Hussain-Al-Shemsi-Chartered-Accountants–Sharjah-Logo-Main
Phone
+971503636231
Hussain Al Shemsi Chartered Accountants Logo

AML/CFT Regulatory Compliance

  • Home
  • Services
  • AML, CFT Regulatory Compliance

Are you looking to grow your business?

Trusted us by over 3,000 local businesses

Request Quote

AML/CFT Regulatory Compliance Services in UAE

Governments across the globe have been increasing scrutiny on AML/CFT processes and controls, making AML/CFT regulatory compliance services essential in the fight against financial crimes. In December 2020, the UAE Cabinet adopted the formation of the Executive Office of the Anti-Money Laundering and Countering the Financing of Terrorism with an aim to follow the international requirements in this sector. Therefore, it is essential for organizations to take full control of their processes and operations to avoid any risk of exposure to money laundering and terrorism funding activities.

We provide them with AML/CFT policy, controls, and procedures documentation services to help them remain compliant with the AML laws in UAE.

How can we help you?

Get in touch with Hussain Al Shemsi Chartered Accountants for expert auditing, accounting, tax, and advisory services in the UAE.Β 

  • +971 50 3636231

Our Services

AML/CFT Regulatory Compliance Services UAE | Hussain Al Shemsi Chartered Accountants

Protecting your business from financial crime risk. Expert anti-money laundering and counter-terrorism financing compliance for DNFBPs, financial institutions & VASPs across Dubai, Sharjah and the UAE.

Explore Services
5+
Years Experience
200+
Clients Served
100%
Compliance Rate
Why AML/CFT Compliance Matters

The UAE's Stringent
AML/CFT Framework

The UAE has established one of the most robust anti-money laundering and counter-terrorism financing (AML/CFT) frameworks in the MENA region. Following the FATF Mutual Evaluation, the UAE enacted Federal Decree-Law No. 20 of 2018 β€” the cornerstone of AML/CFT regulation.

In 2023, the UAE was removed from the FATF Grey List. The National AML/CFT Strategy 2024–2027 now prioritises cybercrime, digital payments, and trade-based money laundering risks.

Every DNFBP, financial institution, and VASP operating in the UAE must implement a fully compliant AML/CFT programme β€” or face severe regulatory penalties including fines, licence revocation, and criminal prosecution.

Our Services

Comprehensive AML/CFT
Compliance Solutions

End-to-end regulatory compliance services tailored to your business sector and risk profile in the UAE.

AML Policy & Procedure Drafting

Development, review, and updating of comprehensive AML/CFT policies, controls and procedures aligned with UAE Federal Law, Cabinet Decisions, and FATF standards.

Policy DesignProcedure ManualInternal Controls

goAML Registration & Reporting

Complete assistance with goAML portal registration, profile setup, and filing of Suspicious Transaction Reports (STRs) and Suspicious Activity Reports (SARs) to the UAE FIU.

goAML PortalSTR FilingSAR Reporting

KYC & Customer Due Diligence

Design and implementation of Know Your Customer (KYC) frameworks, Enhanced Due Diligence (EDD) for high-risk clients, and Politically Exposed Persons (PEP) screening procedures.

KYC FormsEDDPEP ScreeningSanctions

Business Risk Assessment (BRA)

Risk-based profiling of customers, products, geographies, and delivery channels. Identification of inherent and residual ML/TF risks specific to your business operations.

Risk MatrixML/TF RiskRisk Rating

AML/CFT Audit & Health Check

Independent assessment of your AML/CFT compliance programme including agreed-upon procedures (AUP) audits, gap analysis, and actionable recommendations to address control weaknesses.

AUP AuditGap AnalysisHealth Check

AML Training & Awareness

Role-specific AML/CFT training for management and staff covering transaction monitoring, sanctions screening, STR identification, and UAE regulatory obligations under Federal Law.

Staff TrainingManagementCertification

Compliance Officer (MLRO) Services

Outsourced Money Laundering Reporting Officer (MLRO) services β€” ensuring your AML programme has dedicated oversight, regulatory liaison, and timely reporting functions.

