FINTRAC’s Latest AML Penalty Signals Growing Enforcement Pressure on DPMS Businesses

Another major Canadian reporting entity has found itself facing regulatory enforcement action from Financial Transactions and Reports Analysis Centre of Canada (FINTRAC), and this time the spotlight is once again on the dealers in precious metals and stones (DPMS) sector. The administrative monetary penalty, announced in May 2026, centered on what many businesses would consider foundational compliance requirements: incomplete AML policies and procedures, inadequate risk assessments, and failures relating to the mandatory two-year effectiveness review. The penalty itself was significant. The underlying message from FINTRAC was even more significant. The regulator is making it increasingly clear that compliance programs are no longer being assessed on whether they merely exist on paper. They are being examined for depth, operational effectiveness, and alignment with the realities of the business itself. For dealers in precious metals and stones, this should not be viewed as an isolated enforcement action. It reflects a broader shift in Canada’s AML regime toward heightened scrutiny, increased penalties, and more aggressive examinations across sectors that handle high-value goods, large transactions, international clients, and elevated financial crime risk.

The Real Compliance Failure Was Not Just Documentation

One of the most important takeaways from the recent penalty is that the deficiencies identified were not highly technical or obscure requirements. The regulator identified gaps in core AML controls that every DPMS business is expected to operationalize under the Proceeds of Crime (Money Laundering) and Terrorist Financing Act (PCMLTFA). According to FINTRAC, the business failed to properly document key regulatory obligations within its policies and procedures. Areas identified included beneficial ownership verification, politically exposed person (PEP) and head of international organization (HIO) determinations, ongoing monitoring, ministerial directives, and reporting obligations involving virtual currency transactions and transaction aggregation under the 24-hour rule. These are not peripheral obligations. They are central components of a functioning AML framework. In practice, many DPMS businesses encounter the same challenge. Their compliance documentation is often created from generic templates that are not tailored to their actual operations, products, customer base, transaction methods, or geographic exposure. As regulations evolve, the documents are rarely updated in a meaningful way. Over time, the compliance program drifts further away from the business it is supposed to govern. That disconnect becomes highly visible during a FINTRAC examination.

FINTRAC Is Increasingly Focused on Risk Assessments

The most common weakness seen across recent enforcement actions is the risk assessment itself. Many businesses still approach AML risk assessments as static documents rather than operational tools that should drive monitoring, controls, training, escalation, and reporting decisions. In this case, FINTRAC found deficiencies in how the reporting entity assessed customer risk, business relationships, geographic exposure, delivery channels, and high-risk activities. The regulator also criticized the absence of documented rationales for risk scoring and the lack of enhanced mitigation measures for higher-risk scenarios. This reflects a broader regulatory trend across Canada. FINTRAC examinations are becoming increasingly sophisticated in evaluating whether businesses truly understand their own exposure to money laundering and terrorist financing risk. Regulators are looking beyond boilerplate language and expecting businesses to demonstrate why specific risks exist within their operations and how those risks are actively mitigated. For dealers in precious metals and stones, this is particularly important given the sector’s exposure to high-value portable assets, cash transactions, international trade activity, beneficial ownership opacity, sanctions concerns, and politically exposed clients. A risk assessment that does not properly account for those realities will attract regulatory attention quickly.

The Two-Year Effectiveness Review Is Becoming a Major Enforcement Focus

Another notable aspect of the penalty involved the prescribed effectiveness review. Under Canadian AML legislation, reporting entities are required to review the effectiveness of their compliance programs every two years. Yet many businesses still misunderstand what FINTRAC expects this review to contain. An effectiveness review is not simply a confirmation that policies exist. It is intended to independently test whether the compliance framework is functioning properly in practice. That means evaluating whether client identification processes are operating correctly, whether ongoing monitoring is occurring, whether reporting obligations are being met, whether high-risk relationships are escalated appropriately, whether training is effective, and whether deficiencies are documented and remediated. Businesses frequently underestimate the level of evidence FINTRAC expects to see. In this case, the regulator determined the review had not been completed within the required timeframe. That finding alone resulted in a serious violation. As Canada’s AML enforcement environment becomes more aggressive, effectiveness reviews are rapidly becoming one of the first areas regulators scrutinize during examinations.

Why DPMS Businesses Are Under Growing AML Scrutiny

The DPMS sector continues to face heightened regulatory attention because of the unique money laundering risks associated with luxury goods, precious metals, diamonds, watches, and portable stores of value. Internationally, regulators and law enforcement agencies have repeatedly identified precious metals and stones as attractive vehicles for laundering illicit proceeds due to their liquidity, portability, and ability to move across borders with relative ease. At the same time, the Canadian AML regime itself is undergoing substantial expansion. FINTRAC has increased enforcement activity significantly, while legislative reforms are simultaneously increasing potential penalties and strengthening compliance expectations. For many DPMS businesses, the compliance frameworks originally implemented several years ago are no longer sufficient for the current enforcement environment.

The Cost of Waiting Is Increasing

One of the most dangerous assumptions businesses make is believing that regulatory exposure only exists for organizations with intentional misconduct. That is not what recent enforcement actions demonstrate. Many penalties arise from operational gaps, incomplete documentation, outdated frameworks, weak governance, ineffective training, or failure to tailor AML controls to the business itself. In other words, businesses often become exposed not because they intentionally ignored compliance obligations, but because their AML programs stopped evolving while regulatory expectations continued to rise. That gap is where experienced AML advisory support becomes critical. An effective AML consulting partner does more than produce templates. The right advisor helps businesses operationalize compliance requirements in a way that is practical, defensible, and aligned with how the business actually operates.

For DPMS businesses, that may include:

• Tailored AML compliance program development

• Enterprise-wide AML and sanctions risk assessments

• PEP, HIO, and beneficial ownership frameworks

• FINTRAC examination preparation

• Effectiveness reviews and independent testing

• AML training for retail teams and senior management

• Transaction monitoring and STR escalation guidance

• Ministerial directive and sanctions compliance support

• Remediation support following regulatory findings

As FINTRAC enforcement activity accelerates, businesses that proactively strengthen their compliance programs now will be in a far stronger position than those attempting to remediate deficiencies during or after an examination. The businesses attracting the most regulatory scrutiny today are often not the ones without AML programs. They are the ones with programs that no longer reflect regulatory expectations, operational realities, or evolving financial crime risks. For reporting entities operating in the dealers in precious metals and stones sector, this latest penalty should be viewed as more than another enforcement announcement. It is a clear indication of where Canadian AML supervision is heading next.

Contact Platino Consulting today for a consultation on how we can support your AML compliance program.