top of page

Subscribe to our Resources Mailing List

Thanks for submitting!


Updated: Feb 2, 2022

If you are like most bankers, you’ve probably not put much thought into how or why updates to the Federal Financial Institutions Examination Council (FFIEC) Bank Secrecy Act/Anti-Money Laundering (BSA/AML) Examination Manual occur or the process behind those updates. To be honest, neither did we until this past Spring. The amount of effort and collaboration it takes to make impactful and meaningful changes to the manual -- and eventually the banking industry as a whole -- is mind-blowing. Allow me to explain.

In April 2021 RiskScout was invited by the National ATM Council to assist in redlining the “Privately Owned Automated Teller Machine” section of the FFIEC BSA/AML Examination Manual. The proposed redlining would be presented to the FFIEC for consideration with the intention to provide clarity on how the industry truly operates as well as remove damning and misleading language that, whether by design or not, led most bankers to believe the ATM industry is more susceptible to money laundering and fraud than other industries.

Included in the redlining invitation was the opportunity to participate in an open discussion with a panel of FFIEC members that included multiple representatives from each regulatory agency. The discussion included the proposed redline changes along with open dialogue with real-life independent ATM owners that have struggled to find a financial institution to serve them despite the fact they have been operating legal and compliant ATM businesses for decades. The discussion was lively and the FFIEC council members present on the call appeared open to the changes.

On paper this seems like a smooth and fast sequence of events. In reality it took years to get FFIEC key stakeholders on the phone. How could that be since it was just in April 2021 that the redlining took place? Truthfully, it took years of behind-the-scenes work by the National ATM Council: Years of meeting directly with FinCEN on the topic of ATMs, gaining an understanding of their concerns and drafting proposed solutions for ATM operators to adhere to based on their concerns. Years of industry experts advocating for the ATM industry and addressing real concerns voiced by FinCEN and other key decision makers.

After months of deliberation and many discussions later, on December 1, 2021 the FFIEC released four updates to the BSA//AML Examination Manual. The release included our proposed redlining (with a few additional tweaks) for the ATM section of the manual - now titled “Independent Automated Teller Machine Owners or Operators”. To say we are proud of this accomplishment would be an understatement. The opportunity to participate in such a critical update for an industry that is widely misunderstood and woefully underserved was an honor. The profound insight gained into the arduous process of updating core banking guidance was eye opening and provides proof that each BSA/AML manual update is the result of months, if not years, of collaboration between industry experts and regulators.

Below are the highlights of the four December 1, 2021 BSA/AML Examination Manual updates:

  • Introduction - Customers (New)

  • Examiners are reminded that no specific customer type automatically presents a higher risk of ML/TF or other illicit financial activity.

  • The federal banking agencies and FinCEN encourage banks to manage customer relationships and mitigate risks based on those customer relationships rather than declining to provide banking services to entire categories of customers.

  • Examiners should assess how a bank evaluates customers according to their particular characteristics to determine whether the bank can effectively mitigate the risk customers may pose.

  • Charities and Nonprofit Organizations (Updated)

  • The federal banking agencies and FinCEN have recognized that it is vital for legitimate charities and other NPOs to have access to financial services, including the ability to transmit funds in a timely manner.

  • The ML/TF risk for charity and other NPO customers can also vary depending on the operations, activities, leadership, and affiliations of the organization.

  • For example, U.S. charities that operate and provide funds solely to domestic recipients generally present lower ML/TF risk. However, those U.S. charities that operate abroad, or that provide funding to, or have affiliated organizations in conflict regions can face potentially higher ML/TF risks.

  • Based on the customer risk profile, the bank may consider obtaining, at account opening (and throughout the relationship), more customer information in order to understand the nature and purpose of the customer relationship.

  • Independent Automated Teller Machine Owners or Operators (Updated)

  • Automated Teller Machines (ATMs) offer fast and convenient access to cash and are an important channel in providing financial services, including in underserved markets.