Cybersecurity and AML

In response to increasing risks related to cybersecurity, money laundering, and similar matters, we offer support for the overall security frameworks and services underpinning system infrastructure, as well as online identity verification and authentication services and solutions involving online KYC tools

Market Developments

The rapid advance of digitalization in financial services has heightened cybersecurity concerns. Measures to address cybersecurity threats, decisions around the choice of security framework to adopt and the response to security incidents all need to be considered in the context of applicable law.

Anti-money-laundering regulations, such as the Act on Prevention of Transfer of Criminal Proceeds, apply not only to banks and traditional financial institutions but also to Fintech operators in the context of regulated funds transfer services and cryptoasset exchange services. Accordingly, integrating the required “know your customer” (KYC) processes into system designs is important. In particular, with regulatory reforms now permitting online-based KYC (eKYC) mechanisms, there will be greater impetus to the introduction of more convenient KYC processes. Risk-based AML/CFT (anti-money laundering/combating the financing of terrorism) frameworks have also become mandatory in recent years, requiring regulated entities to enhance IT systems to identify, evaluate and mitigate risk, conduct ongoing customer management and detect and give notice of suspicious transactions.

Our Services

The firm provides advice on legal compliance for the introduction of eKYC and other KYC mechanisms as well as the establishment of frameworks in compliance with AML guidelines. The firm gives practical advice tailored to the client`s business, striking a balance among considerations including type of service, nature of usable data, the status of everchanging threats and service convenience. We also have outstanding experience in supporting multifaceted responses to incidents, including in the context of cyber attacks and cases involving improper use of financial services.