Checklist de conformité KYC, KYB et AML
Éthiopie KYC, KYB & AML
An implementation-focused checklist for banks, microfinance institutions, payment instrument issuers, payment system operators, remittance providers and other reporting persons operating in Ethiopia. It translates Ethiopia's AML/CFT/CPF, banking, payment, foreign-exchange, company-registration, digital-ID and personal-data rules into controls, actions and audit evidence.
- Revue le
- 15 July 2026
- Version
- 1.3
- domaines de contrôle
- 11
- contrôles d’implémentation
- 48
Réponse directe
Que couvre la checklist de conformité pour Éthiopie ?
La checklist pour Éthiopie traduit les principales règles KYC, KYB et AML en 11 domaines de contrôle et 48 contrôles d’implémentation, avec les autorités, obligations de déclaration et preuves à conserver.
Faits réglementaires clés
- Primary AML law
- Proclamation No. 780/2013
- FIU
- Financial Intelligence Service (FIS)
- Financial supervisor
- National Bank of Ethiopia (NBE)
- Privacy authority
- Ethiopian Communications Authority (ECA)
- Financial-institution STR deadline
- No later than 24 hours
- AML record retention
- Minimum 10 years
- FATF status
- Not under increased monitoring
Détail d’implémentation
Exigences et actions de conformité pour Éthiopie
Ouvrez chaque domaine pour consulter l’exigence, l’action recommandée, les preuves à conserver et la source primaire utilisée.
01Confirm scope, regulator and licence perimeterClassify every entity, product and channel before launch. AML/CFT reporting-person status, NBE permission and ECA data-protection duties are separate questions.4 éléments+
Determine reporting-person and supervisory status.
- Action d’implémentation
- Map each Ethiopia-facing legal entity, branch, product, agent, merchant and outsourced function against Proclamation No. 780/2013 and the relevant FIS and NBE rules. Assign accountable owners for FIS reporting, prudential or payment supervision, foreign exchange and data protection.
- Preuves à conserver
- Regulatory-perimeter memo; entity-product matrix; reporting-person classification; RACI.
- Source primaire
- Proclamation No. 780/2013; FIS AML/CFT CDD Directive No. 01/2014; NBE directive indexes
Apply Banking Business Proclamation No. 1360/2025 to banking activity.
- Action d’implémentation
- Do not conduct banking business or present a fintech product as a bank without the licence and approvals required by the current Banking Business Proclamation. Map ownership, governance, management, outsourcing and product conditions to the NBE approval file.
- Preuves à conserver
- NBE banking licence or legal perimeter analysis; approval correspondence; governance file; product-permission matrix.
- Source primaire
- Banking Business Proclamation No. 1360/2025
Distinguish payment-system operation from payment-instrument issuance.
- Action d’implémentation
- Classify switching, clearing, settlement and other system-operation functions under PSO Directive ONPS/02/2020. Classify wallets, electronic money and other payment instruments under PII Directive ONPS/06/2022, as amended by ONPS/09/2023 and ONPS/10/2025. Obtain the permission applicable to each function before launch.
- Preuves à conserver
- PSO/PII classification; NBE licence or authorisation; application file; current register check.
- Source primaire
- National Payment System Proclamation No. 718/2011, as amended; ONPS/02/2020; ONPS/06/2022; ONPS/09/2023; ONPS/10/2025; NBE payment-system directive index
Use authorised remittance and money-transfer arrangements.
- Action d’implémentation
- Verify the current NBE status of every money-transfer operator, Ethiopian representative, settlement bank and corridor partner. Obtain NBE approval where required and do not treat a technology or agency agreement as a substitute for regulatory permission.
- Preuves à conserver
- NBE MTA-list check; approval; partner due diligence; remittance agreement; funds-flow map.
- Source primaire
- NBE licensed money-transfer agents list; Foreign Exchange Directive No. FXD/01/2024, as amended
02Establish risk-based AML/CFT/CPF governanceThe compliance programme should cover money laundering, terrorist financing and proliferation financing across customers, products, channels, agents, countries and technologies.4 éléments+
Maintain a documented enterprise risk assessment.
