laundering or terrorist financing, in accordance with the principle of risk-based supervision. In view of the different situations in the various Member States, Member States may decide to adopt stricter provisions, in order to properly address the risk involved with large cash payments.
(19) Directive 91/308/EEC brought notaries and other independent legal professionals within the scope of the Community anti-money laundering regime; this coverage should be maintained unchanged in this Directive; these legal professionals, as defined by the Member States, are subject to the provisions of this Directive when participating in financial or corporate transactions, including providing tax advice, where there is the greatest risk of the services of those legal professionals being misused for the purpose of laundering the proceeds of criminal activity or for the purpose of terrorist financing.
(20) Where independent members of professions providing legal advice which are legally recognised and controlled, such as lawyers, are ascertaining the legal position of a client or representing a client in legal proceedings, it would not be appropriate under this Directive to put those legal professionals in respect of these activities under an obligation to report suspicions of money laundering or terrorist financing. There must be exemptions from any obligation to report information obtained either before, during or after judicial proceedings, or in the course of ascertaining the legal position for a client. Thus, legal advice shall remain subject to the obligation of professional secrecy unless the legal counsellor is taking part in money laundering or terrorist financing, the legal advice is provided for money laundering or terrorist financing purposes or the lawyer knows that the client is seeking legal advice for money laundering or terrorist financing purposes.
(21) Directly comparable services need to be treated in the same manner when provided by any of the professionals covered by this Directive. In order to ensure the respect of the rights laid down in the European Convention for the Protection of Human Rights and Fundamental Freedoms and the Treaty on European Union, in the case of auditors, external accountants and tax advisors, who, in some Member States, may defend or represent a client in the context of judicial proceedings or ascertain a client's legal position, the information they obtain in the performance of those tasks should not be subject to the reporting obligations in accordance with this Directive.
(22) It should be recognised that the risk of money laundering and terrorist financing is not the same in every case. In line with a risk-based approach, the principle should be introduced into Community legislation that simplified customer due diligence is allowed in appropriate cases.
(23) The derogation concerning the identification of beneficial owners of pooled accounts held by notaries or other independent legal professionals should be without prejudice to the obligations that those notaries or other independent legal professionals have pursuant to this Directive. Those obligations include the need for such notaries or other independent legal professionals themselves to identify the beneficial owners of the pooled accounts held by them.
(24) Equally, Community legislation should recognise that certain situations present a greater risk of money laundering or terrorist financing. Although the identity and business profile of all customers should be established, there are cases where particularly rigorous customer identification and verification procedures are required.
(25) This is particularly true of business relationships with individuals holding, or having held, important public positions, particularly those from countries where corruption is widespread. Such relationships may expose the financial sector in particular to significant reputational and/or legal risks. The international effort to combat corruption also justifies the need to pay special attention to such cases and to apply the complete normal customer due diligence measures in respect of domestic politically exposed persons or enhanced customer due diligence measures in respect of politically exposed persons residing in another Member State or in a third country.
(26) Obtaining approval from senior management for establishing business relationships should not imply obtaining approval from the board of directors but from the immediate higher level of the hierarchy of the person seeking such approval.
(27) In order to avoid repeated customer identification procedures, leading to delays and inefficiency in business, it is appropriate, subject to suitable safeguards, to allow customers to be introduced whose identification has been carried out elsewhere. Where an institution or person covered by this Directive relies on a third party, the ultimate responsibility for the customer due diligence procedure remains with the institution or person to whom the customer is introduced. The third party, or introducer, also retains his own responsibility for all the requirements in this Directive, including the requirement to report suspicious transactions and maintain records, to the extent that he has a relationship with the customer that is covered by this Directive.
(28) In the case of agency or outsourcing relationships on a contractual basis between institutions or persons covered by this Directive and external natural or legal persons not covered hereby, any anti-money laundering and anti-terrorist financing obligations for those agents or outsourcing service providers as part of the institutions or persons covered by this Directive, may only arise from contract and not from this Directive. The responsibility for complying with this Directive should remain with the institution or person covered hereby.
