It is estimated that money worth between two and five percent of global GDP is laundered every year. That is the equivalent of between $800 billion and $2 trillion worldwide. Of course, due to the secretive nature of money laundering, the true figure could be much higher. Unsurprisingly, as more financial processes have become digitalised, many criminals have adapted accordingly. As a result, anti-money laundering (AML) regulations are continually being updated to counter the evolving threat. At the same time, AML tools and risk management solutions are providing another weapon in the battle against financial crime.
Compliance officers looking to deter crime must come to terms with two real facts:
1) Their AML transaction monitoring system is only as good as their AML program and controls
2) Some criminal activity will escape review despite their best efforts
Businesses need to look beyond a reduction of their false positive rate as a measure of productivity. Switching the focus to false discovery rate instead will allow them to truly improve AML discovery.
Today, there are many different digital platforms available to support AML programs. However, challenges remain around false-positive rate obsession and true discovery rate ignorance. Both measurements, which can help businesses determine the accuracy of their AML platforms, can significantly impact how successful companies are at tackling financial crime. Nevertheless, despite their similar-sounding names, they are subtly different.
Put simply, the false positive rate can be found by dividing the number of false positives by the total number of individuals who are not engaged in money laundering (including both false positives and true negatives). The false discovery rate, on the other hand, can be found by dividing the number of false positives by the combined sum of the false positives and true positives; and the same calculation versa for true positives.
By reducing the false positive rate, organisations may decrease their compliance workload but will not actually detect any more instances of financial crime. Although the false discovery rate is often neglected by risk analysts, it can provide a clearer picture of the number of individuals that were wrongly identified as possibly engaging in suspicious activity or financial crime.
Martin Woods, Chair of the Global Advisory Board of the Global Compliance Institute, once said “Work hard, on few”. It might seem that a reduction of your false-positive rate demonstrates a net positive for your AML mechanism but in reality, it is only providing AML effectiveness theatre. A reduction of false positives does not infer better criminal activity detection; it only releases additional bandwidth so you can work on more activities that perhaps may be suspicious. Assuming you have integrated an intelligent AML platform that has a verified reduction delivery of false positives, what’s the next step?
Following the true discovery method, the first thing to do is to review any and all Financial Intelligence Unit (FIU) reports and assign them a category. It’s important to define which of your reports fall under the category of “A - required reporting,” “B - continuous reporting,” “C - tactical reporting,” or “D - defensive filing” (according to renowned AML expert Jim Richards). The next step would be to attribute an additional value to them when an FIU or law enforcement (LE) organisation responds to the filed report as a true discovery. Finally, businesses should map the characteristics of the report, working backwards to the initial AML alert before reviewing the case more closely. To really tighten this last step, organisations can create a feedback mechanism between FIU/LE contacts and their case/alert generation allowing them to “work hard, on few”. As a result, their D-category reports is likely to fall to 0.
Lowering the false positive rate of your AML solution may mean less grunt work for compliance teams but it will not necessarily help combat the fight against financial crime. Focusing on ways of increasing your true discovery rate, however, involves the identification of concrete actionable cases, which may bring you out of the world of AML theatre and into the real battlefield to fight financial crime.
Interested in how we do it at Sentinels? Get in touch!
Sentinels (‘us’, ‘we’, ‘ our’’) is dedicated to protect the confidentiality and privacy of your personal data and information entrusted to us. This Privacy Statement provides an overview of our standard data processing activities and sets forth your rights in relation to the processing of your personal data.
Slimmer AI Sentinels B.V. a limited liability company incorporated under the laws of the Netherlands, Chamber of Commerce number 82155313, having its registered office at The Rock Atoomweg 6-B 9743 AK Groningen (‘Sentinels’).
We are responsible for processing your personal data in accordance with the European General Data Protection Regulation (‘Data Protection Regulation’).
We have appointed a Data Protection Officer (DPO) for you to contact if you have any questions or concerns about this Privacy Statement and/or your rights set forth in this statement. Please contact us at email@example.com.
This Privacy Statement provides information about collecting, storing and processing of your personal data that you disclose to us when you use our services.
The type of personal information we collect may depend on how you interact with us and our platform and which services you choose to use. Generally, we collect, store and use the following personal information: name, surname, job title, company, business type, and email address.
When you choose to use our services, you agree to provide us with most of the personal data when you:
We process your personal data in accordance with the provisions of Data Protection Regulation. We will only use and process your personal data we obtain in the context of commercial relationship. We intend to use and process your personal data under the following conditions:
In case we rely on consent as a legal basis for processing your personal data, please note that you have the right to withdraw your consent at any time by contacting at firstname.lastname@example.org. However, please consider that withdrawing the consent may affect the legal basis of processing of your data, hence we may not be able to provide certain products or services to you. If this is the case, you will be advised accordingly at the time you withdraw your consent.
We are committed to maintaining organizational and technical security measures to protect the personal data we hold about you. We have implemented a set of controls and relevant policies and procedures to prevent the personal data we hold about you from being accidentally or deliberately compromised.
Your personal data is stored in accordance with the provisions of the contractual agreements and/or applicable statutory obligations. We maintain adequate retention policies and procedures so that your personal data are deleted after a reasonable and prescribed time. The data will not be stored longer than is strictly necessary to achieve the purposes for which the data have been collected.
Data collected via the website will be retained until users unsubscribe (after which a new consent will be requested)
We do not transfer your personal data to third parties unless it is mandatory by law or court order, in order to protect the rights of the parties involved in the performance of the agreement or if you give your consent to do so.
Cookies are files with a small amount of data, which may include an anonymous unique identifier. We use functional cookies that are essential for technical operations necessary for the users’ navigation on the platform. These cookies also support the website security and basic functionality.
You can set your browser in order not to accept cookies. However, in certain cases, some of our website features may not function as expected.
For more information regarding the cookies in use can be found in our Cookies Policy.
You have the right (under the certain circumstances and subject to the exceptions), pursuant to Data Protection Act to:
You can exercise any of the above-specified data protection rights, by contacting us at: email@example.com.
Should you have any questions or concerns about this privacy statement or you would like to exercise one of your data protection rights, please do not hesitate to contact us at: firstname.lastname@example.org.
However, if you feel we haven't addressed your concern in a satisfactory manner, you have the right to contact the Data Protection Authority.
Address: PO Box 93374, 2509 AJ DEN HAAG
Telephone: +31 70 888 85 00
Privacy Statement Version
This Privacy Statement was last modified on September 1, 2021.
We reserve the right to update or change our Privacy Statement at any time and you should check this Privacy Statement periodically. Your continued use of the service after we post any modifications to this Statement will constitute your acknowledgement of the modifications and your consent to abide and be bound by the modified Privacy Statement.
If we make any material changes to this Privacy Statement, we will notify you either through the email address you have provided us or by placing a notice on our website.