Checklist de conformité KYC, KYB et AML
Cameroun KYC, KYB & AML
An implementation-focused checklist for fintechs, payment institutions, financial institutions and other regulated businesses operating in Cameroon. It maps the current 2024 CEMAC AML/CFT/CPF and targeted-financial-sanctions frameworks, ANIF reporting, COBAC and BEAC payment rules, Cameroon company, tax and beneficial-ownership requirements, and Law No. 2024/017 on personal data protection into controls, actions and audit evidence.
- Revue le
- 15 July 2026
- Version
- 1.1
- domaines de contrôle
- 11
- contrôles d’implémentation
- 44
Réponse directe
Que couvre la checklist de conformité pour Cameroun ?
La checklist pour Cameroun traduit les principales règles KYC, KYB et AML en 11 domaines de contrôle et 44 contrôles d’implémentation, avec les autorités, obligations de déclaration et preuves à conserver.
Faits réglementaires clés
- Primary AML rule
- CEMAC Regulation No. 02/24
- FIU
- ANIF Cameroon
- Banking supervisor
- COBAC
- Payments authority
- BEAC / COBAC
- Core record period
- 10 years
- FATF status
- Under increased monitoring
Détail d’implémentation
Exigences et actions de conformité pour Cameroun
Ouvrez chaque domaine pour consulter l’exigence, l’action recommandée, les preuves à conserver et la source primaire utilisée.
01Confirm scope, authorities and permissionsMap every Cameroon-facing activity to its reporting-person status, sector supervisor and licensing perimeter before customer onboarding or launch.4 éléments+
Determine whether the business is a CEMAC reporting person.
- Action d’implémentation
- Map each entity, product, distribution channel and agent to the financial-institution and designated non-financial business or profession categories in the current CEMAC AML/CFT/CPF Regulation; identify ANIF and the competent supervisor. Treat the repealed 2016 Regulation as historical only.
- Preuves à conserver
- Approved regulatory-perimeter memo; entity-product matrix; accountable-owner register.
- Source primaire
- CEMAC Regulation No. 02/24, scope and Article 184; ANIF Cameroon
Obtain authorisation before providing regulated payment services.
- Action d’implémentation
- Classify account, transfer, acquiring, card, electronic-money and other payment activities under Regulation No. 04/18. The competent Monetary Authority grants a payment-service provider's initial approval after COBAC's conforming opinion. A service outside an existing approval requires COBAC's prior authorisation; a new technical solution requires prior notification to COBAC and its non-objection.
- Preuves à conserver
- Licence or approval; service-to-permission mapping; launch-gate approval.
- Source primaire
- Regulation No. 04/18/CEMAC/UMAC/COBAC, Articles 23 and 29
Verify the exact licensed entity and any material change approval.
- Action d’implémentation
- Confirm the legal entity, authorisation scope, management and ownership conditions against the current COBAC framework. Escalate restructuring, control change, outsourcing or material new activity for regulatory assessment before implementation.
- Preuves à conserver
- COBAC authorisation file; change-control assessment; regulator correspondence.
- Source primaire
- COBAC R-2019/01 on licensing and changes affecting payment-service providers; BEAC payment-services regulations
Assign named owners for ANIF, COBAC, BEAC and privacy duties.
- Action d’implémentation
- Maintain a responsibility matrix for AML governance, suspicious transaction reporting, sanctions, payment controls, customer complaints, tax and registry checks, privacy compliance and regulator communications.
- Preuves à conserver
- RACI; appointment letters; regulatory calendar; management reporting.
- Source primaire
- CEMAC Regulation No. 02/24; Regulation No. 04/18; Law No. 2024/017
02Build the AML/CFT/CPF control frameworkThe programme should be risk-based, documented and embedded across governance, people, systems and independent assurance.4 éléments+
Maintain an enterprise-wide financial-crime risk assessment.
- Action d’implémentation
- Assess customer, product, service, delivery-channel, geography, transaction, agent, new-technology and proliferation-financing risks; record methodology, risk appetite, mitigants and refresh triggers.
- Preuves à conserver
- Board-approved risk assessment; methodology; risk register; version history.
- Source primaire
- CEMAC Regulation No. 02/24, risk-based internal-control requirements; GABAC Cameroon enhanced follow-up report
Adopt written internal policies and procedures.
