The global financial system has an intricate nature and structure and the pursuit is to reduce the possible damages of money laundering and illicit financing. The regulation of Politically Exposed Persons (PEPs) people who offer a greater risk of possible involvement in bribery and corruption due to their prominent public functions is at the center of this architecture.
One of the most important aspects of PEP risk management is making sure that various international regulations are followed. In addition to the different categories of PEP, there are also different jurisdictions may have quite different PEP screening criteria. For multijurisdictional financial institutions, this disparity presents a difficult environment.
Giving the business community adequate guidelines on how to determine if a person is a PEP is a crucial responsibility of governmental authorities. The FATF has released guidelines for nations on this subject that suggest various approaches that could be used, including the use of trustworthy databases, disclosure procedures, and increased collaboration with relevant institutions.
The following topics are going to be covered in this article;
- Why PEP Regulations Vary by Country
- United States: BSA, CDD Rule, and the Foreign PEP Focus
- United Kingdom: The Post-Farage Framework
- European Union: AMLD Framework
- Singapore: MAS Notice 626
- Other Key Jurisdictions
- Master Comparison Table
- How Multi-Jurisdictional Firms Should Approach PEP Compliance
1. Why PEP Regulations Vary by Country
The main reasons for this question lies in the variations that come with risk-based approach, local governance, regional laws, regulatory experience and the maturity of regulations. If high level corruption perception exists, stricter screening standards and more expansive definitions may be found in nations.
FATF sets the global tone, with Recommendations 12 and 22 as international baseline. Different nations define prominent public functions, domestic vs foreign PEP treatment, and family member scrutiny levels differently. PEP guidelines are customized to local judicial systems, political settings, and corruption vulnerabilities. They don't copy international FATF recommendations directly, as these recommendations are not law. They're standards that countries implement through their national legislation. Each country interprets and extends the FATF framework differently. Some go beyond FATF as they bring domestic PEPs , local politicians, under close inspection, like the United Kingdom. Some jurisdictions, like the United States, have traditionally placed more emphasis on foreign officials. They lag behind as the US has no formal domestic PEP definition.
Another reason is, different definitions of state-owned enterprise (SOE) executives, municipal mayors, or military positions have an impact on who is qualified as a PEP. Also harmonized directives like 5AMLD/6AMLD, are implemented by the EU as a regional block, which deviate from norms in Asia or Africa.
The breadth of who qualifies as an RCA, as in how many degrees of separation for family members is one of the primary ways national laws diverge. As a part of once a PEP, always a PEP debate, jurisdictions vary significantly on how long someone remains a PEP after leaving the office.
Having this environment of regulation variations, multi-jurisdictional firms must comply with the strictest applicable standard.
2. United States: BSA, CDD Rule, and the Foreign PEP Focus
The Bank Secrecy Act (BSA)/ Customer Identification Program (CIP) amendment and the Patriot Act establish the United States' PEP restrictions. They are enforced by the Financial Crimes Enforcement Network (FinCEN).
USA PATRIOT Act Section 312 describes private banking for senior foreign political figures. The definition of a "private banking account," which calls for a minimum aggregate deposit of $1 million is a crucial legal foundation for Section 312. Although they are nonetheless subject to general risk-based CDD, accounts below this threshold for foreign figures are not subject to the same mandated closer examination under Section 312.
Financial institutions had to identify and confirm the beneficial owners of legal entity customers, such as companies, LLCs, and similar entities, at each new account opening in accordance with FinCEN's 2016 CDD Rule. This held true regardless of how recently the organization had confirmed the same details or whether there was any indication that ownership had changed. A significant order granting exceptive relief to covered financial institutions was issued by FinCEN in February 2026. As long as the bank has no reason to question the prior data, this update enables banks to avoid the recurrent verification of beneficial owners for current legal entity clients at each new account opening. In order to screen long-term corporate clients who might have PEP links, this simplifies the technical workflow.
Critical nuance about the United States’ PEP screening regulations is, according to private banking laws, foreign peps, or as they name it, senior foreign political figures, are the main target of US regulations. No formal domestic PEP definition or requirement is mandated under BSA. However, regulators anticipate risk-based processes for domestic PEPs as best practice, while the CDD Rule mandates identifying beneficial owners.
Bank Secrecy Act (BSA)/AML examination manual references PEP screening and provides guidelines for auditors. Auditors perform BSA/AML and OFAC inspections.
The US financial institutions like OCC, FRB, and FDIC examine these guidelines that are provided by FFIEC. The uncertainty about PEP screening compliance arises from the discrepancy between the legislation, which is narrow, and examination expectations, which are broader.
