Global Site
Argentina Aruba Barbados Bolivia Brazil Canada Cayman Islands Chile Colombia Costa Rica Curacao El Salvador Guatemala Honduras Mexico Paraguay Peru Puerto Rico Saint Martin Suriname United States Uruguay Venezuela
Australia Cambodia China Hawaii Hong Kong India Indonesia Japan Macau Malaysia Maldives Mongolia Myanmar Nepal New Zealand Pakistan Philippines Singapore South Korea Sri Lanka Taiwan Thailand Vietnam
Albania Andorra Armenia Austria Azerbaijan Belgium Bulgaria Croatia Cyprus Czech Republic Denmark Estonia Finland France Georgia Germany Greece Hungary Ireland Italy Kazakhstan Kosovo Latvia Lithuania Luxembourg Malta Moldova Netherlands Norway Poland Portugal Romania Serbia Slovakia Slovenia Spain Sweden Switzerland Tajikistan Turkey Ukraine United Kingdom Uzbekistan
Algeria Angola Bahrain Egypt Ghana Israel Jordan Kenya Kuwait Lebanon Liberia Mauritius Morocco Mozambique Nigeria Oman Qatar Saudi Arabia Senegal Sierra Leone South Africa Tanzania Togo Tunisia Uganda United Arab Emirates Yemen
Contact Us
home News
Revised Guidelines for DNFBPs | 2025

Countering Money Laundering, Terrorism Financing and the Financing of Illegal Organizations

Revised Guidelines for DNFBPs | 2025

10/30/2025
Revised Guidelines for DNFBPs | 2025

Reading Time: 5 min

Introduction

FATF is commencing its fifth-round mutual evaluation process in 2025, and UAE is expected to be evaluated in 2026. The country is in its final round of preparations. Enactment of Federal Law 10 of 2025 (the new AML Law) and the recent publication of Guidelines for DNFBPs to counter ML/TF are part of these preparations. In 2025, the regulatory landscape for Designated Non-Financial Businesses and Professions (DNFBPs) is becoming more exacting than ever. With the release of the Revised Countering Money Laundering, Terrorism Financing and the Financing of Illegal Organizations Guidelines (2025 edition), governments are signalling that non-banking sectors — including real estate agents, legal professionals, accountants, dealers in precious metals, trust and corporate services — will face more rigorous oversight and stronger expectations.

For DNFBPs, this is no longer just about avoiding sanctions — it's about embedding integrity, resilience, and trust into the core of their operations. This article breaks down what the revised guidelines mean, how DNFBPs should respond, and what strategic opportunities they present.

Why Target DNFBPs? The Rising Risk Exposure

Criminals and terrorist financiers are increasingly exploiting gaps in non-financial sectors to launder funds, conceal illicit flows, or propagate financing networks. As DNFBPs often handle high-value transactions, corporate structures, real estate, or cross-border deals, they are attractive vectors for abuse.

The 2025 revision underscores that DNFBPs are essential front-line actors in the AML/CFT ecosystem. The guidelines aim to close loopholes, tighten enforcement, and raise the bar for compliance across sectors.

What’s New & What Has Been Strengthened

While the foundational AML/CFT legal framework in UAE and many jurisdictions — e.g. federal AML laws, implementing regulations, cabinet decrees — remains intact, the 2025 guidelines bring fresh clarity, elevated expectations, and increased supervisory resolve.

Some of the critical changes include:

  • Stricter Registration & Reporting: DNFBPs may be mandated to register with centralized reporting platforms (e.g. goAML) and maintain active reporting capability for suspicious transactions.
  • Enhanced Due Diligence (EDD) Triggers: The scope of high-risk customers and transactions has expanded. Entities must apply EDD in more scenarios, such as complex structures, high volumes, cross-jurisdictional clients, and new sectors (e.g. virtual assets).
  • Stronger Sanctions & Targeted Financial Sanctions (TFS) Compliance: Screening against UN, OFAC, EU and national watchlists is non-negotiable; freezing/denying transactions in compliance with local TFS measures is explicitly required.
  • More Emphasis on Beneficial Ownership Transparency: DNFBPs must trace and validate ultimate beneficial owners (UBOs), even in layered corporate chains.
  • Robust Internal Controls & Governance: Policies, audit processes, escalation pathways, independent reviews, and oversight become focal. DNFBPs must assign competent AML Officers or MLROs with clear authority.
  • Expanded Recordkeeping & Audit Trails: More granular logs, decision records, transaction histories, and change logs to support supervision and investigations.
  • Ongoing Monitoring & Periodic Reviews: Relationships and transactions must be monitored continuously; risk ratings must be reassessed on schedules.
  • Training & Culture Expectation: Staff across functions must have awareness, role-specific training, and channels to report red flags.
  • Penalties & Supervisory Action: The guidelines warn of stronger enforcement actions, administrative penalties, license suspensions, and reputational consequences for non-compliance.