- Action d’implémentation
- Assess customer, ownership, cash, remittance, agent, geography, product, channel, technology, sanctions and proliferation-financing exposure. Define inherent and residual risk, risk appetite, refresh cycles and event triggers.
- Preuves à conserver
- Board-approved risk assessment; methodology; risk appetite; source inventory; change log.
- Source primaire
- Proclamation No. 780/2013; FIS AML/CFT CDD Directive No. 01/2014; Proclamation No. 1132/2019
Maintain written controls and an empowered compliance function.
- Action d’implémentation
- Cover CDD, KYB, beneficial ownership, PEPs, sanctions, transaction monitoring, STR and cash reporting, wire transfers, records, agents, outsourcing, privacy, training and independent testing. Give compliance staff access, authority and a direct escalation route to senior management or the board.
- Preuves à conserver
- Policy suite; appointments; committee terms; control library; board minutes.
- Source primaire
- Proclamation No. 780/2013; FIS AML/CFT CDD Directive No. 01/2014
Train personnel and relevant agents by role.
- Action d’implémentation
- Provide initial and periodic training to directors, management, onboarding, operations, investigators, product, engineering, fraud, privacy and agent personnel. Test understanding of the 24-hour STR clock, confidentiality and no-tipping-off requirements.
- Preuves à conserver
- Training curriculum; attendance; assessments; agent records; remediation log.
- Source primaire
- Proclamation No. 780/2013; FIS AML/CFT CDD Directive No. 01/2014
Assess new products and material changes before release.
- Action d’implémentation
- Require AML/CFT/CPF, sanctions, fraud, privacy and operational-risk approval before deploying new wallet tiers, remote onboarding, APIs, biometric flows, agent models, payment corridors or material rules changes.
- Preuves à conserver
- Pre-launch assessment; approvals; control acceptance; implementation plan.
- Source primaire
- FIS AML/CFT CDD Directive No. 01/2014; applicable NBE payment directives; Proclamation No. 1321/2024
03Identify and verify individual customersFinancial institutions must apply CDD at relationship and specified occasional-transaction triggers, as well as whenever suspicion arises or prior identity data are doubtful.5 éléments+
Identify and independently verify each customer and representative.
- Action d’implémentation
- Collect the prescribed identity, address or contact and identity-document information; verify it using reliable and independent documents, data or information; and verify the authority of anyone acting for the customer.
- Preuves à conserver
- CDD record; verification response; source document; representative mandate; timestamp and reviewer.
- Source primaire
- Proclamation No. 780/2013; FIS AML/CFT CDD Directive No. 01/2014
Apply financial-institution CDD to occasional cash transactions exceeding ETB 300,000 or USD 15,000.
- Action d’implémentation
- Block completion of a single or linked occasional cash transaction above the applicable ETB 300,000 or USD 15,000 threshold until required CDD is complete. Aggregate linked transactions and apply CDD irrespective of value where suspicion or identity-data doubt exists.
- Preuves à conserver
- Threshold configuration; linked-transaction logic; CDD record; blocked-case log; legal-source register.
- Source primaire
- Proclamation No. 780/2013; FIS AML/CFT CDD Directive No. 01/2014
Apply the ETB 20,000 or USD 1,000 wire-transfer threshold.
- Action d’implémentation
- Configure originator and beneficiary information, verification and record controls for wire transfers at or above ETB 20,000 or USD 1,000, while applying any broader relationship, suspicion and payment-system requirements that operate regardless of value.
- Preuves à conserver
- Wire-rule configuration; message fields; verification record; exception and rejection logs.
- Source primaire
- FIS AML/CFT CDD Directive No. 01/2014
Understand purpose, expected activity and source-of-funds context.
- Action d’implémentation
- Record the relationship purpose, expected transaction size and frequency, counterparties, channels, geographies and source of funds. Establish a documented risk rating and monitoring baseline and keep it current.
- Preuves à conserver
- Customer profile; expected-activity baseline; source-of-funds information; risk score; approval.
- Source primaire
- Proclamation No. 780/2013; FIS AML/CFT CDD Directive No. 01/2014
Do not proceed when required CDD cannot be completed.
- Action d’implémentation
- Do not open the relationship or perform the transaction; for an existing relationship, terminate it in accordance with law and controlled exit procedures. Consider whether the failed or evasive CDD gives rise to an STR and preserve the no-tipping-off boundary.
