[Customer Mobile Number Change Process: To ensure transaction alerts, OTP, etc. are sent to the correct mobile number, customers must register with the mobile number associated with their Aadhaar. If a customer requests a change in their registered mobile number, the following process must be followed:
- The customer submits a written request for a mobile number change along with updated OVD documents (passport, driving license, voter ID card) through any e-mode or at a branch.
- The concerned officer of the Company will verify the submitted OVD documents and compares them with the customer information available in the records.
- The concerned officer of the Company checks that the updated mobile number is not already registered with another account or has been reported as lost or stolen.
- If they find any discrepancies or doubts the authenticity of the documents, further verification may be requested, such as in-person verification or additional documents.
- Once the concerned officer of the Company is satisfied with the verification process, the customer's mobile number is updated in their records, and a confirmation message is sent to the updated mobile number.
- Transaction alerts, OTPs, etc. are sent only to the updated mobile number.
- The Company will document the process followed for the mobile number change request and maintain the records as per regulatory requirements.]
4.10 AML Risk Mitigation Tools:
Ummeed shall, inter alia, use the following tools to mitigate AML risk:
- KYC documentation
- Customer due diligence
- Dedupe check
- CIBIL Checks with credit scores
- Reference checks
- Tele verification
- Field Investigation
- Limit on amount of loan in cash
- Suspicious transaction reporting
- Checking whether amount of jewelry or loan is in line with disclosed sources of income and wealth
4.11 KYC and Customer Due Diligence (CDD)
CDD measures in case of individual customers
The Company shall identify the beneficial owner and take all reasonable steps to verify his identity. It shall also exercise on-going due diligence with respect to the business relationship with every client and closely examine the transactions in order to ensure that they are consistent with their knowledge of the customer, his business and risk profile.
For undertaking CDD, following should be obtained from an individual while establishing an account-based relationship or while dealing with the individual who is a beneficial owner, authorised signatory or the power of attorney holder related to any legal entity:
- the Aadhaar number where,(i) he is desirous of receiving any benefit or subsidy under any scheme notified under section 7 of the Aadhaar (Targeted Delivery of Financial and Other subsidies, Benefits and Services) Act, 2016 (18 of 2016); or he decides to submit his Aadhaar number voluntarily to a bank or any RE notified under first proviso to sub- section (1) of section 11A of the PML Act; or the proof of possession of Aadhaar number where offline verification can be carried out; or the proof of possession of Aadhaar number where offline verification cannot be carried out or any OVD or the equivalent e- document thereof containing the details of his identity and address; and
- the Permanent Account Number or the equivalent e-document thereof or Form No. 60 as defined in Income-tax Rules, 1962. Where Permanent Account Number (PAN) is obtained, the same shall be verified from the verification facility of the issuing authority; and
- such other documents including in respect of the nature of business and financial status of the customer, or the equivalent e-documents thereof as may be required:
[We can obtain KYC Identifier with explicit customer consent to download KYC records from CKYCR for the purpose of CDD. We will not use KYC documents downloaded from the CKYCR whose validity has lapsed for KYC purposes.]
Provided that where the customer has submitted,
- Aadhaar number, authentication of the customer’s Aadhaar number using e-KYC authentication facility provided by the Unique Identification Authority of India. Further, in such a case, if customer wants to provide a current address, different from the address as per the identity information available in the Central Identities Data Repository, he may give a self-declaration to that effect.
- proof of possession of Aadhaar where offline verification can be carried out, the same shall be done.
- an equivalent e-document of any OVD, then, shall verify the digital signature as prescribed.
- any OVD or proof of possession of Aadhaar number, where offline verification cannot be carried out, verification to be carried out through digital KYC process as prescribed.
Provided further that in case e-KYC authentication cannot be performed for an individual desirous of receiving any benefit or subsidy under any scheme notified under section 7 of the Aadhaar (Targeted Delivery of Financial and Other subsidies, Benefits and Services) Act, 2016 owing to injury, illness or infirmity on account of old age or otherwise, and similar causes, shall, apart from obtaining the Aadhaar number, perform identification preferably by carrying out offline verification or alternatively by obtaining the certified copy of any other OVD or the equivalent e-document thereof from the customer.
Note 1: When a customer submits proof of possession of Aadhaar number containing the number, ensure that the customer obscures or blacks out their Aadhaar number through appropriate means, where Aadhaar number authentication is not required as per our KYC policy.
Note 2: Biometric-based e-KYC authentication can be carried out by authorized officials, business correspondents, and business facilitators wherever allowed by the Reserve Bank in this behalf.
Note 3: The usage of Aadhaar and proof of possession of Aadhaar shall comply with the Aadhaar (Targeted Delivery of Financial and Other Subsidies, Benefits, and Services) Act, 2016, the regulations made thereunder, and amendments made from time to time.
Note 4: Authorized officials, business correspondents, and business facilitators of the Company wherever allowed by the Reserve Bank in this behalf, will perform Offline Verification of Aadhaar for identification purposes.
Note 5: When opening an account for a legal entity that is not a natural person, identify the beneficial owner(s), and follow reasonable steps as per Rule 9(3) of the Rules to verify their identity. Please note the following:
In cases of trust, nominee, or fiduciary accounts, obtain satisfactory evidence of the identity of intermediaries and the persons on whose behalf they are acting. Additionally, collect details of the nature of the trust or other arrangements in place.
CDD Measures for Legal Entities
In order to comply with our company’s KYC policy, we require certain documents to be provided for non-individual customers. Please find below the details for each type of entity:
Company: For opening an account of a company, we require certified copies or equivalent e-documents of the following:
- Certificate of incorporation
- Memorandum and Articles of Association
- Permanent Account Number of the company
- A resolution from the Board of Directors and power of attorney granted to its managers, officers or employees to transact on its behalf
- Documents, as specified in Section 16, relating to beneficial owner, the managers, officers or employees, as the case may be, holding an attorney to transact on the company's behalf
- The names of the relevant persons holding senior management position
- The registered office and the principal place of its business, if it is different.
Partnership Firms: For opening an account of a partnership firm, we require certified copies or equivalent e-documents of the following:
- Registration certificate
- Partnership deed
- Permanent Account Number of the partnership firm
- Documents, as specified in Section 16, relating to beneficial owner, managers, officers or employees, as the case may be, holding an attorney to transact on its behalf
- The names of all the partners
- Address of the registered office and the principal place of its business, if it is different.
