Money laundering is one of the most serious financial crimes in Canada. It involves disguising the proceeds of criminal activity so they appear to come from a legitimate source, allowing criminals to benefit from their crimes without directly handling obviously tainted funds. The consequences of getting it wrong are severe: criminal prosecution, significant fines, loss of licences, and reputational damage.
Canada’s anti-money laundering and anti-terrorist financing regime is complex, and it does not apply only to banks. Real estate agents, lawyers, accountants, money services businesses, casinos, securities dealers, insurance companies, and dealers in precious metals are all subject to detailed legal obligations. Understanding who must comply, what they must do, and what happens when they fail to do it is important for anyone working in these sectors.
This article provides a comprehensive overview of Canada’s money laundering laws, the agencies that enforce them, the obligations placed on reporting entities, and the consequences of non-compliance.
What Is Money Laundering?
Money laundering is the process by which proceeds of crime are converted into assets that appear to have a legitimate origin. It typically occurs in three stages.
In the placement stage, criminally derived funds enter the financial system. This might involve depositing cash from drug sales into a bank account, purchasing casino chips with illicit funds, or commingling criminal proceeds with the revenues of a legitimate business.
In the layering stage, the funds are moved through a series of transactions designed to obscure their origin. Complex transfers between accounts and jurisdictions, the purchase and sale of assets, shell companies, and the use of unrelated financial intermediaries are all common layering techniques. The purpose is to create a paper trail that is difficult to follow.
In the integration stage, the now-seemingly clean funds re-enter the mainstream economy in a form that appears legitimate. A reporting entity may encounter a transaction at any of these three stages.
Under the Criminal Code, a “money laundering offence” is defined with reference to section 462.31(1), which involves property or proceeds of property obtained directly or indirectly from a designated offence. “Proceeds of crime” under the Criminal Code means any property, benefit or advantage, within or outside Canada, obtained or derived directly or indirectly as a result of a designated offence. The definition is broad by design.
Canada’s Legal Framework: The PCMLTFA and the Criminal Code
Canada’s anti-money laundering regime operates on two distinct levels.
The first is the criminal law, found primarily in the Criminal Code. The criminal law on money laundering applies broadly to all persons and entities. It prohibits dealing in proceeds of crime and imposes significant reporting obligations in connection with terrorist property and terrorist financing. These provisions apply to everyone in Canada and to all Canadians outside Canada, regardless of whether they are otherwise subject to any regulatory compliance regime.
The second is the regulatory framework established by the Proceeds of Crime (Money Laundering) and Terrorist Financing Act (PCMLTFA), which came into force in 2000 and has been amended repeatedly since. The PCMLTFA establishes a detailed regime of record-keeping, client identification, and transaction reporting requirements that apply specifically to defined categories of financial service providers and intermediaries, known as “reporting entities.” The PCMLTFA is supplemented by an extensive set of regulations including the General Regulations, the Suspicious Transaction Reporting Regulations, and the Registration Regulations.
Canada’s anti-terrorism financing laws are principally found in the criminal law as well. The United Nations Act empowers the federal government to give effect to resolutions of the United Nations Security Council, and two regulations under that Act are particularly significant: the Regulations Implementing the United Nations Resolutions on the Suppression of Terrorism (RIUNRST) and the United Nations Al-Qaida and Taliban Regulations (UNAQTR). These prohibit all persons in Canada and all Canadians outside Canada from knowingly dealing in the property of listed persons or terrorist groups, entering into or facilitating transactions related to such property, or providing any financial service to or for the benefit of a listed person or terrorist group.
Economic sanctions imposed by Canada add a further layer of compliance obligation. The Special Economic Measures Act, the Freezing Assets of Corrupt Foreign Officials Act, and the Justice for Victims of Corrupt Foreign Officials Act (Sergei Magnitsky Law) all impose sanctions-related reporting and monitoring obligations on specified entities, and awareness of these obligations is required for anyone engaged in financial transactions or financial intermediation.
FINTRAC: Canada’s Financial Intelligence Unit
The Financial Transactions and Reports Analysis Centre of Canada (FINTRAC) is Canada’s financial intelligence unit. It was established in 2000 as an independent agency of the Government of Canada. FINTRAC operates at arm’s length from law enforcement agencies, meaning it is not a criminal authority and does not itself conduct criminal investigations. Its mandate is to facilitate the detection, prevention, and deterrence of money laundering and the financing of terrorist activities.
