On occasion, documents produced might not be genuine and may appear to be forged, tampered with, cancelled or stolen. In these instances examples of what your AML/CTF program might cover include any:

• procedures put in place to establish if the documents are genuine
• controls or testing you will include determining if documents are genuine
• risk-based procedures you have in place to use document authentication services
• procedures to determine whether and how to confirm the KYC information is correct, for example by independently contacting the customer to establish they are who they claim to be.

As with Part A of your AML/CTF program, the procedures your organisation puts in place should be appropriate to the size, nature and complexity of your business.