(29) Suspicious transactions should be reported to the financial intelligence unit (FIU), which serves as a national centre for receiving, analysing and disseminating to the competent authorities suspicious transaction reports and other information regarding potential money laundering or terrorist financing. This should not compel Member States to change their existing reporting systems where the reporting is done through a public prosecutor or other law enforcement authorities, as long as the information is forwarded promptly and unfiltered to FIUs, allowing them to conduct their business properly, including international cooperation with other FIUs.
(30) By way of derogation from the general prohibition on executing suspicious transactions, the institutions and persons covered by this Directive may execute suspicious transactions before informing the competent authorities, where refraining from the execution thereof is impossible or likely to frustrate efforts to pursue the beneficiaries of a suspected money laundering or terrorist financing operation. This, however, should be without prejudice to the international obligations accepted by the Member States to freeze without delay funds or other assets of terrorists, terrorist organisations or those who finance terrorism, in accordance with the relevant United Nations Security Council resolutions.
(31) Where a Member State decides to make use of the exemptions provided for in Article 23(2), it may allow or require the self-regulatory body representing the persons referred to therein not to transmit to the FIU any information obtained from those persons in the circumstances referred to in that Article.
(32) There has been a number of cases of employees who report their suspicions of money laundering being subjected to threats or hostile action. Although this Directive cannot interfere with Member States' judicial procedures, this is a crucial issue for the effectiveness of the anti-money laundering and anti-terrorist financing system. Member States should be aware of this problem and should do whatever they can to protect employees from such threats or hostile action.
(33) Disclosure of information as referred to in Article 28 should be in accordance with the rules on transfer of personal data to third countries as laid down in Directive 95/46/EC of the European Parliament and of the Council of 24 October 1995 on the protection of individuals with regard to the processing of personal data and on the free movement of such data(). Moreover, Article 28 cannot interfere with national data protection and professional secrecy legislation.
(34) Persons who merely convert paper documents into electronic data and are acting under a contract with a credit institution or a financial institution do not fall within the scope of this Directive, nor does any natural or legal person that provides credit or financial institutions solely with a message or other support systems for transmitting funds or with clearing and settlement systems.
(35) Money laundering and terrorist financing are international problems and the effort to combat them should be global. Where Community credit and financial institutions have branches and subsidiaries located in third countries where the legislation in this area is deficient, they should, in order to avoid the application of very different standards within an institution or group of institutions, apply the Community standard or notify the competent authorities of the home Member State if this application is impossible.
(36) It is important that credit and financial institutions should be able to respond rapidly to requests for information on whether they maintain business relationships with named persons. For the purpose of identifying such business relationships in order to be able to provide that information quickly, credit and financial institutions should have effective systems in place which are commensurate with the size and nature of their business. In particular it would be appropriate for credit institutions and larger financial institutions to have electronic systems at their disposal. This provision is of particular importance in the context of procedures leading to measures such as the freezing or seizing of assets (including terrorist assets), pursuant to applicable national or Community legislation with a view to combating terrorism.
(37) This Directive establishes detailed rules for customer due diligence, including enhanced customer due diligence for high-risk customers or business relationships, such as appropriate procedures to determine whether a person is a politically exposed person, and certain additional, more detailed requirements, such as the existence of compliance management procedures and policies. All these requirements are to be met by each of the institutions and persons covered by this Directive, while Member States are expected to tailor the detailed implementation of those provisions to the particularities of the various professions and to the differences in scale and size of the institutions and persons covered by this Directive.
(38) In order to ensure that the institutions and others subject to Community legislation in this field remain committed, feedback should, where practicable, be made available to them on the usefulness and follow-up of the reports they present. To make this possible, and to be able to review the effectiveness of their systems to combat money laundering and terrorist financing Member States should keep and improve the relevant statistics.