- Preuves à conserver
- CDD-failure case; blocked or closure record; STR consideration; approval and communication controls.
- Source primaire
- FIS AML/CFT CDD Directive No. 01/2014
04Verify businesses, beneficial ownership and controlKYB should establish legal existence, authority, ownership and the natural persons who ultimately own or control a customer. Registry evidence does not replace a complete beneficial-owner inquiry.4 éléments+
Verify legal identity, registration, licence and authority.
- Action d’implémentation
- Obtain current commercial-registration and business-licence information, constitutional documents, tax or sector identifiers, registered and operating addresses, directors and signing powers from reliable sources.
- Preuves à conserver
- Registry extract; business licence; constitutional documents; tax record; board authority; independent checks.
- Source primaire
- Commercial Registration and Business Licensing Proclamation No. 980/2016, as amended by No. 1150/2019; Commercial Code Proclamation No. 1243/2021; FIS AML/CFT CDD Directive No. 01/2014
Identify and verify every relevant natural-person beneficial owner.
- Action d’implémentation
- Build the ownership and control chain through all legal entities and arrangements. Resolve natural persons with controlling ownership or control by other means and use any permitted senior-manager fallback only after documenting why no natural person could be identified through the preceding tests.
- Preuves à conserver
- Ownership chart; shareholder and control records; verified BO files; control analysis; fallback rationale.
- Source primaire
- Proclamation No. 780/2013, art. 5; FIS AML/CFT CDD Directive No. 01/2014
Obtain and maintain current legal-person beneficial-owner information.
- Action d’implémentation
- Require the customer to provide accurate and current legal-person and beneficial-owner data, reconcile it with available official and independent information, and resolve material discrepancies before onboarding or continuation.
- Preuves à conserver
- BO declaration; registry reconciliation; discrepancy case; customer clarification; decision record.
- Source primaire
- Proclamation No. 780/2013, art. 5; FIS AML/CFT CDD Directive No. 01/2014; Proclamation No. 980/2016 as amended; Commercial Code No. 1243/2021
Refresh KYB and beneficial ownership on risk and event triggers.
- Action d’implémentation
- Re-verify after ownership, control, director, licence, legal-form, address, activity, sanctions or adverse-information changes and at risk-based intervals. Contractually require prompt notice of material changes.
- Preuves à conserver
- Refresh schedule; customer terms; change alerts; re-verification file; overdue report.
- Source primaire
- Proclamation No. 780/2013, art. 5; FIS AML/CFT CDD Directive No. 01/2014
05Apply PEP and enhanced due diligence controlsEvery identified PEP relationship requires the prescribed enhanced measures; the controls are not optional merely because an internal score is otherwise low.4 éléments+
Identify PEPs, relevant family members and close associates.
- Action d’implémentation
- Screen customers, beneficial owners, controllers and relevant representatives at onboarding and throughout the relationship for domestic, foreign and international-organisation PEP exposure. Investigate and document potential matches.
- Preuves à conserver
- PEP-screening configuration; match disposition; relationship analysis; rescreening log.
- Source primaire
- FIS AML/CFT CDD Directive No. 01/2014
Obtain senior-management approval for every identified PEP relationship.
- Action d’implémentation
- Do not establish or continue an identified PEP relationship without recorded approval from the required level of senior management. Re-escalate material changes and newly identified PEP status.
- Preuves à conserver
- EDD case; senior approval; decision rationale; event-driven reapproval.
- Source primaire
- FIS AML/CFT CDD Directive No. 01/2014
Establish source of wealth and source of funds for every identified PEP relationship.
- Action d’implémentation
- Obtain and corroborate information explaining the PEP's accumulated wealth and the funds used in the relationship or transaction. Resolve unexplained inconsistencies before proceeding.
- Preuves à conserver
- Source-of-wealth analysis; source-of-funds evidence; corroboration; exception decision.
- Source primaire
- FIS AML/CFT CDD Directive No. 01/2014
Apply enhanced ongoing monitoring to every identified PEP relationship.
- Action d’implémentation
- Set increased review frequency, lower escalation tolerance and focused transaction monitoring proportionate to the relationship, while retaining all mandatory PEP measures.
