RMCP Reminder: FIC Is Watching – Is Your Practice Compliant?

This article will count 0.25 units (15 minutes) of unverifiable CPD. Remember to log these units under your membership profile.

The Financial Intelligence Centre (FIC) has issued a firm reminder: every accountable institution must have a fully documented and up-to-date Risk Management and Compliance Programme (RMCP) in place—and submitted via the goAML platform.

🔍 Why this is important

Your RMCP is your first line of defence against being misused for money laundering, terrorist financing, or other illicit financial flows. Without it, you're non-compliant with the FIC Act—and that’s a risk no professional should take.

⚠️ FIC inspections have revealed widespread non-compliance, especially among institutions that haven’t completed a proper business risk assessment or failed to submit their RMCP at all.

💡 Key requirements

I you are registered as an accountable institution you need to:

• Document how your firm assesses and mitigates ML/TF risks

• Identify which client types pose higher risk

• Detail how your team is trained to detect and respond to red flags

• Submit your RMCP electronically via goAML

📅 Missed the 12 March 2025 deadline?

You’re still expected to comply immediately. Submission is still required—even if late.

👉 Don’t wait for an inspection. Check your goAML profile, act on any messages, and make sure your RMCP reflects your real risk environment.

Let’s keep the profession—and your clients—on the right side of the law.

Not sure what to do?

Reach out to the CIBA technical team via raising a ticket from your membership profile and we will assist you.

Read our previous article on how to register and submit your RMCP to FIC.

Download and amend the attached basic CIBA RMCP template and submit today!