AMLA Launch: What the New EU Anti-Money Laundering Authority Means for Your Business

After years of planning and legislative development, the European Union officially launched the Anti-Money Laundering Authority (AMLA) in July 2025. Headquartered in Frankfurt, Germany, AMLA represents the EU's most significant institutional response to persistent money laundering and terrorist financing challenges that have plagued European financial systems for decades.

AMLA's creation marks a fundamental shift in how anti-money laundering and counter-terrorist financing (AML/CFT) regulation operates across Europe. For the first time, a centralised EU body possesses direct supervisory powers over financial institutions and other obliged entities, ending an era of fragmented national supervision that allowed illicit finance to exploit regulatory inconsistencies and supervision gaps.

For businesses operating across European markets, AMLA's launch is not merely an administrative change—it fundamentally alters compliance obligations, supervisory relationships, and enforcement risks. Understanding AMLA's mandate, powers, and operational approach is essential for any organisation subject to European AML rules.

Why AMLA Was Created

The creation of AMLA responds to longstanding weaknesses in Europe's AML/CFT framework that have enabled major money laundering scandals and undermined confidence in European financial systems.

A History of Scandals

European banks have been implicated in some of the world's largest money laundering cases:

Danske Bank (Estonia): Between 2007 and 2015, approximately €200 billion in suspicious transactions flowed through the bank's Estonian branch, representing one of the largest money laundering scandals in history. National supervision failed to detect or address the problem for years.

Deutsche Bank: Germany's largest bank faced repeated AML enforcement actions for failing to prevent money laundering, including a $630 million fine from US and UK regulators in 2017 related to Russian mirror trades totaling $10 billion.

Swedbank and SEB: Swedish banks were implicated in extensive Baltic money laundering networks, with Swedbank alone processing an estimated €135 billion in suspicious transactions through its Estonian operations.

ING Netherlands: The Dutch bank paid €775 million in 2018 to settle criminal charges for systematic AML failures allowing criminals to launder hundreds of millions of euros.

ABLV Bank (Latvia): The bank collapsed in 2018 after US authorities accused it of institutionalised money laundering, highlighting supervision failures in Baltic states.

Fragmented Supervision Created Vulnerabilities

Pre-AMLA, AML supervision was purely national, with each EU member state responsible for supervising entities within its jurisdiction. This created several problems:

Inconsistent Supervision Quality: Supervisory capabilities varied enormously between member states. Large, well-resourced jurisdictions like Germany, France, and the Netherlands maintained sophisticated supervisory programs, while smaller states sometimes lacked resources, expertise, or political will for effective supervision.

Cross-Border Supervision Gaps: Money launderers exploited regulatory arbitrage, using entities in less-supervised jurisdictions to access broader European markets. National supervisors lacked authority over cross-border operations of entities they supervised.

Banking Union Asymmetry: While banking prudential supervision was centralised under the European Central Bank through the Banking Union, AML supervision remained national, creating misaligned incentives and coordination challenges.

Limited Information Sharing: National supervisors sometimes failed to share critical information about AML risks and enforcement actions with counterparts in other member states, allowing bad actors to move jurisdictions rather than address compliance failures.

The Regulatory Response

The European Commission proposed AMLA as part of a comprehensive AML package including:

• Single Rulebook: The Anti-Money Laundering Regulation (AMLR) establishing directly applicable rules across all member states, eliminating national transposition variations
• Updated Directive: The 6th Anti-Money Laundering Directive (6AMLD) harmonising criminal law definitions and penalties
• AMLA: A new EU authority with direct supervisory powers and coordination responsibilities

After extensive legislative negotiation, the package was adopted, with AMLA becoming operational in July 2025.

AMLA's Structure and Mandate

AMLA is established as a fully independent EU agency with legal personality, operational autonomy, and substantial powers over both private entities and national authorities.

