Suspicious Transaction Reporting to the FIC: What Accountable Institutions Need to Know

Suspicious Transaction Reporting to the FIC: What Accountable Institutions Need to Know

If your business is an Accountable Institution under the Financial Intelligence Centre Act (FICA), reporting suspicious transactions to the Financial Intelligence Centre (FIC) is one of your core compliance obligations. This article explains what a suspicious transaction report (STR) is, when the obligation to report arises, and how the reporting process generally works — drawing on published FIC guidance.

> Disclaimer: This article is general information based on published FIC guidance and the text of the Financial Intelligence Centre Act. It is not legal advice. For your specific situation, consult a qualified attorney or compliance specialist.

---

Who Is an Accountable Institution?

FICA defines Accountable Institutions in Schedule 1 of the Act. The list includes banks, attorneys, estate agents, accountants, motor vehicle dealers, crypto asset service providers, and a range of other businesses. If your business falls under Schedule 1, you carry the full suite of FICA obligations — including STR reporting.

If you are not certain whether your business qualifies, the FIC's website at fic.gov.za publishes guidance notes and sector-specific materials that can help you determine your status. Confirmation of your specific obligations should come from qualified counsel.

---

What Is a Suspicious Transaction Report?

A suspicious transaction report (STR) is a formal report submitted to the FIC when a person or business has reason to suspect that a transaction or series of transactions involves the proceeds of unlawful activity, or may be connected to money laundering, terrorist financing, or the financing of proliferation activities.

The obligation to report is not limited to completed transactions. FICA's reporting framework extends to:

• Transactions that have been completed — where suspicion arises during or after the transaction.
• Transactions that were about to be completed — where suspicion caused the transaction not to proceed.
• Attempted transactions — where a client or third party attempted to conduct a transaction but the Accountable Institution declined or the transaction did not occur.

The threshold is suspicion, not certainty. An Accountable Institution is not expected to prove that unlawful activity occurred before filing an STR. Published FIC guidance is clear that a lower threshold of reasonable suspicion is what triggers the reporting duty.

---

What Gives Rise to Suspicion?

Suspicion is inherently fact-specific. The FIC has published guidance noting that suspicion may arise from:

• Transactions that are inconsistent with a client's known business or financial profile.
• Unusual transaction structures that appear designed to avoid reporting thresholds.
• Clients who are reluctant to provide identification or supporting documentation.
• Transactions involving jurisdictions or parties associated with high money-laundering or terrorist-financing risk.
• A pattern of transactions that, individually, may appear unremarkable but collectively suggest layering or structuring of funds.

Accountable Institutions are expected to apply a risk-based approach informed by their own Know Your Customer (KYC) and Customer Due Diligence (CDD) processes. An effective transaction monitoring programme — whether manual or automated — is a practical tool for identifying activity that warrants an STR.

---

How to Submit an STR to the FIC

The FIC operates the goAML portal as the primary channel for submitting STRs and other regulatory reports. Accountable Institutions that have not yet registered on goAML should do so — the FIC's guidance makes clear that all reports must be submitted through this platform.

Key steps in the process generally include:

1. Identify the suspicious activity through your transaction monitoring, CDD review, or staff escalation procedures.
2. Gather the relevant facts — transaction details, client identification information, and the basis for suspicion.
3. Submit the STR via goAML — the report captures details about the transaction, the parties involved, and a narrative explaining the grounds for suspicion.
4. Retain records — FICA requires Accountable Institutions to maintain records of reports submitted and the underlying information. Consult FICA and published FIC guidance for applicable retention periods.

The FIC publishes registration and submission guidance at fic.gov.za. If your institution is new to goAML, the FIC's compliance and prevention department can assist with onboarding.

---

The Tipping-Off Prohibition

One of the most important obligations that runs alongside STR reporting is the tipping-off prohibition. Once an STR has been filed — or once a person knows or suspects that a report is being prepared or has been submitted — FICA prohibits disclosing that fact to the person who is the subject of the report, or to any other person who might pass the information on.

Breaching the tipping-off prohibition is a serious offence. Staff members involved in compliance and transaction monitoring should be trained to understand this rule and to handle STR-related information with strict confidentiality.

---

Penalties for Non-Compliance

Failing to report a suspicious transaction when the obligation arises can result in significant consequences. FICA provides for both criminal sanctions and administrative penalties. The FIC has the authority to conduct inspections and to impose penalties on Accountable Institutions that do not meet their reporting obligations.

Beyond direct penalties, a failure to report can also expose an institution and its officers to reputational and regulatory risk, particularly where a subsequent investigation reveals that warning signs were present but not acted upon.

---

Practical Steps for Your Institution

While the specifics will depend on your institution's size, sector, and risk profile, FIC guidance consistently points toward the following good-practice principles:

• Document your suspicious activity identification process. A clear internal escalation path means staff know what to do when they encounter unusual activity.
• Train your staff regularly. The obligation to report rests on the people who see transactions day to day, not just on the compliance officer.
• Review and update your risk appetite and monitoring parameters in line with FIC guidance notes for your sector.
• Register on goAML if you have not already done so, and ensure at least one nominated person in your institution is familiar with the platform.
• Seek qualified compliance counsel when novel or complex situations arise — the cost of a compliance review is far lower than the cost of a penalty or investigation.

---

Where to Find the Primary Sources

• Financial Intelligence Centre Act and Regulations: fic.gov.za
• FIC guidance notes and public compliance communications: fic.gov.za/public-compliance-communications
• goAML registration and support: available via the FIC website

---

> Disclaimer: This article is general information based on published FIC guidance and the text of the Financial Intelligence Centre Act. It is not legal advice. For your specific situation — including determining whether your business is an Accountable Institution and what your precise reporting obligations are — consult a qualified attorney or FICA compliance specialist.