The recent announcement by the Financial Crimes Enforcement Network (FinCEN) regarding the final rule on anti-money laundering (AML) and countering the financing of terrorism (CFT) compliance obligations for registered investment advisers (RIAs) marks a significant shift in the regulatory landscape. This new rule, effective from January 1, 2026, requires investment advisers to adopt robust compliance programs to combat financial crimes, ensuring that they are well-prepared to mitigate risks associated with money laundering and terrorist financing.

Understanding the New AML/CFT Compliance Obligations

The final rule issued by FinCEN on August 28, 2023, mandates that all SEC-registered investment advisers and exempt reporting advisers (ERAs) develop a comprehensive, risk-based compliance program. This program must be designed to address the unique risks associated with the advisory services they provide. The rule essentially elevates the status of investment advisers to that of “financial institutions” under the Bank Secrecy Act (BSA), a classification that brings with it a host of new responsibilities.

Key Changes from the Proposed Rule

The final rule introduces several important changes from the proposed version released earlier in February. Notably, while the rule extends AML obligations to most RIAs and ERAs, it excludes certain advisers, specifically those who register with the SEC solely due to their status as mid-sized advisers, multi-state advisers, or pension consultants. This nuanced approach aims to balance regulatory oversight with the practical realities faced by smaller firms.

Foreign investment advisers are also brought under the rule’s umbrella if they engage in specified activities that involve U.S. persons or operations. For those engaged in advisory services to U.S. clients or funds, compliance with the new regulations is mandatory. This is a crucial development, as it broadens the scope of compliance beyond domestic advisers, reflecting the global nature of financial markets. For more details on the implications for foreign advisers, you can refer to FinCEN’s official guidance.

Establishing a Risk-Based Compliance Program

One of the cornerstone requirements of the final rule is the establishment of a risk-based compliance program. This program must be tailored to the specific risks associated with each investment adviser’s operations. The rule emphasizes that compliance programs should not be one-size-fits-all; rather, they should be adaptable to the unique circumstances of each firm.

Developing Internal Policies, Procedures, and Controls

Investment advisers are required to develop internal policies and procedures that reflect their specific risk profiles. This involves a thorough assessment of various factors, including:

• The nature of advisory services offered
• The geographical locations of clients
• The types of investment products recommended
• Distribution channels and account types

By conducting a comprehensive risk assessment, advisers can identify vulnerabilities and tailor their compliance measures accordingly. The Financial Industry Regulatory Authority (FINRA) provides useful resources for firms looking to develop effective compliance policies.

Designating a Compliance Officer

To ensure effective implementation and oversight of the AML/CFT compliance program, investment advisers must designate a qualified compliance officer. This individual should possess a deep understanding of the firm’s specific risks and have the expertise necessary to navigate the complexities of AML regulations. The compliance officer will play a critical role in monitoring adherence to the compliance program and reporting any suspicious activities.

Training and Awareness: A Critical Component

Training is an essential aspect of any AML/CFT compliance program. Investment advisers must implement ongoing training programs that educate employees about AML requirements and the specific risks relevant to their roles.

Implementing Ongoing Employee Training Programs

Training should encompass both general AML/CFT requirements and role-specific responsibilities. Employees must be equipped to recognize signs of money laundering and other illicit financial activities. Firms can choose to conduct training in-house or engage external experts to provide specialized training sessions. For a comprehensive overview of training requirements, the Association of Certified Financial Crime Specialists (ACFCS) offers valuable resources.

Tailoring Training to Specific Risks

To maximize the effectiveness of training programs, investment advisers should assess the extent to which employees’ roles expose them to AML/CFT obligations. For instance, employees working with high-risk clients may require more intensive training compared to those dealing with lower-risk activities. This targeted approach ensures that all personnel are adequately prepared to identify and respond to potential risks.

The Role of Independent Audits in Compliance

Independent audits are a fundamental aspect of ensuring the integrity of an investment adviser’s AML/CFT compliance program. The final rule mandates that firms conduct regular independent testing of their compliance programs.

Utilizing Independent Auditors

Investment advisers must engage qualified external auditors or trained internal personnel to perform independent tests. However, it is crucial that those conducting the audits are not involved in the day-to-day operations of the compliance program. This separation of duties helps maintain objectivity and ensures that the audit findings are credible.

Many firms opt to hire external consultants or legal experts for this purpose, as doing so not only guarantees independence but also leverages the expertise of professionals who specialize in compliance matters. For insights on selecting auditors, the American Institute of CPAs (AICPA) provides guidelines and best practices.

Key Compliance Requirements for Investment Advisers

Investment advisers must adhere to several key compliance requirements under the final rule. These include:

1. Implementing a Risk-Based AML/CFT Compliance Program: Firms must develop and apply a compliance program tailored to their specific risks.
2. Filing Suspicious Activity Reports (SARs): Advisers are required to report any suspicious activities that may indicate money laundering or other financial crimes.
3. Maintaining Recordkeeping and Travel Rules: Proper documentation and adherence to travel rules are essential for compliance.
4. Responding to Law Enforcement Requests: Firms must be prepared to cooperate with law enforcement agencies as required under Section 314(a) of the PATRIOT Act.
5. Conducting Special Due Diligence: Enhanced due diligence measures must be applied to higher-risk clients, ensuring that advisers thoroughly vet their customers.

For a detailed overview of these requirements, refer to the U.S. Department of the Treasury.

Conclusion: Preparing for Compliance by 2026

The final AML/CFT rule from FinCEN represents a pivotal moment for investment advisers in the United States. With a compliance deadline set for January 1, 2026, it is imperative that firms begin to implement the necessary changes to meet these new obligations. By developing robust compliance programs, designating qualified personnel, and ensuring ongoing training, investment advisers can effectively mitigate risks associated with money laundering and terrorist financing.

As the regulatory landscape continues to evolve, staying informed and proactive will be key to maintaining compliance and safeguarding the integrity of the financial system. Investment advisers are encouraged to leverage available resources and seek expert guidance to navigate the complexities of these new requirements.

Source: The National Law Review –> Full article and more