- Action d’implémentation
- Cover CDD, beneficial ownership, PEPs, sanctions, monitoring, reporting, recordkeeping, outsourcing, agents, data protection, escalation and testing. Approve them at the appropriate management level and keep local procedures accessible to staff.
- Preuves à conserver
- Policy suite; approval minutes; control library; annual-review record.
- Source primaire
- CEMAC Regulation No. 02/24, internal-organisation and vigilance provisions
Appoint and empower the AML control function.
- Action d’implémentation
- Give the responsible compliance function direct access to senior management, adequate resources, confidentiality controls and authority to stop or escalate high-risk activity.
- Preuves à conserver
- Appointment decision; job description; budget; escalation log; committee terms.
- Source primaire
- CEMAC Regulation No. 02/24; GABAC Mutual Evaluation Report of Cameroon 2022
Train personnel and test controls continuously.
- Action d’implémentation
- Train the board, operations, investigators, product, engineering, sales and agents on their roles, red flags, STR confidentiality and sanctions escalation; independently test control design and operation.
- Preuves à conserver
- Training curriculum; attendance; assessment results; monitoring plan; audit reports and remediation log.
- Source primaire
- CEMAC Regulation No. 02/24; ANIF Cameroon, declaration guide
03Identify and verify customersCDD should establish the customer, any representative, the purpose of the relationship and the beneficial owner before the relationship or covered transaction proceeds, subject only to legally permitted exceptions.4 éléments+
Identify and verify the customer using reliable evidence.
- Action d’implémentation
- Identify and verify habitual and occasional customers, their representatives and beneficial owners before the relevant transaction using reliable and independent evidence. The current Regulation does not establish a general monetary exemption for occasional-customer identification.
- Preuves à conserver
- CDD file; document images or source results; verification provenance; exception log.
- Source primaire
- CEMAC Regulation No. 02/24, Articles 18 and 29
Verify persons acting on the customer's behalf.
- Action d’implémentation
- Identify the representative, verify authority and mandate, link the representative to the customer, and apply applicable screening and ongoing-monitoring controls to both.
- Preuves à conserver
- Power of attorney or mandate; representative ID; authority verification; screening record.
- Source primaire
- CEMAC Regulation No. 02/24, customer-vigilance provisions
Understand the relationship's purpose and expected activity.
- Action d’implémentation
- Capture expected products, volumes, counterparties, geographies, business rationale and source-of-funds information sufficient to set a defensible risk rating and monitoring profile.
- Preuves à conserver
- Customer profile; expected-activity baseline; risk score and rationale.
- Source primaire
- CEMAC Regulation No. 02/24, ongoing-vigilance provisions
Refuse or exit where required CDD cannot be completed.
- Action d’implémentation
- Where mandatory CDD cannot be completed, do not open the account or execute the occasional transaction, or terminate the relationship, and file an STR with ANIF. Restrict the report and related assessment to authorised personnel.
- Preuves à conserver
- Decline or exit decision; investigation file; restricted STR case record.
- Source primaire
- CEMAC Regulation No. 02/24, Article 37
04Verify businesses, registries and beneficial ownersKYB should establish legal existence, authority, activity, tax identity, ownership and natural-person control, and reconcile that information against reliable records.4 éléments+
Verify legal existence, registration and tax identity.
- Action d’implémentation
- Obtain current RCCM and constitutional records, registered and operating address, directors, activity, relevant sector permissions and the Cameroon unique tax identifier (NIU). Verify status through appropriate official sources where available.
- Preuves à conserver
- RCCM extract; statutes; address proof; NIU verification; sector-licence file.
- Source primaire
- OHADA Uniform Act on General Commercial Law; Cameroon DGI taxpayer-registration guidance
Understand ownership and control through every layer.
- Action d’implémentation
- Map shareholders, members, directors, intermediate entities, voting rights, contractual control and nominees to the natural persons who ultimately own or control the customer. Record the source and date of every conclusion.
- Preuves à conserver
- Ownership chart; shareholder and director records; control analysis; source documents.
- Source primaire
- CEMAC Regulation No. 02/24, beneficial-owner requirements; OHADA Uniform Act on Commercial Companies and EIGs
Apply a documented beneficial-owner cascade.