- Preuves à conserver
- Enhanced monitoring plan; scenario assignment; periodic review; investigation outcomes.
- Source primaire
- FIS AML/CFT CDD Directive No. 01/2014
06Monitor transactions and make FIS reportsFinancial institutions should compare activity with the customer profile, investigate unusual activity and file required reports through the FIS-prescribed channel within the legal deadline.4 éléments+
Monitor customers and transactions continuously.
- Action d’implémentation
- Use risk-based scenarios for unusual size, frequency, velocity, cash, linked transactions, counterparties, geography, rapid movement, agent behaviour and activity inconsistent with the expected profile.
- Preuves à conserver
- Scenario inventory; tuning rationale; alerts; investigations; quality-assurance results.
- Source primaire
- Proclamation No. 780/2013; FIS AML/CFT CDD Directive No. 01/2014
File an STR no later than 24 hours after suspicion is formed.
- Action d’implémentation
- Start the controlled reporting clock when facts meet the applicable suspicion standard, obtain required internal review without delaying the legal deadline, and submit through the FIS-prescribed channel no later than 24 hours. Protect confidentiality and prohibit tipping off.
- Preuves à conserver
- Restricted STR case; suspicion timestamp; approval trail; FIS receipt; access log.
- Source primaire
- Proclamation No. 780/2013; FIS AML/CFT CDD Directive No. 01/2014
Report cash transactions above ETB 300,000 or USD 15,000.
- Action d’implémentation
- Aggregate linked cash activity, generate the prescribed cash transaction report for amounts above ETB 300,000 or USD 15,000, submit it through the current FIS process and reconcile accepted reports to source transactions. Cash reporting does not replace STR analysis.
- Preuves à conserver
- Cash-threshold configuration; aggregation logic; report file; receipt; reconciliation; exception log.
- Source primaire
- Proclamation No. 780/2013; FIS AML/CFT CDD Directive No. 01/2014
Document unusual-activity analysis and reporting decisions.
- Action d’implémentation
- Examine origin, destination, purpose, parties, beneficial ownership and source of funds. Record the facts, analysis, decision maker, report rationale and any enhanced monitoring or exit action whether or not an STR is filed.
- Preuves à conserver
- Investigation narrative; supporting data; decision; reviewer sign-off; monitoring plan.
- Source primaire
- Proclamation No. 780/2013; FIS AML/CFT CDD Directive No. 01/2014
07Implement targeted financial sanctions and CPF controlsSanctions controls should address terrorism and proliferation financing and be capable of identifying, freezing and reporting relevant assets without making them available to designated persons.4 éléments+
Screen customers, beneficial owners and transactions against applicable designations.
- Action d’implémentation
- Screen at onboarding, on list updates and before relevant transactions. Include aliases, identifiers, ownership and control, representatives, counterparties and payment data.
- Preuves à conserver
- List inventory; screening configuration; update logs; test results; match files.
- Source primaire
- Proclamation No. 780/2013; Proclamation No. 1132/2019; FIS freezing procedures
Apply WMD proliferation-financing freezing requirements.
- Action d’implémentation
- Implement Proclamation No. 1132/2019 and the applicable freezing order in sanctions governance and transaction interdiction. Prevent release or availability of property subject to a proliferation-financing freeze and follow the prescribed reporting and competent-authority process.
- Preuves à conserver
- CPF procedure; current designation sources; freeze and reject workflow; notification records; legal escalation.
- Source primaire
- Prevention and Suppression of Financing the Proliferation of Weapons of Mass Destruction Proclamation No. 1132/2019 and applicable freezing order
Investigate ownership and control before clearing a potential match.
- Action d’implémentation
- Do not clear a match solely because the named customer differs from the designated person. Assess direct and indirect ownership, control, agents, counterparties and available identifiers and obtain legal escalation where required.
- Preuves à conserver
- Match investigation; ownership analysis; disposition approval; audit trail.
- Source primaire
- Proclamation No. 1132/2019; FIS freezing procedures
Test sanctions and CPF controls independently.
- Action d’implémentation
- Test list ingestion, fuzzy matching, ownership scenarios, payment interdiction, freeze and report workflows, access restrictions and release controls. Track defects to closure.