Organizational Structure

Governance Bodies

AMLA operates through several key bodies:

• Board of Supervisors: Composed of representatives from national competent authorities, the European Central Bank, and European Commission, providing strategic direction
• Executive Director: Appointed for a five-year renewable term, leading day-to-day operations and representing AMLA externally
• Administrative Board: Responsible for budget adoption, staffing, and administrative decisions
• Joint Supervisory Teams: Combining AMLA and national authority personnel for direct supervision of high-risk entities

Staffing and Resources

AMLA is building substantial capabilities:

• Target staff of approximately 400 personnel within five years of operation
• Mix of regulatory experts, financial intelligence analysts, technology specialists, and legal professionals
• Secondments from national authorities ensuring knowledge transfer and coordination
• Significant IT infrastructure for data collection, analysis, and supervisory technology

Budget and Funding

AMLA operates through mixed funding:

• EU budget contributions for general operations
• Supervisory fees from directly supervised entities
• Possible fees from national authorities for coordination services

Initial annual budget is estimated at €50-60 million, growing as the authority assumes full operational capacity.

Mandate and Objectives

AMLA's mandate encompasses three main functions:

1. Direct Supervision

AMLA directly supervises selected high-risk financial institutions and other obliged entities deemed to pose the greatest money laundering and terrorist financing risks. This includes:

• Credit and financial institutions operating across multiple member states
• Entities with significant cross-border operations
• Institutions in jurisdictions with historically weak supervision
• Entities that have been subject to serious AML enforcement actions

Direct supervision means AMLA, rather than national authorities, conducts on-site inspections, reviews compliance programs, issues enforcement actions, and imposes penalties.

2. Coordination of National Supervisors

For entities not under direct AMLA supervision, the authority coordinates national supervisors by:

• Developing common supervisory methodologies and standards
• Facilitating information sharing between national authorities
• Coordinating joint supervisory actions across borders
• Providing training and capacity building for national supervisors
• Reviewing national supervisory practices and recommending improvements

3. Financial Intelligence Unit Support

AMLA supports the network of national Financial Intelligence Units (FIUs) by:

• Facilitating cross-border information exchange
• Developing common analysis methodologies
• Coordinating investigations involving multiple jurisdictions
• Maintaining databases of suspicious transaction patterns and typologies
• Supporting operational analysis of major money laundering schemes

Direct Supervision: Who Is Affected

AMLA's most significant power is direct supervision of selected entities. Understanding the selection criteria is crucial for determining whether your organisation falls under AMLA's jurisdiction.

Selection Methodology

AMLA uses a risk-based methodology to identify entities for direct supervision, considering:

Size and Scale

• Total assets exceeding specific thresholds
• Transaction volumes and values
• Number of customers and customer relationships

Cross-Border Activity

• Operations in multiple EU member states
• Significant cross-border payment flows
• International correspondent banking relationships
• Cross-border client bases

Risk Profile

• Presence in high-risk jurisdictions or sectors
• Historical AML compliance issues or enforcement actions
• Exposure to high-risk customer segments (PEPs, correspondent banks, etc.)
• Services particularly vulnerable to money laundering (private banking, trade finance, etc.)

Systemic Importance

• Critical infrastructure or payment system roles
• Market dominance in specific sectors
• Interconnectedness with other financial institutions
• Potential systemic impact of AML failures

Initially Supervised Entities

AMLA began with direct supervision of approximately 40 entities selected based on the criteria above. This initial group includes:

• Major pan-European banking groups with operations across multiple member states
• Large payment institutions and e-money issuers with cross-border operations
• Significant cryptoasset service providers operating under MiCA
• Major credit institutions in jurisdictions with historical supervision weaknesses
• Selected non-bank financial institutions posing elevated risks

The list of directly supervised entities is not static. AMLA can add entities based on evolving risk assessments or remove entities if risk profiles change.

