Back Custom print Link Text Only Rich Text Print

  • FC-3 FC-3 Money Laundering Reporting Officer

    • FC-3.1 FC-3.1 Appointment of MLRO

      • FC-3.1.1

        Insurance firms (except captive insurance firms managed by an insurance manager), insurance brokers and insurance managers (that manage a captive insurance firm) must appoint a Money Laundering Reporting Officer ('MLRO'). In the case of insurance managers that manage captive insurance firms, the insurance manager must appoint a MLRO for each of the captive insurance firms under its management.

        Amended: January 2007
        Amended: October 2007

      • FC-3.1.2

        Insurance managers may nominate the same individual to act as MLRO for more than one captive insurance firm, providing this person can meet in full the responsibilities of MLRO for each captive insurance firm in question.

        Amended: January 2007

      • FC-3.1.3

        The position of MLRO is a controlled function and the MLRO is an approved person.

      • FC-3.1.4

        For details of the CBB's requirements regarding controlled functions and approved persons, see Section AU-1.2. Amongst other things, approved persons require CBB approval before being appointed, which is granted only if they are assessed as 'fit and proper' for the function in question. A completed Form 3 must accompany any request for CBB approval.

        Amended: January 2007

      • FC-3.1.5

        The position of MLRO must not be combined with functions that create potential conflicts of interest, such as an internal auditor or business line head. The position of MLRO may not be outsourced.

      • FC-3.1.6

        Subject to Paragraph FC-3.1.5, however, the position of MLRO may otherwise be combined with other functions in the insurance licensee, such as that of Compliance Officer, in cases where the volume and geographical spread of the business is limited and, therefore, the demands of the function are not likely to require a full time resource. Paragraph FC-3.1.9 requires that the MLRO is a Director or employee of the licensee, so the function may not be outsourced to a third party employee.

        Amended: January 2007
        Amended: October 2007

      • FC-3.1.6A

        For purposes of Paragraphs FC-3.1.5 and FC-3.1.6 above, insurance licensees must clearly state in the Application for Approved Person Status — Form 3 — when combining the MLRO or DMLRO position with any other position within the insurance licensee.

        Added: October 2017

      • FC-3.1.7

        Insurance licensees must appoint at least one deputy MLRO (or more depending on the scale and complexity of the licensee's operations). The deputy MLRO(s) must be resident in Bahrain unless otherwise agreed with the CBB.

        Amended: January 2007

      • FC-3.1.7A

        The deputy MLRO should be able to support the MLRO discharge his responsibilities and to deputise for him in his absence. In the case of insurance licensees undertaking significant overseas business, the CBB would normally expect to see one or more deputy MLRO(s) residing in the jurisdiction(s) where the bulk of the customer business is processed. In such cases, the CBB would normally agree to an application for an exemption from the residency requirement in Rule FC-3.1.7.

        Amended: January 2007

      • FC-3.1.8

        Insurance licensees should note that although the MLRO may delegate some of his functions, either to other employees of the licensee or even (in the case of larger groups) to individuals performing similar functions for other group entities, that the responsibility for compliance with the requirements of this Module remains with the licensee and the designated MLRO.

        Amended: January 2007

      • FC-3.1.9

        So that he can carry out his controlled function effectively, insurance licensees must ensure that their MLRO:

        (a) Is a member of senior management of the licensee;
        (b) Has a sufficient level of seniority within the insurance licensee, has the authority to act without interference from business line management and has direct access to the Board and senior management (where necessary);
        (c) Has sufficient resources, including sufficient time and (if necessary) support staff, and has designated a replacement to carry out the function should the MLRO be unable to perform his duties;
        (d) Has unrestricted access to all transactional information relating to any financial services provided by the insurance licensee to a customer, or any transactions conducted by the insurance licensee on behalf of that customer;
        (e) Is provided with timely information needed to identify, analyse and effectively monitor customer accounts;
        (f) Has access to all customer due diligence information obtained by the insurance licensee; and
        (g) Is resident in Bahrain.
        Amended: October 2011
        Amended: January 2007
        Amended: October 2007