- Action d’implémentation
- For entities within scope, identify every natural person who directly or indirectly, alone or jointly, ultimately owns at least 20% of shares or voting rights. Also identify persons exercising control by other means and, if no such person is identified without doubt, the relevant senior manager. Document the calculation, control analysis and evidence.
- Preuves à conserver
- 20% ownership calculation; ownership chart; control analysis; senior-manager fallback rationale; verified BO files.
- Source primaire
- Cameroon tax procedures framework, Article M8d; Decree No. 2023/06801/CAB/PM; Order No. 00000761/A/MINFI/DGI; CEMAC Regulation No. 02/24
Keep company and ownership information accurate.
- Action d’implémentation
- Maintain accurate physical and electronic internal beneficial-owner registers, appoint a responsible person, and update within 30 days of a change or awareness of one. File BO information in the DGI central register upon tax registration and at the applicable annual DSF deadline; legal arrangements file within 30 days of formation and supplementary declarations within 45 days of a reportable change. Keep the register throughout the entity's existence and supporting documents at least five years after BO status ends; after dissolution, retain both in Cameroon for at least five years.
- Preuves à conserver
- Internal BO register; responsible-person appointment; DGI filing receipts; change log; retention schedule; discrepancy remediation.
- Source primaire
- Cameroon tax procedures framework, Article M8d; Decree No. 2023/06801/CAB/PM; Order No. 00000761/A/MINFI/DGI
05Apply PEP, higher-risk and remote due diligenceHigher-risk relationships need corroborated evidence, appropriate senior approval and more frequent ongoing monitoring. Lower-risk treatment must be justified and must never override a suspicion or a mandatory enhanced measure.4 éléments+
Identify PEPs and relevant connected persons.
- Action d’implémentation
- Screen customers, beneficial owners, controllers and authorised representatives for domestic, foreign and international-organisation PEP exposure, and assess family-member and close-associate relationships where relevant.
- Preuves à conserver
- PEP screening record; relationship analysis; match disposition; refresh log.
- Source primaire
- CEMAC Regulation No. 02/24, politically exposed person provisions
Apply enhanced measures to PEP relationships.
- Action d’implémentation
- Obtain the required senior-management approval, establish source of wealth and source of funds using corroborated evidence, and apply enhanced ongoing monitoring. Continue risk-based treatment after a person leaves public office.
- Preuves à conserver
- Source-of-wealth analysis; source-of-funds records; approval; enhanced-monitoring plan.
- Source primaire
- CEMAC Regulation No. 02/24, politically exposed person provisions
Control non-face-to-face and impersonation risk.
- Action d’implémentation
- Use layered document, biometric or equivalent verification, liveness and fraud controls where proportionate, device and behavioural signals, channel limits and manual escalation for exceptions.
- Preuves à conserver
- Remote-onboarding standard; vendor due diligence; configuration record; exception cases.
- Source primaire
- CEMAC Regulation No. 02/24, higher-risk and customer-vigilance provisions; Law No. 2024/017
Assess high-risk countries, products and structures.
- Action d’implémentation
- Maintain a risk-based country and product framework that incorporates FATF public statements, UN sanctions and internal risk evidence; apply enhanced review to opaque structures, unusually complex arrangements and elevated-risk transactions.
- Preuves à conserver
- Country-risk methodology; high-risk case reviews; approval record; monitoring rules.
- Source primaire
- CEMAC Regulation No. 02/24, enhanced-vigilance provisions; FATF increased monitoring statement, 19 June 2026
06Monitor activity and report suspicion to ANIFMonitoring must compare actual activity with what is known about the customer and promptly escalate a suspicion to ANIF. A threshold is not a safe harbour from suspicion reporting.4 éléments+
Maintain ongoing monitoring and current customer profiles.
- Action d’implémentation
- Refresh CDD on risk-based cycles and on events such as ownership changes, document expiry, material product change, adverse information, unusual activity or a discrepancy in supplied data.
- Preuves à conserver
- Refresh rules; event triggers; completed reviews; overdue dashboard.
- Source primaire
- CEMAC Regulation No. 02/24, ongoing-vigilance provisions
Examine unusual, complex or apparently purposeless activity.
