What is Tranche 2 AML/CTF reform in Australia?

Tranche 2 expands Australia's AML/CTF regulations to gatekeeper professions — real estate agents, lawyers, accountants, conveyancers, and TCSPs — with compliance obligations starting 1 July 2026. These businesses must enrol with AUSTRAC, implement AML/CTF programs, conduct customer due diligence, and submit suspicious matter reports.

Who needs AML compliance software in Australia?

Under Tranche 2, AML compliance software is needed by real estate agencies, law firms, conveyancing practices, accounting firms, trust and company service providers (TCSPs), and other gatekeeper professions that must comply with AUSTRAC regulations from July 2026.

What KYC checks are required for AML compliance?

Required KYC checks include: identity document verification (passport, driver's licence), biometric face matching, PEP and sanctions screening, proof of address verification (council rates, water bill, strata bill), source of wealth documentation, and ongoing monitoring of business relationships.

What is an SMR (Suspicious Matter Report)?

A Suspicious Matter Report (SMR) is a mandatory report to AUSTRAC when a reporting entity suspects a person may be involved in money laundering, terrorism financing, or other criminal activity. SMRs must be submitted within 24 hours under the AML/CTF Act 2006.

How does AML Workflow use AI?

AML Workflow uses Anthropic's Claude AI models for four key functions: PEP disambiguation (Haiku 4.5), risk assessment generation (Sonnet 4.6), enhanced due diligence analysis (Opus 4.6), and SMR drafting assistance. All AI outputs are marked as drafts requiring human review — the platform never auto-decides compliance outcomes.

Key AML Regulations and Compliance Obligations Under Tranche 2

Four pillars of AML compliance — CDD, transaction monitoring, SMR reporting, record keeping

Tranche 2 expands the AML regulatory framework in Australia, placing specific obligations on sectors not previously monitored as closely — see our complete guide to AML/CTF rules and obligations. The goal is to close regulatory gaps and enhance financial crime detection across the economy.

The Four Pillars of AML Compliance

These pillars form the foundation of a risk-based compliance framework that every reporting entity must implement.

1. Customer Due Diligence (CDD)

Businesses must implement CDD measures to identify customers and verify their identities before providing a designated service. This includes:

Collecting and verifying customer identification documents
Identifying beneficial owners behind corporate structures and trusts
Understanding the nature and purpose of the business relationship
Applying Enhanced Customer Due Diligence (ECDD) for high-risk customers including foreign PEPs

2. Transaction Monitoring

Ongoing monitoring of transactions is essential to detect unusual patterns that may indicate money laundering or terrorism financing. Businesses must:

Implement systems to monitor customer transactions on an ongoing basis
Flag unusual transaction patterns for investigation
Review and update customer risk profiles as circumstances change
Maintain monitoring records for regulatory review

3. Suspicious Matter Reporting (SMR)

Businesses must notify AUSTRAC of any activities that raise suspicion of money laundering, terrorism financing, or related serious crime. SMR obligations are triggered by "reasonable grounds for suspicion" and carry strict timeframes:

Terrorism financing suspicion: within 24 hours
Other ML/TF suspicion: within 3 business days
Tipping-off offences apply — the customer must not be informed of the SMR

4. Record Keeping

All regulated businesses must maintain comprehensive records of:

Customer identification and CDD documentation
Transaction records and SMRs submitted
AML/CTF program documentation and risk assessments
Staff training records and independent reviews

Records must be kept for a minimum of 7 years and be retrievable on regulator request.

AUSTRAC Guidance and Support

AUSTRAC provides detailed guidance to help industries understand their obligations. Compliance ensures businesses remain aligned with both Australian and international standards. Adhering to these regulations is crucial for maintaining business integrity and safeguarding the economy from illicit activities.