In assessing ML/TF risks referred to in AML-C.2.2, a
(a) Documenting its risk assessments and findings;
(b) considering all the relevant risk factors before determining what is the level of overall risk profile and the appropriate level and type of mitigation to be applied;
(c) Keeping the assessment up-to-date through a periodic review conducted at least annually; and
(d) Having appropriate and clearly defined mechanisms to provide risk assessment information to the CBB.
Added: January 2020