- Action d’implémentation
- Investigate size, frequency, velocity, counterparties, geography, channels, source of funds and consistency with the stated purpose. Preserve the analysis and decision, including cases that do not result in a filing.
- Preuves à conserver
- Alert file; supporting data; investigation narrative; reviewer sign-off.
- Source primaire
- CEMAC Regulation No. 02/24, transaction-monitoring and examination provisions
File a suspicious transaction report without delay.
- Action d’implémentation
- Report suspicious and attempted transactions to ANIF forthwith. A report initially made by telephone or electronic means must be confirmed in writing within 48 hours. Send requested supplementary information through the controlled ANIF channel and never use an internal threshold to delay reporting.
- Preuves à conserver
- STR decision record; ANIF filing receipt; supplemental-information log; restricted case file.
- Source primaire
- CEMAC Regulation No. 02/24, Articles 105 and 109
Prevent tipping off and preserve report confidentiality.
- Action d’implémentation
- Limit access to an STR, ANIF inquiry or related investigation to authorised personnel. Do not tell the customer or unauthorised third parties that a report was made or that ANIF is investigating.
- Preuves à conserver
- Need-to-know access controls; case permissions; confidentiality training; audit log.
- Source primaire
- CEMAC Regulation No. 02/24, confidentiality provisions; ANIF Cameroon, declaration guide
07Control payments, transfers, agents and cash riskPayment controls should preserve the transaction trail, identify linked activity and manage the obligations of agents and outsourced providers without breaking the regulated-provider perimeter.4 éléments+
Preserve originator, beneficiary and transaction information.
- Action d’implémentation
- Preserve required originator, beneficiary and transaction information across domestic, cross-border and intermediary flows. Obtain missing wire-transfer information within three days; otherwise do not execute the transfer and systematically inform ANIF.
- Preuves à conserver
- Payment-data dictionary; message samples; exception rules; quality-assurance results.
- Source primaire
- CEMAC Regulation No. 02/24, Article 64; Regulation No. 04/18
Detect linked transactions and structuring.
- Action d’implémentation
- Aggregate related activity across accounts, wallets, devices, agents and counterparties. Separately report cash transactions of CFA 5,000,000 or more, whether single or apparently linked, subject to statutory exceptions. Apply special monitoring to cash or bearer-instrument transactions of CFA 50,000,000 or more and to all unusually complex, unjustified or apparently purposeless transactions.
- Preuves à conserver
- Aggregation logic; CFA 5,000,000 report controls; CFA 50,000,000 special-monitoring rules; scenario tests; filings and investigated cases.
- Source primaire
- CEMAC Regulation No. 02/24, Articles 34 and 41
Conduct due diligence and oversight of agents and partners.
- Action d’implémentation
- Assess the agent or outsourced provider's licensing, ownership, AML controls, cybersecurity, data handling and operational resilience. Contract for audit, training, incident, data-access and termination rights, and monitor performance.
- Preuves à conserver
- Partner due-diligence file; contract clauses; agent training; monitoring dashboard; audit reports.
- Source primaire
- Regulation No. 04/18; COBAC R-2019/02; Law No. 2024/017
Reconstruct the full payment trail on request.
- Action d’implémentation
- Retain transaction identifiers, timestamps, amounts, currencies, channels, wallet or account references, parties, screening results, alerts and disposition history in an exportable format.
- Preuves à conserver
- Sample reconstruction; data-lineage map; access procedure; retention configuration.
- Source primaire
- CEMAC Regulation No. 02/24, recordkeeping provisions; BEAC payment-services report 2024
08Implement targeted financial sanctionsApply the current CEMAC targeted-financial-sanctions framework immediately and without prior notice, with operational controls for freezing, reporting, attempted transactions and continuing quarterly updates.4 éléments+
Screen applicable UN, regional and national designations
- Action d’implémentation
- Applicable UN designations take immediate effect without further domestic action. Screen customers, beneficial owners, controllers, authorised representatives and relevant transactions at onboarding, on list updates, at material changes and before relevant payments; include aliases, transliteration and ownership-or-control analysis.
- Preuves à conserver
- List inventory; update logs; screening configuration; ownership-control analysis; match files.
