How easy is it going to be to escalate alerts to more senior staff members, add comments, add attachments and have an audit trail of all activity? Any solution ought to be able to help you efficiently manage alerts across teams, track all monitoring and decisions made to ensure regulatory compliance. However, this capability can be difficult to build and manage in-house, whereas third-party solutions will already have this system and process built in.
With in-house systems, many firms find it difficult to fine-tune rules and apply different rules or scenarios to different types of customers. If rules aren’t accurate in this way, it results in a high number of false positives, creating a backlog of tedious work for compliance officers. For this reason, many firms have opted to buy solutions.
How much specialist expertise is required, and how much do you have internally? Building a flexible, reliable, configurable transaction monitoring system will require significant compliance and risk expertise as well as a deep understanding of technology. Whilst some firms have this level of expertise in-house, businesses may not want to restructure or drain internal resources when third-party solutions often provide proactive and ongoing support.
The EU’s 4th Money Laundering Directive states that firms need to have consistent knowledge of their customers, the business and risk profile, including sources of funds. Likewise in the US with obligations from regulations such as the NYDFS Part 504. When weighing up these global requirements, your business may decide they’re not confident they have the ability to build a solution meeting them and that the personal and business risks associated with getting it wrong are too high.
At ComplyAdvantage, our solution can help you easily configure different types of scenarios, that automatically monitor different segments of clients against relevant scenarios. This is how we have helped our client Earthport to apply a proper Risk-based Approach (RBA) and to monitor risks more effectively, empowering their business to meet differing compliance regime requirements and risk profiles of their stakeholders.
a. Opportunity Cost
If your IT/Dev team switched focus for many weeks or even months to deliver this project, would this draw highly valuable time away from revenue-generating activities, such as improving front-end products, user experience and processing? You may want to consider third-party solutions after calculating the opportunity cost of their teams focusing on other activities.
b. Hidden Costs
Like many custom software developments, when building solutions in-house, hidden costs will probably arise throughout the building process, and costs may arise from on-going change management. It’s difficult to budget for these costs as they’re unpredictable, imposing financial risks on the business if they can’t be managed. Flexible, ready-to-implement buy solutions often offer a license fee inclusive of ongoing support and maintenance, de-risking businesses financial forecasting.
From our experience many firms find it difficult to deploy rules that extend beyond basic binary outcomes with systems that they have built in-house. To be able to understand a client’s normal behavior to then understand their suspicious behavior, you need to be able to build up a complete understanding of their transactional behavior; spotting patterns or trend deviations. This requires looking back over previous transactions and calculating averages and standard deviations – which is not straightforward.
How easy is it going to be to configure or change a rule every time a scenario or requirement changes? We’re often told that it can take an internal IT team up to 6 weeks to deploy a new rule with in-house systems. Businesses are required to keep up with ever-changing risks and are constantly evolving, entering new markets and solving new problems. Many firms opt for third-party solutions, as 6 weeks isn’t fast enough for their ever-changing requirements.
How long do you have until you need a project live? Where time is critical, many firms opt for third-party solutions, as the implementation time for scoping, building and implementing a regulatory sufficient transaction monitoring solution is too long. Third-party implementation times can be as little as 2 weeks for cost-effective solutions.
It’s important to obtain management information, not just for internal and external reporting, but also to help optimize, track and manage performance. If you build your transaction monitoring solution in-house, how easy it is going to be to collate and extract management information into an easy to use PDF, Excel file or dashboard in just one click? Many businesses opt for third-party solutions as they find it’s easier to buy this capability than build it themselves.
How easy will it be to scale your system when growing? How will transaction monitoring costs be managed when business requirements change, such as: maintenance, support, performance monitoring, new risks or regulatory amendments. Furthermore, when scaling, how many people will it take to deploy these changes, what will their annual salaries cost? Bought solutions are often configurable to different business sizes and can be scaled to suit customers’ requirements now and in the future, making growth more seamless.