Main menu:
International Business: NEWs and laws to follow 2023, Compliance Codes,
AML AntiMoneyLaundering crimes, KYC, etc
Details: globalcompliancenews.com
The Toxic Substances Control Act (TSCA)
The Customs Trade Partnership Against Terrorism (CTPAT)
The EU Forced Labor Regulation
The Restriction of Hazardous Substances (RoHS) Directive
The German Supply Chain Due Diligence Act (SCDDA)
The Registration, Evaluation, Authorisation, and Restriction of Chemicals (REACH) Regulation
The Ecodesign for Sustainable Products Regulation (ESPR)
AML, KPY etc.
The Toxic Substances Control Act
Due to concerns from stakeholders surrounding the prevalence of this substance in modern supply chains, the Environmental Protection Agency (EPA) delayed enforcement of the PIP (3:1) restriction until October 2024.
However, manufacturers will need to be proactive in identifying and removing this substance ahead of this new deadline, given that removing this substance from supply chains will take substantial time.
And that’s not the only work manufacturers will have to do to maintain TSCA compliance in 2023.
In June 2021, the EPA proposed Section 8(a)(7) to TSCA, requiring manufacturers to report PFAS usage all the way back to 2011, specifically regarding uses, volumes, disposal, hazards, and exposures.
There is no “de minimis” exemption for smaller companies or those that use PFAS substances in small quantities.The EPA is expected to release a final rule by the end of 2022. Once released, companies will be responsible for gathering data and reporting on a wide range of PFAS substances – a task that will also take considerable time and resources.
The Customs Trade Partnership Against Terrorism
The Customs Trade Partnership Against Terrorism is a volunteer government-business initiative. It aims to build cooperative relationships that strengthen the international supply chain and U.S. border security.
New minimum security requirements related to forced labor were introduced in August 2022. Participants must now develop social compliance programs that ensure forced labor is not used in the production of goods that are imported into the U.S.
This will require extensive effort to satisfy, and companies should be prepared to provide U.S. Customs and Border Protection (CPB) with evidence that these plans have been implemented by August 2023. A few of those requirements include:
Risk-based mapping of supply chain partners with regard to forced labor (suppliers and regions)
Submitting evidence of implementation of social compliance programs (e.g., audits, internal training, etc.)
Providing suppliers with training about their social compliance program requirements in order to identify and prevent forced labor in the supply chain
Aspiring members must have those plans in place before they apply to be a part of CTPAT.
For existing members, non-compliance will result in the loss of CTPAT membership, along with the benefits it provides (e.g., shorter wait times for goods coming into the U.S., front-of-the-line inspections, and priority business resumption in the event of a natural disaster).
EU Forced Labor Regulation
In September 2022, the European Commission proposed a new regulation that would prohibit products made with forced labor from being imported into or exported from the EU. Products made with forced labor would also be prohibited from being made available in the EU market. This regulation would apply to all levels of production and to all products.
This regulation, barring any delays, is expected to go into effect in two years, with hard requirements coming into effect in 2025.
However, companies should start preparing in 2023 to comply with the rule that comes out of this proposal as it will require extensive and consistent effort.Manufacturers will need to build stronger supplier relationships, put forced labor data collection processes and educational opportunities in place, and create a method of identifying and filling data gaps, among other things.
Mandatory Climate Disclosures
In March 2022, the U.S. Securities and Exchange Commission (SEC) issued a proposed rule change that would require public companies to provide certain climate-related financial data and greenhouse gas emissions in public disclosure filings. A final rule is expected by the end of 2022.
Specifically, this rule would require three levels of disclosures:
Material climate impacts (risks from physical climate-related hazards like fires and floods)
Greenhouse gas emissions (reporting of audited scope one and scope two emissions)
Targets and transition plans (disclose existing targets around emission reductions, energy usage, nature conservation, etc.)
Two of the key challenges companies face are poor quality of data and tracking and waiting too long to begin tracking and analyzing this data. Given the SEC rule’s scope and depth, companies will want to get started as soon as possible so they can be prepared to meet these disclosure requirements and not have to risk last-minute scrambling.
The German Supply Chain Due Diligence Act
On January 1, 2023, the SCDDA will go into effect.
This act requires that all German companies with 3,000 employees or more take “appropriate measures” to respect the environment and human rights in their supply chain. The goal of this act is to reduce or eliminate risks associated with human rights and the environment, while also ending the violation of duties related to these issues.
On January 1, 2024, the scope of this act will be tightened to companies with 1,000 or more employees. Even employees that work abroad are included in this number.