- Source primaire
- CEMAC Regulation No. 04/24/CEMAC/UMAC/CM; UN Security Council Consolidated List
Freeze covered property without delay or prior notice
- Action d’implémentation
- Freeze covered funds, property and economic resources without delay and without prior notice, including assets owned or controlled directly, indirectly or jointly and assets of persons acting on behalf or at the direction of a designated person. Prevent direct or indirect availability and circumvention.
- Preuves à conserver
- 24/7 freeze procedure; asset-control map; decision record; blocked-payment evidence; legal escalation.
- Source primaire
- CEMAC Regulation No. 04/24/CEMAC/UMAC/CM
Report matches and frozen property within the statutory period
- Action d’implémentation
- Report frozen assets, measures taken and attempted transactions to the competent authority and the State frozen-property manager within 24 hours. File an STR with ANIF for transactions involving a name match against national, regional or UN lists and submit updated frozen-property reports quarterly.
- Preuves à conserver
- 24-hour reports; ANIF STR receipt; competent-authority notices; quarterly reports; reconciliation log.
- Source primaire
- CEMAC Regulation No. 04/24/CEMAC/UMAC/CM
Govern false positives, access and release
- Action d’implémentation
- Maintain controlled match-resolution, licence, exemption, access and release procedures. Release property only under a documented lawful instruction or applicable delisting process; preserve confidentiality and a full audit trail.
- Preuves à conserver
- Match rationale; legal advice; authority correspondence; licence or release record; audit log.
- Source primaire
- CEMAC Regulation No. 04/24/CEMAC/UMAC/CM
09Retain records and support supervisory accessRetention must allow authorities and auditors to reconstruct relationships, transactions, beneficial ownership and compliance decisions while protecting confidential data.4 éléments+
Keep CDD, beneficial-ownership and business-relationship records for 10 years.
- Action d’implémentation
- Apply the statutory 10-year retention period from the end of the relationship or closure, as applicable, to identity, verification, ownership, profile, risk and analysis records. Hold records longer where a legal hold or authority direction requires it.
- Preuves à conserver
- Retention schedule; lifecycle configuration; archived-file samples; legal-hold register.
- Source primaire
- CEMAC Regulation No. 02/24, recordkeeping provisions
Keep transaction records for 10 years.
- Action d’implémentation
- Apply the statutory 10-year transaction-record period and retain enough detail to reconstruct the payment or other covered transaction, including communications and supporting evidence where required.
- Preuves à conserver
- Storage configuration; transaction sample; retrieval procedure; audit log.
- Source primaire
- CEMAC Regulation No. 02/24, recordkeeping provisions
Make information available promptly to competent authorities.
- Action d’implémentation
- Use least-privilege access, controlled exports, audit logs and an authority-request playbook so ANIF, COBAC, BEAC and lawful investigators can receive material promptly without exposing STR information unnecessarily.
- Preuves à conserver
- Access matrix; request register; export log; response-time report.
- Source primaire
- CEMAC Regulation No. 02/24; ANIF Cameroon, About
Protect confidentiality and integrity of retained records.
- Action d’implémentation
- Encrypt sensitive data, segregate STR and sanctions files, maintain immutable audit trails, test backup and restore, and delete records only when retention and legal-hold conditions permit.
- Preuves à conserver
- Security architecture; access logs; backup test; deletion certificate; data-classification standard.
- Source primaire
- Law No. 2024/017; CEMAC Regulation No. 02/24
10Protect personal and biometric dataLaw No. 2024/017 is operative, and its 18-month transition period expired on 23 June 2026. Build AML and identity processing around the statutory authorisations, records, security and breach duties.4 éléments+
Obtain required prior processing authorisation
- Action d’implémentation
- Processing of personal data is subject to prior authorisation by the Personal Data Protection Authority under Section 19. Maintain evidence of the applicable authorisation and do not use ANPDP as an established official name or acronym unless supported by the presidential implementing decree.
- Preuves à conserver
- Processing inventory; authority submission and authorisation; legal-basis record; privacy notice.
- Source primaire
- Law No. 2024/017, Sections 19 and 53
Assess high-risk processing and sensitive data
- Action d’implémentation
- Conduct a prior impact assessment for processing likely to create high risk to individual rights and freedoms. Apply the Act's specific prohibitions and authorisation conditions to biometric, genetic, health, banking and other sensitive data.