What Direct Supervision Means

Entities under AMLA direct supervision experience:

Primary Regulatory Relationship with AMLA: All supervisory interactions—inspections, reporting, enforcement—occur with AMLA rather than national authorities. National authorities may participate through joint supervisory teams but AMLA holds decision-making authority.

Harmonised Supervision Standards: Supervision follows AMLA methodologies and expectations rather than varying national approaches, potentially increasing consistency but also changing expectations for entities accustomed to specific national regimes.

Enhanced Reporting Requirements: AMLA requires detailed reporting on AML controls, risk assessments, suspicious activity, and compliance metrics. Reporting standards may exceed previous national requirements.

On-Site Inspections: AMLA conducts regular on-site inspections of directly supervised entities, reviewing compliance programs, transaction monitoring, customer due diligence, and governance arrangements.

Direct Enforcement Authority: AMLA can issue binding decisions, impose compliance requirements, and levy financial penalties directly on supervised entities without involving national authorities.

Supervisory Approach and Expectations

Understanding AMLA's supervisory philosophy helps businesses prepare for this new regulatory relationship.

Risk-Based and Proportionate

AMLA emphasizes risk-based supervision, focusing resources on highest-risk areas:

• Entities with more complex risk profiles face more intensive supervision
• Supervisory intensity adjusts based on compliance performance
• Resources concentrate on areas where money laundering and terrorist financing risks are greatest

This means businesses demonstrating strong risk management and compliance may experience less intrusive supervision, while those with identified weaknesses face enhanced scrutiny.

Technology-Driven Supervision

AMLA leverages supervisory technology (SupTech) extensively:

Data Analytics: Collecting and analysing large datasets to identify risk patterns, compliance anomalies, and potential supervision targets.

RegTech Expectations: AMLA expects supervised entities to employ regulatory technology for transaction monitoring, customer screening, and compliance management. Entities using outdated, manual processes may face pressure to modernise.

Remote Supervision: Combining on-site inspections with ongoing remote monitoring through data reporting, reducing supervision costs while maintaining effectiveness.

Peer Benchmarking: Comparing entities' risk profiles and compliance performance against peers to identify outliers and potential concerns.

Outcome-Focused

Rather than mere procedural compliance, AMLA emphasizes actual effectiveness in preventing money laundering and terrorist financing:

• Reviewing whether controls actually detect and prevent illicit finance, not just whether policies exist
• Analyzing quality of suspicious activity reports and whether entities identify material risks
• Assessing whether resources match risk profiles
• Evaluating governance and culture supporting compliance

This means comprehensive compliance programs that fail to deliver results will not satisfy AMLA expectations.

Transparent and Collaborative

AMLA aims for transparent supervisory relationships:

• Clear communication of expectations and findings
• Regular dialogue with supervised entities
• Opportunity to respond to concerns before enforcement actions
• Publication of supervisory guidelines and methodologies

However, transparency does not mean leniency—AMLA has signaled willingness to use enforcement powers when necessary.

Enforcement Powers and Penalties

AMLA possesses substantial enforcement authority to ensure compliance with EU AML requirements.

Investigative Powers

AMLA can:

• Require supervised entities to provide information, documents, and data
• Conduct on-site inspections of premises, systems, and records
• Interview personnel from senior management to operational staff
• Engage external experts for specialised analysis
• Access transaction records, customer files, and internal communications
• Require entities to commission independent reviews or audits at their expense

Entities must cooperate fully with AMLA investigations, with obstruction itself constituting a violation subject to penalties.

Corrective Measures

When AMLA identifies deficiencies, it can impose various remedial requirements:

Compliance Orders: Requiring specific actions within defined timeframes, such as enhancing customer due diligence procedures, improving transaction monitoring systems, or increasing compliance staffing.

Business Restrictions: Limiting or prohibiting certain activities, products, or markets until deficiencies are addressed.

Governance Changes: Requiring replacement of senior management or compliance personnel, restructuring governance arrangements, or appointing independent compliance monitors.

