Anti-Money Laundering — Know Your Customer

A New High-Value Client Says Our Full KYC Verification Process Is Too Slow and Wants to Provide Documentation Later. The Sales Team Is Pushing Hard to Close. What Do We Do?

A real AML compliance scenario — with three decision options and the right answer.

Quick Answer

Can a financial institution or regulated entity onboard a client before completing required KYC verification — even for a high-value prospect?

No. Know Your Customer requirements are a legal obligation under the Bank Secrecy Act and FinCEN’s Customer Due Diligence Rule—not an internal policy preference that can be waived based on business opportunities or client pressure. Onboarding a client before completing required verification exposes the organization to regulatory sanctions, civil money penalties, and potential criminal liability regardless of whether the client turns out to be legitimate. Sales pressure is not a legal defense.

The Situation

A relationship manager at a financial services firm is close to closing a significant new corporate account. The prospect — a holding company with operations in multiple countries — wants to move funds quickly. When the compliance team begins the standard KYC verification process, the prospect’s representative says the documentation requirements are “excessive” and that they can provide what’s needed “after the account is active.” The representative hints that another institution has already offered to proceed without the full verification.

The relationship manager asks the compliance team to proceed with a limited review and complete the full documentation within 30 days of onboarding. Quarter-end is in two weeks.

What Should the Compliance Team Do?

Choice AProceed with a limited review and set a 30-day deadline for the remaining documentation. The client seems legitimate and the business opportunity is significant. A short documentation window is a reasonable compromise.

Choice BHold the onboarding until required KYC verification is complete — and escalate the client’s resistance to providing documentation as a red flag to the BSA Officer or AML compliance team.

Choice CApprove the onboarding but flag the account for enhanced monitoring once active — so any suspicious activity will be caught quickly even without the full upfront documentation.

The Right Call

Choice B — Hold onboarding and escalate the resistance as a red flag.

Choice A violates the legal requirement — there is no “limited review plus 30 days” option under BSA/FinCEN rules. Choice C compounds the violation by onboarding a client who has already demonstrated unwillingness to cooperate with verification requirements — and monitoring cannot substitute for the identification and verification obligation. A client’s resistance to KYC documentation is itself a red flag that requires escalation, not accommodation. The fact that another institution may proceed without verification is not a defense — it may be a reason to file a Suspicious Activity Report.

Why This Is Harder Than It Looks

Quarter-end pressure and revenue opportunity create real internal tension.

The relationship manager is not asking the compliance team to do something obviously wrong — they are asking for a 30-day accommodation that sounds like reasonable business flexibility. The compliance team member who holds the line in this situation faces internal pressure, a frustrated colleague, and the risk of losing a potentially lucrative account. Understanding that the legal obligation is non-negotiable — and that the client’s resistance is itself suspicious — is the recognition skill this scenario builds.

Resistance to KYC is a red flag — not just an inconvenience.

A legitimate business with nothing to hide has no reason to refuse to provide standard identification and ownership documentation. The most common reason a client resists KYC verification is that they cannot — or do not want to — provide documentation that would reveal the true beneficial owner or source of funds. The resistance itself is information. FinCEN guidance treats client resistance to verification as a factor in SAR filing decisions.

“Another institution will do it” is a pressure tactic — not a compliance argument.

If true, the other institution is also in violation. If false, it is a manipulation tactic designed to create competitive urgency that overrides compliance judgment. Either way, it has no bearing on the legal obligation. An organization’s AML program is evaluated by regulators based on the organization’s own conduct — not relative to what competitors may or may not be doing.

Frequently Asked Questions

What does KYC require under US law?

Under FinCEN’s Customer Due Diligence Rule (effective 2018), covered financial institutions must identify and verify the identity of customers, identify and verify beneficial owners of legal entity customers (those with 25% or more ownership and one individual with significant control), understand the nature and purpose of the customer relationship, and conduct ongoing monitoring. These are legal minimums — not internal policies subject to business discretion.

What are the penalties for KYC violations?

BSA civil money penalties can reach $1 million per day for willful violations. Criminal penalties include fines and imprisonment for responsible individuals. FinCEN, the OCC, and the Federal Reserve have all imposed nine-figure penalties on institutions for systemic KYC failures. Individual compliance officers have faced personal liability in cases where they approved onboarding over documented compliance objections.

Does KYC apply to non-bank financial institutions?

Yes. FinCEN’s AML program rules apply to a broad range of financial institutions beyond banks — including money services businesses, broker-dealers, mutual funds, insurance companies, casinos, and certain fintech companies. The specific requirements vary by institution type, but the core obligation to identify and verify customers before establishing a business relationship is consistent across covered entities.

How to Use This Scenario in Training

Recommended for relationship managers, onboarding teams, compliance analysts, and BSA officers. The key recognition skill is identifying client resistance to KYC documentation as a red flag — and understanding that sales pressure and competitive urgency are not factors in the legal compliance analysis.

This scenario demonstrates the urgency and authority pressure signals from the Decision Readiness Engine™. Decision-ready compliance professionals recognize that “close the deal now” is the pressure that makes accommodating a KYC exception feel like good business judgment — and that the client’s resistance to verification is itself the most important compliance signal in the scenario.

More AML Scenarios

Transaction Monitoring

A longtime client makes six cash deposits of just under $10,000 in one month. Is that a problem?

Third-Party Risk

A new partner in a high-risk jurisdiction will facilitate deals but doesn’t want their name on paperwork.

Full AML Cluster

Browse all anti-money laundering scenarios.

© 2005–2026 Xcelus LLC. All rights reserved. Scenario content is
original work protected by copyright. You may link freely —
reproduction or adaptation without written permission is prohibited.

Want AML Scenarios in Your Compliance Program?

Xcelus builds scenario-based AML training for financial services, fintech, and multinational organizations subject to BSA, FinCEN, and FATF requirements.

View the Compliance Reinforcement Kit →
Contact Xcelus