Anti-money laundering (AML) compliance is one of the most critical and commercially consequential areas of Iraqi banking regulation. Iraq’s placement on the Financial Action Task Force (FATF) enhanced monitoring list commonly known as the grey list has focused international attention on the adequacy of Iraq’s AML framework and the compliance practices of its banks. For Iraqi banks, AML compliance is not merely a regulatory obligation: it is the foundation of their ability to maintain correspondent banking relationships, access USD clearing, and participate in the international financial system. This article provides a comprehensive guide to AML compliance requirements for Iraqi banks under both Iraqi law and international FATF standards.

The Iraqi AML Legal Framework

The primary legislation governing AML compliance in Iraq is AML Law No. 39 of 2015 (the AML/CFT Law), which establishes the comprehensive legal framework for combating money laundering and terrorism financing. The law: defines money laundering and terrorism financing offences; establishes the obligations of financial institutions and designated non-financial businesses; creates the Anti-Money Laundering and Countering Financing of Terrorism (AMLCFT) Office as the national supervisory authority; imposes customer due diligence, record-keeping, and suspicious transaction reporting obligations; and provides for international cooperation in AML matters. The CBI has issued implementing instructions under AML Law No. 39 providing detailed guidance on how Iraqi banks must implement their AML obligations.

FATF and Iraq’s Grey List Status

The Financial Action Task Force (FATF) is the international standard-setter for AML and CFT. FATF’s 40 Recommendations set out the measures that countries should implement to protect the international financial system from money laundering and terrorism financing. Iraq was placed on the FATF enhanced monitoring list (grey list) following a mutual evaluation that identified deficiencies in its AML/CFT framework. Grey list status has severe practical consequences: international banks apply heightened due diligence to transactions involving Iraqi parties; correspondent banking relationships become more expensive and difficult to maintain; and USD clearing access is constrained. Iraq has committed to addressing identified deficiencies and is working toward removal from the grey list a process that requires demonstrable improvements in AML implementation.

Customer Due Diligence — CBI Requirements

CBI AML instructions require Iraqi banks to implement comprehensive customer due diligence (CDD) programmes addressing: customer identification and verification obtaining and verifying the identity of all customers using reliable, independent documentary evidence; beneficial ownership identification identifying and verifying the identity of the beneficial owners of legal entities who ultimately own or control the customer; understanding the nature of the customer’s business and the purpose of the banking relationship; enhanced due diligence (EDD) for high-risk customers including politically exposed persons (PEPs), customers from high-risk jurisdictions, and customers with complex ownership structures; and ongoing monitoring continuously monitoring the customer relationship and transactions for consistency with the risk profile.

Suspicious Transaction Reporting

AML Law No. 39 of 2015 requires Iraqi banks to file suspicious transaction reports (STRs) with the AMLCFT Office where the bank has reasonable grounds to suspect that a transaction involves money laundering or terrorism financing. CBI instructions provide guidance on the STR filing process, including: the timeframe for filing, STRs must be filed promptly upon suspicion arising; the information required, the report must include full details of the transaction, the customer, and the basis for suspicion; the tipping-off prohibition, banks must not disclose to the customer that an STR has been filed; and the safe harbour, banks filing STRs in good faith are protected from liability for breach of confidentiality obligations.

FATF 40 Recommendations — What Iraqi Banks Must Implement

The FATF 40 Recommendations set out a comprehensive framework that Iraqi banks are expected to implement, including: Recommendation 10 customer due diligence requirements; Recommendation 11, record-keeping; Recommendation 12 politically exposed persons; Recommendation 13 correspondent banking; Recommendation 15 new technologies and virtual assets; Recommendation 16 wire transfers; Recommendation 20 suspicious transaction reporting; and Recommendation 21 tipping-off and confidentiality. Iraqi banks should conduct gap analyses against the FATF Recommendations to identify areas requiring enhanced compliance measures.

Correspondent Banking AML Requirements

Maintaining correspondent banking relationships is the most commercially critical AML compliance challenge for Iraqi banks. International correspondent banks particularly US and European institutions providing USD clearing require Iraqi respondent banks to demonstrate robust AML programmes meeting international standards. Key requirements that international correspondents assess include: the adequacy of the Iraqi bank’s CDD and EDD procedures; the quality of its transaction monitoring systems; its STR filing record and relationship with the AMLCFT Office; compliance with OFAC sanctions screening requirements; and governance board and senior management oversight of AML compliance. Iraqi banks that cannot satisfy these requirements risk losing correspondent relationships, with devastating commercial consequences.

How Etihad Law Firm Assists

Etihad advises Iraqi banks and financial institutions on AML compliance programme development, gap analysis against CBI requirements and FATF recommendations, STR filing procedures, correspondent banking AML due diligence, and AML regulatory investigations. We also advise international banks on AML due diligence for Iraqi correspondent relationships.