What is Enhanced Due Diligence (EDD)?
Enhanced Due Diligence (EDD) is the deeper set of checks a regulated business applies to customers that present a higher financial-crime risk — going beyond the standard due diligence used for everyone else.
What EDD is
Not every customer carries the same risk, so regulated businesses apply due diligence on a risk-based scale. Most customers get standard Customer Due Diligence (CDD). Higher-risk customers get Enhanced Due Diligence — extra scrutiny that’s proportionate to the risk they present. It’s a core AML requirement, and it’s what makes it possible to serve higher-risk sectors responsibly rather than simply refusing them.
When EDD applies
A customer typically triggers EDD when they are:
- a politically-exposed person (PEP), their family or close associates;
- in a higher-risk sector (e.g. licensed crypto, forex/CFD, gaming) or jurisdiction;
- structured with complex or opaque ownership;
- showing unusual activity relative to their stated profile.
What EDD involves
- Deeper ownership verification — fully unpicking the UBO and control structure, the heart of any KYB check.
- Source of funds & source of wealth — establishing where the money actually comes from, often with bank statements, audited accounts, contracts or sale documents rather than a customer’s say-so.
- Senior sign-off — a named senior manager, not just an analyst, approves entering or continuing the relationship and owns the decision.
- Closer ongoing monitoring — more frequent review and tighter transaction monitoring, with lower alert thresholds and periodic re-verification rather than a one-time check.
In practice an EDD review on a higher-risk business is the difference between a few automated identity checks and a file that documents every beneficial owner, the commercial logic of the flows, and the evidence behind the source of funds — proportionate to the risk, and revisited on a schedule.
Why it’s a competitive edge, not just a cost
Many providers avoid higher-risk customers entirely because EDD is demanding. A business that can do EDD properly can serve licensed, regulated operators that others won’t — including licensed crypto businesses — without weakening its defences.
That’s KwiikPay’s posture. As a registered VASP in Poland and, in Canada, a Payment Service Provider under the Retail Payment Activities Act (RPAA, supervised by the Bank of Canada) and an MSB with FINTRAC — KwiikPay applies enhanced due diligence to higher-risk profiles — letting it bank licensed crypto, forex and similar businesses on a compliant, well-monitored rail. EDD is gated to legitimate, regulated operators; it is not a route around the rules.
FAQs
When is EDD required?
When a customer is higher-risk — for example politically-exposed persons (PEPs), customers in higher-risk sectors or jurisdictions, businesses with complex or opaque ownership, or unusual transaction patterns. Risk rating from onboarding determines whether standard or enhanced diligence applies.
What does EDD involve beyond standard checks?
Deeper verification of ownership and control, establishing source of funds and source of wealth, senior-management sign-off on the relationship, and more frequent ongoing monitoring and review.
What is the difference between CDD, SDD and EDD?
Simplified Due Diligence (SDD) is the light-touch level for low-risk cases; Customer Due Diligence (CDD) is the standard; Enhanced Due Diligence (EDD) is the heightened level for high-risk cases. The risk assessment decides which applies.
Does EDD mean a customer is suspicious?
No. EDD is a risk-based control, not an accusation — it lets a business safely serve higher-risk but legitimate customers (such as licensed crypto or forex operators) by applying proportionate extra scrutiny.