AML Red Flags: 20 Warning Signs Every Compliance Team Must Know
The 20 most important AML red flags in business relationships, from unusual transaction patterns to complex ownership structures. Practical guidance for compliance officers.
Anti-Money Laundering (AML) compliance is fundamentally about pattern recognition. Money laundering — the process of disguising the origins of criminal proceeds — leaves traces in financial and corporate data that experienced compliance professionals learn to identify. These traces are called red flags.
A red flag is not evidence of wrongdoing. It is an indicator that something warrants closer examination. A single red flag may be explained innocently; a cluster of red flags in the same relationship is a serious signal requiring enhanced due diligence, potential suspicious activity reporting, and in some cases, relationship exit.
This guide presents 20 of the most significant AML red flags in two categories: entity-level red flags (visible during KYB due diligence) and transaction-level red flags (visible during ongoing transaction monitoring). For each, we explain why it matters and the risk level it represents.
High-Risk Industries and Jurisdictions
Certain industries are inherently higher risk for money laundering due to the nature of their activities, cash intensity, or difficulty of transaction monitoring:
High-risk sectors: Real estate, art and luxury goods, cryptocurrency and virtual asset services, casinos and gambling, precious metals and stones, private banking, trade finance, money services businesses, and professional services (lawyers, accountants, notaries when acting on behalf of clients).
High-risk jurisdictions: FATF regularly publishes a list of countries subject to increased monitoring ('grey list') and countries with significant strategic deficiencies ('black list'). The EU Delegated Regulation also identifies high-risk third countries. Jurisdictions with opaque company registries, weak AML enforcement, or high levels of corruption (as measured by the Corruption Perceptions Index) present elevated risk.
Sector-jurisdiction combinations: The highest risk scenarios typically combine a high-risk sector with a high-risk jurisdiction — for example, a real estate company incorporated in a secrecy jurisdiction with beneficial owners in a country with weak AML frameworks.
What to Do When a Red Flag is Identified
Step 1: Document the observation Record the red flag in your compliance file with specific details: what was observed, when, in which document or transaction, and by whom. Good documentation is essential both for the business decision and for any subsequent regulatory review.
Step 2: Apply enhanced due diligence (EDD) A single red flag typically triggers enhanced due diligence rather than immediate relationship exit. EDD may include: requesting additional documentation, conducting in-person meetings, using independent verification sources, seeking senior management approval, and increasing ongoing monitoring frequency.
Step 3: Assess the totality of red flags A single red flag is often explainable. The key question is whether the totality of red flags — when viewed together — forms a coherent picture of risk that cannot be mitigated by additional information. When multiple high-risk red flags co-exist without satisfactory explanation, the risk threshold for a suspicious activity report (SAR) or relationship exit is crossed.
Step 4: Consider a Suspicious Activity Report (SAR) In most jurisdictions, regulated entities are required to file a SAR (or STR — Suspicious Transaction Report) with the national financial intelligence unit (FIU) when they know, suspect, or have reasonable grounds to suspect that a transaction or client is connected to money laundering or terrorism financing. Filing a SAR does not require certainty — suspicion is sufficient.
Step 5: Apply tipping-off rules After filing a SAR, most jurisdictions impose a 'tipping-off' prohibition: you may not inform the client that you have filed a suspicious report. Internal confidentiality controls are essential.