FINTRAC collects and analyzes reports and voluntary information from reporting entities, monitors compliance with the PCMLTFA, and provides financial intelligence to law enforcement and intelligence agencies including the RCMP, the Canadian Security Intelligence Service (CSIS), the Canada Revenue Agency, and the Canada Border Services Agency. It also shares information with foreign financial intelligence units under bilateral and multilateral agreements.
When FINTRAC has reasonable grounds to suspect that “designated information” would be relevant to the investigation or prosecution of a money laundering offence or terrorist activity financing offence, it may disclose that information to police authorities and other specified agencies. The categories of “designated information” that FINTRAC may disclose include the names and identifying details of persons or entities involved in a transaction, the amount and type of currency involved, transaction numbers and account numbers, details of criminal records, and indicators of money laundering or terrorist activity financing.
FINTRAC is required to destroy reports and identifying information 15 years after their receipt if they were not disclosed. The Privacy Commissioner of Canada is required to review FINTRAC’s protection of information every two years. There is an acknowledged tension between privacy interests and the public policy goals served by FINTRAC’s collection and disclosure of financial information.
FINTRAC publishes guidelines, compliance frameworks, and operational briefs to assist reporting entities in understanding and meeting their obligations. These guidance documents do not have the force of law, but they provide important insight into how FINTRAC interprets and applies the PCMLTFA and its regulations.
Who Must Comply: Reporting Entities Under the PCMLTFA
The record-keeping, client identification, and transaction reporting obligations of Part 1 of the PCMLTFA apply only to specified persons and entities, referred to as “reporting entities.” Understanding whether you are a reporting entity and in what circumstances is the threshold question for any compliance analysis.
The following categories of persons and entities are subject to Part 1 of the PCMLTFA:
Financial entities include Schedule I, II, and III banks, cooperative credit societies, savings and credit unions, caisses populaires, trust companies, loan companies, and certain government departments accepting deposits.
Life insurance companies and life insurance brokers and agents are covered in connection with certain specified activities.
Securities dealers include persons and entities authorized under provincial legislation to deal in securities or other financial instruments, or to provide portfolio management or investment advising services.
Money services businesses are persons and entities engaged in foreign exchange dealing, remitting or transmitting funds, issuing or redeeming money orders or traveller’s cheques, or dealing in virtual currencies. Money services businesses must register with FINTRAC and renew their registration every two years. Persons who have been convicted of a money laundering or terrorist financing offence, or who are named on a prescribed list, are not eligible to register.
Casinos, in their various licensed forms, are reporting entities for transactions conducted on their premises.
Accountants and accounting firms, defined as chartered accountants, certified general accountants, and certified management accountants, and entities providing accounting services to the public.
Legal counsel and legal firms, subject to important constitutional limitations on the extent to which legal professional privilege can be overridden by compliance obligations.
British Columbia notaries public and notary corporations.
Real estate brokers, sales representatives, and real estate developers, in connection with transactions involving the purchase and sale of real property.
Dealers in precious metals, stones, and jewellery.
The obligations that apply to each category of reporting entity differ in their specifics, and Part 1 applies only when a reporting entity is engaged in the specified business activities. There are also a number of prescribed exceptions that affect the application of the requirements to certain account-opening and other activities.
Know Your Client: Identity Verification Requirements
A central pillar of the PCMLTFA regime is the obligation on reporting entities to verify the identity of their clients. The circumstances in which identity verification is required depend on the type of reporting entity and the nature of the transaction, but the obligation arises most commonly in the context of suspicious transactions and large cash transactions.
For individual clients, verification is accomplished through government-issued photo identification such as a driver’s licence or passport. For corporate clients, reporting entities must obtain corporate documents, confirm the existence of the corporation, and identify the corporation’s directors and persons with significant ownership, meaning those owning or controlling at least 25 per cent of the shares or ownership interests. Trust companies must keep records about the beneficiaries of inter vivos trusts.