Trusts: For opening an account of a trust, we require certified copies or equivalent e-documents of the following:
- Registration certificate
- Trust deed
- Permanent Account Number or Form No.60 of the trust
- Documents, as specified in Section 16, relating to beneficial owner, managers, officers or employees, as the case may be, holding an attorney to transact on its behalf
- The names of the beneficiaries, trustees, settlor and authors of the trust
- The address of the registered office of the trust
- List of trustees and documents, as specified in Section 16, for those discharging role as trustee and authorised to transact on behalf of the trust.
Unincorporated Associations or Bodies of Individuals: For opening an account of an unincorporated association or a body of individuals, we require certified copies or equivalent e-documents of the following:
- Resolution of the managing body of such association or body of individuals
- Permanent Account Number or Form No. 60 of the unincorporated association or a body of individuals
- Power of attorney granted to transact on its behalf
- Documents, as specified in Section 16, relating to beneficial owner, managers, officers or employees, as the case may be, holding an attorney to transact on its behalf
- Such information as may be required by us to collectively establish the legal existence of such an association or body of individuals.
In addition, for non-individual customers who are juridical persons or who purport to act on behalf of such entities, we require the following documents or equivalent e-documents to be obtained and verified:
- Document showing name of the person authorized to act on behalf of the entity
- Documents, as specified in Section 16, of the person holding an attorney to transact on its behalf
- Such documents as may be required by the Company to establish the legal existence of such an entity/juridical person.
Furthermore, as per our policy, we advise customers to update any changes to the documents submitted at the time of establishment of business relationship or account-based relationship with the Company, as necessary. This update must be submitted to us within 30 days of the change in order to update our records.]
5. Enhanced Due Diligence (“EDD”)
5.1 Enhanced Due Diligence (“EDD”) procedures will be implemented by the Company for higher risk customers.
5.2 The EDD procedures will aid the Company in:
- Determining whether the customer appears to be engaged in legitimate business activities and has legitimate sources of funds.
- Anticipating the customer’s usual and expected activity so that suspicious activity can be detected.
5.3 Higher-risk customers must be approved by a Zonal Credit Manager level or minimum grade of General Manager.
5.4 Customer transactions should be reviewed more closely at account opening and more frequently throughout the term of their relationship.
5.5 The Company’s EDD procedures will consider requiring additional information and documentation to be obtained on higher risk customers, such as:
- Purpose of the account/End-use.
- Source of funds and wealth.
- Individuals with ownership or control over the account, such as beneficial owners, signatories, or guarantors.
- Financial statements.
- Banking references.
- Domicile (where the business is organized).
- Citizenship or nationality for individuals.
- Proximity of the customer’s residence, place of employment, or place of business.
- Description of the customer’s primary trade area and whether international transactions are expected to be routine.
- Description of the business operations, the anticipated types, volumes and frequency of transactions, including currency and total sales, and a list of major customers and suppliers.
- Explanations for changes in account activity.
5.6 The Company’s EDD procedures will consider requiring additional information and documentation to be obtained on higher risk customers periodically throughout the relationship, such as:
- Updation of KYC documents every 2 years.
- EDD is an ongoing process, and the Company will take measures to ensure that information is current and that appropriate risk-based monitoring occurs to ensure that any suspicious activity is escalated, analyzed, and reported, and that other appropriate action is taken.
- [Our authorized officer will verify the current address through positive confirmation before allowing operations in the account, PAN will be obtained from the customer and shall be verified, customers shall be categorized as high-risk customers and accounts opened in non-face-to-face mode shall be subjected to enhanced monitoring until the identity of the customer is verified in a face-to-face manner or through V-CIP (if such facility is provided), etc.]
6. Politically Exposed Persons (“PEPs”)
Politically exposed persons are individuals who are or have been entrusted with prominent public functions by a foreign country, including the Heads of States/ Governments, senior politicians, senior government or judicial or military officers, senior executives of state-owned corporations and important political party officials.
The Company shall gather sufficient information on any person/customer of this category intending to establish a relationship and check all the information available on the person in the public domain.
7. Negative List
Our branches will maintain a negative list of persons to the extent possible, and after a thorough check of the client base, we will determine if any matches exist. If there is a match with a credit-related nature only (no other negativities associated with the name), the PO/MLRO or any other person with appropriate authority may approve the acceptance of the client/prospect.
8. Sanctions List
We will ensure compliance with statutory and regulatory requirements related to sanctions lists of individuals/groups. The list of such individuals/entities will be regularly updated based on advice received from government, statutory, regulatory authorities, or international bodies. This includes individuals/entities suspected of having terrorist links, as approved and periodically circulated by the aforementioned authorities.
We strictly refrain from engaging in transactions with customers whose identities match those of individuals with known criminal backgrounds or banned entities, as well as those reported to have links with terrorists or terrorist organizations identified by the relevant authorities. If any match is identified with an entity listed in the Sanctions List, we will meticulously follow the required procedures as dictated by legal, statutory, and regulatory requirements.
Additionally, our company officials will conduct checks to the extent applicable on the Company and based on specified parameters when establishing a customer relationship and periodically thereafter. This is done to verify whether individuals and entities listed in the designated list hold any funds, financial assets, or other assets in the form of bank accounts or similar financial instruments.
To the extent applicable on the Company, we will every day verify the 'UNSCR 1718 Sanctions List of Designated Individuals and Entities' available at [https://www.mea.gov.in/Implementation-of-UNSC-Sanctions-DPRK.htm]. This ensures that any modifications, such as additions, deletions, or other changes to the list, are taken into account. We also ensure compliance with the 'Implementation of Security Council Resolution on Democratic People’s Republic of Korea Order, 2017' as amended by the Central Government.
Furthermore, we refer to the updated published list of jurisdictions not fully or partially complying with the FATF Guidelines provided by the Financial Action Task Force (FATF). This is to ensure that none of our existing or new customers' credentials match the details of individuals/entities falling within non-compliance jurisdictions of FATF.
Moreover, we comply with orders, directions, guidelines, and lists issued by the appropriate authorities/regulatory bodies, including the Government of India, for the implementation of or obligations under:
- Section 51-A of the Unlawful Activities (Prevention) (UAPA) Act, 1967.