MLRO OutsourcingRegulatory Liaison

Sanctions Screening & Monitoring

Screening customers and transactions against UN Security Council sanctions lists, UAE local sanction lists via UAEIEC, and international sanctions databases to ensure full compliance.

UN SanctionsUAEIECMonitoring

Record Keeping & Documentation

Establish robust record retention systems to ensure all KYC files, transaction records, and compliance documents are securely maintained for at least 5 years in accordance with UAE law.

5-Year RetentionDocument Control
Policy Documentation

AML/CFT Policy, Controls &
Procedures Documentation

A formal AML/CFT Policies & Procedures Manual is a legal requirement under UAE law β€” and the foundation of every compliant organisation.

An AML/CFT Policies and Procedures Manual is a formal written document that lays down the controls, rules, and procedures implementing UAE AML/CFT law requirements. It must be approved by senior management and kept current with legal amendments.

With the ongoing risk of money laundering and terrorism financing across the UAE, organisations without sound AML documentation face significant regulatory penalties, business disruption, reputational damage, and criminal prosecution of directors and senior officers.

At Hussain Al Shemsi Chartered Accountants, we create customised AML/CFT policy frameworks that are proportionate to the nature, size, and risk profile of your specific business β€” ensuring full compliance with UAE AML Law and related regulations.

The 6 Core Components of an AML/CFT Policy

Every compliant AML policy manual must address all six of these foundational elements

πŸ”Ž

ML/TF Risk Identification & Assessment

Formal risk assessment covering customer risk, product/service risk, geographic risk, and delivery channel risk β€” with risk rating and inherent/residual risk documentation.

πŸ‘€

Customer Due Diligence (CDD / EDD / SDD)

CDD procedures including identity verification, beneficial ownership identification, EDD for high-risk clients and PEPs, and periodic review and update protocols.

πŸ””

Transaction Monitoring & STR Reporting

Ongoing monitoring, red flag indicators, internal STR escalation procedures, and timely reporting to the UAE FIU via the goAML portal.

πŸ›οΈ

AML/CFT Governance Structure

Compliance Officer (MLRO) duties, staffing requirements, training obligations for management and staff, senior management accountability, and independent audit arrangements.

πŸ“‚

Record Keeping & Retention

Document retention policy ensuring all business records, KYC files, transaction records, and STR documentation are maintained for a minimum of 5 years in accessible format.

🌐

International Financial Sanctions

Sanctions screening against UN Security Council lists, UAE local lists (UAEIEC), OFAC, and EU consolidated lists β€” with immediate asset freeze and reporting obligations.

🀝

Third-Party Reliance Procedures

Rules governing when and how your business may rely on CDD performed by third parties β€” including due diligence requirements on introducers and agents.

πŸ›‘

Tipping Off & Confidentiality Controls

Procedures ensuring staff do not inadvertently tip off customers subject to STR/SAR reporting β€” including internal communication controls and confidentiality requirements.

Our AML Policy Drafting Process

A four-stage methodology for creating robust, customised AML/CFT frameworks

1

Risk Identification

We study your business processes to identify loopholes susceptible to money laundering or terrorism financing β€” particularly in functions involving movement of funds.

2

Assessment of Existing Policies

We review your current AML/CFT policies and controls to assess their effectiveness and identify any gaps, weaknesses, or areas requiring improvement.

3

Gap Analysis

We document findings and prepare a detailed gap analysis, discussed with your Compliance Officer and stakeholders to incorporate practical, operational insights.

4

AML/CFT Framework Creation

Our professionals draft a fully customised AML/CFT programme β€” all policies, controls, KYC forms, EDD procedures, and compliance manuals tailored to your risk profile.

Complementary Policies We Also Draft

Beyond the core AML/CFT manual, we develop all related compliance policies necessary for comprehensive risk management.