These enhancements reflect an overall shift: regulators expect DNFBPs to act more like financial institutions in their governance, controls, and risk management.

Key Obligations & Implementation Pillars

1. Risk-Based Approach (RBA)

The bedrock of the revised guidelines is a Risk Based Approach. DNFBPs must assess inherent risks (customer, geography, product, channel) and allocate controls proportionally. Low-risk engagements may require simplified checks, but mid/high-risk require stronger scrutiny.

2. Customer Due Diligence (CDD) & Enhanced Due Diligence (EDD)

  • Initial Onboarding: Capture verified identity (natural/legal persons), obtain UBO details, verify source of funds when applicable.
  • Ongoing Monitoring: Update customer profiles, flag anomalies, reevaluate risk ratings.
  • EDD Triggers: Politically Exposed Persons (PEPs), cross-border entities, high-value transactions, complex structures.
  • Use technology and automation to make these processes scalable and audit-ready.

3. Sanctions & Targeted Financial Sanctions (TFS)

  • DNFBPs must actively screen clients and transactions vs global and national watchlists. Any positive matches must be escalated, frozen, or denied per local TFS rules. The guidelines often require daily or real-time list updates.

4. Governance, Internal Control & MLRO Function

  • Design and implement robust internal policies, procedures, escalation frameworks.
  • Appoint a qualified Money Laundering Reporting Officer (MLRO) or equivalent, to supervise AML compliance, report suspicious activity, and liaise with supervisory bodies.
  • Implement independent audit or review — internal or external — to validate effectiveness of controls.

5. Suspicious Transaction Reporting & Registration

  • Identify and file Suspicious Transaction Reports (STRs) via designated reporting platforms (goAML or local equivalent).
  • DNFBPs must register officially with compliance authorities to gain reporting privileges.
  • Timely, accurate reporting is essential — delays or omissions are sanctionable.

6. Recordkeeping & Documentation

  • Maintain books, records, transaction logs, correspondence, risk assessments, decision memos for a minimum retention period (typically 5 years or as per local law).
  • Ensure audit trails are clear and accessible for supervision.

7. Training & Awareness

  • Conduct recurring training tailored to staff roles (front line, compliance, management).
  • Promote a compliance culture, incentivize vigilance, establish reporting channels and protections.

Strategic Implications & Benefits

While the reforms impose heavier obligations, they also create strategic advantages:

  • Risk Mitigation & Legal Safety: Reduces exposure to fines, criminal liability, and reputational damage.
  • Enhanced Market Trust: Clients, investors, and partners increasingly demand proof of compliance.
  • Operational Strengthening: Better internal controls, transparency, and data maturity.
  • Competitive Positioning: DNFBPs that adapt quickly will stand out and attract more sophisticated clientele.
  • Alignment with Global Standards: Positions your business well against FATF expectations and cross-border due diligence.

Practical Roadmap for DNFBPs

  1. Gap Analysis: Compare your existing AML program with the 2025 guidelines; map deficiencies across CDD, screening, governance, reporting.
  2. Policy & Procedure Update: Redesign your AML/CTF manual, escalation protocol, transaction monitoring rules.
  3. Technology Enablement: Deploy or upgrade systems for screening, watchlist automation, case management, and KYC/EDD workflow.
  4. MLRO & Governance Calibration: Strengthen the MLRO role, define authority and reporting lines.
  5. Training Drive: Launch training campaigns throughout your organization — from entry-level to senior management.
  6. Register & Test Reporting Systems: If not already, ensure registration with reporting platforms and simulate STR scenarios to validate.
  7. Audit & Review Mechanism: Perform internal or external reviews to test control effectiveness; remediate findings.
  8. Continuous Monitoring & Enhancement: AML is not “set-and-forget.” Adjust for new risks, regulatory guidance, and emerging typologies.

Conclusion

The 2025 Revised AML/CFT Guidelines for DNFBPs mark a clear message from regulators: non-financial sectors must level up. Compliance is no longer a background function — it’s central to operational integrity, client trust, and sustainable growth.

By adopting a risk-based, technology-enabled, governance-driven approach, DNFBPs can turn regulatory pressure into strategic advantage. The path is challenging, but in a world where financial crime is global and relentless, the cost of inaction is far greater than the investment in compliance.

Visit: GRC Advisory Services in UAE | Crowe Advisory & Risk Experts | Crowe UAE

Contact Us

Dawn Thomas
Dawn Thomas
Partner - Governance Risk & Compliance