- Prevention and Suppression of Terrorism (Implementation of Security Council Resolutions) Order, 2007, as amended from time to time.
- Freezing of Assets under Section 51A of UAPA, 1967, as per UAPA notification dated February 2, 2021 (Annex II of the KYC Master Direction). We submit the necessary details to the Nodal Officers for UAPA, as available on the website of the Ministry of Home Affairs (MHA).
- Obligations under the Weapons of Mass Destruction (WMD) and their Delivery Systems (Prohibition of Unlawful Activities) Act, 2005 (Annex III of this Master Direction).
9. APPOINTMENT OF THE PRINCIPAL OFFICER (PO) / MONEY LAUNDERING REPORTING OFFICER (MLRO) & DESIGNATED DIRECTOR.
Principal Officer:
Designation of Principal Officer: A senior official of the Company, not below the rank of General Manager or immediately below the level of MD or CEO, will be designated as the Principal Officer of the Company by the Board of Directors. The Principal Officer will be responsible for overseeing and managing the Anti-Money Laundering (AML) Implementation, ensuring compliance with Regulatory Directions, and managing and mitigating AML risks.
Explanation: The term “Senior Official” mean and include an official of the Company not below the rank of General Manager or immediately below the level of MD or CEO.
Communication of Principal Officer Information: The name, designation, contact details and address of the Principal Officer will also be communicated to the Financial Intelligence Unit of India (FIU-IND) , National Housing Bank (NHB) and the Reserve Bank of India (RBI).
Key Responsibilities of the Principal Officer (PO)/ MLRO
- The PO will develop effective AML programs, including programs to provide AML training to business personnel.
- The PO will ensure to assist the respective business heads to assess the ways in which products (existing or under development) may be abused by money launderers.
- The PO will be capable of assisting the respective business heads to evaluate whether any activity is suspicious under the Ummeed standard and under any applicable local law.
- The PO will be monitoring the implementation of the company’s KYC/AML policy.
- The PO will be reporting transactions and sharing information as required under the law.
- The PO will be maintaining liaison with regulatory authorities.
- The PO will ensure submission of periodical reports to the top Management/Board.
- The PO will be organizing continual training of employees to make them aware and keep them up to date with requirements of PMLA and any amendments thereto.
- The PO will review all reports required to be submitted to regulatory/law enforcement authorities.
- The PO will be reporting to the FIU-IND.
- The PO will be monitoring compliance and exception reporting.
Designated Director:
Designation of Designated Director: The Company will nominate a Designated Director to ensure overall compliance with Chapter IV of the Prevention of Money Laundering Act (PMLA) and the Rules. The Designated Director will be nominated by the Board and shall not be the Principal Officer. The Board may consider candidature of MD, WTD, or CEO of the company, for appointing anyone of them as the Designated Director for reporting purposes and the same shall be communicated to the FIU or other regulatory institutions (RBI & NHB).
Communication of Designated Director Information: The name, designation, address, and contact details of the Designated Director will be communicated to the FIU-IND, NHB and the RBI.
Key Responsibilities of the Designated Director
- Review reports to be submitted to the FIU.
- Ensure compliance with issued guidelines.
- Attend meetings and conferences organized by the FIU or other regulatory bodies.
10. Reporting to Financial Intelligence Unit-India (FIU-IND)
Section 12 of PMLA requires, every housing finance company to report information of transaction referred to in clause (a) of sub-section (1) of Section 12 read with Rule 3 of the PML Rules relating to cash and suspicious transactions etc. to the Director, Financial Intelligence Unit-India (FIU-IND). Company shall furnish to the Director, Financial Intelligence Unit-India (FIU-IND), information referred to in Rule 3 of the PML (Maintenance of Records) Rules, 2005 in terms of Rule 7 thereof.
The reporting formats and comprehensive reporting format guide, prescribed/ released by FIU-IND and Report Generation Utility and Report Validation Utility developed to assist reporting entities in the preparation of prescribed reports shall be taken note of. The editable electronic utilities to file electronic Cash Transaction Reports (CTR) / Suspicious Transaction Reports (STR) which FIU-IND has placed on its website shall be made use of by the Company, till installation /adoption of suitable technological tools for extracting CTR/STR from live transaction data.
The Principal Officers shall make suitable arrangement to cull out the transaction details from branches which are not yet computerized and to feed the data into an electronic file with the help of the editable electronic utilities of CTR/STR as have been made available by FIU-IND on its website “http://fiuindia.gov.in”.
The Principal Officer shall ensure there is no delay in reporting a transaction as the delay of each day in rectifying a mis-represented transaction beyond the time limit as specified in the Rule shall be constituted as a separate violation.
The company shall not put any restriction on operations in the accounts where an STR has been filed and ensure that there is no tipping off by officials of the Company to the customer at any level. Officials keep the fact of furnishing of STR strictly confidential.
Robust software, throwing alerts when the transactions are inconsistent with risk categorization and updated profile of the customers shall be put in to use as a part of effective identification and reporting of suspicious transactions.
11. Reporting of Cash Transactions
- I. Cash Transaction Report- In accordance with the requirements under PMLA, the Company will file Cash Transaction Report (CTR) for each month to FIU -IND by 15 days of the succeeding month. CTR should include the following:
- all cash transactions of the value of more than rupees ten lakh or its equivalent in foreign currency;
- all series of cash transactions integrally connected to each other which have been valued below rupees ten lakh or its equivalent in foreign currency where such series of transactions have taken place within a month and the aggregate value of such transactions exceeds rupees ten lakh
- Counterfeit Currency Report - In addition to the above, all cash transactions, where forged or counterfeit Indian currency notes have been used as genuine will also be reported by the Company to FIU-IND as Counterfeit Currency Report (CCR) not later than seven working days from the date of occurrence of such transactions. These cash transactions should also include transactions where forgery of valuable security or documents has taken place.
- According to the revised Master Directions, effective from February 17, 2021, the company shall ensure to furnish a quarterly report to the NHB along the lines of Annexure-VI (copy enclosed) of the Reserve Bank of India (RBI) Master Circular-Detection and Impounding of Counterfeit Notes dated July 01, 2020, as amended from time to time, and similar instructions issued by the Bank. The above report should be furnished to the NHB within 7 days of the end of the quarter. A "nil" report should be sent in case no counterfeit has been detected during the quarter. (Refer to instructions under para 108.2 Chapter XIV – Miscellaneous instructions of the Master Directions.)