Anti-Bribery & Corruption Policy Precious Metals Supply Chain Policy Global Precious Metals Code (OECD/LBMA) Conflict of Interest Policy Data Protection & Confidentiality Policy Whistleblower Protection Policy KYC & CDD Manual Transaction Monitoring Policy International Sanctions Policy EDD Procedures for High-Risk Clients
Who We Serve

Serving All UAE
Regulated Entities

We provide AML/CFT compliance services to every category of regulated business operating in the UAE.

Real estate sector icon β€” AML CFT compliance for property brokers and developers UAE

Real Estate

Brokers, developers & property management companies

πŸ’Ž

Precious Metals & Gems

Dealers, traders and jewellery businesses

Legal and professional services sector icon β€” AML compliance for lawyers notaries auditors UAE

Legal & Professional

Lawyers, notaries, auditors & tax advisors

Financial institutions sector icon β€” AML compliance for banks exchange houses UAE

Financial Institutions

Banks, finance companies & money exchangers

Corporate services sector icon β€” AML compliance for company formation secretarial providers UAE

Corporate Services

Company formation & secretarial service providers

Virtual assets VASP sector icon β€” AML compliance for crypto exchanges digital asset platforms UAE

Virtual Assets (VASP)

Crypto exchanges & digital asset platforms

Insurance sector icon β€” AML compliance for insurance companies brokers agents UAE

Insurance

Insurance companies, brokers & agents

Trading companies sector icon β€” AML compliance for import export general trading businesses UAE

Trading Companies

Import/export & general trading businesses

Our Approach

Our 5-Step AML Compliance Process

A structured, risk-based methodology aligned with UAE regulatory requirements and FATF Recommendations.

1

Initial Assessment

Free consultation and review of your current compliance status and regulatory obligations

2

Risk Assessment

Business risk assessment identifying ML/TF risk exposure by customer, product & geography

3

Framework Design

Drafting tailored AML/CFT policies, KYC forms, controls & compliance procedures

4

Implementation

goAML registration, MLRO appointment, staff training & system rollout

5

Ongoing Monitoring

Regular audits, regulatory updates, STR filing, and continuous programme enhancement

Regulatory Framework

UAE AML/CFT Laws
We Work With

Our compliance services cover the full spectrum of UAE AML/CFT legislation and international standards.

Federal Decree-Law No. 20 of 2018

Anti-Money Laundering & CFT Law

The foundational UAE law on combating money laundering, terrorism financing, and proliferation financing.

Cabinet Decision No. 10 of 2019

Implementing Regulations

Detailed implementing regulations for the AML law, governing DNFBPs and financial institutions.

Federal Decree-Law No. 10 of 2025

Updated AML/CFT Framework

The latest UAE AML law strengthening enforcement, stricter obligations, and heavier penalties.

Cabinet Decision No. 58 of 2020

Beneficial Owner Regulation

Regulations requiring companies to maintain beneficial ownership registers and share information with authorities.

Cabinet Decision No. 74 of 2020

Terrorism List Regulation

Implementation of UN Security Council resolutions on suppression and combating of terrorism financing.

FATF Recommendations

International Standards

Compliance with all 40 FATF Recommendations β€” the global standard for AML/CFT regulatory frameworks.

Why Choose Us

Why Hussain Al Shemsi CA
for AML/CFT Compliance

Six reasons why businesses across the UAE trust us with their AML/CFT compliance programmes.

01

Ongoing Compliance Partnership

Frequent assessments of your AML/CFT frameworks as your business evolves β€” whether expanding, restructuring, or entering new markets and product lines.

02

Multidisciplinary Expert Team

Our team includes regulatory specialists, compliance professionals, legal advisors, business analysts, and dedicated AML practitioners β€” covering every dimension of financial crime compliance.

03

Deep UAE Regulatory Knowledge

Comprehensive knowledge of all UAE AML/CFT laws, Cabinet Decisions, Central Bank circulars, and Ministry of Economy supervisory requirements.

04

Full KYC / CDD / EDD Coverage

Detailed guidelines and manuals for KYC, CDD, and EDD β€” making your customer onboarding and monitoring processes efficient, proportionate, and fully compliant.

05

International Best Practices

We apply FATF Recommendations, BCBS guidelines, and MENAFATF requirements to build programmes that reduce your exposure to financial crime risk.

