Data and Compliance Report (DCR) is an annual submission to Bank Negara Malaysia (BNM) by reporting institutions (RI), to report how they meet the anti-money laundering and counter-financing of terrorism (AML/CFT) requirements and identify their exposure to money laundering (ML) and terrorism financing (TF) risks.
Menu for DCR 2024:
WHO needs to submit DCR?
The following sectors are required to submit DCR.
- Company secretaries
- Registered estate agents
- Lawyers and notaries public
- Dealers in precious metals /stones
WHAT should be prepared for DCR submission?
1. Reporting institutions need to appoint a Compliance Officer (CO) and notify your appointed CO to BNM through the link http://amlcft.bnm.gov.my/co/.
2. Prepare relevant information, including:
Part A – Information of the firm
size, contact, compliance officer
Part B – Business information
transaction information, payment method, delivery channel and branch information
Part C – ML/TF risk assessment
- Process or guidance of money laundering and terrorism financing risk assessments, such as internal policy, procedure and control (IPPC) or standard operating procedure (SOP)
- Frequency of review, Risk ratings and Risk drivers / risk issues identified
Part D – AML/CFT programme
- Total number and Breakdown by type and nationality of customers
- AML/CFT SOP or manual, including
i. Customer Due Diligence (CDD) or Know Your Customer (KYC)
ii. Record keeping
iii. Screening of customers against sanctioned persons/ entities lists
iv. Risk profiling / risk rating for customers
v. Enhanced Due Diligence for higher risk customers
vi. Ongoing Due Diligence
vii. Reporting suspicious transaction (STR) • Storing customers’ information and transactions records
- AML/CFT compliance programme (only for large-sized firms) including AML/CFT policy & procedures, employee screening and training, and independent AML/CFT audit
Part E – Information on Group Operations
international affiliation / network / association and group structure
AML/CFT Solutions for meeting BNM regulatory requirements
📌 If you do not have internal AML/CFT policy, procedure and control (IPPC), you can now fast-track your development on IPPC by purchasing a proprietary customizable IPPC document template with 90% complete.
Learn more about IPPC Template
HOW to submit DCR
Follow the step-by-step guide for DCR submission:
Step 1 – Notify the Compliance Officer to BNM
Reporting institutions are required to notify BNM of the appointed Compliance Officer to receive the “invitation code”.
Step 2 – Log in to DCR
Register for access to DCR on DNFBP Portal with the “invitation code” and create an account. If you already have an account, sign in with the registered credentials.
Step 3 – Complete and submit DCR form
Click “New Submission” on DCR Dashboard to start DCR form and then key in details as requested. Click “Submit Application” after completing the form, and the “completed submission message” will be displayed upon submission. You can view the completed submission by clicking “View details” on DCR Dashboard.
Step 4 – Receive DCR report card
A report card will be sent to the firm email and copied to the notified CO email within 1 day after the submission.
WHAT IF reporting institutions fail to submit DCR?
If reporting institutions fail to submit DCR before the deadline, enforcement action under the AMLA/FSA can be taken.
- Latest Updates on Hong Kong Anti-Money Laundering Regulations
- Ensuring the New Anti-Money Laundering and Terrorism Financing Compliance: A Step-by-Step Guide for Developers in Singapore
- Guide for HK DPMS: Registration Process, How to Do AML and Useful AML Tools (With Tips on Waiver of Registration Fee)