      • FC-3.1.10

        In addition, insurance licensees must ensure that their MLRO is able to:

        (a) Monitor the day-to-day operation of their policies and procedures relevant to this Module; and
        (b) Respond promptly to any reasonable request for information made by the Financial Intelligence Directorate or the CBB.
        Amended: October 2019
        Amended: April 2010
        Amended: October 2007
        Amended: January 2007

      • FC-3.1.11

        If the position of MLRO falls vacant, the insurance licensee must appoint a permanent replacement (after obtaining CBB approval), within 120 calendar days of the vacancy occurring. Pending the appointment of a permanent replacement, the licensee must make immediate interim arrangements (including the appointment of an acting MLRO) to ensure continuity in the MLRO function's performance. These interim arrangements must be approved by the CBB.

        Amended: January 2007

    • FC-3.2 FC-3.2 Responsibilities of the MLRO

      • FC-3.2.1

        The MLRO is responsible for:

        (a) Establishing and maintaining the insurance licensee's AML/CFT policies and procedures;
        (b) Ensuring that the licensee complies with the AML Law and any other applicable AML/CFT legislation and this Module;
        (c) Ensuring day-to-day compliance with the licensee's own internal AML/CFT policies and procedures;
        (d) Acting as the insurance licensee's main point of contact in respect of handling internal suspicious transactions reports from the licensee's staff (refer to Section FC-4.1) and as the main contact for the Financial Intelligence Directorate, the CBB and other concerned bodies regarding AML/CFT;
        (e) Making external suspicious transactions reports to the Financial Intelligence Directorate and the Compliance Directorate (refer to Section FC-4.2);
        (f) Taking reasonable steps to establish and maintain adequate arrangements for staff awareness and training on AML/CFT matters (whether internal or external), as per Chapter FC-5;
        (g) Producing annual reports on the effectiveness of the licensee's AML/CFT controls, for consideration by senior management, as per Paragraph FC-3.3.3;
        (h) On-going monitoring of what may, in his opinion, constitute high-risk customer accounts; and
        (i) Ensuring that the insurance licensee maintains all necessary CDD, transactions, STR and staff training records for the required periods (refer to Section FC-6.1).
        Amended: October 2019
        Amended: October 2015
        Amended: April 2010
        Amended: January 2007

    • FC-3.3 FC-3.3 Compliance Monitoring

      • Annual Compliance Review

        • FC-3.3.1

          Insurance licensees must take appropriate steps to identify and assess their money laundering and terrorist financing risks (for customers, countries or geographic areas; and products, services, transactions or delivery channels). They must document those assessments in order to be able to demonstrate their basis, keep these assessments up to date, and have appropriate mechanisms to provide risk assessment information to the CBB. The nature and extent of any assessment of money laundering and terrorist financing risks must be appropriate to the nature and size of the business.

          Added: October 2015

        • FC-3.3.1A

          Insurance licensees should always understand their money laundering and terrorist financing risks, but the CBB may determine that individual documented risk assessments are not required, if the specific risks inherent to the sector are clearly identified and understood.

          Added: October 2015

        • FC-3.3.1B

          An insurance licensee must review the effectiveness of its AML/CFT procedures, systems and controls at least once each calendar year. The review must cover the licensee and its branches and subsidiaries both inside and outside the Kingdom of Bahrain. An insurance licensee must monitor the implementation of those controls and enhance them if necessary. The scope of the review must include:

          (a) A report, containing the number of internal reports made in accordance with Section FC-4.1, a breakdown of all the results of those internal reports and their outcomes for each segment of the licensee's business, and an analysis of whether controls or training need to be enhanced;
          (b) A report, indicating the number of external reports made in accordance with Section FC-4.2 and, where an insurance licensee has made an internal report but not made an external report, noting why no external report was made;
          (c) A sample test of compliance with this Module's customer due diligence requirements; and
          (d) A report as to the quality of the licensee's anti-money laundering procedures, systems and controls, and compliance with the AML Law and this Module.
          Amended: January 2022
          Amended: October 2015
          Amended: January 2007
          Amended: October 2007

        • FC-3.3.2

          The reports listed under Paragraph FC-3.3.1B (a) and (b) must be made by the MLRO. The sample testing and report required under Paragraph FC-3.3.1B (c) and (d) must be made by the licensee’s external auditor or a consultancy firm approved by the CBB.

