Your AML/CTF program is only as strong as the people implementing it. Staff screening is a legal requirement — not an HR nicety.
Personnel Due Diligence (PDD) is the process of screening and monitoring staff who have roles relevant to your AML/CTF obligations. Under Part B of your AML/CTF program, you are required to have written procedures for assessing whether employees, contractors and agents in AML/CTF-relevant roles are fit and proper persons for those roles.
PDD applies to anyone who:
For sole practitioners, PDD applies to you. If you are the only person in your practice, you are still required to document your own fit and proper assessment. This includes a record of your identity, qualifications, and any relevant criminal or financial history checks.
PDD is not a one-time exercise at hiring. Your program must describe your approach to ongoing monitoring — what triggers a re-assessment, and how you respond if a staff member's circumstances change in a way that is relevant to their AML/CTF role.
Insider threat is a significant vector in financial crime. Staff members with access to compliance systems, client records, and trust accounts can facilitate money laundering either actively (colluding with clients) or passively (ignoring red flags). AUSTRAC's requirement for PDD is designed to reduce the risk of a compromised individual being placed in a position where they can undermine your compliance program.
The fit and proper standard also ensures that the people making compliance decisions — filing SMRs, assessing client risk, approving high-risk onboardings — have the integrity and competence to do so. A compliance officer with undisclosed conflicts of interest or relevant criminal history is a systemic risk to your entire program.
This applies to contractors and third parties too. If you outsource any AML/CTF functions — such as engaging a contract compliance officer or using a third party to conduct identity verification — your PDD obligations extend to those arrangements. You remain responsible for the adequacy of their screening.
Failing to maintain PDD records is a breach of Part B of your AML/CTF program requirements. Beyond the direct regulatory exposure, there are significant practical risks.
If a staff member facilitates money laundering and you cannot demonstrate that you conducted adequate screening and ongoing monitoring, AUSTRAC will hold your practice responsible for the failure of its internal controls. This can result in substantial penalties even if you were unaware of the staff member's conduct.
There is also a professional indemnity dimension. If your practice is named in a money laundering matter involving a staff member, your insurer will examine whether you had adequate screening procedures in place. Missing PDD records weaken your position significantly.
Document your staff screening obligations properly. No account needed — open SimpleAML now.
Open SimpleAML Free →