(39) When registering or licensing a currency exchange office, a trust and company service provider or a casino nationally, competent authorities should ensure that the persons who effectively direct or will direct the business of such entities and the beneficial owners of such entities are fit and proper persons. The criteria for determining whether or not a person is fit and proper should be established in conformity with national law. As a minimum, such criteria should reflect the need to protect such entities from being misused by their managers or beneficial owners for criminal purposes.
(40) Taking into account the international character of money laundering and terrorist financing, coordination and cooperation between FIUs as referred to in Council Decision 2000/642/JHA of 17 October 2000 concerning arrangements for cooperation between financial intelligence units of the Member States in respect of exchanging information(), including the establishment of an EU FIU-net, should be encouraged to the greatest possible extent. To that end, the Commission should lend such assistance as may be needed to facilitate such coordination, including financial assistance.
(41) The importance of combating money laundering and terrorist financing should lead Member States to lay down effective, proportionate and dissuasive penalties in national law for failure to respect the national provisions adopted pursuant to this Directive. Provision should be made for penalties in respect of natural and legal persons. Since legal persons are often involved in complex money laundering or terrorist financing operations, sanctions should also be adjusted in line with the activity carried on by legal persons.
(42) Natural persons exercising any of the activities referred to in Article 2(1)(3)(a) and (b) within the structure of a legal person, but on an independent basis, should be independently responsible for compliance with the provisions of this Directive, with the exception of Article 35.
(43) Clarification of the technical aspects of the rules laid down in this Directive may be necessary to ensure an effective and sufficiently consistent implementation of this Directive, taking into account the different financial instruments, professions and risks in the different Member States and the technical developments in the fight against money laundering and terrorist financing. The Commission should accordingly be empowered to adopt implementing measures, such as certain criteria for identifying low and high risk situations in which simplified due diligence could suffice or enhanced due diligence would be appropriate, provided that they do not modify the essential elements of this Directive and provided that the Commission acts in accordance with the principles set out herein, after consulting the Committee on the Prevention of Money Laundering and Terrorist Financing.
(44) The measures necessary for the implementation of this Directive should be adopted in accordance with Council Decision 1999/468/EC of 28 June 1999 laying down the procedures for the exercise of implementing powers conferred on the Commission(). To that end a new Committee on the Prevention of Money Laundering and Terrorist Financing, replacing the Money Laundering Contact Committee set up by Directive 91/308/EEC, should be established.
(45) In view of the very substantial amendments that would need to be made to Directive 91/308/EEC, it should be repealed for reasons of clarity.
(46) Since the objective of this Directive, namely the prevention of the use of the financial system for the purpose of money laundering and terrorist financing, cannot be sufficiently achieved by the Member States and can therefore, by reason of the scale and effects of the action, be better achieved at Community level, the Community may adopt measures, in accordance with the principle of subsidiarity as set out in Article 5 of the Treaty. In accordance with the principle of proportionality, as set out in that Article, this Directive does not go beyond what is necessary in order to achieve that objective.
(47) In exercising its implementing powers in accordance with this Directive, the Commission should respect the following principles: the need for high levels of transparency and consultation with institutions and persons covered by this Directive and with the European Parliament and the Council; the need to ensure that competent authorities will be able to ensure compliance with the rules consistently; the balance of costs and benefits to institutions and persons covered by this Directive on a long-term basis in any implementing measures; the need to respect the necessary flexibility in the application of the implementing measures in accordance with a risk-sensitive approach; the need to ensure coherence with other Community legislation in this area; the need to protect the Community, its Member States and their citizens from the consequences of money laundering and terrorist financing.
(48) This Directive respects the fundamental rights and observes the principles recognised in particular by the Charter of Fundamental Rights of the European Union. Nothing in this Directive should be interpreted or implemented in a manner that is inconsistent with the European Convention on Human Rights,
HAVE ADOPTED THIS DIRECTIVE: