The recent case of
We discuss the case in detail below, asking:
- is there a danger in an accountable institution asking for more than they strictly require in terms of FICA?
- do customers have an obligation to provide verification documentation to accountable institutions upon request?
- as an accountable institution has an ongoing due diligence obligation to verify the identity of a customer with whom it has established a relationship, may an accountable institution refuse to act on an instruction (implementing a transaction) if due diligence requests have not been met by a customer?
FICA is aimed at the identification of the proceeds of unlawful activities, combatting money laundering and combatting the financing of terrorist and related activities. To give effect to these objectives, FICA creates a legal framework for the effective identification and verification of clients. Regulations issued under FICA set out a number of procedural elements that financial institutions ought to give effect to, in order to implement FICA.
The dispute at the heart of this case arose as a result of
The relevant facts in this matter were:
- Houtbosplaas and TBS Alpha had a longstanding relationship with
Nedbank . Four trusts each held one preference share and ordinary shares in the companies. -
In 2016,
Nedbank requested certain information from the companies pursuant to the provisions of FICA. Some of the information was provided but the companies contended that the request constituted an unjustifiable intrusion into the trusts' right to privacy. -
A dispute arose between
Nedbank and the companies' representative in respect of the request for information, which ultimately led to the companies giving written notice toNedbank inJanuary 2017 to close their accounts and transfer the credit balances of those accounts toAbsa Bank Limited . Nedbank refused to close the accounts on the basis that the companies failed to comply withNedbank's request and consequently, the accounts were restricted based on FICA.-
In
July 2017 , the accounts were closed afterNedbank received the outstanding information it requested from Houtbosplaas and TBS Alpha.
The companies viewed
In determining the question of whether
Section 21(2) of FICA, prior to its amendment, read as follows:
“If an accountable institution had established a business relationship with a client before this Act took effect, the accountable institution may not conclude a transaction in the course of that business relationship, unless the accountable institution has taken the prescribed steps-
…
(b) to establish and verify the identity of the client”
The SCA held that section 21(2) of FICA applied to existing clients of an accountable institution who had already established a business relationship before FICA took effect. At the inception of FICA,
Similarly, the SCA found that regulation 7 which, at the relevant time required financial institutions to obtain various particulars of trusts holding 25% or more of the voting rights at a general meeting of a company, only applies when an accountable institution is establishing a business relationship or concluding a single transaction.
The SCA held that the preference shareholders had untrammelled voting rights and consequently, would have every right to vote at general meetings of the companies. Consequently, each trust that held shares in the companies held less than 25% of the voting rights.
The SCA dismissed
The SCA concluded that the refusal by
However, in our view, this should not be read as suggesting that in terms of current legislation an accountable institution would be precluded from, in terms of their risk management and compliance programme (“RMCP”), noting a customer as high-risk or non-compliant if that customer refused to provide information which had been requested by the bank in accordance with its RMCP, whether that information was requested in establishing a relationship, or pursuant to that accountable institution's ongoing due diligence obligations. We do not believe that a customer would be entitled to raise as a defence that the information could be obtained from a third party and an accountable institution would be permitted to initiate its high-risk policy should a customer refuse to provide requested information.
This judgment does however highlight the importance of an accountable institution only requesting information that it is entitled to under FICA and its RMCP. Bearing in mind the principle of minimality, as set out in section 10 of the Protection of Personal Information Act (“POPIA”), an accountable institution may only request (and subsequently process) information if it is adequate, relevant and not excessive. Asking for too much information, or information not required in terms of FICA or the RMCP, creates a risk because failure to provide information not strictly required does not found a basis for refusing to act on the instruction of a customer. Failure to act in accordance with the terms and conditions applicable to a particular customer, such as refusing to implement an instruction when not strictly entitled to do so, could expose a financial institution to a claim for interest, or possibly an offence under the Financial Institutions (Protection of Funds Act). Bearing the provisions of POPIA in mind, a bank may also expose itself to proceedings that arise as a result of a breach of POPIA.
Financial sector laws are rapidly evolving as regulators seek to ensure fair outcomes for customers while ensuring financial stability and the integrity of the South African financial markets. It can be difficult for financial institutions to ensure that their operations remain compliant. Case law such as this demonstrates this difficulty, and also serves as a caution to financial institutions to continuously review and reconsider their procedures and policies with their advisors in light of developments.
The content of this article is intended to provide a general guide to the subject matter. Specialist advice should be sought about your specific circumstances.
Mr
ENSafrica
Sandton
Tel: 11269 7600
Fax: 10596 6176
E-mail: afaber@ensafrica.com
URL: www.ENSafrica.com
© Mondaq Ltd, 2022 - Tel. +44 (0)20 8544 8300 - http://www.mondaq.com, source