Lead magnet

Compliance KYC/AML Checklist cho Operators

20 checkpoint KYC/AML và responsible gambling cho betting operators tại SEA. Từ verification tiers đến incident response.

Preview

Xem trước 5 mục đầu

KYC Policy Document

Viết policy rõ ràng: verification tiers, triggers, escalation process, document requirements per tier.

Tier 1 — Registration

Thu thập: email, phone, date of birth. Verify age ≥18. Không cho deposit trước khi confirm age.

Tier 2 — First Deposit

Yêu cầu: CCCD/Passport scan + selfie match. Verify trong 24h hoặc freeze account.

Tier 3 — High Value

Trigger: deposit >100M VND hoặc withdrawal >50M. Yêu cầu: source of funds declaration.

AML Transaction Monitoring

Setup rules: unusual deposit patterns, rapid deposit-withdraw, multiple payment methods, structuring.

PEP & Sanctions Screening

Screen tất cả customers against PEP lists, UN/EU/OFAC sanctions, adverse media. Re-screen quarterly.

Suspicious Activity Report (SAR)

Quy trình: ai report, report cho ai (FIU/SBV), timeline (72h), documentation requirements.

Record Retention

Lưu trữ KYC documents + transaction records tối thiểu 5 năm sau khi account đóng.

Responsible Gambling — Self-exclusion

Implement: temporary (24h/7d/30d) và permanent self-exclusion. Không gửi marketing khi excluded.

#10

Responsible Gambling — Deposit Limits

Cho phép player set daily/weekly/monthly deposit limits. Giảm limit có hiệu lực ngay, tăng limit chờ 24h.

#11

Responsible Gambling — Reality Checks

Pop-up mỗi 60 phút: thời gian chơi, net win/loss. Cho phép player tùy chỉnh interval.

#12

Underage Prevention

Age verification bắt buộc trước deposit. Marketing không target <18. Content không appeal to minors.

#13

Advertising Compliance

Disclaimer 18+ trên mọi quảng cáo. Không hứa hẹn lợi nhuận. Không dùng celebrity endorsement (tùy jurisdiction).

#14

Staff Training

Training AML/KYC cho tất cả staff tiếp xúc customer. Refresh annually. Document attendance.

#15

Internal Audit

Quarterly internal audit: sample KYC files, review SAR process, test monitoring rules, check policy compliance.

#16

External Audit

Annual external audit bởi independent compliance firm. Report cho board và regulator nếu required.

#17

Jurisdiction Matrix

Map requirements per market: Philippines (PAGCOR), Singapore (GRA), Cambodia, Vietnam. Update khi regulation thay đổi.

#18

Data Privacy

Tuân thủ Nghị định 13/2023/NĐ-CP (Vietnam), PDPA (Singapore/Thailand). Consent-based collection, breach notification 72h.

#19

Incident Response

Playbook cho: data breach, fraud ring detected, regulatory inquiry, player complaint escalation.

#20

Regulator Communication

Maintain relationship: proactive reporting, attend consultations, respond to inquiries within SLA.

Full KYC/AML Checklist

1/20
KYC Policy Document
Viết policy rõ ràng: verification tiers, triggers, escalation process, document requirements per tier.
2/20
Tier 1 — Registration
Thu thập: email, phone, date of birth. Verify age ≥18. Không cho deposit trước khi confirm age.
3/20
Tier 2 — First Deposit
Yêu cầu: CCCD/Passport scan + selfie match. Verify trong 24h hoặc freeze account.
4/20
Tier 3 — High Value
Trigger: deposit >100M VND hoặc withdrawal >50M. Yêu cầu: source of funds declaration.
5/20
AML Transaction Monitoring
Setup rules: unusual deposit patterns, rapid deposit-withdraw, multiple payment methods, structuring.
6/20
PEP & Sanctions Screening
Screen tất cả customers against PEP lists, UN/EU/OFAC sanctions, adverse media. Re-screen quarterly.
7/20
Suspicious Activity Report (SAR)
Quy trình: ai report, report cho ai (FIU/SBV), timeline (72h), documentation requirements.
8/20
Record Retention
Lưu trữ KYC documents + transaction records tối thiểu 5 năm sau khi account đóng.
9/20
Responsible Gambling — Self-exclusion
Implement: temporary (24h/7d/30d) và permanent self-exclusion. Không gửi marketing khi excluded.
10/20
Responsible Gambling — Deposit Limits
Cho phép player set daily/weekly/monthly deposit limits. Giảm limit có hiệu lực ngay, tăng limit chờ 24h.
11/20
Responsible Gambling — Reality Checks
Pop-up mỗi 60 phút: thời gian chơi, net win/loss. Cho phép player tùy chỉnh interval.
12/20
Underage Prevention
Age verification bắt buộc trước deposit. Marketing không target <18. Content không appeal to minors.
13/20
Advertising Compliance
Disclaimer 18+ trên mọi quảng cáo. Không hứa hẹn lợi nhuận. Không dùng celebrity endorsement (tùy jurisdiction).
14/20
Staff Training
Training AML/KYC cho tất cả staff tiếp xúc customer. Refresh annually. Document attendance.
15/20
Internal Audit
Quarterly internal audit: sample KYC files, review SAR process, test monitoring rules, check policy compliance.
16/20
External Audit
Annual external audit bởi independent compliance firm. Report cho board và regulator nếu required.
17/20
Jurisdiction Matrix
Map requirements per market: Philippines (PAGCOR), Singapore (GRA), Cambodia, Vietnam. Update khi regulation thay đổi.
18/20
Data Privacy
Tuân thủ Nghị định 13/2023/NĐ-CP (Vietnam), PDPA (Singapore/Thailand). Consent-based collection, breach notification 72h.
19/20
Incident Response
Playbook cho: data breach, fraud ring detected, regulatory inquiry, player complaint escalation.
20/20
Regulator Communication
Maintain relationship: proactive reporting, attend consultations, respond to inquiries within SLA.