- Preuves à conserver
- Test scripts; results; issue register; remediation and retest evidence.
- Source primaire
- Proclamation No. 1132/2019; Proclamation No. 780/2013
08Control payments, wallets, agents and remittancesPayment businesses require both AML/CFT controls and the NBE permission, safeguarding, operational, security and consumer-protection framework applicable to their role.4 éléments+
Operate payment systems within ONPS/02/2020 permission.
- Action d’implémentation
- For switching, clearing, settlement or other payment-system operation, map the operating model, governance, security, business continuity, outsourcing and reporting controls to the PSO licence and current conditions.
- Preuves à conserver
- PSO licence; approved service map; operating manual; continuity tests; NBE correspondence.
- Source primaire
- PSO Directive ONPS/02/2020; National Payment System Proclamation No. 718/2011, as amended
Issue payment instruments within ONPS/06/2022, as amended by ONPS/09/2023 and ONPS/10/2025.
- Action d’implémentation
- For wallets, electronic money and other payment instruments, implement current customer tiers, limits, safeguarding, governance, agent, security and reporting controls. Do not use the older joint PSO/PII framework as the current permission matrix.
- Preuves à conserver
- PII licence; current directive matrix; product configuration; safeguarding reconciliation; NBE filings.
- Source primaire
- PII Directive ONPS/06/2022; Amendment Directives ONPS/09/2023 and ONPS/10/2025; NBE payment-system directive index
Apply KYC, KYB and monitoring to customers, merchants, agents and walk-in users.
- Action d’implémentation
- Verify each party under the applicable FIS and NBE rules, enforce current product limits, aggregate linked activity, monitor agent and merchant behaviour and investigate structuring or misuse.
- Preuves à conserver
- CDD/KYB files; current limit register; agent and merchant monitoring; investigations.
- Source primaire
- FIS AML/CFT CDD Directive No. 01/2014; ONPS/02/2020; ONPS/06/2022; ONPS/09/2023; ONPS/10/2025
Use current NBE-listed money-transfer partners.
- Action d’implémentation
- Check the NBE MTA list before onboarding and periodically thereafter, verify each partner's permitted role and corridors, and suspend flows if authorisation lapses or no longer covers the service.
- Preuves à conserver
- Dated MTA-list check; partner file; corridor matrix; periodic recertification; suspension procedure.
- Source primaire
- NBE licensed money-transfer agents list; FXD/01/2024 as amended
09Apply the complete foreign-exchange amendment chainForeign-exchange controls must be based on FXD/01/2024 together with all subsequent amendments, not on a single amendment or an outdated bank practice.5 éléments+
Use FXD/01/2024 as the consolidated baseline.
- Action d’implémentation
- Map foreign-currency accounts, authorised dealers and bureaus, remittances, imports, exports, service payments, capital transactions and documentary requirements to the July 2024 market-based FX framework.
- Preuves à conserver
- FX perimeter memo; product and transaction matrix; authorised-counterparty checks; baseline legal register.
- Source primaire
- Foreign Exchange Directive No. FXD/01/2024
Implement FXD/3/2025's operational relaxations and pricing changes.
- Action d’implémentation
- Update travel and cash-purchase allowances, foreign-currency debit-card utilisation and applicable bank FX fee controls introduced in May 2025. Preserve evidence for customer eligibility, purpose, amount, pricing and the authorised-bank process.
- Preuves à conserver
- FXD/3/2025 change assessment; customer rules; fee configuration; transaction sample; staff communication.
- Source primaire
- Foreign Exchange Directive No. FXD/3/2025; NBE Foreign Exchange Market Measures, May 2025
Implement FXD/04/2026's broader account, payment and market relaxations.
- Action d’implémentation
- Update controls for service-export retention, foreign-currency accounts and cards, documented family service payments, outbound investment approvals, inbound currency treatment, private external-loan guarantees, dividend repatriation, forex-bureau operations and other amended permissions. Retain documentary checks and NBE approval where the amendment still requires it.
- Preuves à conserver
- FXD/04/2026 change assessment; account and payment rules; approval matrix; forex-bureau controls; implementation evidence.
- Source primaire
- Foreign Exchange Directive No. FXD/04/2026
Implement FXD/05/2026 trade-payment changes without removing document verification.
