The Pandora Papers: The Importance of Enhanced Customer Due Diligence for PEPs

PEPs Mitigating Risk After The Pandora Papers Jumio

Anti-money laundering (AML) starts with knowing your customer. Multiple leaks such as the Panama Papers, Paradise Papers and most recently the Pandora Papers show that politically exposed persons (PEPs) are at higher risk for corruption. PEP screening is critical for ensuring your business takes a risk-based approach and performs enhanced due diligence on high-risk customers to protect your company and the financial system.

But although PEP screening is a requirement for regulated financial institutions in many jurisdictions, some firms only have sanctions screening enabled. Even in jurisdictions where it is not explicitly required, it is an important part of a risk-based AML program as explained in FinCEN’s statement on PEPs. Therefore, it’s critical to ensure your watchlist screening goes beyond sanctions and includes PEPs.

In this post, we will look at the importance of PEP screening in your risk assessment and why you need to screen throughout the customer lifecycle, not just at onboarding.

What is a Politically Exposed Person (PEP)?

A politically exposed person (PEP) is an individual who holds a position of power as a current or former public official. Examples include lawmakers, important political party officials and heads of state. These political figures are often a target for bribery, corruption, money laundering and other financial crimes.

From a risk management perspective, close associates and immediate family members who might influence their decisions may also be treated as PEPs. Senior executives who have a business relationship with those who serve in prominent public functions may also be considered by a company’s senior management to be included in the PEP definition.

Managing Risk During Onboarding

How to Design Effective, Risk-Driven Onboarding Flows

Why Is PEP Screening Important?

The Financial Action Task Force (FATF), a global money laundering and terrorist financing watchdog, recommends that companies apply more rigorous AML checks to their customers who are politically exposed persons. In the FATF recommendations on PEPs, they are quick to clarify that these extra checks are not intended to stigmatize or assume criminal activity by PEPs. Unlike sanctions screening, the goal is not to avoid doing business with PEPs but to take extra steps to ensure they have not been compromised and are not engaging in financial crimes. The FATF recommends having checks in place for both domestic PEPs and foreign PEPs.

PEP screening supports a risk-based approach to customer due diligence. This approach looks for more than a yes/no decision and assigns a risk score to each customer so you can apply the proper level of customer due diligence in your onboarding and ongoing monitoring processes.

What Are the Pandora Papers, and How Do They Relate to PEP Screening?

The Pandora Papers refers to the massive leak of documents in the fall of 2021 that led to a global investigation of financial crimes. At the center of the investigation are hundreds of politicians who used their wealth and influence to hide money in foreign accounts, real estate deals and shell companies. According to the International Consortium of Investigative Journalists (ICIJ), “The Pandora Papers reveal the inner workings of a shadow economy that benefits the wealthy and well-connected at the expense of everyone else.”

Investors may move money to a foreign country just to avoid taxes, but it can also be used to hide funds from illicit activities and proceeds from corruption. As the BBC pointed out in their article on the Pandora Papers, even if the PEPs involved acted within the letter of the law, they are still benefiting from a practice that is also used by criminals. And because of that benefit, the very people who can actually pass laws to make it harder to hide assets and to increase transparency into beneficial owners, source of funds and source of wealth are less likely to do so.

This means that the PEPs who were involved in the Pandora Papers are in a grey area when it comes to risk factors. “It’s possible that those who acted within legal limits may still be considered accomplices to financial crime as the investigations unfold,” says Simon Winchester, VP of Advanced Technologies at Jumio. “A risk-based approach requires that businesses monitor this type of activity in order to truly know their customers.”

What Are Best Practices for PEP Screening?

As mentioned above, the goal of PEP screening is to determine a customer’s risk profile. But it’s not enough to do it once when you’re opening their account. Screening customers against PEP lists along with sanctions, adverse media and other watchlists must be done throughout the customer lifecycle.


Before you do business with a potential customer, there are many Know Your Customer (KYC) due diligence measures you must perform. These include identity verification during account opening to ensure they are who they say they are, as well as screening to determine their risk profile. For a complete guide to building the right onboarding flow to maintain appropriate risk, see the joint report from Fintrail and Jumio, How to Design Effective, Risk-Driven Onboarding Flows.

Ongoing Monitoring

Your regulatory responsibilities don’t end with onboarding. You must also perform ongoing monitoring to check their PEP status and ensure their risk profile doesn’t change. This should include the same screening checks you ran during the onboarding phase, plus transaction monitoring and customer monitoring to look for suspicious activity and changes in behavior.

And because ongoing monitoring can involve many more variables than onboarding, it’s important to have an advanced case management system that streamlines investigation and helps your compliance team easily navigate suspicious transactions and spot patterns and connections.

Thankfully, Jumio’s AML Solutions are designed to make the entire process seamless throughout the customer lifecycle and to reduce your reputational risk. We provide advanced screening for PEPs, sanctions, negative news and more. Our transaction monitoring engine is powered by cutting-edge machine learning that catches more real suspicious activity while drastically reducing false positives. And our intuitive case management tool helps your compliance team work faster and more accurately to investigate red flags and report suspicious activity.

Request a demo today to learn how Jumio can help your organization take a risk-based approach to AML compliance at speed and scale.

AML compliance platform


Get the latest updates from the Identity and Beyond blog, delivered to your inbox.

    Yes, I would like to receive periodic updates from the Jumio blog as well as marketing communications regarding Jumio products, services, and events. I can unsubscribe at any time.

    Jumio values your privacy. To learn more, visit our Privacy Statement.