If a client is not physically present, verification may be accomplished through agents or mandataries appointed for that purpose, or through FINTRAC-compliant digital identity verification tools. Recent updates to FINTRAC’s guidelines have expanded the permitted use of digital verification services.
Reporting entities are also required to take reasonable measures to determine whether a transaction or account is being undertaken on behalf of a third party. Where a third party is involved, additional information about that party must be collected and recorded. This third party determination requirement is particularly significant because it extends the effective scope of the KYC obligation beyond the client who is immediately present to include those on whose behalf the client is acting.
The identification of politically exposed persons (PEPs), including foreign and domestic political figures, and heads of international organizations, is subject to additional and more stringent requirements. Where a client is identified as a PEP or a close associate of one, the reporting entity must apply enhanced due diligence, including verifying the source of funds.
Suspicious Transaction Reporting
Every reporting entity is required to report to FINTRAC every financial transaction that occurs or is attempted in the course of their activities if there are reasonable grounds to suspect that the transaction is related to the commission or the attempted commission of a money laundering offence or a terrorist activity financing offence.
Several aspects of this obligation are worth unpacking.
No Dollar Threshold
There is no minimum dollar amount that triggers the suspicious transaction reporting requirement. A $50 transaction that raises reasonable grounds to suspect money laundering must be reported just as a $5 million transaction would. This is a common source of confusion, particularly among entities more familiar with the large cash transaction reporting threshold of $10,000.
Attempted Transactions Are Included
The obligation to report extends to attempted transactions, not only completed ones. The inclusion of attempted transactions reflects the understanding that persons planning a money laundering or terrorist financing scheme may initiate a transaction but not complete it, possibly out of concern about detection. Where an offer has been submitted but not accepted, FINTRAC considers that an “attempted transaction” has occurred.
What “Reasonable Grounds to Suspect” Means
The standard for reporting is “reasonable grounds to suspect,” not proof or certainty. The obligation arises when there is something less than certainty that a transaction is connected to money laundering or terrorist financing. The legislation expressly avoids wilful blindness: a reporting entity that ignores red flags it should have recognized cannot escape its reporting obligation by claiming it did not actually form a suspicion.
What constitutes “reasonable grounds” in practice is assessed against the circumstances of the reporting entity, including the nature of its business, its client base, and the type of transactions it handles. The judgment that must be made is whether the circumstances are such that the reporting entity reasonably should have identified a connection to money laundering or terrorist financing.
No-Tipping Rule
Once a suspicious transaction report has been filed, the reporting entity is expressly prohibited from disclosing to the subject of the report that a report has been made or revealing the contents of the report with the intent of prejudicing a criminal investigation. This is the “no-tipping” rule. Violation of the no-tipping rule is a criminal offence that can lead to up to two years of imprisonment.
Good Faith Protection
Reporting entities that file suspicious transaction reports in good faith are protected from civil and criminal liability arising from the making of the report. This protection extends to voluntary reports made outside the strict statutory requirements.
Reporting Timeline
A suspicious transaction report must be sent to FINTRAC within 30 days after the reporting entity, or any of its employees or officers, first detects a fact that constitutes reasonable grounds to suspect a connection to money laundering or terrorist financing. Reports must be submitted electronically unless the entity lacks the technical capability to do so.
Large Cash Transaction Reporting
In addition to the suspicious transaction reporting obligation, reporting entities are required to report every large cash transaction that occurs in the course of their activities. A large cash transaction occurs when a reporting entity receives $10,000 or more in cash in the course of a single transaction.
There is a specific deeming rule to prevent transaction splitting, where a person breaks up a large cash payment into multiple smaller transactions to avoid the reporting threshold. Two or more transactions are treated as a single transaction if they are made within a rolling 24-hour period and the reporting entity, or an employee or officer of the entity, knows that the transactions are conducted by or on behalf of the same person or entity.
The large cash transaction reporting obligation does not apply to lawyers and law firms providing legal services, or in other prescribed circumstances involving clients who routinely receive large volumes of cash in the ordinary course of their business.
Cross-Border Currency Reporting
Part 2 of the PCMLTFA imposes reporting requirements on all persons who import or export cash or monetary instruments valued at $10,000 or more. Unlike Part 1, this obligation is not limited to reporting entities: it applies to all persons crossing the border with qualifying currency or instruments. The report is made to a customs officer, not to FINTRAC.