12. Suspicious Transactions Monitoring and Reporting-
In accordance with suspicious transactions monitoring and reporting laws the Company will establish risk-based procedures and manual processes or automated systems, for monitoring transactions to identify, investigate, and escalate potentially suspicious activity; report suspicious activity to appropriate government authorities, and take other appropriate action, such as terminating a customer relationship. The Company’s Principal Officer is charged with the responsibility of coordinating and overseeing suspicious activity monitoring, including making reports to the FIU -IND.
The Company will file the Suspicious Transaction Report (STR) to FIU -IND within 7 days of arriving at a conclusion that any transaction, whether cash or non-cash, or a series of transactions integrally connected are of suspicious nature. The Principal Officer should record his reasons for treating any transaction or a series of transactions as suspicious. It should be ensured that there is no undue delay in arriving at such a conclusion once a suspicious transaction report is received from a branch or any other office. The Principal Officer will be responsible for timely submission of CTR and STR to FIU-IND.
An illustrative list of Suspicious Transactions is enclosed as Annexure II of the Policy.
Confidentiality and Prohibition against disclosing Suspicious Activity Investigations and Reports- The Company will maintain utmost confidentiality in investigating suspicious activities and while reporting STR to the FIU-IND/ higher authorities. A Company Employee shall hold in strict confidence and not disclose to any third party a STR, information from or related to a STR, or the fact that a STR has been filed. Internally, only Employees with a need to know, such as investigators, attorneys involved in the investigation, Employees who must review and approve the STR, and auditors, can have access to STR related information.
The Company will ensure that the customer is not tipped off on the STRs made by them to FIU- IND.
However, the Company may share the information pertaining to the customers with the statutory/ regulatory bodies and other organizations such as banks, credit bureaus, income tax authorities, local government authorities etc.
13. Central KYC Records Registry (CKYCR) - and reporting requirements under Foreign Account Tax Compliance Act (FATCA)/ Common Reporting Standards (CRS)
The company will upload the Know Your Customer (KYC) data with CERSAI in respect of new individual accounts (opened w.e.f. Nov 01, 2016). KYC information will be captured for sharing with the Central KYC Record Registry in the manner mentioned in the “Prevention of Money-Laundering (Maintenance of Records) Rules, 2005” (and amendments thereto). The Company shall keep the KYC data ready in digital format in the templates advised by NHB/ RBI of all our existing clients. The Loan Application forms of Retail and Commercial Credit clients may be revised, if required, to capture the data of clients in NHB/ RBI prescribed template in future. The existing clients be contacted to fill up the gaps, if any. The KYC data will be shared with CKYCR as and when advised by NHB. The company shall also take all steps to comply with the FATCA and CRS reporting requirements, as advised by Regulatory Authorities from time to time.
14. Record-keeping Requirements
14.1 The Company shall introduce a system of maintaining proper record of transactions as required with reference to provisions of PML Act and Rules, as mentioned below:
- a. To maintain all necessary records of transactions between the Company and the customer, both domestic and international, for at least five years from the date of transaction;
- b. To make available the identification records and transaction data to the competent authorities upon request [Whereas, "records pertaining to the identification", “identification records”, etc., shall include updated records of the identification data, account files, business correspondence and results of any analysis undertaken.] ;
- c. To introduce a system of maintaining proper record of transactions prescribed under Rule 3 of Prevention of Money Laundering (Maintenance of Records) Rules, 2005 (PML Rules, 2005);
- d. maintain records of the identity and address of their customer, and records in respect of transactions referred to in Rule 3 in hard or soft format.
- e. all cash transactions of the value of more than rupees ten lakh or its equivalent in foreign currency;
- f. all series of cash transactions integrally connected to each other which have been valued below rupees ten lakh or its equivalent in foreign currency where such series of transactions have taken place within a month and the aggregate value of such transactions exceeds rupees ten lakh;
- g. all transactions involving receipts by non-profit organizations of rupees ten lakhs or its equivalent in foreign currency;
- h. all cash transactions where forged or counterfeit currency notes or bank notes have been used as genuine and where any forgery of a valuable security or a document has taken place facilitating the transactions; and
- i. all suspicious transactions whether or not made in cash and by way of as mentioned in the Rule 3(1) (D).
- j. records of the identity of all clients of the Company shall be maintained for a period of eight years from the date of cessation of transactions between the clients and the Company.
14.2 Records to contain the specified information- The above records, in terms with Rule 3 of the PMLA Rules, to contain the following information:
- a. the nature of the transactions;
- b. the amount of the transaction and the currency in which it was denominated;
- c. the date on which the transaction was conducted; and
- d. the parties to the transaction.
14.3 The Company shall take appropriate steps to evolve a system for proper maintenance and preservation of information in a manner that allows data to be retrieved easily and quickly whenever required or when requested by the competent authorities.
15. HIRING & TRAINING OF EMPLOYEES AND CUSTOMER EDUCATION
At our Company, we understand that implementing KYC procedures may require us to seek personal information from our customers that they may not have been asked for before. This can sometimes lead to questioning from customers about the purpose of collecting such information. To address this, we prioritize educating our customers about the importance and objectives of our KYC procedures to alleviate any concerns they may have.
Employees: To ensure that we have the right people on our team, we have put in place a rigorous screening process as part of our hiring process, including a Know Your Employee/Staff policy. We also provide training on KYC/AML requirements and procedures to all employees, with a focus on different areas such as frontline staff, compliance staff, and those dealing with new customers. We make sure our staff is equipped to handle issues that may arise due to lack of customer education, and we have a dedicated team that is well-versed in our KYC/AML policies to ensure compliance.
To educate our customers and build their trust, we provide literature containing all relevant information about KYC and AML measures, which can be accessed directly or through our website. Our staff is always available to promptly explain why specific information is being requested and address any concerns or questions.
We believe in maintaining high standards of integrity and ethics, effective communication skills, and the ability to keep up with changing regulations for our employees. Therefore, we strive to develop an environment that fosters open communication and high integrity amongst our staff. Additionally, we have an ongoing employee training program that ensures our staff is adequately trained in our KYC/AML/CFT policies. The training has a different focus for frontline staff, compliance staff, and staff dealing with new customers. The front desk staff is specially trained to handle issues that may arise due to lack of customer education. We also ensure that our audit function is staffed with personnel who are well-versed in our KYC/AML/CFT policies and related issues for proper compliance.