Companies will be required to:
File annual reports on due diligence activities
Detail actions taken to identify risks
Detail what steps were taken to address those risks
Companies will need to ensure their SCDDA compliance processes are robust enough to withstand scrutiny. Ineffective measures can lead to severe non-compliance penalties, like fines ranging from €800,000 or two percent of average annual global turnover for companies earning over €400 million, exclusion from government contracts, and lawsuits.
The RoHS Directive
The EU RoHS Directive is undergoing a revision process that could recast RoHS as a regulation instead of a directive. That would present new challenges for businesses, as a regulation would be consistent law for all member states, rather than requiring separate, and possibly inconsistent, transposition.
A survey of stakeholders also raised the issue of expanding the product list of in-scope electronic and electrical equipment (EEE) to include radio-frequency identification (RFID) technology and photovoltaic panels. In order to ensure their final product remains compliant, companies that use RFID technology and photovoltaic panels will have to survey their supply chain and ensure components and subassemblies do not contain any of the 10 restricted substances in quantities above threshold.
The RoHS Directive currently restricts 10 substances. An additional substance — tetrabromobisphenol A (TBBP-A) — will likely be added soon presenting manufacturers using EEE with new compliance budget and market access challenges.
Medium-chain chlorinated paraffins (MCCPs), which were expected to be added, may not be, as they are considered adequately covered under the REACH Regulation. Manufacturers will want to keep an eye on developments for these and other substances.
The REACH Regulation
The European Commission is planning to create a new European Audit Capacity (EAC) authority. This will give REACH enforcement bodies the ability to execute product recalls and recommended fines rapidly, along with other enforcement actions. It’s also expected that the next version of REACH will formally enshrine the EAC’s role and responsibilities.
In February 2023, the EU will restrict perfluoroalkyl carboxylic acids (PFCAs) through REACH as part of the Annex XVII Restricted List. All PFAS used in firefighting foams have also been proposed for restriction.
Companies will need to eliminate PFCAs from their supply chain while keeping a close eye on future PFAS restrictions. Since PFAS are prevalent in so many products, identifying them within your supply chain and eliminating them will take time.
Five countries are preparing a restriction proposal to cover a wide swath of PFAS substances. This proposal is expected in January 2023. While still a proposal, companies should, as with PFCAs, begin identifying and eliminating substances now to maintain future market access.
PFAS
Per- and polyfluorinated substances (PFAS) are coming under increased scrutiny across North America and the EU. Over 30 U.S. states have either proposed or passed PFAS legislation.
Colorado: In June 2022, HB22-1345 was signed into law. It establishes a regulatory scheme, collecting manufacturers’ information regarding PFAS usage in products. It also phases out the distribution of intentionally added PFAS substances starting January 2024. Manufacturers will want to prepare now for this phase-out process, as meeting these requirements will require extensive effort.
Maine: The Maine legislature passed An Act to Stop Perfluoroalkyl and Polyfluoroalkyl Substances Pollution, which includes a broader definition of PFAS substances than the 1,364 substances listed under TSCA. The latest legislation points to the EPA’s CompTox list, which includes more than 12,000 entries. Additionally, as of January 2023, Title 38 §1614 will require manufacturers to report products that contain intentionally added PFAS substances.
Overall, the regulatory trend on the state level is scope and requirement expansions. A law that was previously limited to drinking water may now be expanded to specific products, then to all products. Similarly, requirements are consistently expanding from reporting to restrictions. These trends are adjusting rapidly — as can be seen in Maine’s PFAS rule. Even manufacturers that feel their products are out of scope should be proactive in 2023, as they could easily be in scope sooner rather than later.
ESPR
In March 2022, the European Commission released a proposal for the ESPR.
This proposal builds on the Ecodesign Directive, which only covers energy-related products, and is part of the Sustainable Products Initiative (SPI), and is expected to be the cornerstone of EU environmental policy. Its requirements will apply to all products and across the entire supply chain value.
The proposed framework will set requirements on:
Carbon and environmental footprints
Energy and resource efficiency
Remanufacturing and recycling
Recycled content
Product durability, repairability, reusability, and upgradability
Presence of substances that inhibit circulatory
Additionally, the ESPR will allow the EU to introduce labeling requirements, to create a digital product passport (including information linked to composition, chemical, and material properties and indications for repair).
In September 2022, the Competitiveness Council — part of the Council of the European Union — held a policy debate on the proposal. After this debate, the Competitiveness Council sees a need for additional negotiation and debate on several pieces of the proposal.
While the European Parliament still needs to produce a draft decision about the proposal, manufacturers will want to be proactive in preparing for the ESPR, considering its broad requirements and reach.
TOP KYC COMPLIANCE LAWS TO FOLLOW IN 2023
The rising number of scams has put a dent in the financial sector’s reputation.