“Monetary instruments” for this purpose means securities and negotiable instruments in bearer form, including stocks, bonds, debentures, treasury bills, bank drafts, cheques, promissory notes, traveller’s cheques, and money orders. Instruments that are restrictively endorsed, bear a clearing stamp, or are made payable to a named person and have not been endorsed are excluded from the definition.
Record-Keeping Obligations
Reporting entities are required to maintain detailed records in connection with their transactions, client accounts, and identity verification activities. The specific record-keeping requirements vary by type of reporting entity and type of transaction, but in general terms, reporting entities must maintain records sufficient to support their reporting obligations and to enable FINTRAC to verify compliance.
Large cash transaction records must indicate the receipt of $10,000 or more in cash and contain detailed information about the transaction, the parties involved, and the accounts affected. Account records and transaction records for financial entities, securities dealers, money services businesses, and other regulated entities are described in detail in the General Regulations.
Records must generally be retained for five years. This applies equally to identity verification records, transaction records, and supporting documentation. Failure to maintain adequate records is itself a violation that can attract administrative penalties.
Compliance Programs
Every reporting entity is required by statute to establish and maintain a compliance program. A compliance program must include written policies and procedures for the detection and reporting of suspicious transactions, a risk assessment methodology covering the entity’s clients, products, delivery channels, and geographic exposure, a training program for employees, and a process for ongoing monitoring of transactions and business relationships.
Where a reporting entity assesses the risk of money laundering or terrorist financing as high in respect of certain activities or clients, it must take prescribed special measures. These include enhanced client identification, more frequent and comprehensive monitoring of transactions, and more rigorous application of the entity’s risk management policies.
FINTRAC has produced a compliance framework that outlines its expectations for compliance programs and the criteria it applies in evaluating whether a reporting entity’s program meets the requirements of the PCMLTFA.
Administrative Monetary Penalties and Enforcement
Non-compliance with the PCMLTFA can result in criminal penalties or administrative monetary penalties (AMPs). FINTRAC is empowered to issue AMPs where it has reasonable grounds to believe a reporting entity has failed to comply. AMPs are not imposed automatically: they are generally issued where other compliance measures have been unsuccessful.
Violations are categorized into three levels. A minor violation can attract an AMP of between $1 and $1,000 per violation. A serious violation can attract between $1 and $100,000 per violation. A very serious violation can attract between $1 and $100,000 per violation for an individual and between $1 and $500,000 per violation for an entity.
FINTRAC uses a two-step process to determine the amount of any AMP. First, it assesses the harm caused by the violation, defined as the degree to which the violation interferes with the objectives of the PCMLTFA or FINTRAC’s ability to carry out its mandate. Complete failure to meet a requirement will typically result in the maximum penalty. Second, FINTRAC considers the entity’s compliance history and adjusts the penalty accordingly, with the full penalty amount assessed only after a specific violation has been committed for the third time.
The Federal Court of Appeal’s decision in Kabul Farms Inc. v. Canada significantly influenced FINTRAC’s approach to AMPs. In that case, the court quashed a $6,000 AMP on the basis that FINTRAC had not been transparent enough in explaining how it had assessed the fine. The revised AMP policy that followed was specifically designed to address the court’s concerns about transparency, objectivity, and fairness.
FINTRAC also conducts on-site and office examinations of reporting entities to assess compliance. An assessment manual describes its examination methodology. Reporting entities that discover non-compliance before an examination may voluntarily self-declare the non-compliance to FINTRAC, which may reduce the likelihood of an AMP being assessed.
Criminal Offences and Penalties
Beyond the AMP regime, the PCMLTFA and the Criminal Code establish a range of criminal offences for the most serious forms of non-compliance.
A person who knowingly deals in proceeds of crime or assists another to do so commits a money laundering offence under subsection 462.31(1) of the Criminal Code. A person who fails to report terrorist property, who deals in the property of a listed person or terrorist group, or who provides financial services to a listed person or terrorist group commits an offence under the anti-terrorism provisions of the Criminal Code and the related regulations.