- Preuves à conserver
- DPIA; necessity and proportionality analysis; sensitive-data authorisation; mitigations; approval.
- Source primaire
- Law No. 2024/017, Sections 22 and 27-29
Control international transfers
- Action d’implémentation
- Obtain separate prior authorisation before an international transfer of personal data and document the transfer purpose, recipient, safeguards, security and retention.
- Preuves à conserver
- Transfer register; authority authorisation; transfer assessment; processor clauses; security review.
- Source primaire
- Law No. 2024/017, Sections 32-33
Maintain records, annual reporting and breach response
- Action d’implémentation
- Maintain the statutory processing register and submit the annual security-measures report. Immediately notify both the Authority and the data subject upon becoming aware of a personal-data breach, preserving the incident chronology and remediation evidence.
- Preuves à conserver
- Processing register; annual security report; breach notices; incident log; remediation record.
- Source primaire
- Law No. 2024/017, Sections 48 and 73
11Operate BEAC and COBAC payment-service controlsA licensed payment operation requires continuing governance, prudential, customer-protection, security and resilience controls in addition to AML compliance.4 éléments+
Maintain payment-service governance and risk management.
- Action d’implémentation
- Document decision rights, internal controls, risk management, security, outsourcing, business continuity, incident response, complaints and customer communications appropriate to the authorised payment activity.
- Preuves à conserver
- Governance framework; risk register; continuity test; incident reports; complaints dashboard.
- Source primaire
- Regulation No. 04/18; COBAC R-2019/02; COBAC R-2024/01 on IT-risk management
Safeguard customer funds where the applicable rule requires it.
- Action d’implémentation
- For payment institutions, place client funds in a dedicated ring-fenced account no later than the following day if they have not been delivered to the beneficiary, and reconcile those funds daily. COBAC supervises credit institutions, microfinance institutions and payment institutions within its perimeter; BEAC supervises payment systems and technical conformity.
- Preuves à conserver
- Safeguarding analysis; account agreements; reconciliations; shortfall log; legal opinion.
- Source primaire
- Regulation No. 04/18/CEMAC/UMAC/COBAC, Articles 49 and 53
Manage operational and cyber risk for payment platforms.
- Action d’implémentation
- Assess technology, data, access, fraud, third-party and concentration risks before launch and material change; test continuity, recovery and incident escalation and maintain auditable security logs.
- Preuves à conserver
- Technology-risk assessment; third-party review; resilience-test report; incident playbook.
- Source primaire
- COBAC R-2024/01; BEAC payment-services report 2024
Run a documented launch and periodic compliance gate.
- Action d’implémentation
- Before launch and material change, confirm licence scope, AML, sanctions, safeguarding, privacy, outsourcing, customer terms, complaints, resilience and reporting readiness. Repeat the certification on a defined schedule.
- Preuves à conserver
- Launch checklist; accountable approvals; periodic certification; open-risk register.
- Source primaire
- Regulation No. 04/18; COBAC regulations catalogue; Law No. 2024/017

11 domaines de contrôle et 44 vérifications d'implémentation avec sources réglementaires directes.
Téléchargez la checklist KYC, KYB et AML pour Cameroun
Partagez vos coordonnées professionnelles pour accéder immédiatement à la checklist d'implémentation sourcée pour Cameroun. Date de revue réglementaire : 15 July 2026.
Recevez le PDF immédiatement
Envoyez vos coordonnées pour démarrer automatiquement le téléchargement
Revue et sourcée
Version 1.1, revue le 15 July 2026
Approuvé par des équipes conformité de premier plan
Registre des sources primaires
23 sources utilisées pour cette checklist
Utilisez ces liens pour vérifier la législation, les lignes directrices, les procédures de déclaration et les statuts internationaux.
