Sentinels was delighted to, once again, present at an ACAMS event. This time it was ACAMS The Netherlands Chapter in collaboration with ACAMS UK.
The webinar, titled "Fintech solutions – the Next Frontier" took place on March 23rd. This one-hour session was creatively inspired by the "The Good, the Bad and the Ugly” film, and covered the compliance journey from the first onboarding steps, through customer data handling and onto transaction monitoring. The purpose of the webinar was to take AML and risk & compliance professionals through new technologies available to them.
The session kicked off with Alexander Verhoeven, ACAMS Netherlands Chapter Co-Programming Director and Head of Compliance & Risk at Pay NL introducing the theme and the speakers.
Representing Mitek Systems was Mitek Systems Director of Sales and Engineering, Paul Boskma.
A significant component of the onboarding processes is identity verification. This is your first encounter with "The Good" customer where your job is to determine if a submitted document is legitimate and belongs to that person. This important step will also determine the future accuracy of the following compliance processes.
Using technologies like facial biometrics, computer vision and other AI, you will be able to not only speed up the process but also increase its accuracy.
The verification process includes:
Systems based on AI technologies add another layer of security for high-risk businesses dealing with:
Emilio Rocchi, Senior Solutions Consultant Fraud & Identity at Risks Solutions at LexisNexis, presented the concept of account takeovers and best practices of identifying "The Bad" user.
Account takeover consists of five steps:
Collecting customer information and scoping contextualized user profiles helps to detect behavioural anomalies and prevent account takeover.
‘Good’ users often have different personas related to the devices they use, locations, credentials and more. Also, individual profiles and business profiles have different personas. To detect "The Bad" it is crucial to determine all variables, collect all information and connect all data points. By combining data network with machine learning and metadata, it is possible to stop account takeover before the payment is settled.
Sentinels' Head of FC/AML, Faisal Islam, discussed common misconceptions around handling "The Ugly" cases during the last stage of the compliance process - transaction monitoring. This is where the customer was verified and remained the same persona throughout the relationship, but we learn that those might not be the right indicators of good transactional behaviours. Based on this current understanding, what has identified a “good user” does not always translate to a good transaction.
"The Ugly" involves the most sophisticated criminals who are technologically advanced and have a very good understanding of the controls and measures compliance teams use. They have mastered the art of disguise.
Compliance officers often feel that they are trying to find a 'needle in a stack of needles'. This is often based on preconceived beliefs and methodologies. Unfortunately, this approach often is one of the reasons why transaction monitoring can often be found to be ineffective.
"It's not defensible if your program is cited for review."
The key, Faisal notes, is to combine your expertise with the right toolset to empower your work. Machine learning allows compliance experts to ‘teach’ the algorithm what to do by feeding it with data.
"A Machine Learning System is your own personal militia of infinite compliance officers."
AI can only bring measurable results if supported by a human brain. Compliance officers should be able to see and detect suspicious activities by using tools that visually show both good and bad patterns. A human expert is always required to make the final decision and take appropriate action.
As the last of the speakers, Faisal presented the key takeaways from the session:
The QA session and closing remarks followed.
To learn more about how Sentinels empowers compliance go to sentinels.ai.
Sentinels (‘us’, ‘we’, ‘ our’’) is dedicated to protect the confidentiality and privacy of your personal data and information entrusted to us. This Privacy Statement provides an overview of our standard data processing activities and sets forth your rights in relation to the processing of your personal data.
Slimmer AI Sentinels B.V. a limited liability company incorporated under the laws of the Netherlands, Chamber of Commerce number 82155313, having its registered office at The Rock Atoomweg 6-B 9743 AK Groningen (‘Sentinels’).
We are responsible for processing your personal data in accordance with the European General Data Protection Regulation (‘Data Protection Regulation’).
We have appointed a Data Protection Officer (DPO) for you to contact if you have any questions or concerns about this Privacy Statement and/or your rights set forth in this statement. Please contact us at firstname.lastname@example.org.
This Privacy Statement provides information about collecting, storing and processing of your personal data that you disclose to us when you use our services.
The type of personal information we collect may depend on how you interact with us and our platform and which services you choose to use. Generally, we collect, store and use the following personal information: name, surname, job title, company, business type, and email address.
When you choose to use our services, you agree to provide us with most of the personal data when you:
We process your personal data in accordance with the provisions of Data Protection Regulation. We will only use and process your personal data we obtain in the context of commercial relationship. We intend to use and process your personal data under the following conditions:
In case we rely on consent as a legal basis for processing your personal data, please note that you have the right to withdraw your consent at any time by contacting at email@example.com. However, please consider that withdrawing the consent may affect the legal basis of processing of your data, hence we may not be able to provide certain products or services to you. If this is the case, you will be advised accordingly at the time you withdraw your consent.
We are committed to maintaining organizational and technical security measures to protect the personal data we hold about you. We have implemented a set of controls and relevant policies and procedures to prevent the personal data we hold about you from being accidentally or deliberately compromised.
Your personal data is stored in accordance with the provisions of the contractual agreements and/or applicable statutory obligations. We maintain adequate retention policies and procedures so that your personal data are deleted after a reasonable and prescribed time. The data will not be stored longer than is strictly necessary to achieve the purposes for which the data have been collected.
Data collected via the website will be retained until users unsubscribe (after which a new consent will be requested)
We do not transfer your personal data to third parties unless it is mandatory by law or court order, in order to protect the rights of the parties involved in the performance of the agreement or if you give your consent to do so.
Cookies are files with a small amount of data, which may include an anonymous unique identifier. We use functional cookies that are essential for technical operations necessary for the users’ navigation on the platform. These cookies also support the website security and basic functionality.
You can set your browser in order not to accept cookies. However, in certain cases, some of our website features may not function as expected.
For more information regarding the cookies in use can be found in our Cookies Policy.
You have the right (under the certain circumstances and subject to the exceptions), pursuant to Data Protection Act to:
You can exercise any of the above-specified data protection rights, by contacting us at: firstname.lastname@example.org.
Should you have any questions or concerns about this privacy statement or you would like to exercise one of your data protection rights, please do not hesitate to contact us at: email@example.com.
However, if you feel we haven't addressed your concern in a satisfactory manner, you have the right to contact the Data Protection Authority.
Address: PO Box 93374, 2509 AJ DEN HAAG
Telephone: +31 70 888 85 00
Privacy Statement Version
This Privacy Statement was last modified on September 1, 2021.
We reserve the right to update or change our Privacy Statement at any time and you should check this Privacy Statement periodically. Your continued use of the service after we post any modifications to this Statement will constitute your acknowledgement of the modifications and your consent to abide and be bound by the modified Privacy Statement.
If we make any material changes to this Privacy Statement, we will notify you either through the email address you have provided us or by placing a notice on our website.