Finansinspektionen Issues New AML/CFT Guidance for Money Remittance Providers
Sweden's financial regulator, Finansinspektionen (FI), has published new guidance setting out how providers of money transfer services should identify, assess, and manage the risks of money laundering and terrorist financing. The guidance applies directly to licensed remittance businesses operating in Sweden and carries clear read-across for EU-based firms and the accounting professionals who advise them.
What Finansinspektionen Has Published
The guidance addresses the full AML/CFT compliance cycle for money remittance providers. FI makes clear that these businesses sit in an elevated risk category, given the nature of the transactions they process, the customer segments they serve, and the cross-border corridors through which funds move.
Scope and who it covers
The guidance targets firms licensed to provide money transfer services under Swedish law. That includes both standalone remittance operators and payment institutions whose services extend to this activity. Firms passporting into Sweden from elsewhere in the EU should also treat the document as a signal of supervisory expectations, since FI's approach mirrors the risk-based framework required under the EU's Anti-Money Laundering Directive.
Risk-based approach at the centre
FI's guidance reinforces the risk-based approach as the organising principle of a firm's AML/CFT programme. Firms are expected to carry out a documented business-wide risk assessment that takes into account the specific channels, geographies, and customer types associated with remittance activity. That assessment must then drive the calibration of customer due diligence, transaction monitoring, and internal controls.
Key Compliance Obligations
The guidance breaks down into several practical areas that firms and their advisers should map against existing frameworks.
Customer due diligence and enhanced measures
FI expects remittance providers to apply proportionate customer due diligence at onboarding and on an ongoing basis. Where risk indicators point to higher exposure, including politically exposed persons, high-value or unusual transaction patterns, or destinations subject to international sanctions or FATF monitoring, enhanced due diligence is required. FI specifically notes that simplified CDD is rarely appropriate for remittance business given the inherent risk profile of the sector.
Transaction monitoring and reporting
Automated transaction monitoring must be calibrated to the actual risk profile of the firm's customer base and the corridors it serves. Threshold-based rules alone are insufficient; firms need scenario-based detection capable of identifying structuring, rapid fund movements, and other typologies common in money transfer abuse. Suspicious activity reports must be filed promptly with the Swedish Financial Intelligence Unit where there are grounds for suspicion.
Governance, training, and record-keeping
Senior management accountability is a thread running through the entire guidance. FI expects the board and senior officers to own the AML/CFT risk appetite and to ensure that policies, procedures, and staff training are kept current. Record-keeping obligations require that CDD documentation and transaction records be retained in a form that allows rapid retrieval during a supervisory inspection.
Why This Matters for EU Firms and Advisers
Sweden's AML supervisory framework is grounded in EU directives, and FI has consistently been among the more active Nordic supervisors in this space. The publication of dedicated sector guidance for remittance providers signals that FI intends to scrutinise this segment closely. Accounting firms and compliance consultants advising payment institutions across the EU, including in Germany where remittance activity is significant, should treat this as a reference point when reviewing client AML programmes.
For a broader view of how AML reporting obligations are evolving in Sweden, see Finansinspektionen's updated periodic AML reporting rules. The international dimension is equally important: the travel rule and related obligations examined in FATF Revised Recommendation 16 and its implications for crypto accountants intersect with the monitoring requirements FI now expects of remittance providers.
Frequently Asked Questions
Does this guidance apply to crypto asset service providers as well as traditional remittance firms?
FI's guidance is directed at providers of money transfer services as defined under Swedish payment law. Crypto asset service providers have a separate regulatory track under MiCA and Swedish AML legislation, though many of the underlying risk-based principles FI sets out apply equally to VASP-type businesses. Firms should check their licensing category and seek specific advice if they operate across both regimes.
Is this guidance legally binding?
FI's guidance documents sit below the level of binding regulations but represent the regulator's authoritative interpretation of how firms must meet their statutory AML/CFT obligations. Failure to follow the guidance will be taken into account in supervisory assessments and enforcement proceedings.
What should a firm do if its current risk assessment does not reflect the areas FI highlights?
Firms should treat the guidance as a gap-analysis tool. Where the business-wide risk assessment does not cover the specific corridors, customer segments, or typologies FI identifies, the assessment should be updated and the resulting control changes documented before the next supervisory cycle.
How does this guidance interact with EU-level AML rules?
The guidance sits within Sweden's transposition of the EU Anti-Money Laundering Directives. As the EU's new AML package, including the establishment of AMLA, takes effect, firms can expect FI's supervisory expectations to track those EU-level developments closely. The risk-based approach FI articulates is consistent with EU requirements and with FATF standards.
Are German-based remittance providers affected?
German firms operating cross-border remittance services are supervised primarily by BaFin, not FI. However, the risk typologies, CDD standards, and monitoring expectations that FI outlines reflect EU-wide norms. German compliance teams should benchmark their programmes against this guidance as good practice, particularly given BaFin's own increased focus on the remittance sector.
Source: Finansinspektionen
FAQ
FI's guidance is directed at providers of money transfer services as defined under Swedish payment law. Crypto asset service providers have a separate regulatory track under MiCA and Swedish AML legislation, though many of the underlying risk-based principles FI sets out apply equally to VASP-type businesses. Firms should check their licensing category and seek specific advice if they operate across both regimes.
FI's guidance documents sit below the level of binding regulations but represent the regulator's authoritative interpretation of how firms must meet their statutory AML/CFT obligations. Failure to follow the guidance will be taken into account in supervisory assessments and enforcement proceedings.
Firms should treat the guidance as a gap-analysis tool. Where the business-wide risk assessment does not cover the specific corridors, customer segments, or typologies FI identifies, the assessment should be updated and the resulting control changes documented before the next supervisory cycle.
The guidance sits within Sweden's transposition of the EU Anti-Money Laundering Directives. As the EU's new AML package, including the establishment of AMLA, takes effect, firms can expect FI's supervisory expectations to track those EU-level developments closely. The risk-based approach FI articulates is consistent with EU requirements and with FATF standards.
German firms operating cross-border remittance services are supervised primarily by BaFin, not FI. However, the risk typologies, CDD standards, and monitoring expectations that FI outlines reflect EU-wide norms. German compliance teams should benchmark their programmes against this guidance as good practice, particularly given BaFin's own increased focus on the remittance sector.