3. United Kingdom: The Post-Farage Framework
Key regulations include Money Laundering Regulations 2017 (MLR 2017), FCA Financial Crime Guide, FCA Guidance FG17/6. FCA Guidance FG17/6 was updated after Nigel Farage/NatWest scandal.
It was discovered in 2023 that politician Nigel Farage's account had been closed by NatWest-owned Coutts. A Subject Access Request (SAR) uncovered a thick internal dossier indicating reputational risk because of his political beliefs. It turned out to be the bank's first justification of business grounds was failure to satisfy the £1M wealth criteria. The CEOs of NatWest and Coutts resigned as a result, and a nationwide review of PEP treatment was mandated. The FCA revised its guidance (FG17/6) to require a more proportionate, risk-based method for dealing with PEPs in the wake of the Nigel Farage bank account closure issue.
The Post-Farage update came with the FCA emphasizing PEP status should not automatically lead to de-banking — proportionality is key. Financial firms are expected to make sure that their definition of a PEP, family member, or close associate is gathered together to the necessary minimum by legislation rather than attempting to go beyond that. Additionally, businesses should efficiently consider the true extent of risk that PEPs and their colleagues represent, enhance staff training, and explain any steps taken to customers. Upon leaving the office, the status of PEPs and their associates should be revisited.
The FCA formally updated the traditional FG17/6 with FG25/3 in July 2025. The presumption of lesser risk for domestic PEPs is expressly integrated into this new guidance. It makes it clear that a UK PEP should be handled considerably less strictly than a foreign one unless there are certain high-risk factors. An example for these factors is participation in high-value government procurement or connections to high-risk nations.
The UK is the most explicit on PEP treatment and it covers foreign PEPs, domestic PEPs, AND international organization PEPs. EDD for foreign PEPs is mandatory. EDD for domestic PEPs is risk-based. Family member definition is explicit under MLR 2017 Regulation 35. Ongoing monitoring is highly valued in the UK, where institutions are required to frequently assess PEP status. The UK is no longer a EU member but its regulations are similar to EU AMLD in foundation. Sanctions lists are updated more frequently since the separation, particularly in reaction to different geopolitical developments. It's also important to keep in mind that there are significant differences between a sanctioned person and a PEP.
4. European Union: AMLD Framework
Key regulations are AMLD4 (2015), AMLD5 (2018), AMLD6 (2024), and the upcoming AMLR , the single rulebook:
- 2005 (AMLD3): Extended obligatory entities, expanded criminal offenses, established regulations for counterterrorism financing (CTF).
- AMLD4 (2015) is the supervisory framework and core AML/CTF regulations.
PEPs are defined as natural persons entrusted with prominent public functions, as well as their family members and close associates, in Article 3 of the 4th EU Anti-Money Laundering Directive (AMLD4).While AMLD4 offers harmonization, national authorities are primarily responsible for oversight.
- AMLD5 (2018): Added virtual currency exchanges and wallet providers to AMLD4. By placing virtual asset service providers and prepaid cards under oversight, AMLD5 expanded compliance into the digital economy.
By July 10, 2027, member states must incorporate the Sixth Anti-Money Laundering Directive (AMLD6/2024) into their national laws. It is a component of the EU's new AML package. The majority of the regulations go into effect on this day, however by July 10, 2026, certain requirements pertaining to beneficial ownership registers will be in effect, and by July 10, 2029, central real estate information access will be available.
The 6th AML Directive (6AMLD) increased the number of offenses, brought a standard to definition of money laundering among EU nations, and imposed criminal penalties on both persons and legal companies. It promoted cross-border cooperation among EU nations and imposed increased penalties.
Although the Anti-Money Laundering Regulation (AMLR) was passed in 2024, it will be directly applicable in every member state in July 2027. This is a key development as AMLR (2024) moves from directive, member state implementation, to regulations which are directly applicable. This will further harmonize PEP treatment. In order to bring their internal PEP definitions into compliance with the AMLR, businesses are performing extensive gap analyses during this period. The goal is the single rulebook and eliminate the national flavor that permits members to interpret PEP status differently.
In January 2026, the European Banking Authority (EBA) formally handed all of its AML/CFT mandates to the new Anti-Money Laundering Authority (AMLA) in Frankfurt. AMLA is now the primary regulatory agency that issues the technical guidelines that businesses must adhere to during this transition. AMLA, new EU AML Authority, will provide supervisory convergence.