- CEMAC Regulation No. 01/CEMAC/UMAC/CM of 11 April 2016 on AML/CFT/CPFCEMAC / Republic of the Congo Secretariat-General · Primary regional regulation
- ANIF Cameroon: mandate and institutional frameworkANIF Cameroon · Official FIU information
- ANIF Cameroon declaration guideANIF Cameroon · Official FIU guidance
- Cameroon Mutual Evaluation Report 2022GABAC · Official mutual evaluation
- Third enhanced follow-up report for CameroonGABAC · Official follow-up report
- Mutual evaluation reports portalGABAC · Official reports portal
- Regulation No. 04/18/CEMAC/UMAC/COBAC on payment servicesBEAC · Primary regional regulation
- Payment-system instructions, circulars and regulationsBEAC · Official regulatory portal
- COBAC regulations catalogueBEAC / COBAC · Official regulatory portal
- CEMAC payment-services report 2024BEAC · Official supervisory report
- Law No. 2024/017 of 23 December 2024 relating to personal data protection in CameroonPresidency of the Republic of Cameroon · Primary legislation
- Official legislation listing for Law No. 2024/017Presidency of the Republic of Cameroon · Official legislation portal
- Cameroon taxpayer registration and NIU guidanceCameroon Directorate General of Taxation · Official tax guidance
- Cameroon active taxpayer fileCameroon Directorate General of Taxation · Official tax register guidance
- OHADA Uniform Act on General Commercial LawOHADA · Primary regional commercial-law framework
- OHADA Uniform Act on Commercial Companies and Economic Interest GroupsOHADA · Primary regional company-law framework
- FATF June 2026Financial Action Task Force · Jurisdictions under increased monitoring, 19 June 2026
- Cameroon FATF action plan on entry to increased monitoringFATF · Official FATF statement
- FATF public-identification process for monitored jurisdictionsFATF · Official explanatory guidance
- UN Security Council Consolidated ListUnited Nations Security Council · Official sanctions list
- CEMAC Regulation No. 02/24GABAC / CEMAC · Current AML/CFT/CPF regulation of 20 December 2024
- CEMAC Regulation No. 04/24GABAC / CEMAC · Targeted financial sanctions regulation of 20 December 2024
- Cameroon DGI BO circularCameroon Directorate General of Taxation · Official beneficial-ownership obligations and filing guidance
Réponses directes
Questions KYC, KYB et AML pour Cameroun
Who receives suspicious transaction reports in Cameroon?+
Reports are submitted to ANIF Cameroon, the country's financial intelligence unit. The CEMAC Regulation requires reporting without delay when the relevant suspicion threshold is met; a monetary threshold is not a safe harbour from reporting.
Is there a fixed filing deadline for a suspicious transaction report?+
The applicable CEMAC AML/CFT/CPF framework uses an urgency standard rather than a universal fixed number of hours or days. Firms should therefore maintain an escalation and filing process that submits reports to ANIF without delay after the suspicion decision, while preserving evidence of the decision and submission.
How long must AML records be retained in Cameroon?+
The CEMAC Regulation provides a 10-year core retention period for CDD and relationship records and for transaction records, measured from the legally relevant end of the relationship or transaction. Apply a legal hold or authority direction where it requires longer preservation.
What beneficial-ownership checks are needed for a Cameroon company?+
Verify the company's RCCM, constitutional and tax-registration details, map ownership and control to natural persons, verify the result using reliable sources, and investigate discrepancies. FATF's current Cameroon action plan specifically calls for timely access to adequate and up-to-date beneficial-ownership information, so firms should not assume that a registry search alone completes KYB.
What PEP controls apply?+
CEMAC rules require PEP identification and enhanced treatment. For a PEP relationship, obtain the required senior approval, establish source of wealth and source of funds, apply enhanced ongoing monitoring, and continue risk-based treatment after the public function ends.
Is Cameroon currently on the FATF grey list?+
Yes. Cameroon remains under FATF increased monitoring in the FATF statement dated 19 June 2026. FATF does not call for blanket de-risking; regulated firms should apply a documented risk-based approach and account for the listed action-plan weaknesses in their own controls.
Méthode de recherche et de revue
VOVE ID Compliance Research cartographie le périmètre réglementaire, traduit les obligations en contrôles opérationnels, relie les affirmations importantes aux sources et date chaque revue.
VOVE ID Compliance Research · Revue le 15 July 2026 · Version 1.1
This checklist is general information, not legal advice. It is based on official and authoritative materials available on 15 July 2026. The CEMAC framework is supplemented by sector rules, supervisory practice and implementing measures that may change. Confirm applicability with ANIF, COBAC, BEAC, the Personal Data Protection Authority and qualified Cameroon counsel before launch.