Customers: We will provide our customers with literature that contains all relevant information regarding our KYC and AML measures, which can be made available directly or through our website. Our staff are trained and instructed to promptly attend to any queries or concerns our customers may have and explain the reasons for seeking specific information.
16. AUDIT OF THE KYC & AML PROGRAM AND OTHER REPORTING REQUIREMENTS
To provide reasonable assurance that its AML Program is functioning effectively, an audit of its AML Program will be done as part of the internal audit of the Company. The audit will be conducted on a regular basis. The audit will include testing of the effectiveness of elements of the AML Program, compliance with applicable AML Laws, and the Company’s related procedures.
The audit findings and compliance thereof will be put up before the Audit Committee of the Board on quarterly intervals till closure of audit findings.
The Company shall develop a system of audit for the IT framework and compliance with Rules 114F, 114G and 114H of Income Tax Rules.
The books of accounts of persons authorised by the Company, including brokers/ DSAs or the like, so far as they relate to brokerage functions of the company, shall be made available for audit and inspection whenever required.
[Unique Customer Identification Code (UCIC)/ Customer ID (Cust ID):
To maintain a record of our individual customers, we will allot a Unique Customer Identification Code (UCIC) {i.e., Customer ID (Cust ID)} while entering into new relationships with them. Existing individual customers will also be allotted the UCIC.
In case of walk-in/occasional customers, we may not issue UCICs, provided we can identify such customers with frequent transactions and ensure that they are allotted UCICs.
Secrecy Obligations and Sharing of Information:
To maintain the confidentiality of customer information, we will maintain secrecy regarding the customer information that arises out of the contractual relationship between the customer and our Company.
Information collected from customers for the purpose of opening an account will be treated as confidential, and the details thereof will not be divulged for the purpose of cross-selling or for any other purpose without the express permission of the customer.
While considering requests for data/information from the Government and other agencies, we will ensure that the information being sought is not of such a nature as to violate the provisions of laws relating to secrecy in transactions. The exceptions to the above shall be as under:
- a. Where disclosure is under compulsion of law
- b. Where there is a duty to the public to disclose,
- c. the interest of RE requires disclosure and
- d. Where the disclosure is made with the express or implied consent of the customer.
Introduction of new Products/ Technologies
At our company, we recognize that the introduction of new products and technologies can introduce new risks that may not have been present before. As such, we will adopt a risk-based approach to identify and assess ML/TF risks associated with the development of new products and business practices, as well as the use of new or developing technologies. This means that we will analyze the potential risks associated with each new product or technology, and tailor our approach to managing those risks based on their severity.
In addition, we will conduct ML/TF risk assessments before introducing any new product, practice, service, or technology to identify any potential risks and take steps to mitigate them. To manage and mitigate the risks associated with the introduction of new products and technologies, we will adopt appropriate Enhanced Due Diligence (EDD) measures and transaction monitoring. By doing so, we will ensure that we are effectively managing any potential ML/TF risks and protecting our business and our customers.]
17. CONSEQUENCES OF NON-COMPLIANCE
Failure to adhere to this Policy, the Company’s AML Program, shall subject the Company’s employees to disciplinary action, up to and including, termination of employment.
Updated Master Direction - Know Your Customer (KYC) Direction, 2016 of RBI shall be referred to for any policy gaps /better interpretation.
Annexure I
A. CUSTOMER IDENTIFICATION MINIMUM REQUIREMENTS- INDICATIVE GUIDELINES
Trust/Nominee or Fiduciary Accounts
There exists the possibility that trust/nominee or fiduciary accounts can be used to circumvent the customer identification procedures. The Company will determine whether the customer is acting on behalf of another person as trustee/nominee or any other intermediary. If so, The Company will insist on receipt of satisfactory evidence of the identity of the intermediaries and of the persons on whose behalf they are acting, as also obtain details of the nature of the trust or other arrangements in place. While opening an account for a trust, The Company will take reasonable precautions to verify the identity of the trustees and the settlors of trust (including any person settling assets into the trust), grantors, protectors, beneficiaries and signatories. In the case of a 'foundation', steps should be taken to verify the founder managers/ directors and the beneficiaries, if defined.
For opening an account of a trust, one certified copy of each of the following documents or the equivalent e-documents shall be obtained:
- a. Registration certificate;
- b. Trust deed;
- c. Permanent Account Number or Form No.60 of the trust;
- d. one copy of an OVD containing details of identity and address, one recent photograph and Permanent Account Numbers of Form 60 of the beneficial owner, managers, officers or employees, as the case may be, holding an attorney to transact on its behalf.
Accounts of companies and firms
The Company will be vigilant against business entities being used by individuals as a ’front’ for maintaining accounts with banks or REs. The Company will examine the control structure of the entity, determine the source of funds and identify the natural persons who have a controlling interest and who comprise the management. These requirements may be moderated according to the risk perception e.g. in the case of a public company it will not be necessary to identify all the shareholders.
For opening an account of a company/ firm, one certified copy of each of the following documents or the equivalent e-documents shall be obtained:
- a. Certificate of incorporation/ Registration Certificate;
- b. Memorandum and Articles of Association / Partnership deed;
- c. Permanent Account Number of the company/ firm;
- d. A resolution from the Board of Directors and/ or power of attorney granted to its managers, officers, Partner or employees to transact on its behalf;
- e. one copy of an OVD containing details of identity and address, one recent photograph and Permanent Account Numbers of Form 60 of the beneficial owner, the managers, officers, Partners or employees, as the case may be, holding an attorney to transact on the company’s/ Partnership behalf.
Client accounts opened by professional intermediaries
When the Company has knowledge or reason to believe that the client account opened by a professional intermediary is on behalf of a single client, that client will be identified as per procedure listed above or as per this policy.
