DGA: Three Orders and One Reprimand Issued to Mr. Green Limited for Breach of the Anti-Money Laundering Act

On April 10th, 2024, the Danish Gambling Authority has issued three orders to Mr. Green Limited for breaching the Anti-Money Laundering Act, on risk assessment, on procedures for internal controls and for failing to ensure that controls are carried out.

On April 10th, 2024, the Danish Gambling Authority has also given Mr. Green Limited a reprimand for breaching the rules on notification in the Anti-Money Laundering Act.

The reactions have been given in connection with the Danish Gambling Authority’s inspection of Mr. Green Limited’s materials that Mr. Green Limited has provided for compliance with the Anti-Money Laundering Act.

Order for insufficient risk assessment

Order (a) is issued because Mr. Green’s risk assessment is insufficient, as no separate risk assessment has been made of the individual identified risks associated with Mr. Green’s business model, including payment solutions, and the risk factors associated with it. It follows from section 7(1) of the Anti-Money Laundering Act that undertakings subject to the Act must identify and assess the risk that the undertaking may be misused for money laundering or terrorist financing. The Danish Gambling Authority’s assesses that the risk assessment must include a separate assessment of the risk of the individual payment solutions and delivery channels, as well as a separate risk assessment of the risk factors associated with these. Thus, Mr. Green did not comply with the risk assessment obligation.

Order for insufficient and lack of business procedures

Order (b) is issued because Mr. Green Limited does not have adequate procedures for internal controls, as these do not describe the interval at which controls should be performed. The order has also been given because Mr. Green Limited does not have written procedures on how to monitor that controls are carried out. It follows from section 8(1) of the Anti-Money Laundering Act that undertakings subject to the Act must have adequate written business procedures, which must include internal control. The business procedures should describe how the listed areas are handled in practice. The requirement for internal control also means that there must be controls of whether the controls are being carried out – in other words, that the controls are being checked. Mr. Green Limited has not sufficiently complied with the commitments on business procedures for controls.

Order for lack of documentation of controls

Order (c) is issued because Mr. Green Limited has not documented that controls have been carried out to verify that the internal controls have been performed. It follows from section 8(1) of the Anti-Money Laundering Act that undertakings subject to the Act must document the controls that have been carried out. Thus, Mr. Green Limited has not complied with the obligations to perform controls to ensure that the internal controls are performed.

Reprimand for not making an immediate notification

Reprimand (a) is given because Mr. Green Limited has in two cases not complied with the requirement for immediate notification to the Money Laundering Secretariat. According to section 26(1) of the Anti-Money Laundering Act, an undertaking must immediately notify the Money Laundering Secretariat if the undertaking knows, suspects or has reasonable grounds to suspect that a transaction, funds or activity is or has been related to money laundering or terrorist financing. Mr. Green has not complied with the notification obligations, as there has been no immediate notification.

Duty to act

The orders entail an obligation to act on the part of Mr. Green Limited. Mr. Green Limited must submit a revised risk assessment within June 10th, 2024.

Mr. Green must also within June 10th, 2024, submit a revised business procedure for internal controls and submit prepared business procedures for how the implementation of controls is monitored.

Mr. Green Limited must also submit documentation within October 10th, 2024, that it has been controlled that the controls have been carried out.

The reprimand does not entail any obligation to act on the part of Mr. Green Limited as the breach no longer exists.