- Action d’implémentation
- Allow authorised banks to approve letters of credit and cash against documents on acceptance for qualifying foreign-currency and retention-account holders without prior NBE approval. Permit shipment initiation before bank approval where allowed, but process payment only after submission and verification of required documents.
- Preuves à conserver
- FXD/05/2026 change assessment; LC/CAD workflow; account eligibility; document checklist; bank approval and payment trail.
- Source primaire
- Foreign Exchange Directive No. FXD/05/2026, sections 3.1-3.4
Monitor FX and remittance flows for AML/CFT and sanctions risk.
- Action d’implémentation
- Detect transaction splitting, unsupported source of funds, unusual beneficiaries, cash conversion, agent concentration, trade-document inconsistency and activity outside the stated purpose. Escalate suspicion to the FIS reporting process within the applicable deadline.
- Preuves à conserver
- FX scenarios; reconciliation; alerts; investigation; STR decision and timing record.
- Source primaire
- FXD/01/2024 as amended; Proclamation No. 780/2013; FIS AML/CFT CDD Directive No. 01/2014
10Retain records and support audit and authority accessFinancial institutions must preserve CDD, transaction and correspondence records for at least ten years in a form that supports reconstruction, supervision and investigation.4 éléments+
Retain CDD and customer-account records for at least 10 years.
- Action d’implémentation
- Preserve identity and verification data, customer profiles, KYB and beneficial-owner records, authority records and risk assessments for the minimum ten-year period measured from the applicable relationship or account trigger under the controlling rule.
- Preuves à conserver
- Retention matrix; lifecycle configuration; sampled files; deletion controls; legal-hold process.
- Source primaire
- Proclamation No. 780/2013; FIS AML/CFT CDD Directive No. 01/2014
Retain transaction records and business correspondence for at least 10 years.
- Action d’implémentation
- Store transaction identifiers, parties, amounts, currencies, dates, channels, wire data, source documents and relevant correspondence for at least ten years and in enough detail to reconstruct individual transactions.
- Preuves à conserver
- Data dictionary; archived records; reconstruction test; retrieval log; destruction record.
- Source primaire
- Proclamation No. 780/2013; FIS AML/CFT CDD Directive No. 01/2014
Preserve investigation, STR, cash-reporting and sanctions evidence securely.
- Action d’implémentation
- Keep alert analysis, decisions, reports, submission receipts, freeze actions and access logs in restricted systems. Apply legal holds and longer sector retention where required.
- Preuves à conserver
- Restricted case archive; receipts; access review; legal-hold register; retrieval test.
- Source primaire
- Proclamation No. 780/2013; FIS AML/CFT CDD Directive No. 01/2014; Proclamation No. 1132/2019
Test control operation and remediate findings.
- Action d’implémentation
- Perform compliance monitoring and independent audit over onboarding, PEPs, sanctions, transaction reporting, payment partners, FX, retention and privacy. Report significant issues to senior management or the board and verify closure.
- Preuves à conserver
- Monitoring plan; audit reports; issue register; remediation; board dashboard.
- Source primaire
- Proclamation No. 780/2013; FIS AML/CFT CDD Directive No. 01/2014; applicable NBE directives
11Protect personal and biometric dataThe Ethiopian Communications Authority administers the 2024 personal-data framework. KYC, monitoring and biometric workflows should satisfy registration, governance, security, localisation, transfer and breach duties.6 éléments+
Register controllers and processors with the Ethiopian Communications Authority.
- Action d’implémentation
- Determine the registration status required for each entity and processing role, submit the prescribed information and maintain current registration details as processing, contact or organisational information changes.
- Preuves à conserver
- ECA registration; renewal or update record; controller-processor inventory; responsibility matrix.
- Source primaire
- Personal Data Protection Proclamation No. 1321/2024
Appoint a data protection officer when the statutory conditions apply.
- Action d’implémentation
- Assess the nature, scale, monitoring and sensitive-data criteria that trigger a DPO. Where required, appoint an independent and adequately resourced DPO with access to senior management and publish or communicate the prescribed contact details.
- Preuves à conserver
- DPO applicability assessment; appointment; mandate; conflict check; contact publication.
