Skip to main content

Prevention of money laundering and the financing of terrorism

Customer due diligence 

6.1 In the Regulations, a key requirement is to make checks on customers, known as customerdue diligence or CDD.

6.2 Casino operators must apply CDD measures if they:

  • establish a business relationship (see paragraphs 3.9 to 3.13 and 7.5 to 7.9)
  • suspect money laundering or terrorist financing
  • doubt the veracity or adequacy of documents or information previously obtained for the purposes of identification or verification
  • carry out an occasional transaction that amounts to a transfer of funds (In this context, 'transfer of funds' means any transaction at least partially carried out by electronic means on behalf of a payer through a payment service provider, with a view to making funds available to a payee through a payment service provider, irrespective of whether the payer and the payee are the same person and irrespective of whether the payment service provider of the payer and that of the payee are one and the same, including: (a) a credit transfer as defined in point (1) of Article 2 of Regulation (EU) No 260/2012; (b) a direct debit as defined in point (2) of Article 2 of Regulation (EU) No 260/2012; (c) a money remittance as defined in point (13) of Article 4 of Directive 2007/64/EC, whether national or cross border; (d) a transfer carried out using a payment card, an electronic money instrument, or a mobile phone, or any other digital or IT prepaid or postpaid device with similar characteristics.) which is more than €1,000 (regulation 27(1)). 

6.3 Regardless of whether they have established a business relationship with the customer, suspect money laundering or terrorist financing, or doubt the veracity or adequacy of documents or information previously obtained for the purposes of identification or verification, casino operators must also apply CDD measures in relation to any transaction that amounts to €2,000 or more, whether the transaction is executed in a single operation or in several operations which appear to be linked (regulation 27(5). 

6.4 'Transaction' consists of:

  • the wagering of a stake, including:
    • the purchase from, or exchange with, the casino of tokens for use in gambling at the casino
    • payment for the use of gaming machines
    • the deposit of funds required to take part in remote gambling, or
  • the collection of winnings, including the withdrawal of funds deposited to take part in remote gambling or winnings arising from the staking of such funds (regulation 27(6)). 

6.5 In determining whether a transaction amounts to €2,000 or more, casino operators do not need to take account of winnings from a previous transaction which had not been collected from the casino, gaming machine or remote gambling, but are being re-used in the transaction in question (regulation 27(7)). This means that casino operators do not need to include restaked winnings (so called 'recycled winnings', 'turnover' or 'churn') when determining whether a customer has reached the €2,000 threshold.

6.6 Casino operators must also apply CDD measures:

  • at other appropriate times to existing customers on a risk-based approach
  • when the operator becomes aware that the circumstances of an existing customer relevant to its risk assessment for that customer have changed (regulation 27(8)). 

6.7 In determining when it is appropriate to apply CDD measures to existing customers, casino operators must take into account the following, among other things:

  • any indication that the identity of the customer, or of the customer's beneficial owner, has changed
  • any transactions which are not reasonably consistent with the operator's knowledge of the customer
  • any change in the purpose or intended nature of the operator's relationship with the customer
  • any other matter which could affect the operator's assessment of the money laundering or terrorist financing risk in relation to the customer (regulation 27(9)). 

Next chapter: Customer due-diligence measures