Bank Secrecy Act: Born from Risk, Built for Control

What is the Bank Secrecy Act (BSA)?

The Bank Secrecy Act (BSA), formally known as the Currency and Foreign Transactions Reporting Act of 1970, is a key anti-money laundering (AML) law enforced in the United States. This legislation mandates financial institutions to assist in detecting and preventing financial crimes, such as money laundering, tax evasion, and terrorism financing. By instituting stringent documentation, monitoring, and reporting protocols, the BSA forms the foundation of AML strategies within the U.S.  

For instance, if a customer deposits cash exceeding $10,000 into a bank account, the bank must file a Currency Transaction Report (CTR) under the BSA's rules. This ensures traceability and monitoring of unusually large cash flows.

Purpose of the Bank Secrecy Act in Financial Services

The BSA was introduced to strengthen financial oversight and make illicit financial activities easier to detect. Below are its core objectives:

  • Combat money laundering: Detect and deter the laundering of proceeds from illicit activities.
  • Fight terrorism financing: Prevent funds from flowing into terrorist organisations.
  • Promote tax compliance: Discourage tax evasion by introducing transparency.
  • Mandate the timely reporting of suspicious activities: Assist law enforcement and financial regulators in investigating financial crimes.

Application:

By ensuring financial institutions file Suspicious Activity Reports (SARs), BSA regulations establish a vital link between institutions and federal authorities for combating organised financial crime.

Key Requirements of the Bank Secrecy Act

The BSA imposes several mandatory requirements on financial institutions. Understanding these obligations is critical for ensuring compliance and avoiding severe penalties.

Filing Suspicious Activity Reports (SARs):

Institutions must report any suspected transactions that indicate criminal behaviour. For example, unusual patterns such as multiple smaller transactions below reporting thresholds could trigger a SAR.

Filing Currency Transaction Reports (CTRs):

Any cash transaction exceeding $10,000 must be reported. For instance, if a business customer deposits $12,000 in cash, a CTR is necessary.

Customer Identification Program (CIP):

Under the BSA, banks are obligated to verify customer identities at account opening. This reduces fraud risk and ensures institutions conduct sufficient due diligence during transactions.

Additional Requirements:

  • Monitoring Transactions: Apply ongoing, risk-based transaction scrutiny to identify irregularities.
  • Record Retention: Maintain records of transactions and reports for at least five years.
  • Training Programs: Train employees on AML processes and BSA compliance.
  • Compliance Officer: Appoint a dedicated officer to oversee BSA compliance standards.

LSEG Risk Intelligence solutions support BSA compliance through data-driven tools that aid in identity verification, streamline onboarding processes, and provide advanced monitoring and records management capabilities to help detect risk anomalies in real time, enhancing overall compliance procedures.

The Five Pillars of BSA/AML Compliance

1. Internal Policies and Controls

Institutions must establish strong internal governance to mitigate risks. This includes durable processes against abuse that comply with existing regulations.

2. Designation of a Compliance Officer

A senior official should be invested with the authority to ensure compliance adherence, such as enforcing SAR guidelines and liaising with regulators.

3. Ongoing Employee Training

Adequate training on AML measures is integral to understanding compliance responsibilities.

4. Independent Testing and Audit

Periodic reviews by independent testers or auditors ensure BSA adherence is robust.

5. Customer Due Diligence (CDD) and Beneficial Ownership

Post-2018 reforms introduced the mandatory identification of beneficial owners to combat shell companies used for money laundering. (via Fed. Reg.)

Regulatory Oversight and Enforcement

The Financial Crimes Enforcement Network (FinCEN), under the U.S. Treasury, oversees the enforcement of the BSA. Partner agencies such as the IRS, OCC, and FDIC also participate in compliance reviews and regulatory issuance.

Penalties for Non-compliance:

  • Civil penalties can range up to $25,000 per violation. (via Fed. Reg.)
  • Institutions may face criminal charges for intentional neglect.
  • Potential loss of federal charters or operating licences.

For example, a financial institution failing to file SARs related to suspected human trafficking can incur multimillion-dollar fines.

How the BSA Supports Global AML Efforts

This legislation aligns with international standards, such as the Financial Action Task Force (FATF) recommendations. Many global regulators benchmark BSA regulations for their local AML laws, demonstrating the statute's global impact.

Context:

Post-September 11, the USA PATRIOT Act strengthened the BSA, expanding its provisions to combat terrorism with greater accountability in international banking.