- Source primaire
- Personal Data Protection Proclamation No. 1321/2024
Maintain processing records and perform DPIAs for high-risk processing.
- Action d’implémentation
- Inventory purposes, lawful bases, data categories, recipients, retention, security and transfers. Complete and approve a DPIA before high-risk biometric, large-scale monitoring, profiling, remote-onboarding or other processing identified by the proclamation or ECA.
- Preuves à conserver
- Record of processing; lawful-basis analysis; DPIA; risk treatment; approval and review log.
- Source primaire
- Personal Data Protection Proclamation No. 1321/2024
Store personal data in Ethiopia as required and control transfers.
- Action d’implémentation
- Map hosting, backups, support access and onward transfers. Use Ethiopian storage in accordance with the proclamation and obtain prior ECA approval before transferring sensitive personal data outside Ethiopia; document all other transfer conditions and safeguards.
- Preuves à conserver
- Hosting architecture; data-location inventory; transfer assessment; ECA approval; vendor terms.
- Source primaire
- Personal Data Protection Proclamation No. 1321/2024
Notify qualifying breaches within 72 hours.
- Action d’implémentation
- Detect, contain and assess incidents promptly. Notify the Ethiopian Communications Authority and affected data subjects within 72 hours where the proclamation requires notification, documenting content, timing, risk, delay reasons and remediation.
- Preuves à conserver
- Incident plan; breach register; 72-hour timeline; ECA notice; data-subject communication; post-incident review.
- Source primaire
- Personal Data Protection Proclamation No. 1321/2024
Apply heightened controls to sensitive and biometric data.
- Action d’implémentation
- Minimise collection, establish a valid legal condition, encrypt and segregate data, restrict access, test vendors and preserve an accessible alternative where appropriate. Fayda identity proofing does not remove financial-sector CDD or privacy duties.
- Preuves à conserver
- Sensitive-data assessment; biometric policy; access logs; encryption design; vendor review; fallback process.
- Source primaire
- Personal Data Protection Proclamation No. 1321/2024; Ethiopian Digital ID Proclamation No. 1284/2023

11 domaines de contrôle et 48 vérifications d'implémentation avec sources réglementaires directes.
Téléchargez la checklist KYC, KYB et AML pour Éthiopie
Partagez vos coordonnées professionnelles pour accéder immédiatement à la checklist d'implémentation sourcée pour Éthiopie. Date de revue réglementaire : 15 July 2026.
Recevez le PDF immédiatement
Envoyez vos coordonnées pour démarrer automatiquement le téléchargement
Revue et sourcée
Version 1.3, revue le 15 July 2026
Approuvé par des équipes conformité de premier plan
Registre des sources primaires
21 sources utilisées pour cette checklist
Utilisez ces liens pour vérifier la législation, les lignes directrices, les procédures de déclaration et les statuts internationaux.
- Prevention and Suppression of Money Laundering and Financing of Terrorism Proclamation No. 780/2013National Bank of Ethiopia · Primary legislation
- AML/CFT CDD Directive No. 01/2014Financial Intelligence Service · Primary directive
- Financial Intelligence Service resource libraryFinancial Intelligence Service · Official AML/CFT resources
- Banking Business Proclamation No. 1360/2025National Bank of Ethiopia · Primary legislation
- National Payment System directivesNational Bank of Ethiopia · Official directives index
- Payment System Operator Directive ONPS/02/2020National Bank of Ethiopia · Primary regulation
- Payment Instrument Issuer Directive ONPS/06/2022National Bank of Ethiopia · Primary regulation
- Payment Instrument Issuer Amendment Directives ONPS/09/2023 and ONPS/10/2025National Bank of Ethiopia · Primary regulations
- Licensed money-transfer agentsNational Bank of Ethiopia · Official register
- Commercial Registration and Business Licensing Proclamation No. 980/2016 as amended by No. 1150/2019, and Commercial Code No. 1243/2021Ethiopian Ministry of Justice · Primary legislation collection
- Foreign Exchange Directive No. FXD/01/2024National Bank of Ethiopia · Primary regulation
- Foreign Exchange Directive No. FXD/3/2025National Bank of Ethiopia · Primary regulation
- Foreign Exchange Directive No. FXD/04/2026 - Amendment to Foreign Exchange Directive No. FXD/01/2024National Bank of Ethiopia · Primary regulation
