This provides a suggested best practice for all reporting entities conducting name and date of birth identity verification on customers (that are natural persons) they have assessed to be low to medium risk.
Complying with a code of practice is not mandatory, although it constitutes a safe harbour. If a reporting entity fully complies with the code it is deemed to be compliant with the relevant parts of the Act. If a reporting entity opts out of the code, it must inform its supervisor and must adopt practices that are equally effective, otherwise, it risks non-compliance.
Explanatory Note: Electronic Identity Verification Guideline July 2021
This guideline replaces the previous Explanatory Note that was published by the AML/CFT Supervisors in December 2017. It includes additional content identifying commonly used electronic sources in New Zealand. It also sets out the AML/CFT Supervisors’ expectations when they review or inspect a reporting entity’s Electronic Identity Verification (EIV) procedures, policies and controls. Various examples of EIV practices are included at the end of this guideline.
Factsheet: Birth Certificates with Redacted Information
The AML/CFT Supervisors have produced this factsheet to confirm their position is that certain details may be redacted by a customer from their birth certificate if it is used for identity verification purposes when conducting customer due diligence.