Accounts of Politically Exposed Persons (PEPs) resident outside India
Politically exposed persons are individuals who are or have been entrusted with prominent public functions in a foreign country, e.g., Heads of States or of Governments, senior politicians, senior government/judicial/military officers, senior executives of state-owned corporations, important political party officials, etc. The Company will gather sufficient information on any person/customer of this category intending to establish a relationship and check all the information available on the person in the public domain. The Company will verify the identity of the person and seek information about the sources of funds before accepting the PEP as a customer. The decision to open an account for PEP will be taken by a Zonal Credit Manager level or minimum grade of General Manager. The above norms may also be applied to the accounts of the family members or close relatives of PEPs.
Accounts of non-face-to-face customers
In the case of non-face-to-face customers, apart from applying the usual customer identification procedures, there will be specific and adequate procedures to mitigate the higher risk involved. Certification of all the documents presented will be insisted upon and, if necessary, additional documents will be called for as deems required by the Company for effective CDD and Identification per applicable RBI directions or PMLA or Rules made thereunder.
B. INDICATIVE LIST OF THE NATURE AND TYPE OF DOCUMENTS/ INFORMATION
For purpose of this policy “Officially Valid Document” (OVD) shall means:
- a. Passport;
- b. Driving License;
- c. Proof of Possession of Aadhaar Number;
- d. Voter's Identity Card issued by the Election Commission of India;
- e. Job card issued by NREGA duly signed by an officer of the State Government;
- f. Letter issued by the National Population Register containing details of name and address;
Provided that:
- i.) Where the customer submits his proof of possession of Aadhaar number as an OVD, he may submit it in such form as are issued by the Unique Identification Authority of India;
- ii.) Where the OVD furnished by the customer does not have updated address, the following documents or the equivalent e-documents thereof shall be deemed to be OVDs for the limited purpose of proof of address:
- a. Utility bill which is not more than two months old of any service provider (electricity, telephone, post-paid mobile phone, piped gas, water bill);
- b. property or Municipal tax receipt;
- c. pension or family pension payment orders (PPOs) issued to retired employees by Government Departments or Public Sector Undertakings, if they contain the address;
- d. letter of allotment of accommodation from employer issued by State Government or Central Government Departments, statutory or regulatory bodies, public sector undertakings, scheduled commercial banks, financial institutions and listed companies and leave and license agreements with such employers allotting official accommodation;
- iii.) the customer shall submit OVD with current address within a period of three months of submitting the documents specified at ’b’ above
- iv.) where its customer submits a proof of possession of Aadhaar Number containing Aadhaar Number, ensure that such customer redacts or blacks out his Aadhaar number through appropriate means.
Explanation: For the purpose of this clause, a document shall be deemed to be an OVD even if there is a change in the name subsequent to its issuance provided it is supported by a marriage certificate issued by the State Government or Gazette notification, indicating such a change of name.
A. KYC DOCUMENTS LIST
Parameters |
Features |
KYC - Know Your Company |
- Norms issued by our regulators (both RBI & NHB) are to be followed as applicable from time to time.
- The KYC to be completed for all borrowers /co-borrowers.
|
KYC-Photograph |
- Latest Passport Size colored photographs
- Self-attested with cross signatures (by all applicants)
|
KYC - Identity proof (Any one with photo for Individual). |
For Individuals:
- PAN Card or Form 60
- Valid Passport (not expired)
- Aadhar Card
- Driving License
- Voters ID Card
- Job card issued by NREGA duly signed by an officer of the State Government
- Letter issued by the National Population Register containing details of name and address
- Identity Card /Certificate with Applicant’s Photograph issued by Government Body/ Regulatory or Statutory Authority/ Public Sector Undertaking/ Scheduled Commercial Banks and Public Financial Institution
- Photo debit card / Bank account statement 1st Page/ Passbook with Photographs issued by a Bank & Bank Stamp on the Photo
- Valid Arms license issued by Central / State government / Union Territory with Name, Photograph and signature (Identity Proof)
- Letter issued by a Gazetted Officer with a duly attested photograph of the Applicant
For Non Individuals/business entities :
- PAN or Form 60
- Shops & Establishment Certificate /Trade License Certificate
- MSME Registration Certificate
- GST Registration Certificate
- Registered Partnership Deed (for firms) / Memorandum of Association (MOA) for companies
- Export-Import Code Certificate
- Professional qualification Certificate and Degree Certificate for professionals with photo (For Proprietorship Firms)
- Last available Income Tax Assessment order
- Latest available Wealth Tax Assessment order
- Certificate Issued by SEZ, STP, EHTP, DTA and EPZ in the name of the entity mentioning the address allotted
- Any other certificate of registration issued by professional bodies such as ICAI / ICSI / ICWAI in the name of the firm
- TDS Certificate in the name of entity issued by Scheduled Commercial Banks, FI & FIIs, MFs, PSUs (Central & State), Govt. Dept., Local Self Government (Municipal Corporation etc.) and Government Bodies
- Factory Registration Certificate
|
Date of Birth Proof (any one) |
- Valid Passport (not expired)
- PAN Card
- Aadhar Card
- Voter ID Card clearly mentioning the exact date of birth
- Driving License
- Birth Certificate (issued by Government body)
- School Leaving certificate (10th)
- Employee ID Card clearly mentioning the exact date of birth (only for PSU/Govt. employees)
- Letter issued by a Gazetted Officer with a duly attested photograph of the person
- High School Mark Sheet/ High School Passing Certificate
|
KYC- Residence / Office Address proof (any one in addition to Identity Proof) |
For Individuals (Following OVD Documents can be collected)
- Valid Passport (not expired)
- Driving License
- Voters ID card
- Aadhar Card
- Job card issued by NREGA duly signed by an officer of the State Government
- Letter issued by the National Population Register containing details of name and address
Following Documents can also be considered as an Address Proof for “Low Risk” Customers with condition that the Officially Valid Documents (OVD) listed above with updated address shall be collected within 3 (three) months of submission:
- Ration Card
- Utility bill (Electricity, Landline Telephone, Post Paid Mobile, Piped Gas line, Water) from latest 2 (two) months from date of application.)
