KwiikPay
Sign in
Compliance

AML compliance for payment businesses

Anti-money-laundering (AML) compliance is the set of controls a payments or crypto business uses to detect and prevent illicit funds moving through it. It's a legal obligation — and the backbone of being able to operate at all.

What AML compliance is for

Money launderers need legitimate-looking channels to move illicit funds. AML compliance is how a regulated business closes those channels — by verifying who its customers are, screening them and their transactions, and reporting anything suspicious. Get it wrong and the consequences are severe: fines, lost banking relationships, and criminal liability.

The core controls

  • Customer due diligence (KYC/KYB) — verify every customer’s identity, ownership and legitimacy before onboarding, and keep it current.
  • Sanctions, PEP & adverse-media screening — check customers and counterparties against watchlists at onboarding and continuously.
  • Transaction monitoring — watch payment flows for laundering and fraud patterns, and investigate alerts.
  • Suspicious-activity reporting — file SARs/STRs with the relevant financial-intelligence unit when red flags can’t be cleared.
  • The Travel Rule — share originator and beneficiary information on qualifying transfers (see our Travel Rule guide).
  • Record-keeping — retain the audit trail regulators expect.

The frameworks behind it

The FATF Recommendations are the global baseline, implemented through regional law — the EU’s AML directives and MiCA for crypto-asset services, national money-laundering regulations, and FINTRAC’s regime in Canada. A business’s exact obligations depend on where it’s licensed and where its customers are.

How KwiikPay approaches AML

KwiikPay is registered as a VASP in Poland and, in Canada, as a Payment Service Provider under the Retail Payment Activities Act (RPAA, supervised by the Bank of Canada) and a Money Services Business with FINTRAC. Its programme combines KYB/KYC onboarding, sanctions/PEP/adverse-media screening, transaction monitoring, the Travel Rule on its stablecoin rail, and enhanced due diligence for higher-risk customers — with client funds held in segregated accounts. The point isn’t compliance for its own sake: a clean, well-monitored network is what makes it safe to move money for regulated businesses at scale.

FAQs

What are the core pillars of AML compliance?

Customer due diligence (KYC/KYB), sanctions and PEP screening, ongoing transaction monitoring, suspicious-activity reporting (SARs/STRs), the Travel Rule for transfers, and record-keeping. Together they let a business spot and stop illicit funds.

Which regulations govern AML?

Globally, the FATF Recommendations set the standard, implemented through regional and national law — for example the EU's AML directives and MiCA for crypto, the UK's MLRs, and FINTRAC's regime in Canada. The exact rules depend on where a business is licensed and operates.

What is transaction monitoring?

Automated and manual review of payments for patterns that suggest money laundering or fraud — unusual volumes, structuring, dormancy then spikes, or links to sanctioned parties — generating alerts a compliance team investigates.

Does AML apply to stablecoin payments?

Yes. Stablecoin and crypto transfers are squarely within AML scope: the same screening, monitoring and Travel Rule obligations apply, which is exactly why a licensed, AML-compliant rail matters for moving them.

Related
What is KYB? The Travel Rule for crypto Enhanced Due Diligence (EDD) Crypto compliance for businesses Compliance overview

Open your first IBAN today.

Tier 2 onboarding takes one business day. No setup fees, no minimum balance, no surprises in the small print.