AML stands for Anti-Money Laundering. It refers to a comprehensive framework of laws, regulations, policies, procedures, and technological systems that banks and financial institutions are required to implement to detect, prevent, and report money laundering — the process of concealing the illegal origins of funds by channelling them through legitimate financial transactions. In India, AML compliance is governed by the Prevention of Money Laundering Act (PMLA) 2002 and the RBI’s AML/CFT (Anti-Money Laundering/Combating the Financing of Terrorism) guidelines.
| Parameter | Details |
| Full Form | Anti-Money Laundering |
| Indian Law | Prevention of Money Laundering Act (PMLA) 2002 |
| Regulator | Reserve Bank of India (RBI), Financial Intelligence Unit — India (FIU-IND) |
| Global Standard | FATF (Financial Action Task Force) recommendations |
| CFT | Combating the Financing of Terrorism — often paired with AML (AML/CFT) |
| Core Requirement | KYC, Customer Due Diligence, Transaction Monitoring, STR Filing |
| STR | Suspicious Transaction Report — filed with FIU-IND for suspect transactions |
| CTR | Cash Transaction Report — filed for cash transactions exceeding Rs.10 lakh |
| Applicable To | All banks, NBFCs, insurance companies, stockbrokers, payment service providers |
AML Meaning and Definition
AML means the regulatory framework and operational programme that financial institutions must implement to identify, assess, and mitigate the risks associated with money laundering — ensuring that the banking system is not misused to legitimise proceeds from criminal activities including drug trafficking, corruption, tax evasion, terrorism financing, and organised crime.
The three stages of money laundering that AML aims to detect and disrupt are: Placement (the illegal cash enters the financial system — often the most vulnerable stage); Layering (transactions are conducted to obscure the source — wire transfers, currency conversions, multiple accounts); and Integration (the laundered funds re-enter the economy as seemingly legitimate wealth — purchases, investments, business income).
In India, all banks are required to designate a Principal Officer responsible for AML/KYC compliance, implement a Board-approved AML Policy, maintain transaction monitoring systems, conduct Customer Due Diligence (CDD) and Enhanced Due Diligence (EDD) for high-risk customers (Politically Exposed Persons, high-cash businesses), and file Suspicious Transaction Reports (STRs) and Cash Transaction Reports (CTRs) with FIU-IND within specified timelines.
Key AML Compliance Requirements for Indian Banks
- KYC (Know Your Customer) — Mandatory identity and address verification before onboarding any customer
- Customer Due Diligence (CDD) — Risk-based assessment of each customer’s profile, source of funds, and transaction patterns
- Enhanced Due Diligence (EDD) — Additional scrutiny for high-risk customers including PEPs (Politically Exposed Persons), NGOs, and high-cash businesses
- Transaction Monitoring — Automated systems to detect unusual patterns — structuring (splitting large transactions), sudden spikes, dormant account activity
- CTR Filing — Filing Cash Transaction Reports with FIU-IND for all cash transactions exceeding Rs.10 lakh in a month
- STR Filing — Filing Suspicious Transaction Reports with FIU-IND within 7 days of detection of suspicious activity
- Record Keeping — Maintaining customer KYC records and transaction data for a minimum of 5 years
How AML Works in Banks — Step by Step
Step 1 — Customer Onboarding: KYC verification is conducted for every new customer. Risk categorisation (Low/Medium/High) is assigned based on customer profile, occupation, geographic risk, and transaction nature.
Step 2 — Ongoing Monitoring: The bank’s AML system automatically monitors all transactions in real time — flagging unusual patterns, large cash transactions, and activity inconsistent with the customer’s declared profile.
Step 3 — Alert Review: Flagged transactions are reviewed by the bank’s compliance team. False positives are resolved; genuinely suspicious transactions proceed to STR filing.
Step 4 — Regulatory Reporting: STRs are filed with FIU-IND for suspicious activities; CTRs are filed monthly for cash-heavy accounts. The bank also files NPO (Non-Profit Organisation) transaction reports where applicable.
Step 5 — Periodic Review: Customer KYC is refreshed periodically (every 2 years for high-risk, 8 years for medium, 10 years for low-risk customers). AML policies are updated to reflect new FATF recommendations and RBI circulars.
Frequently Asked Questions
Q: What is the full form of AML in banking?
AML stands for Anti-Money Laundering. It is a regulatory compliance framework requiring banks to prevent, detect, and report money laundering — the process of disguising illegally obtained funds as legitimate income through financial transactions.
Q: What is the law governing AML in India?
AML in India is primarily governed by the Prevention of Money Laundering Act (PMLA) 2002, the PMLA Rules 2005, and the RBI’s Master Direction on KYC/AML (updated periodically). The Financial Intelligence Unit — India (FIU-IND) is the central agency that receives and analyses suspicious transaction reports.
Q: What is the difference between AML and KYC?
KYC (Know Your Customer) is the identity verification process — collecting and verifying customer identity and address documents. AML is the broader framework that includes KYC as one component, along with ongoing transaction monitoring, suspicious activity reporting, customer risk assessment, and regulatory filing. KYC is the foundation; AML is the comprehensive compliance system.
Q: What happens if a bank fails AML compliance?
Non-compliance with AML regulations can result in heavy fines, regulatory penalties, operational restrictions, and even license cancellation for the bank. In high-profile international cases, failures in AML compliance have resulted in multi-billion dollar penalties and significant reputational damage.
