Daniel Flowe
- Regulators around the world are responding to the pernicious use of legal entities to facilitate money laundering, terrorist financing and other financial crimes by opening corporate registries and making owners, directors and other parties more transparent.
- This is a welcome step – but there is more to do. The verification threshold for input data can be extremely low, as demonstrated by recent investigations by Wired and other outlets.
- To strengthen KYB checks, beneficial ownership data must be verified with independent and authoritative sources to ensure it is trustworthy.
I first learned how to write code from a library book. Checking out a physical book to learn how to program seems incongruous given all the tools that are now available online, but it was all we had access to as children. I recall marveling at the lines in BASIC that popped up on our family’s 286 PC once I’d corrected a few errors. One of the lessons in that stuck with me as an amateur programmer and continues to resonate is “garbage in, garbage out”– the notion that the quality of input determines the quality of output.
Fast forward to today and nowhere does this adage stand truer than in relation to corporate registries. Regulators around the world are responding to the pernicious use of legal entities to facilitate money laundering, terrorist financing and other financial crimes by opening registries and taking steps to make owners, directors and officers, and other related parties transparent and verifiable. This is an excellent and necessary step – but there is more to do.
While these registries are official sources, in many cases, the verification threshold for input data is so low that it calls into question whether they can truly be regarded as authoritative. As a point of comparison, take most countries’ drivers licenses or passports. To gain entry to these authoritative databases, one must appear in person with certified copies of birth certificates and other documentation required for review and validation. FinCEN’s new Beneficial Owner Information Reporting rules require entities (barring a select number of entity types that are not required to report at all) to provide detailed information and an image of an ID document for every beneficial owner. However, as best we can infer from the regulation, no verification of any type is applied to this self-reported data. Hence, the concern of “garbage in”.
Wired recently published a hard-hitting piece by William Turton and Dhruv Mehrotra detailing the results of their investigation into Registered Agents Inc. They write that “Registered Agents Inc., is a one-stop shop for people seeking to incorporate a business in any US state, often in those with advantageous tax policies, while obscuring their identities.” Their research reveals that this secretive organization enables hundreds of thousands of businesses to operate in almost total anonymity. According to former employees, the founder of Registered Agents, Inc. created a multitude of false personas and used them to establish businesses. Turton and Mehrotra searched some of the known false personas and found over 36,000 corporations registered in their names.
Across the pond, similar vulnerabilities present themselves. In the UK, registering a company can cost as little as £12, but according to the Bureau of Investigative Journalism, Companies House takes no steps to verify name or address data provided by applicants. An extensive investigation led by Transparency International UK revealed that 14% of the Limited Liability Partnerships registered in the UK “bear the hallmarks of shell companies used for serious financial crime.” Duncan Hames, Director of Policy at Transparency International UK, said: “This research lays bare the seemingly industrial-scale abuse of UK LLPs and how this type of company has been used to facilitate billions in economic harm.”
Around the world, regulators are taking strides to drive transparency and accountability for corporations, and to reduce criminals’ ability to use entities as a means of money laundering and conducting other financial crimes. However, unverified data and poor controls on information input into official registries is undoubtedly a weak link in the chain. Charles Babbage, the father of the computer, said “I have been asked, “…if you put into the machine wrong figures, will the right answers come out? ... I am not able rightly to apprehend the kind of confusion of ideas that could provoke such a question.” If we depend uncritically on data sourced from corporate registries who have poor or no controls on data input, we are expecting to get the right answer from “wrong figures.”
Beneficial owner data must be verified with independent and authoritative sources to be deemed trustworthy. Otherwise, KYB (Know Your Business) checks become compliance theater, where we allow criminals and fraudsters to self-report critical data and then use that same, self-reported data to deem them valid and trustworthy. This is a new problem for us to confront in the 21st century, but the 20th century’s “garbage in, garbage out” rule still reigns supreme.
Legal Disclaimer
Republication or redistribution of LSE Group content is prohibited without our prior written consent.
The content of this publication is for informational purposes only and has no legal effect, does not form part of any contract, does not, and does not seek to constitute advice of any nature and no reliance should be placed upon statements contained herein. Whilst reasonable efforts have been taken to ensure that the contents of this publication are accurate and reliable, LSE Group does not guarantee that this document is free from errors or omissions; therefore, you may not rely upon the content of this document under any circumstances and you should seek your own independent legal, investment, tax and other advice. Neither We nor our affiliates shall be liable for any errors, inaccuracies or delays in the publication or any other content, or for any actions taken by you in reliance thereon.
Copyright © 2024 London Stock Exchange Group. All rights reserved.
The content of this publication is provided by London Stock Exchange Group plc, its applicable group undertakings and/or its affiliates or licensors (the “LSE Group” or “We”) exclusively.
Neither We nor our affiliates guarantee the accuracy of or endorse the views or opinions given by any third party content provider, advertiser, sponsor or other user. We may link to, reference, or promote websites, applications and/or services from third parties. You agree that We are not responsible for, and do not control such non-LSE Group websites, applications or services.
The content of this publication is for informational purposes only. All information and data contained in this publication is obtained by LSE Group from sources believed by it to be accurate and reliable. Because of the possibility of human and mechanical error as well as other factors, however, such information and data are provided "as is" without warranty of any kind. You understand and agree that this publication does not, and does not seek to, constitute advice of any nature. You may not rely upon the content of this document under any circumstances and should seek your own independent legal, tax or investment advice or opinion regarding the suitability, value or profitability of any particular security, portfolio or investment strategy. Neither We nor our affiliates shall be liable for any errors, inaccuracies or delays in the publication or any other content, or for any actions taken by you in reliance thereon. You expressly agree that your use of the publication and its content is at your sole risk.
To the fullest extent permitted by applicable law, LSE Group, expressly disclaims any representation or warranties, express or implied, including, without limitation, any representations or warranties of performance, merchantability, fitness for a particular purpose, accuracy, completeness, reliability and non-infringement. LSE Group, its subsidiaries, its affiliates and their respective shareholders, directors, officers employees, agents, advertisers, content providers and licensors (collectively referred to as the “LSE Group Parties”) disclaim all responsibility for any loss, liability or damage of any kind resulting from or related to access, use or the unavailability of the publication (or any part of it); and none of the LSE Group Parties will be liable (jointly or severally) to you for any direct, indirect, consequential, special, incidental, punitive or exemplary damages, howsoever arising, even if any member of the LSE Group Parties are advised in advance of the possibility of such damages or could have foreseen any such damages arising or resulting from the use of, or inability to use, the information contained in the publication. For the avoidance of doubt, the LSE Group Parties shall have no liability for any losses, claims, demands, actions, proceedings, damages, costs or expenses arising out of, or in any way connected with, the information contained in this document.
LSE Group is the owner of various intellectual property rights ("IPR”), including but not limited to, numerous trademarks that are used to identify, advertise, and promote LSE Group products, services and activities. Nothing contained herein should be construed as granting any licence or right to use any of the trademarks or any other LSE Group IPR for any purpose whatsoever without the written permission or applicable licence terms.