- Rent agreement on stamp Paper subject to positive Residence FI (at the same address as mentioned on rent agreement (registered or notarized)
- Bank Statements 1st Page/ Passbook reflecting address of borrowers of any commercial bank (Nationalized / Scheduled commercial bank)
- Sale Deed of the property, if owned
- Certificate issued by ward officer, maintaining election roll certifying address of the applicant
- Property tax bill / receipt
- Letter issued by a Gazetted Officer with a duly attested photograph of the person
Non-Individuals / Business entities
- Shops & Establishment Certificate
- Trade License Certificate
- MSME/ SSI Registration Certificate
- GST Registration
- Registered Partnership Deed (for firms) with business address mentioned
- Certificate of Incorporation issued by MCA/Memorandum of Association (MOA) for companies
- Export-Import Code Certificate
- Factory Registration Certificate
- Letter from existing banker (restricted to a Scheduled Commercial Bank & Scheduled Co-operative Banks). Letter has to be obtained in original on Bank’s letterhead paper bearing the authorizing officers name and signature along with the stamp of the bank. The verification done should be for the name, photograph and address of the individual.
- Letter issued by a gazette officer with a duly attested photograph of the person
|
KYC - Constitution documents |
Partnership firm:
- Partnership Deed- certified by all partners that it is the latest deed as on date.
- Dissolution Deed- certified by current partners that it is the latest deed as on date.
- License issued by the Registering authority like Certificate of Practice issued by ICAI, ICWAI, Institute of Company Secretaries of India, Indian Medical Council, Food and Drug Control Authorities, etc.
Sole Proprietary Firms
If the Proprietorship firm is party to the agreement at least any one of the below documents needs to be mandatorily collected from the firm and a positive FI at the address of proprietary concern is mandatorily required.
[“Registration certificate” as a proof of business/ activity in the name of the proprietary firm includes “Udyam Registration Certificate (URC) issued by the Government”.]
- Proof of the name, address and activity of the concern, like registration certificate (in the case of a registered concern), certificate/license issued by the Municipal authorities under Shop & Establishment Act, sales and income tax returns, GST certificate, certificate / registration document issued by Sales Tax / Service Tax / Professional Tax authorities, License issued by the Registering authority like Certificate of Practice issued by Institute of Chartered Accountants of India, Institute of Cost Accountants of India, Institute of Company Secretaries of India, Indian Medical Council, Food and Drug Control Authorities, etc.
- Any registration / licensing document issued in the name of the proprietary concern by the Central Government or State Government Authority / Department. NBFCs/RNBCs may also accept IEC (Importer Exporter Code) issued to the proprietary concern by the office of DGFT as an identity document for opening of account.
- The complete Income Tax return (not just the acknowledgement) in the name of the sole proprietor or where the firm's income is reflected, duly authenticated/ acknowledged by the Income Tax Authorities.
- Utility bills such as electricity, water, and landline telephone bills in the name of the proprietary concern.
However, in case the FI is not done at firm’s address then we need to collect two documents out of above-mentioned documents instead of one document as KYC for the sole proprietorship firm.
|
Signature Verification |
Signature Verification is mandatory for all applicants or signatories on behalf of applicants like Partnership firm/Pvt Ltd companies.
Any one of the following to be considered for signature verification:
- Banker’s sign. Verification
- PAN card
- Driving license with photograph & signature.
- Ration Card with the signature of the customer
- Debit Card bearing the signature (embossed on the front) of the applicant and should be the same as in the Application Form.
- Copy of registered sales deed bearing signature of the applicant / co applicant / guarantor / authorised signatory as the case may be.
- Employee’s Identity Card provided such identity card bears the signature of the employee (only employees of PSU, Scheduled Commercial banks, Insurance Companies, State & Central government)
Signature Verification to be taken for borrower/co-borrower for PDC / SPDC issued
Banker’s Letter (Banker Verification) - Letter from existing banker (restricted to a Scheduled Commercial Bank & & Scheduled Co- operative Banks). Letter has to be obtained in original on Bank’s letterhead or on plain paper with the seal of the bank affixed on it bearing the authorizing officers name and signature along with the stamp of the bank. The verification done should be for the name and signature of the individual
In cases where the co applicant / guarantor is illiterate and is not able to furnish any one of the stipulated signature verification documents, a memorandum duly signed / thumb impression affixed by an illiterate person as per the format defined may be accepted as valid signature verification document. {An officer of the Company shall certify under his/ her signature that the Applicant/ Co-applicant) has affixed his/ her signature or thumb impression in his/ her presence.}
A declaration (signed in front of Employee) for sign verification for Co-applicants with no income & who are also not property owner can be accepted.
|
B. AMLA Documents List
As per norms prescribed under the “Anti Money Laundering Act & Other Applicable Rules”, we have divided our borrower’s under below mentioned two categories:
- a. “HIGH RISK”- Applicant (whose income is considered) has a net worth of more than Rs 100 lakhs or they are HUF/Trust/Society.
- b. “LOW RISK” —Applicant (whose income is considered) has a net worth of less than Rs 100 lakhs.
*Applicant whose income is considered need to sign & submit a declaration/Undertaking confirming his/her net worth.
AMLA requirement are in addition to the KYC requirement and are applicable for all loans — we need to collect any one or more of the following documents to satisfy both ID proof and Address Proof
HIGH RISK
- a. Passport (unexpired)
- b. Voters’ Identity Card
- c. UID (AADHAR card)
- d. Job card issued by NREGA duly signed by an officer of the State Government,
- e. Valid Driving License (unexpired)
- f. PAN Card
We need to collect at least one or more of the above mentioned six documents for AMLA which provides complete ADDRESS and ID PROOF of any one of the APPLICANTS. For example, if PAN is collected for ID, another one of the six dox will be required as support for address proof. In case the Applicant or Co-applicant is/ is not individual but firm/Company/trust, then similar documents are required for the authorized signatory. ADDRESS documents for AMLA purpose may be for any address i.e., present, communication or permanent address (without impacting our KYC requirements).
Further we need relationship proof with other co applicant’s so that we don’t need their individual AMLA document, if the relationship does not exist than we need to follow the above-mentioned guideline for all applicants individually.
LOW RISK
- a. Passport (unexpired)
- b. Voters’ Identity Card
- c. UID (AADHAR card)
- d. Job card issued by NREGA duly signed by an officer of the State Government,
- e. Valid Driving License (unexpired)
- f. PAN Card
- g. Identity card with applicant's Photograph issued by Central/State Government Departments, Statutory/Regulatory Authorities, Public Sector Undertakings, Scheduled Commercial Banks, and Public Financial Institutions
- h. Letter issued by a Gazetted Officer, with a duly attested photograph of the person.