Recent Developments and Trends in BSA Compliance

Emerging developments have introduced varying complexities and opportunities for modernising BSA compliance:

  1. Travel Rule Expansion: Obligates sending financial institutions to provide originator/beneficiary information for international transfers.
  2. AI and Data Systems: The integration of AI-driven software is now pivotal for efficiently tracking trends and suspicious activities.
  3. Crypto and Digital Regulations: Cryptocurrency transactions are coming under closer scrutiny within existing BSA guidelines.
  4. Corporate Transparency Act (CTA): From 2024, institutions must provide beneficial ownership transparency ahead of onboarding. (via FATF Publications)
  5. LSEG Risk Intelligence Solutions: LSEG’s tools, including World-Check and Media Check, leverage AI and intelligent tagging to surface relevant risk signals from global media sources, supporting proactive fraud detection and compliance monitoring.

FAQs

  • The Bank Secrecy Act (BSA), passed in 1970, is a cornerstone U.S. law aimed at combating financial crimes like money laundering, tax evasion, and terrorism financing. It requires financial institutions to maintain records, monitor transactions, and report suspicious activities to regulators. FinCEN enforces this law to help authorities trace illicit financial flows.

  • The BSA aims to detect and deter misconduct by creating financial transparency. It helps eliminate the mismanagement of financial systems while aiding regulators in identifying illicit activities such as terrorism financing and money laundering by mandating thorough reporting and detection mechanisms.

  • The BSA was enacted in the United States in 1970, making it one of the foundational legal frameworks for anti-money laundering (AML) efforts in the country.

  • The enforcement of the BSA primarily falls under the U.S. Department of the Treasury's Financial Crimes Enforcement Network (FinCEN). Additional support comes from regulatory bodies like the Federal Reserve, OCC, FDIC, and the IRS.

  • The five pillars of compliance under the BSA are:

    1. Internal policies, procedures, and controls to ensure robust oversight.
    2. Designation of a compliance officer to manage adherence efforts.
    3. Ongoing employee training programmes to stay updated with regulations.
    4. Independent testing and audit mechanisms to evaluate compliance levels.
    5. Customer Due Diligence (CDD), including the identification of beneficial ownership to reduce risks.
  • Banks under the BSA must:

    • File Suspicious Activity Reports (SARs) when illegal activity is suspected.
    • File Currency Transaction Reports (CTRs) for cash transactions over $10,000. (Ref.)
    • Maintain customer identity through a CIP and conduct due diligence.
    • Retain transaction records for a minimum of five years. (Ref.)
  • Penalties include hefty fines (e.g., HSBC’s $1.9 billion), licence revocation, legal action, and reputational damage, which can harm investor confidence.

  • Penalties include hefty civil fines, criminal prosecutions, and operational sanctions like license revocation. For example, institutions failing to file required reports could incur penalties exceeding millions of dollars.

  • While the BSA focuses on curbing financial crimes, the USA PATRIOT Act, introduced post-9/11, enhances the BSA’s provisions, particularly targeting terrorism financing by broadening the regulatory scope for AML and Know Your Customer (KYC) measures.

  • The Travel Rule mandates that financial institutions transfer originator and beneficiary details along with the transaction for qualifying payments exceeding $3,000. This enhances monitoring cross-border and high-value transactions.

  • Financial institutions must report large cash transactions over $10,000 via CTRs. Suspicious transactions, regardless of monetary value, must be flagged with SARs.

  • FinCEN develops policies and oversees the administration of the BSA. It ensures financial institutions meet compliance standards through monitoring and imposes penalties for violations.

  • At its core, the requirement is to ensure proper monitoring, record-keeping, and reporting to prevent the concealment of financial crimes, including money laundering and fraud.

  • All financial institutions operating under U.S. jurisdiction, including banks, credit unions, money service businesses, brokers, and casinos, are obligated to comply with BSA regulations.

  • The BSA enforces standards that create an auditable trail of all substantial transactions, discouraging illegal activity. Tools like Customer Due Diligence (CDD) ensure that each transaction is linked to a verified client.

  • "Safe harbor" protects institutions from liability when they report suspicious activities in good faith to regulatory authorities, as required under the BSA. This encourages reporting without fear of legal repercussions.

Request details

Help & Support

Already a customer?

Office locations

Contact LSEG near you