Under the PCMLTFA itself, criminal offences include failing to report a suspicious transaction or large cash transaction, failing to keep required records, failing to verify client identity, structuring transactions to avoid reporting requirements, and tipping a person that a report has been or will be made. Penalties for criminal offences under the PCMLTFA range up to five years of imprisonment for more serious offences.
Specific Sectors: Key Considerations
Real Estate
Money laundering in real estate is a well-documented and significant problem in Canada. Real estate brokers, sales representatives, and developers are all reporting entities under the PCMLTFA and are subject to the full range of record-keeping, client identification, and reporting obligations. FINTRAC has issued a specific operational brief on indicators of money laundering in financial transactions related to real estate, reflecting the particular vulnerability of the sector.
Real estate transactions are attractive to money launderers because they involve large sums, the movement of funds between multiple parties, and assets that can be resold to generate apparently clean proceeds. The use of numbered companies, all-cash purchases, purchases by third parties on behalf of undisclosed principals, and complex trust or nominee arrangements are all red flags that should inform a real estate professional’s suspicious transaction assessment.
Legal Counsel
Lawyers occupy a uniquely sensitive position in the AML regime. Legal professional privilege, protected under section 7 and 8 of the Canadian Charter of Rights and Freedoms, limits the extent to which lawyers can be required to report the confidential communications of their clients. The application of the PCMLTFA to legal counsel has been the subject of constitutional litigation: in Federation of Law Societies of Canada v. Canada (Attorney General), the Supreme Court of Canada struck down certain provisions of the PCMLTFA as they applied to lawyers, finding them to be inconsistent with the constitutional protection of solicitor-client privilege. Lawyers must navigate the intersection of their reporting obligations and their duty of confidentiality carefully.
Casinos
Casinos are subject to extensive reporting and record-keeping obligations in connection with their operations. The use of casino chip purchases and redemptions, large cash transactions, foreign currency exchanges, and extensions of credit at gaming establishments are all prescribed activities subject to detailed requirements. FINTRAC has published an operational alert specifically addressing the laundering of proceeds of crime through casino-related underground banking schemes.
Dealers in Precious Metals and Stones
Dealers in precious metals, stones, and jewellery are reporting entities when they engage in a transaction with a client for the purchase or sale of precious metals or precious stones where the total amount paid is $10,000 or more in cash. FINTRAC has issued an operational brief specifically addressing the risks and indicators for this sector.
What to Do if You Suspect Money Laundering
For a reporting entity that identifies a transaction raising reasonable grounds to suspect money laundering or terrorist financing, the key steps are straightforward:
First, do not tip the client. Once a suspicion arises, do not alert the client that a report is being or may be made. The no-tipping prohibition applies both before and after a report is filed.
Second, take reasonable measures to ascertain the identity of the person conducting the transaction, unless doing so would itself tip the person off.
Third, complete and file a suspicious transaction report with FINTRAC within 30 days of first detecting a fact that constitutes reasonable grounds for suspicion.
Fourth, retain all records in connection with the transaction and the identity verification steps taken.
Non-reporting entities that encounter suspicious circumstances are not subject to the same mandatory reporting obligations, but may choose to report voluntarily. Voluntary reports are protected by the same good faith immunity that applies to mandatory reports.
Whether you are a reporting entity dealing with a FINTRAC examination, a potential AMP, a suspected compliance failure, or you are concerned about a transaction that may involve the proceeds of crime, our commercial litigation practice and civil fraud practice advise on financial crime, fraud, and regulatory matters in Ontario. Contact Grigoras Law to discuss your situation.
Conclusion
Canada’s anti-money laundering regime is broad, detailed, and actively enforced. The obligations placed on reporting entities under the PCMLTFA, and the parallel obligations arising from the criminal law and economic sanctions legislation, require a comprehensive and well-documented compliance program, rigorous know-your-client practices, and a clear understanding of when and how to report suspicious transactions.
The costs of non-compliance are real: criminal prosecution, AMPs of up to $500,000 per violation for entities, reputational harm, and in some cases licence revocation. For professionals in the financial, real estate, legal, and accounting sectors, understanding the requirements is not optional.
For anyone who has encountered what may be a money laundering scheme, whether as a reporting entity with a suspicious transaction on their hands or as a victim of the underlying fraud, understanding the legal framework is the essential first step to an effective response.
