Central Bank of Nigeria Issues Automated Anti-Money Laundering Standards
On March 10, 2026, the Central Bank of Nigeria (CBN) released the Baseline Standards for Automated Anti-Money Laundering (AML) Solutions for Financial Institutions in Nigeria. This initiative is grounded in the authority provided by section 2(d) of the CBN Act 2007 and section 66(2) of the Banks and Other Financial Institutions Act 2020 (BOFIA).
The timing of this publication is crucial, as financial crimes continue to evolve, prompting regulators worldwide to enhance their efforts against illicit financial activities. By establishing standardized and automated AML compliance requirements, the CBN aims to fortify Nigeria’s financial system in its battle against money laundering, terrorist financing, and proliferation financing.
Applicability and Compliance Timeline
The newly established standards apply to all banks and financial institutions subject to CBN regulation. It mandates that these institutions deploy automated AML/CFT/CPF solutions that are specifically tailored to their size, risk profile, business model, transaction volume, and operational complexity.
To support balanced implementation across various sub-sectors, the CBN may issue additional sector-specific guidance. Furthermore, these standards will be applied alongside existing laws to ensure comprehensive compliance. Enforcement takes effect immediately, with depository banks (DMBs) given 18 months and other financial institutions (OFIs) a full 24 months to comply. Consequently, DMBs must meet the compliance deadline by September 10, 2027, while OFIs have until March 10, 2028. Financial institutions are required to present their implementation roadmaps to the CBN’s Compliance Department by June 10, 2026.
Key Components of the Standards
The CBN’s standards consist of several critical components aimed at addressing various facets of AML/CFT/CPF risk management. These components provide a structured approach for financial institutions to effectively mitigate their exposure to financial crime.
Comprehensively Defined AML Solutions
Article 8 of the Baseline Standards characterizes AML solutions as automated systems equipped with functionalities such as customer identification and verification, risk assessment, sanctions screening, transaction and fraud monitoring, case management, reporting, auditing, and governance, along with data protection measures. Notably, if an AML solution encompasses fraud monitoring, its fraud detection functions must remain distinct to maintain the effectiveness of the AML/CFT/CPF detection processes.
Mandatory Customer Due Diligence
The standards require that AML solutions facilitate thorough support for Customer Due Diligence (CDD), Enhanced Due Diligence (EDD), Know Your Customer (KYC), and Know Your Business (KYB) processes, featuring capabilities for real-time customer identification and verification. This also includes regular screenings against various watchlists, such as sanctions lists and politically exposed persons (PEP) databases, thereby equipping financial institutions to better assess and understand their customers and beneficiaries.
Real-Time Monitoring and Efficient Case Management
Continuous transaction monitoring is a cornerstone of effective AML practices. The standards mandate that automated solutions provide real-time or near real-time monitoring of all transactions to identify unusual patterns or anomalies suggesting potential money laundering or terrorist financing activities. Additionally, efficient case management processes are highlighted to facilitate the investigation and resolution of AML alerts. This includes automating the creation, assignment, and tracking of cases to ensure accountability and transparency.
Robust Reporting and Audit Requirements
Timely and accurate generation of regulatory reports is an essential compliance obligation under these standards. The automated AML system must support the generation of various required reports, such as Suspicious Transaction Reports (STR) and Currency Transaction Reports (CTR), ensuring adherence to formats prescribed by the CBN.
Integration, Security, and Scalability
Emphasizing the necessity for seamless integration between AML solutions and critical banking systems, the standards aim for a unified view of customer data, enabling comprehensive risk assessments. Security remains paramount, necessitating that institutions implement robust data protection measures in accordance with the Nigerian Data Protection Act and other relevant privacy laws.
This initiative marks a significant advancement in Nigeria’s efforts to combat financial crime. By mandating the implementation of advanced technological solutions and establishing clear operational requirements, the CBN aligns Nigeria with international best practices in AML. Financial institutions should prioritize these standards as critical investments in safeguarding the integrity of the financial system.
