1. Purpose
This Anti-Fraud Policy establishes Riz Remit Limited's commitment to preventing, detecting, and responding to fraud in compliance with UK legal and regulatory requirements.
The policy aims to:
- Protect customers, agents, and the firm from fraud risks
- Ensure adherence to applicable laws and FCA expectations
- Promote a strong anti-fraud culture across the organisation
2. Scope
This policy applies to:
- All employees, directors, and senior management
- All agents, partners, and third parties
- All customers and transactions processed through Riz Remit
3. Regulatory Framework
This policy is aligned with the following legislation and guidance:
- Fraud Act 2006
- Proceeds of Crime Act 2002 (POCA)
- Money Laundering, Terrorist Financing and Transfer of Funds Regulations 2017 (as amended)
- Terrorism Act 2000
- Data Protection Act 2018 and UK GDPR
- FCA Principles for Businesses
- FCA Financial Crime Guide
4. Definitions
Fraud: Dishonest conduct intended to make a gain or cause loss (financial or otherwise).
Consumer Fraud: Fraud where customers are deceived into sending money.
Agent/Partner Fraud: Fraud that causes loss to agents, partners, or the firm.
MLRO (Money Laundering Reporting Officer): Responsible for financial crime risk management and SAR submissions.
SAR (Suspicious Activity Report): A report submitted to the National Crime Agency (NCA) under POCA.
5. Risk-Based Approach
Riz Remit adopts a risk-based approach to fraud prevention by:
- Identifying high-risk customers, corridors, and transaction patterns
- Applying enhanced controls where risks are elevated
- Regularly assessing emerging fraud typologies
6. Governance and Responsibilities
6.1 Board of Directors
- Establish and maintain effective internal controls
- Approve anti-fraud strategy and policy
- Ensure adequate resources for fraud prevention
6.2 MLRO
The MLRO has overall responsibility for fraud risk management, including:
- Maintaining the anti-fraud framework
- Submitting SARs to the NCA
- Monitoring fraud trends and emerging risks
- Reporting significant incidents to senior management
- Ensuring staff awareness and training
Legal Obligation: All suspicious activity must be escalated to the MLRO. Tipping off is strictly prohibited under POCA.
6.3 Senior Management
- Ensure effective controls within their functions
- Monitor fraud risks and control effectiveness
- Promote a strong compliance culture
6.4 Employees and Agents
- Adhere to this policy
- Identify and report suspicious activity
- Complete mandatory training
- Protect customer information
Failure to comply may result in disciplinary action, including termination and potential criminal liability.
7. Fraud Risk Categories
7.1 Consumer Fraud
Includes scams such as:
- Romance scams
- Advance fee fraud
- Lottery/prize scams
- Rental/property scams
- Tech support fraud
- Family emergency scams
- Employment scams
- Charity fraud
7.2 Agent/Partner Fraud
Includes:
- System compromise (malware, phishing, hacking)
- Fraudulent transactions initiated under false instructions
- Underpayment scams
- Remote access fraud
8. Fraud Prevention Controls
8.1 Customer Protection Measures
- Mandatory fraud warnings on transaction receipts
- Transaction refusal where fraud is suspected
- Enhanced due diligence for vulnerable customers
- Staff questioning to assess transaction legitimacy
8.2 Vulnerable Customers
In line with FCA expectations, Riz Remit will identify and support vulnerable customers, including those who are:
- Elderly
- Emotionally distressed
- Financially inexperienced
- Digitally excluded
Transactions may be declined where exploitation is suspected.
8.3 Transaction Monitoring
The firm will monitor transactions for:
- Unusual patterns
- Multiple rapid transactions
- Changes in customer behaviour
- Transfers to unrelated recipients
8.4 Agent and System Controls
Agents must:
- Verify funds before processing transactions
- Keep credentials secure
- Lock systems when unattended
- Prevent screen visibility to customers
- Reject suspicious requests
8.5 Cyber Security Controls
- Up-to-date antivirus and firewalls
- Strong password policies
- Protection against phishing and malware
- Restricted system access
9. Red Flags of Fraud
Staff should be alert to:
- Urgent/emergency requests
- Emotional or distressed customers
- Requests involving secrecy
- First-time or unusual transactions
- Customers unable to explain purpose
- Multiple repeat transactions
- Elderly customers sending funds to unrelated individuals
10. Fraud Detection and Escalation
If fraud is suspected:
- Question the customer appropriately
- Refuse the transaction if necessary
- Escalate immediately to MLRO
- Record the incident
11. Suspicious Activity Reporting (SAR)
- All suspicions must be reported internally
- MLRO will determine whether to submit a SAR to the NCA
- Tipping off is prohibited
12. Fraud Incident Response
Upon identifying fraud:
- Suspend or refuse transaction
- Notify MLRO immediately
- Record incident in fraud log
- Submit SAR (if required)
- Report to Action Fraud
- Review controls and implement improvements
13. Reporting External Authorities
Fraud incidents will be reported to:
14. Training and Awareness
- Mandatory induction training
- Annual refresher training
- Targeted training for high-risk roles
- Training records maintained for audit
15. Monitoring and Audit
- Regular internal audits of fraud controls
- Ongoing monitoring of transactions and agent activity
- Reporting findings to senior management
16. Data Protection
All personal data must be handled in accordance with:
- Data Protection Act 2018
- UK GDPR
Any data breach must be reported per ICO requirements.
17. Record Keeping
The firm will retain records for at least 5 years, including:
- SARs
- Fraud reports
- Training records
- Transaction data
18. Policy Review
This policy will be:
- Reviewed annually
- Updated to reflect regulatory changes and emerging risks
Saxon House, 27 Duke Street, Chelmsford, Essex, England, CM1 1HT