In the EU jurisdiction, foreign PEPs are required for mandatory EDD, while domestic and international org PEPs need risk-based EDD.
5. Singapore: MAS Notice 626
Monetary Authority of Singapore Notice 626, or Prevention of Money Laundering and Countering the Financing of Terrorism, covers foreign PEPs, domestic PEPs, and international org PEPs. It mandates explicit EDD requirements including senior management approval and source of wealth verification.
Singapore introduced Collaborative Sharing of ML/TF Information & Cases, or COSMIC, in April 2024. This platform enabled member banks to exchange data on clients—including PEPs—who display red flag behaviors. The goal was to reduce the capacity of high-risk individuals to conceal assets across various local institutions.
Effective July 2025, MAS made significant revisions to Notice 626 and the guidelines that go along with it. The standards for Source of Wealth (SoW) verification were specifically strengthened. Not depending just on client disclosures, firms are now obligated to support SoW with independent, solid evidence. This particularly includes private banking, high wealth, and income obtained through gifts or inherited assets.
The emphasis on perpetual KYC and stricter reasonable means for confirming the identities of beneficial owners who might be PEPs was reinforced by these changes. Singapore's approach is detailed and prescriptive — provides clearer guidance than the US but with less political debate than the UK.
6. Other Key Jurisdictions
- UAE (CBUAE AML guidance) : The UAE has transitioned to a rapidly evolving and more strict supervision phase since being removed from the FATF gray list in 2024. Regardless of the particular risk level, Federal Decree-Law No. 10 of 2025 and Cabinet Decision No. 134/2025 require LFIs to carry out enhanced monitoring for international PEPs. Only when a high-risk business relationship EDD is required for domestic PEPs.
- Australia (AUSTRAC AML/CTF Rules Part 4.13): The AML/CTF Act of 2006 and the AML/CTF Amendment Act of 2024 are important regulations. There are important turning points in 2026. PEP scope includes PEPs from domestic, foreign, and international organizations. Australia is undergoing a significant transformation right now. The obligation to divide AML/CTF programs into "Part A" and "Part B" has ended as of March 2026. and companies are now required to handle PEP risk in addition to Proliferation Financing (PF) risk. In July 2026, "Tranche 2" entities officially joined the regime. These include lawyers, real estate, and accountant. This subjecting a far larger group of Australian professionals to PEP screening requirements.
- Canada (PCMLTFA): The Proceeds of Crime (Money Laundering) and Terrorist Financing Act (PCMLTFA) is the regulation and monitored by FINTRAC. PEPs include Heads of International Organizations (HIOs), Foreign PEPs, and Domestic PEPs. Canada's "Once a PEP, Always a PEP" policy applies to international nationals. There is a rigorous five-year lookback period for domestic PEPs and HIOs. One of the broadest definitions of family member definitions include in-laws in certain situations.
- Hong Kong (HKMA guidance): Important laws include the HKMA smart tips published in late 2025 and the Anti-Money Laundering and Counter-Terrorist Financing Ordinance (AMLO). The scope of PEP is completely in line with FATFs foreign, domestic, and international org. PEP definitions. A campaign for proportionality is being led by the HKMA. Banks are specifically cautioned by new guidelines against over-zealous screening that results in de-banking. The HKMA now highlights that domestic PEPs should be considered as standard customers unless a specific risk assessment reveals a high risk. Hong Kong's low levels of domestic corruption is noted at this point. Foreign PEPs are still required to have EDD.
- Turkey (MASAK regulations): The MASAK updated guideline on EDD in September 2025 and Law No. 5549 are key regulations. Top-level domestic officials and their associates are included in the broad definition of PEP's reach. Turkey greatly strengthened MASAK's position as a gatekeeper for online transactions. The 8-year record-keeping mandate is longer than the FATF 5-year standard, and it is a key technical necessity.
