AMF Imposes €450,000 Penalty on Kerdiz Finance Over AML and Compliance Failures

A €450,000 penalty handed down by the AMF against Kerdiz Finance et Conseil and its senior managers has brought to light significant shortcomings in anti-money laundering controls, alongside broader regulatory breaches. The ruling targets an investment advisory firm that failed to comply with multiple obligations under French law, with authorities identifying serious weaknesses in due diligence, transaction monitoring, governance structures, and client protection measures. These failings not only heightened exposure to financial crime risks but also violated investor protection requirements, demonstrating how AML deficiencies are often intertwined with wider compliance breakdowns.

The Commission des sanctions reviewed the firm’s operations as an investment advisor governed by the Code monétaire et financier and determined that Kerdiz Finance et Conseil lacked an effective system to combat money laundering and terrorist financing. Financial intermediaries are required to establish robust frameworks capable of identifying risks, verifying clients, and monitoring financial activity, yet in this instance, those mechanisms were either inadequate or entirely absent. Regulators pointed to the lack of a structured compliance program, noting there was no clear evidence of internal procedures addressing essential components such as customer identification, risk categorization, and transaction monitoring. Under Articles L.561-5 and subsequent provisions, such safeguards are mandatory, and their absence meant the firm could not demonstrate its ability to prevent misuse of its services for illicit purposes.

The regulator’s findings extended beyond AML concerns, highlighting additional violations related to investor protection and professional conduct. These included deficiencies in how investment opportunities were presented and shortcomings in managing client relationships. This broader pattern of misconduct is central to understanding the case, as the AML failures were not isolated incidents but part of a systemic breakdown in compliance. Responsibility for these failings was attributed in large part to the firm’s leadership, with authorities concluding that management did not ensure the implementation of adequate compliance systems across all regulatory domains. French law places clear obligations on senior executives to oversee compliance frameworks and allocate sufficient resources, and the lack of such oversight was found to have directly contributed to the widespread nature of the deficiencies.

Customer due diligence, a cornerstone of AML obligations, was found to be particularly weak. Investment advisors are required to identify and verify clients while understanding the purpose and nature of each business relationship. However, the investigation revealed that Kerdiz Finance et Conseil failed to carry out these steps in a consistent and reliable manner. Client files were often incomplete or lacked essential information, preventing the firm from forming a clear picture of client profiles or the origin of funds. Without this knowledge, it becomes impossible to properly assess risk, undermining the risk-based approach mandated by French regulations.

The firm also fell short in its approach to risk classification. Financial institutions are expected to categorize clients based on their exposure to money laundering risks, taking into account factors such as geographic location and transaction behavior. In this case, the absence of a structured classification system meant that higher-risk clients were not properly identified, significantly increasing the firm’s vulnerability to financial crime. Enhanced due diligence measures, which are required for higher-risk relationships, were not effectively implemented, representing a fundamental breach of AML obligations designed to safeguard the integrity of the financial system.

Record-keeping failures further weakened the firm’s compliance posture. Under Article L.561-12 of the Code monétaire et financier, firms must maintain accurate and comprehensive records of client data and transactions. Kerdiz Finance et Conseil was unable to produce such documentation, hindering both internal verification processes and regulatory oversight. This lack of reliable records made it difficult to demonstrate compliance and limited the effectiveness of supervisory reviews.

The Commission des sanctions also identified serious deficiencies in transaction monitoring. Effective monitoring systems are essential for detecting unusual or suspicious financial activity, particularly in the context of complex investment products and multi-layered financial flows. The firm lacked adequate tools to track and analyze transactions linked to its advisory services, leaving it unable to identify inconsistencies between client profiles and financial behavior. Such discrepancies—where transactions do not align with a client’s financial situation or stated objectives—are key indicators of potential risk and must be detected and assessed under AML requirements.

Traceability of financial operations was another major concern. The firm did not have reliable systems in place to document and track transactions, making it difficult to reconstruct financial flows or identify red flags. This absence of transparency undermines accountability and significantly weakens the overall compliance framework. At the same time, regulators pointed to additional non-AML breaches, including failures in the information provided to clients and shortcomings in the presentation of investment products. These issues relate directly to investor protection rules, reinforcing the conclusion that the firm’s control environment was fundamentally flawed.

The lack of effective monitoring also had implications for reporting obligations. Financial intermediaries are required to report suspicious transactions to TRACFIN when necessary, but without systems capable of identifying such activity, the firm was unable to fulfill this duty. This created a critical gap in its AML defenses, further compounding the regulatory breaches identified by authorities.

Underlying these issues were significant governance failures. Effective compliance depends on a clear organizational structure with well-defined roles and responsibilities, yet Kerdiz Finance et Conseil failed to demonstrate that such a framework existed. One of the most notable shortcomings was the absence of a dedicated compliance function with sufficient authority to oversee AML obligations. Without a centralized and empowered compliance role, efforts to meet regulatory requirements became fragmented and inconsistent.

Internal control mechanisms were also insufficient. Firms are expected to implement systems that monitor compliance, identify weaknesses, and ensure corrective actions are taken, but the absence of such controls allowed deficiencies to persist over time. This points to a broader failure to instill a culture of compliance within the organization. Training and awareness were equally lacking, with employees not adequately equipped to understand their obligations or identify potential risks, further weakening the firm’s ability to prevent financial crime.

Archiving practices added to the list of concerns. Proper document storage is essential for ensuring that information can be retrieved when needed, both for internal purposes and regulatory review. The firm did not maintain reliable archiving systems, limiting its ability to demonstrate compliance and hindering the effectiveness of supervisory efforts.

The €450,000 sanction imposed by the AMF sends a strong message about the importance of maintaining both robust AML controls and broader regulatory compliance. The decision underscores that regulators evaluate firms holistically, examining the effectiveness of their entire control environment rather than isolated elements. In this case, AML failures were closely linked to deficiencies in governance and investor protection, highlighting the interconnected nature of regulatory obligations.

The ruling reinforces the necessity of a risk-based approach, requiring firms to tailor their controls to the scale and nature of their activities while still implementing core measures such as client identification and transaction monitoring. It also emphasizes the accountability of senior management, who bear responsibility for ensuring that compliance systems are effective and adequately resourced. The penalties imposed on the firm’s managers demonstrate that failures at the leadership level can result in personal consequences.

Finally, the case highlights the critical role of documentation and traceability in maintaining transparency. Firms must be able to provide clear and reliable records to demonstrate compliance, both for internal control purposes and regulatory scrutiny. The decision aligns with international standards that prioritize preventive measures, making clear that authorities expect firms to identify and manage risks proactively. The absence of such capabilities, particularly when combined with broader compliance failures, is treated as a serious violation with significant consequences.

By fLEXI tEAM