FCA AML Review: Key Findings for Corporate Finance Firms and What They Must Do Now

Introduction

Recent supervisory work by the Financial Conduct Authority (FCA) has highlighted significant weaknesses in anti-money laundering (AML) controls within parts of the corporate finance sector. The FCA has emphasised that corporate finance advisers, boutique investment banks, sponsors and capital-raising teams play a critical role in maintaining the integrity of UK capital markets.

These firms connect businesses to capital and facilitate transactions that support economic growth. However, weaknesses in governance, client onboarding, sanctions screening and transaction monitoring create potential vulnerabilities for financial crime.

The FCA has therefore made clear that firms operating in corporate finance must move beyond “check-box compliance” and adopt a risk-based, transaction-aware AML framework supported by clear senior management accountability and robust systems.

Why this matters for corporate finance firms

AML compliance in the corporate finance sector presents unique challenges. Transactions often involve complex ownership structures, cross-border investors, special purpose vehicles and time-sensitive deal execution.

The FCA’s findings indicate that some firms have struggled to adapt traditional AML frameworks to these deal-driven environments.

As supervisory scrutiny increases, firms should expect:

• greater regulatory attention from the FCA

• longer and more detailed onboarding processes

• higher expectations for documentation and audit trails

• potential enforcement action where controls are inadequate

Failing to address AML weaknesses can lead to regulatory sanctions, reputational damage and delays to transaction execution, all of which can affect a firm’s ability to operate effectively in capital markets.

Key weaknesses identified across the sector

Weak risk-based approaches

Many firms relied on generic customer due diligence (CDD) procedures rather than tailoring risk assessments to specific transactions or business models.

Risk profiling was sometimes inconsistent across business lines or deal teams. As a result, vulnerabilities linked to particular transaction structures or counterparties could remain undetected.

A robust AML framework in corporate finance should consider:

• transaction purpose and deal structure

• geographic exposure

• investor profile and funding sources

• sector-specific financial crime risks

Governance and senior oversight gaps

In several firms, responsibility for AML controls was not clearly embedded at board or senior management level.

Regulators increasingly expect boards to demonstrate visible oversight of financial crime risks. This includes:

• clearly defined AML responsibilities for senior managers

• regular reporting of financial crime management information (MI)

• effective challenge from governance committees

Without these mechanisms, boards may struggle to demonstrate to regulators that AML risks are being properly managed.

Client onboarding and beneficial ownership checks

Client onboarding remains one of the most critical elements of an effective AML framework.

Supervisory work has highlighted weaknesses in areas such as:

• verification of beneficial ownership structures

• understanding complex corporate shareholdings

• verifying the source of funds and source of wealth of investors

• reliance on low-quality third-party reports

Corporate finance transactions frequently involve layered corporate structures and international investors. Firms must ensure that their due diligence processes are capable of addressing these complexities.

Transaction monitoring and sanctions screening

In some cases, transaction monitoring frameworks relied primarily on size or frequency thresholds rather than assessing the underlying purpose or pattern of transactions.

However, corporate finance deals often involve large, one-off transactions, meaning traditional monitoring thresholds may not detect unusual activity.

Similarly, regulators expect firms to ensure that:

• sanctions and politically exposed person (PEP) screening is up to date

• alerts are reviewed promptly

• escalation procedures are clearly documented

Third-party reliance and record-keeping

Corporate finance firms frequently rely on external advisers, introducers or outsourced providers.

However, outsourcing elements of AML processes does not remove regulatory responsibility.

Firms must ensure they have:

• contractual assurance regarding third-party AML processes

• audit rights where appropriate

• adequate documentation of decisions and investigations

Supervisory reviews have also highlighted gaps in record-keeping, including missing investigation notes or incomplete audit trails.

Culture and commercial pressures

One recurring theme across supervisory work is the potential conflict between commercial incentives and risk management.

In some situations, staff may feel pressure to complete transactions quickly or avoid challenging clients.

Regulators increasingly expect firms to demonstrate that:

• compliance staff have sufficient authority

• escalation procedures are respected

• commercial pressures do not override financial crime controls

A strong compliance culture is therefore an essential component of an effective AML framework.

Regulatory and commercial implications

The FCA has indicated that firms should expect increased supervisory engagement in this area.

This may include:

• thematic reviews and targeted supervisory visits

• requests for remediation plans

• enhanced reporting requirements

• enforcement action where weaknesses persist

From a commercial perspective, inadequate AML controls can lead to:

• slower transaction execution

• higher due diligence costs

• loss of investor confidence

• reputational damage in the market

Firms that strengthen their AML frameworks proactively will be better positioned to manage regulatory expectations and maintain access to capital markets.

What boards and senior management should focus on

Boards should ensure they can demonstrate clear progress in strengthening AML frameworks.

In practice this may involve:

• updating AML policies and procedures

• enhancing training programmes for deal teams

• commissioning independent testing of financial crime controls

• improving management information provided to senior management

• ensuring that incentives do not discourage appropriate challenge

Regulators increasingly expect firms to provide evidence of effective governance, not simply written policies.

Conclusion

The FCA’s increasing focus on financial crime risks in capital markets is a clear signal that corporate finance firms must adopt more sophisticated and transaction-aware AML frameworks.

Firms that invest in stronger governance, improved onboarding processes and more effective monitoring systems will reduce regulatory risk and strengthen their ability to operate in increasingly complex global markets.

Those that fail to adapt may face heightened scrutiny, operational disruption and potential enforcement action.