- Foreign Exchange Directive No. FXD/05/2026National Bank of Ethiopia · Primary regulation
- Foreign Exchange Management directive indexNational Bank of Ethiopia · Official directives index
- Personal Data Protection Proclamation No. 1321/2024Ethiopian Communications Authority · Primary legislation
- Ethiopian Digital ID Proclamation No. 1284/2023 and Fayda informationNational ID Program · Primary framework and official programme information
- Prevention and Suppression of Financing the Proliferation of Weapons of Mass Destruction Proclamation No. 1132/2019Federal Justice and Law Institute · Primary legislation
- FATF jurisdictions under increased monitoring, 19 June 2026FATF · Official FATF statement
- FATF high-risk jurisdictions subject to a call for action, 19 June 2026FATF · Official FATF statement
- FATF statement removing Ethiopia from increased monitoring, 18 October 2019FATF · Official FATF statement
Réponses directes
Questions KYC, KYB et AML pour Éthiopie
Who receives suspicious transaction reports in Ethiopia?+
The Financial Intelligence Service is Ethiopia's financial intelligence unit. Financial institutions must submit through the prescribed FIS channel, protect report confidentiality and prevent tipping off.
What is the Ethiopia STR deadline for financial institutions?+
An STR must be submitted no later than 24 hours after suspicion is formed under the applicable AML/CFT framework and FIS Directive No. 01/2014. Internal review must not delay that legal deadline.
What occasional cash CDD threshold applies to financial institutions?+
CDD applies to an occasional cash transaction exceeding ETB 300,000 or USD 15,000, including linked transactions. CDD also applies irrespective of value when suspicion arises or existing identity information is doubtful.
What wire-transfer threshold applies?+
The financial-institution wire-transfer threshold is ETB 20,000 or USD 1,000 for the applicable information and verification controls. Relationship-based CDD, suspicion controls and any broader payment rule still apply.
What cash transactions must financial institutions report?+
Cash transactions above ETB 300,000 or USD 15,000 must be reported through the prescribed FIS process. Related cash transactions should be aggregated, and cash reporting does not replace STR analysis.
How long must AML and KYC records be retained?+
Financial institutions must retain CDD, transaction and relevant correspondence records for at least ten years under Proclamation No. 780/2013 and FIS Directive No. 01/2014. Apply a longer period where another law, licence condition or legal hold requires it.
What happens if required CDD cannot be completed?+
Do not open the relationship or perform the transaction. For an existing relationship, terminate it using a controlled process and consider whether the circumstances require an STR, without tipping off the customer.
Which authority administers Ethiopia's personal-data law?+
The Ethiopian Communications Authority is the statutory authority under Personal Data Protection Proclamation No. 1321/2024. The law includes controller and processor registration, conditional DPO, DPIA and record, Ethiopian-storage, transfer-approval and 72-hour breach-notification duties.
Can a fintech use Fayda for KYC?+
Fayda can support identity proofing through an authorised process, but it does not replace financial-sector CDD, KYB, beneficial-owner, PEP, sanctions, source-of-funds or monitoring obligations.
Is Ethiopia currently on the FATF grey list?+
No. Ethiopia is absent from FATF's 19 June 2026 increased-monitoring and call-for-action statements. After re-entering monitoring in 2017, Ethiopia completed its action plan and exited on 18 October 2019.
Méthode de recherche et de revue
VOVE ID Compliance Research cartographie le périmètre réglementaire, traduit les obligations en contrôles opérationnels, relie les affirmations importantes aux sources et date chaque revue.
VOVE ID Compliance Research · Revue le 15 July 2026 · Version 1.3
This checklist is general information, not legal advice. It reflects official materials available on 15 July 2026. The stated financial-institution thresholds, 24-hour STR deadline and ten-year minimum retention period are drawn from Proclamation No. 780/2013 and FIS AML/CFT CDD Directive No. 01/2014. Confirm whether additional sector rules, later amendments, reporting formats or licence conditions apply to the entity and product with FIS, NBE, the Ethiopian Communications Authority and qualified Ethiopian counsel before launch.