7. Master Comparison Table
The cross-jurisdictional master reference table for latest compliance guidelines is as follows. The table summarizes the regulatory expectations, de-pepping regulations, and legislative frameworks that have been covered;
|
Jurisdiction |
Key Regulation |
Foreign PEP (FPEP) |
Domestic PEP (DPEP) |
Int'l Org PEP (HIO) |
Family Member Scope |
De-pepping (Declassification) |
EDD Triggers & Requirements |
|
United States |
BSA; PATRIOT Act §312; FinCEN CDD Rule |
High (Mandatory EDD) |
Risk-Based (Best Practice) |
Risk-Based |
Immediate Family (spouse, parents, siblings, children) |
Often "Lifetime" for high-profile; Risk-based for others. |
Mandatory for §312 Private Banking; SoW for all high-risk. |
|
United Kingdom |
MLR 2017; FCA FG25/3 (2025/26) |
High (Mandatory EDD) |
Lower-Risk Presumption |
Mandatory Coverage |
MLR Reg 35: Spouse/partner, parents, children/partners. |
12 months post-office (min); Risk-based extension. |
Senior Mgmt approval; Proportionality focus post-Farage. |
|
European Union |
AMLR (Single Rulebook); 6AMLD |
High (Mandatory EDD) |
High (Mandatory EDD) |
Mandatory Coverage |
Uniform List: Spouse, parents, children/partners. |
Min 12 months; AMLR (2027) will further harmonize. |
Standardized UBO (25%) threshold; Senior Mgmt approval. |
|
Singapore |
MAS Notice 626 (2025 Amends) |
High (Mandatory EDD) |
High (Mandatory EDD) |
Mandatory Coverage |
Spouse/partner, parents, children/partners, siblings. |
Minimum 12 months; Lifetime for highest risk. |
Mandatory SoW corroboration; Native-language screening. |
|
UAE |
Fed Decree-Law 10 (2025) |
High (Mandatory EDD) |
Risk-Based |
Mandatory Coverage |
Spouses, children, and parents (Grade 1 & 2). |
Risk-based (typically 12 months minimum). |
Mandatory for all Foreign PEPs; Senior Mgmt sign-off. |
|
Australia |
AML/CTF Rules Pt 4.13 (2026 Reform) |
High (Mandatory EDD) |
Risk-Based |
Risk-Based |
"Immediate family" (defined broadly). |
Risk-based; no fixed statutory limit. |
Tranche 2 entities (Law/Acc/RE) fully in scope by July 2026. |
|
Canada |
PCMLTFA (Current to 2026) |
High (Mandatory EDD) |
High (Mandatory EDD) |
High (Mandatory EDD) |
Spouse/partner, children, parents, siblings, in-laws. |
FPEP: Forever. DPEP/HIO: 5 years. |
Mandatory SoW/SoF; Periodic risk reassessment. |
Table 1: The cross-jurisdictional table for regulatory expectations, de-pepping regulations, and legislative frameworks
8. How Multi-Jurisdictional Firms Should Approach PEP Compliance
A main challenge in financial compliance is managing PEP risk internationally. A low-risk individual in one nation may be required to wear a high-risk flag in another. Some important aspect and paths to take to get over this challenge is as follows;
- Apply the strictest standard across all jurisdictions. Many companies use a highest common denominator strategy instead of keeping distinct, customized PEP policies for each branch. It is typically safer and more effective to follow the same standard throughout your whole global footprint if your strictest regulator like the EU or Singapore mandates enhanced due diligence (EDD) for a particular category of PEP. By doing this, operational complexity is decreased and compliance leakage, the unintentional onboarding of a high-risk client in a more lenient jurisdiction, is avoided. Many banks adhere to a global minimum standard" in order to reduce the operational risk associated with different policies. Even in countries where the law only mandates a 12-month period, a company may decide to extend the "de-pepping" time globally for particular high-value regions or sectors.
- If the UK is in scope, domestic PEPs are in scope everywhere. The UK's Financial Conduct Authority (FCA) has a big impact if your company has a connection to the UK, even if the client is located overseas. Businesses frequently find it simpler to just screen for all domestic PEPs, as the UK expressly requires the inclusion of domestic PEPs. This avoids UK-based auditor inquiries on why a senior official in a different area wasn't reported, even if the local laws in that area were silent on the subject.
- Document which jurisdiction's requirements drive each policy decision. Decision explainability is replacing tick-box compliance in regulation assessments. It should be able to show which jurisdiction's regulations caused an alert and why it was lowered. This calls for policy-tagged audit trails. Each high-risk profile's particular regulatory driver is recorded by the system like "EDD triggered due to EU 6AMLD SOE definition" etc.
- Use a screening platform that covers PEP databases across all relevant jurisdictions. Sanction Scanner offers a comprehensive SaaS environment that aggregates PEP, RCA, and Adverse Media data from more than 200 countries for businesses managing global risk. Real-time screening during onboarding and perpetual monitoring are made possible by its API-first architecture. It notifies compliance teams the instant a client's political status changes anywhere in the world. False positives keep being compliance teams' biggest operational bottleneck. Sanction Scanner’s AI-powered smart matching greatly lowers false positive noise.