More than two-thirds of the financial firms lost over $500K to fraud in the year 2022. The staggering monetary costs come from failure to understand who these institutions work with and negligence towards preventing money laundering risks. This is why Know Your Customer (KYC) processes have become a need of the hour.
What is KYC?
KYC is a set of regulatory processes used to verify customers and ascertain what risks they may pose to any business. Running KYC checks is important to assess money laundering and other financial risks.
What is KYC Compliance?
KYC compliance is legally binding on all financial and non-financial institutions. Although KYC laws vary from country to country, some have common requirements such as:
Develop an efficient customer identification process
Identify customers based on their official identity documents
Verify business through their corporation documents along with authenticating beneficial owners
Maintain customer’s risk profiles as per the kind of risks they pose
Implement Anti Money Laundering (AML) measures when required
KYC Compliance Trends in 2023
KYC regulations are constantly being amended as scammers are coming up with sophisticated strategies to bypass the loopholes.
However, catching up with the growing need for compliance is nothing short of a challenge for the global market.
The only trick to navigate through this ever-changing era of the regulatory landscape is to be aware of the KYC compliance trends.
Top KYC Compliance Laws to Follow in 2023
1. Regulatory Technology
Compliance solutions have undergone various adjustments in the wake of the COVID-19 outbreak. The integration of Regulatory Technology or “RegTech” was one of those. Businesses started relying heavily on technological solutions to stay KYC/AML compliant since the pandemic. Moreover, it is estimated that investment toward RegTech would be worth over $15 billion by the year 2023.
The growing demand and budget allocation towards regulatory technology are aimed at addressing compliance challenges.
It simplifies KYC and Customer Due Diligence (CDD) procedures, minimises any human error, and helps clients to easily adapt to compliance developments.
2. Automation in Compliance Checks
The review process of KYC and AML compliance is not only time-consuming but also reflects higher operating costs.
This is where automation fits in the puzzle. It not only makes compliance processes quick but also helps businesses to do away with the need of storing and managing data manually. In addition to this, an automated KYC review process contributes to a more standardised and sustainable approach to compliance.
3. Perpetual KYC
Banks and other financial firms have to perform KYC checks to authenticate new clients. However, it is worth considering that KYC is not a “one-and-done” process completed during client onboarding, but rather an ongoing procedure to stay alert to the changing risk level of a particular customer. Perpetual KYC manages financial risks efficiently and will become the new norm in the digital era.
KYC/AML Compliance Laws to Look Out for
Besides looking at how KYC guidelines will evolve in the year 2023, there are certain regulations that would significantly impact the compliance ecosystem of several jurisdictions in the coming years.
The Corporate Transparency Act of the USA
The Corporate Transparency Act (CTA), enacted in January 2021, falls under the AML Act of 2020. Its main objective is to strengthen any country’s efforts to safeguard its financial sector from money laundering and other fraud.
FinCEN issued “Beneficial Ownership Information (BOI) Reporting Requirements” in September 2022. Under this, all domestic and foreign corporations report their BOI to the bureau, providing stricter measures to combat illegal activities in the financial sector.
The “Final Rule” would come into effect on January 1, 2024.
However, all the firms established before this effective date would have to submit their BOI report by January 1, 2025.
Switzerland’s Anti-Money Laundering Act (AMLA) Amendments
Switzerland has also imposed stringent measures to curb money laundering, terrorism financing, and other financial crimes. The country revised its existing AML Act with stricter due diligence obligations.
The significant changes made in AMLA are as under:
Financial intermediaries have to identify and verify beneficial owners prior to establishing the data required.
Financial intermediaries have to check and update business/client relationship details periodically, instead of doing this when there’s any suspicion.
The Suspicious Activity Report (SAR) is to be filed with MROS in case of any suspicious activity.
The Challenges Ahead
Cyber Security Threats: Digitization poses risks to both the organisation’s and its customers’ security. There is a dire need to stay compliant with regulations to avoid ethical and legal issues.
Escalating Costs: Although automation and RegTech would lessen the burden of operational costs, still costs are expected to rise considering the increasing number of regulations to comply with.
Search for Efficient Services: All firms need a highly skilled team and advanced technology to ensure compliance in true words. It is essential to consider different organisational areas that compliance covers such as ESG (Environment, Social, Governance), digital security, and UBOs.
Focus for 2023:
Businesses facing non-compliance sanctions are making headlines each day which is triggering a vigorous response from regulatory bodies.
The regulators would continue to act through enforcement and rules to clamp down on crime.
It’s high time for companies to consider investing in KYC solutions if they want to stay ahead of the curve. This is where Shufti Pro takes the lead, screening against 1700+ global watchlists, and that too in less than a second, making firms compliant with KYC/AML regulations.