In addition to the above-mentioned documents for LOW-RISK Customers, the below mentioned documents(s.no 9-14) can also be taken as Officially Valid document as Address Proof for only LOW Risk Customer.
- a. Utility bill which is not more than two months old of any service provider (electricity, telephone, postpaid mobile phone, piped gas (government supply), water bill);
- b. Property or Municipal Tax receipt;
- c. Bank account or Post Office savings bank account statement;
- d. Pension or family pension payment orders (PPOs) issued to retired employees by Government Departments or Public Sector Undertakings if they contain the address.
- e. Letter of allotment of accommodation from employer issued by State or Central Government departments, statutory or regulatory bodies, public sector undertakings, scheduled commercial banks, financial institutions, and listed companies. Similarly, leave and license agreements with such employers allotting official accommodation; and
- f. Documents issued by Government departments of foreign jurisdictions and letter issued by Foreign Embassy or Mission in India.
We need to collect at least one or more of the above mentioned eight documents for AMLA which provides complete ADDRESS and ID PROOF of any one of the APPLICANTS. For example, if PAN is collected for ID, another one of the eight dox will be required as support for address proof. In case the Applicant or Co-applicant is/are not individual but firm/Company/trust, then similar documents are required for the authorized signatory. ADDRESS documents for AMLA purpose may be for any address i.e. present, communication or permanent address (without impacting our KYC requirements).
However, in all cases where Address Proof is taken from document no. 9-14 ; in all such cases a second proof for ID needs to be taken as listed in document no.1-8)
c. Digital KYC Process
For the purpose of this section:
“Digital KYC” means the capturing live photo of the customer and officially valid document or the proof of possession of Aadhaar, where offline verification cannot be carried out, along with the latitude and longitude of the location where such live photo is being taken by an authorised officer of our company as per the provisions contained in the Act.
“Equivalent e-document” means an electronic equivalent of a document, issued by the issuing authority of such document with its valid digital signature including documents issued to the digital locker account of the customer as per rule 9 of the Information Technology (Preservation and Retention of Information by Intermediaries Providing Digital Locker Facilities) Rules, 2016.
“Video based Customer Identification Process (V-CIP)”: a method of customer identification by an official of the Company by undertaking seamless, secure, real-time, consent based audio-visual interaction with the customer to obtain identification information including the documents required for CDD purpose, and to ascertain the veracity of the information furnished by the customer. Such process shall be treated as face-to-face process for the purpose of this Policy.
In case a customer apply for digital KYC process then:
- a. The original OVD is required to be presented.
- b. Live photograph of the customer shall be taken and the same photograph is embedded in the Customer Application Form (CAF).
- c. Other guidelines as per the directions of RBI are followed while capturing the Photograph and OVD documents.
- d. OTP validation, shall be carried out for successful singing of authorized officer on the declaration.
- e. Thereafter, the Application shall give information about the completion of the process and submission of activation request and also generate the transaction-id/reference-id number of the process. Transaction-id/reference-id shall be intimated to the customer for future reference. Verification shall be done by our officer and CAF shall be digitally signed.
Annexure II
ILLUSTRATIVE LIST OF SUSPICIOUS TRANSACTIONS PERTAINING TO HOUSING LOANS:
- a. Customer is reluctant to provide information, data, documents;
- b. Submission of false documents, data, purpose of loan, details of accounts;
- c. Refuses to furnish details of source of funds by which initial contribution is made, sources of funds is doubtful etc.;
- d. Reluctant to meet in person, represents through a third party/Power of Attorney holder without sufficient reasons;
- e. Approaches a branch/office of a HFC, which is away from the customer’s residential or business address provided in the loan application, when there is HFC branch/office nearer to the given address;
- f. Unable to explain or satisfy the numerous transfers in the statement of account/ multiple accounts;
- g. Initial contribution made through unrelated third party accounts without proper justification;
- h. Availing a top-up loan and/or equity loan, without proper justification of the end use of the loan amount;
- i. Suggesting dubious means for the sanction of loan;
- j. Where transactions do not make economic sense;
- k. There are reasonable doubts over the real beneficiary of the loan and the flat to be purchased;
- l. Encashment of loan amount by opening a fictitious bank account;
- m. Applying for a loan knowing fully well that the property/dwelling unit to be financed has been funded earlier and that the same is outstanding;
- n. Sale consideration stated in the agreement for sale is abnormally higher/lower than what is prevailing in the area of purchase;
- o. Multiple funding of the same property/dwelling unit;
- p. Request for payment made in favour of a third party who has no relation to the transaction;
- q. Usage of loan amount by the customer in connivance with the vendor/builder/developer/broker/agent etc. and using the same for a purpose other than what has been stipulated.
- r. Multiple funding / financing involving NGO / Charitable Organisation / Small / Medium Establishments (SMEs) / Self Help Groups (SHGs) / Micro Finance Groups (MFGs)
- s. Frequent requests for change of address;
- t. Overpayment of instalments with a request to refund the overpaid amount;
- u. Legal structure of client has been altered numerous times (name changes, transfer of ownership, change of corporate seat);
- v. Unnecessarily complex client structure;
- w. Individual or classes of transactions that take place outside the established business profile, and expected activities/ transaction unclear;
- x. Unusual financial transactions with unknown source;
- y. Payments received from un-associated or unknown third parties and payments for fees in cash where this would not be a typical method of payment;
- z. Investment in real estate at a higher/ lower price than expected.
- aa. Clients incorporated in countries that permit bearer shares.
Illustrative List of Suspicious Transactions pertaining to Builder/ Project Loans:
- a. Builder approaching the HFC for a small loan compared to the total cost of the project;
- b. Builder is unable to explain the sources of funding for the project;
- c. Approvals/sanctions from various authorities are proved to be fake;
- d. Management appears to be acting according to instructions of unknown or inappropriate person(s);
- e. Employees numbers or structure out of keeping with size or nature of the business (for instance the turnover of a company is unreasonably high considering the number of employees and assets used);
- f. Clients with multijurisdictional operations that do not have adequate centralized corporate oversight;
- g. Advice on the setting up of legal arrangements, which may be used to obscure ownership or real economic purpose (including setting up of trusts, companies or change of name/corporate seat or other complex group structures);
- h. Entities with a high level of transactions in cash or readily transferable assets, among which illegitimate funds could be obscured.