KYC rules and fines flagged

In Nigeria, know-your-customer checks have shifted from a signup form to a live control system, with 2024 penalties reaching ₦1 billion for some fintechs. (techcabal.com) The Central Bank of Nigeria’s Customer Due Diligence Regulations, 2023 require financial institutions to identify customers, verify identity, understand the purpose of the account, check sources of funds, run ongoing due diligence, and apply tiered know-your-customer rules. (nairametrics.com) Those 2023 rules sit on top of Nigeria’s Money Laundering (Prevention and Prohibition) Act, 2022, which makes customer identification, suspicious transaction reporting, record preservation, and internal controls part of the legal framework for banks and other reporting entities. (placng.org) A suspicious transaction report is the alert a firm sends when a payment, account, or pattern looks tied to money laundering, terrorism financing, or another predicate offense. Nigeria’s Financial Intelligence Unit says reporting entities must file those reports immediately and no later than 24 hours after establishing reasons for suspicion, with financial institutions allowed internal review time that can stretch the process to 78 hours. (nfiu.gov.ng) That makes “real-time monitoring” less of a slogan than an operational deadline. A fast-growing wallet or payments app cannot wait for a weekly compliance review if the law expects suspicious activity to be identified, examined, and reported within hours. (nfiu.gov.ng) Nigeria’s central bank has paired those rules with tougher enforcement. TechCabal reported that Moniepoint and OPay were each fined ₦1 billion in the second quarter of 2024 after a routine audit, and said at least four other fintechs were also penalized. (techcabal.com) The same report said the central bank had grown more aggressive as fintechs scaled to millions of users while some still operated under microfinance bank licenses designed for smaller institutions. TechCabal reported OPay said claims about the fine were false, while the Central Bank of Nigeria did not publicly detail the case in that report. (techcabal.com) Tiered know-your-customer rules are meant to match friction to risk. Lower-risk accounts can open with lighter checks and lower limits, while higher-risk customers, legal entities, and unusual transactions trigger enhanced due diligence under the 2023 regulations. (nairametrics.com) Nigeria has also tightened the identity layer beneath those tiers. A December 2023 central bank circular required Tier 1 individual accounts and wallets to have a Bank Verification Number or National Identification Number, and said onboarding should begin by electronically retrieving data from those databases. (theinvestigator.ng) The practical effect is that compliance now sits inside product design. For a fintech onboarding users at scale, identity checks, transaction monitoring, and suspicious activity reporting are no longer back-office tasks that can be cleaned up after growth. (nairametrics.com)