06

Comprehensive Documentation

We go beyond the AML manual to cover all complementary policies β€” including Anti-Bribery, Precious Metals Supply Chain, and OECD/LBMA-aligned frameworks.

FAQ

AML/CFT Compliance
Questions Answered

Everything you need to know about AML/CFT compliance obligations for businesses in the UAE. Can't find your answer? Speak with our experts for a free consultation.

Speak to an Expert β†’
What is AML/CFT compliance and who needs it in the UAE?

AML (Anti-Money Laundering) and CFT (Countering the Financing of Terrorism) compliance is a legal requirement for all financial institutions, DNFBPs, and VASPs operating in the UAE. This includes real estate agents, precious metals dealers, lawyers, accountants, banks, money exchangers, insurance companies, and crypto businesses. Non-compliance can result in fines up to AED 5 million and criminal prosecution.

What is an AML/CFT policy and what must it contain?

An AML/CFT policy is a formal written document setting out the measures, controls, and procedures an entity has implemented to prevent money laundering and terrorism financing. It must cover six core areas: ML/TF risk identification and assessment, Customer Due Diligence measures, suspicious transaction monitoring and STR reporting, AML/CFT governance, record-keeping requirements, and international financial sanctions compliance.

What is goAML and does my business need to register?

goAML is the UAE Financial Intelligence Unit's (FIU) platform for submitting Suspicious Transaction Reports (STRs) and Suspicious Activity Reports (SARs). All regulated entities β€” DNFBPs, financial institutions, and VASPs β€” must register on the goAML portal. It is also a mandatory requirement for opening corporate bank accounts in the UAE.

Must I appoint an AML Compliance Officer (MLRO)?

Yes. Appointing an AML Compliance Officer (also called MLRO) is mandatory under UAE law for all regulated entities. The MLRO oversees AML/CFT governance, reports suspicious transactions to the FIU via goAML, manages the compliance programme, and provides staff training. We offer outsourced MLRO services for businesses without an in-house compliance officer.

What is a Business Risk Assessment (BRA)?

A BRA is a formal evaluation of your organisation's ML/TF risks based on customer risk, product/service risk, geographic risk, and transaction/delivery channel risk. It is a mandatory requirement under UAE AML regulations and forms the foundation of your entire AML/CFT compliance programme.

What is the difference between CDD and EDD?

Customer Due Diligence (CDD) is the standard process of verifying customer identity and understanding the business relationship. Enhanced Due Diligence (EDD) applies to high-risk customers β€” including PEPs, customers from high-risk jurisdictions, or those conducting unusual transactions. EDD requires deeper scrutiny, senior management approval, and ongoing enhanced monitoring.

How long must AML records be kept under UAE law?

Under UAE AML/CFT regulations, all records, KYC files, transaction documents, and STR-related files must be retained for a minimum of 5 years from the end of the business relationship or the date of the transaction. Failure to maintain adequate records is itself a regulatory violation subject to penalties.

What are the AML policy requirements in the UAE?

UAE AML policy requirements include: collecting and verifying customer KYC information; ongoing transaction monitoring; identifying and reporting suspicious transactions via goAML; implementing risk-based CDD, EDD, and SDD procedures; screening customers against international and UAE sanctions lists; maintaining records for a minimum of 5 years; appointing a qualified MLRO; providing regular AML/CFT training to all relevant staff; and conducting periodic internal or independent AML audits.

Free Consultation

Start Your AML/CFT Compliance
Journey Today

Speak with our AML/CFT specialists for a free no-obligation consultation. We'll assess your compliance gaps and provide a clear roadmap to full regulatory compliance.

πŸ“ž Call Us Now βœ‰ Email Us

About

Hussain Al Shemsi Chartered Accountants is a full-service professional chartered accountant firm, licensed by the Ministry of Economy, United Arab Emirates, to practice auditing and accounting.

Facebook-f Instagram Youtube Linkedin-in X-twitter

Quick Links

Our Services

Get in touch

Β© 2025 Hussain Al Shemsi. All rights reserved. Designed