          Amended: January 2022
          Amended: January 2019
          Amended: October 2011
          Amended: January 2007
          Amended: October 2007

        • FC-3.3.2A

          In order for a consultancy firm to be approved by the CBB for the purposes of Paragraph FC-3.3.2, such firm should provide the CBB's Compliance Directorate with:

          (a) A sample AML/CFT report prepared for a financial institution;
          (b) A list of other AML/CFT related work undertaken by the firm;
          (c) A list of other audit/review assignments undertaken, specifying the nature of the work done, date and name of the licensee; and
          (d) An outline of any assignment conducted for or in cooperation with an international audit firm.
          Added: October 2011

        • FC-3.3.2B

          The firm should indicate which personnel (by name) will work on the report (including, where appropriate, which individual will be the team leader) and demonstrate that all such persons have appropriate qualifications in one of the following areas:

          (a) Audit;
          (b) Accounting;
          (c) Law; or
          (d) Banking/Finance.
          Added: October 2011

        • FC-3.3.2C

          At least two persons working on the report (one of whom would normally expected to be the team leader) should have:

          (a) A minimum of 5 years professional experience dealing with AML/CFT issues; and
          (b) Formal AML/CFT training.
          Added: October 2011

        • FC-3.3.2D

          Submission of a curriculum vitae for all personnel to be engaged on the report is encouraged for the purposes of evidencing the above requirements.

          Added: October 2011

        • FC-3.3.2E

          Upon receipt of the above required information, the CBB Compliance Directorate will assess the firm and communicate to it whether it meets the criteria required to be approved by the CBB for this purpose. The CBB may also request any other information it considers necessary in order to conduct the assessment.

          Added: October 2011

        • FC-3.3.3

          The items listed under Paragraph FC-3.3.1B must be submitted to the licensee's Board, for it to review and commission any required remedial measures, and copied to the licensee's senior management.

          Amended: January 2019

        • FC-3.3.4

          The purpose of the annual compliance review is to assist a licensee's Board and senior management to assess, amongst other things, whether internal and external reports are being made (as required under Chapter FC-4), and whether the overall number of such reports (which may otherwise appear satisfactory) does not conceal inadequate reporting in a particular segment of the licensee's business (or, where relevant, in particular branches or subsidiaries). Licensees should use their judgement as to how the reports listed under Paragraph FC-3.3.1B (a) and (b) should be broken down in order to achieve this aim (e.g. by branches, departments and product lines).

          Amended: January 2019
          Amended: January 2007

        • FC-3.3.5

          Insurance licensees must instruct their appointed firm to produce the report referred to in Paragraph FC-3.3.1B (c) and (d). The report must be submitted to the CBB by the 30th of June of the following year. The findings of this review must be received and acted upon by the licensee.

          Amended: January 2022
          Amended: January 2020
          Amended: January 2019
          Amended: January 2012
          Amended: October 2007
          Amended: January 2007

        • FC-3.3.5A

          [This Paragraph was deleted in January 2019].

          Deleted: January 2019
          Added: January 2007

        • FC-3.3.6

          [This Paragraph was deleted in January 2022].

          Deleted: January 2022
          Amended: January 2012
          Amended: October 2007

        • FC-3.3.7

          [This Paragraph was deleted in January 2022].

          Deleted: January 2022
          Amended: January 2020
          Added: January 2007
          Amended: April 2008
          Amended: January 2019