Beneficial Ownership and the Corporate Transparency Act: What Compliance Teams Need to Know

Beneficial ownership transparency has been one of the most active areas of AML regulation in the past three years. The US Corporate Transparency Act (CTA), the EU's Sixth Anti-Money Laundering Directive, the UK's expanded Persons with Significant Control regime, and FATF's revised Recommendation 24 all push in the same direction: identify the natural persons who ultimately own or control legal entities, document that identification, and make the information available to regulators and, in some jurisdictions, the public.

For compliance teams, this is not a theoretical exercise. Beneficial ownership identification sits at the heart of every onboarding decision involving a corporate, partnership, trust, or other legal arrangement. Getting it wrong is one of the most common findings in regulatory reviews.

What Counts as a Beneficial Owner?

The standard FATF definition is the natural person who ultimately owns or controls a customer, or the natural person on whose behalf a transaction is being conducted. Most jurisdictions translate this into a percentage threshold for ownership and a control test for influence that does not depend on ownership.

The most common ownership threshold is 25 percent or more of the equity, voting rights, or distribution rights, held directly or indirectly through one or more layers of legal entities. Some jurisdictions use 10 percent for higher-risk customers or sectors.

The control test catches situations where ownership is dispersed but effective control sits with a small group. Common control indicators include: the right to appoint or remove the majority of directors; veto rights over key business decisions; control through nominee or trust structures; and significant influence through contractual arrangements such as shareholder agreements.

When no natural person meets either the ownership or the control threshold, jurisdictions typically require the senior managing official to be identified as the beneficial owner of last resort. This is not a substitute for proper investigation; it is a backstop when the corporate structure genuinely has no concentrated ownership or control.

The Corporate Transparency Act in the United States

The Corporate Transparency Act became effective on 1 January 2024 and requires most US-formed entities and registered foreign entities to file beneficial ownership information with FinCEN. The required information includes the legal name, date of birth, residential address, and a unique identifying number from an acceptable government-issued document for each beneficial owner and (for entities formed on or after 1 January 2024) each company applicant.

The CTA does not replace the customer due diligence rule for financial institutions. Regulated firms still need to identify and verify beneficial owners as part of onboarding. The CTA provides a regulator-held register that may, over time, become a source of corroborating data, but it is not a substitute for the firm's own verification.

Penalties for CTA non-compliance include civil and criminal penalties for the entity and its responsible individuals. The compliance burden, particularly for smaller entities and the legal professionals who advise them, has been substantial.

Verification Standards

Identifying a beneficial owner is the easy part. Verifying that the person identified is in fact who they say they are, and that the ownership chain you have been told about is accurate, is harder.

For the natural person, standard identity verification applies: government-issued identification, proof of address, and where relevant, biometric or digital identity verification.

For the ownership chain, the firm should obtain and review: the customer's certificate of incorporation or formation; a current ownership chart, ideally certified by a director or qualified third party; share registers or equivalent records for each layer; and where the chain involves trusts or partnerships, the relevant trust deeds or partnership agreements.

Public registries (UK Companies House, the EU's national UBO registers, the CTA filing system, and equivalents in other jurisdictions) should be consulted as a corroborating data source, not as the sole verification.

Common Risk Indicators in Ownership Structures

Some structural patterns warrant enhanced scrutiny:

Multi-jurisdiction layering across more than three jurisdictions, particularly where one or more is a high-risk or low-transparency jurisdiction.

Use of nominee directors and shareholders, particularly nominee services that appear repeatedly across unrelated customer files.

Bearer shares or other instruments that allow ownership to transfer without registration.

Trust and foundation structures with discretionary beneficiaries and broad letter-of-wishes arrangements.

Recent formation of the immediate operating entity coupled with deep historical ownership chains, suggesting the front entity may have been created for the relationship.

Inconsistencies between the ownership chart provided and public registry data, even where the differences appear minor.

Ongoing Monitoring

Beneficial ownership is not a one-time check. Ownership changes, sometimes deliberately, sometimes through ordinary corporate events. Programs should refresh beneficial ownership data on a defined cycle, with the cadence driven by customer risk:

Standard-risk customers: at least every three years, or on any significant change of activity, beneficial owner, or control structure.

High-risk customers, including PEP-linked structures and customers in higher-risk jurisdictions: annually at minimum.

Trigger-based refresh: any material change in transaction patterns, public information, or customer-provided information should prompt an immediate review of the beneficial ownership record.

Documentation Standards

The beneficial ownership file should record: the identification of each beneficial owner with verification evidence; the ownership and control chart, with explanation of the routes through which beneficial ownership exists; the verification steps taken on the chain; the senior management approval where applicable; and the next refresh date.

Where the firm has relied on third-party verification (typically for introduced business or regulated counterparties), the reliance arrangement and the documentation supporting it should also be on file.

The Bottom Line

Beneficial ownership transparency is no longer an emerging area of AML compliance. It is mature, well-regulated, and frequently inspected. Programs that treat it as a serious onboarding discipline, with clear standards for identification, verification, and refresh, sit on the right side of regulatory expectation. Programs that treat it as a form-filling exercise are increasingly exposed.

If you are assessing a corporate customer for AML risk, the customer assessment and business relationship assessment in the Red Flag Check tool include explicit indicators for ownership opacity, nominee structures, and inconsistencies between declared and verifiable information.