Enhanced Reporting: Mandating more frequent or detailed reporting to AMLA demonstrating progress on remediation.

Financial Penalties

AMLA can impose significant administrative fines:

• Up to €5 million or 10% of total annual turnover for serious violations
• Up to €1 million or 5% of total annual turnover for less severe violations
• Periodic penalty payments of up to €50,000 per day until violations are remedied

Penalties apply to both legal entities and individuals in management positions responsible for violations.

Public Disclosure

AMLA may publish enforcement decisions, including:

• Names of sanctioned entities and individuals
• Nature of violations
• Penalties imposed
• Required remedial actions

Publication serves both transparency objectives and acts as reputational deterrent, particularly significant for institutions where public trust is essential.

Criminal Referrals

While AMLA's direct powers are administrative, it coordinates with national criminal authorities:

• Referring potential criminal violations to appropriate prosecutors
• Providing evidence and analysis supporting criminal investigations
• Coordinating parallel administrative and criminal proceedings
• Supporting cross-border criminal investigations involving multiple jurisdictions

Implications for Businesses

AMLA's launch creates both challenges and opportunities for businesses subject to EU AML requirements.

For Directly Supervised Entities

Organizations under AMLA direct supervision should:

Assess Current Compliance Against AMLA Expectations: AMLA has published supervisory handbooks and guidance. Directly supervised entities should compare current programs against these standards, identifying gaps and enhancement opportunities.

Establish AMLA Relationship Management: Designate senior personnel responsible for AMLA relationship management, ensuring consistent communication and coordination.

Enhance Reporting Infrastructure: AMLA's reporting requirements may differ from previous national requirements. Entities should invest in data collection and reporting systems meeting AMLA specifications.

Prepare for Intensive Supervision: Directly supervised entities should expect regular interactions with AMLA including on-site inspections, information requests, and performance reviews. Preparation and responsiveness are critical.

Consider Technology Investments: AMLA's emphasis on technology-driven compliance means entities using outdated systems may face pressure to modernise. Strategic technology investments can both satisfy AMLA expectations and improve compliance effectiveness.

For Indirectly Supervised Entities

Even entities remaining under national supervision are affected:

Harmonised Standards: AMLA coordinates national supervisors, promoting convergence in supervisory approaches. Entities may see national supervisors adopting AMLA methodologies and expectations.

Potential Future Direct Supervision: Risk profiles can change. Entities currently under national supervision could be designated for AMLA direct supervision if they expand cross-border operations, acquire high-risk entities, or experience compliance problems.

Information Sharing: AMLA facilitates information sharing between national supervisors. Issues identified in one jurisdiction may be shared with supervisors in other jurisdictions where an entity operates.

Cross-Border Compliance Simplification

AMLA's coordination role may actually simplify compliance for multi-jurisdiction entities:

Consistent Expectations: Rather than navigating varying requirements across multiple national supervisors, entities may increasingly deal with harmonised, AMLA-influenced standards.

Single Contact Point: For directly supervised entities, AMLA serves as primary regulator across EU operations, reducing coordination complexity.

Clearer Guidance: AMLA's EU-wide perspective produces guidance applicable across jurisdictions rather than potentially conflicting national interpretations.

Preparing for the AMLA Era

Organizations should take proactive steps to position themselves for success under AMLA supervision.

Immediate Actions

Review Direct Supervision Status: Determine whether your organisation is or may become subject to AMLA direct supervision based on published criteria and risk factors.

Gap Analysis: Compare current AML compliance programs against AMLA guidance documents and supervisory handbooks, identifying enhancement areas.

Technology Assessment: Evaluate whether current compliance technology meets AMLA expectations for automated screening, transaction monitoring, and risk assessment.

Training: Ensure compliance teams understand AMLA's mandate, supervisory approach, and expectations.

Documentation Review: Update policies, procedures, and risk assessments reflecting AMLA supervisory framework and ensuring alignment with harmonised EU standards.

Medium-Term Strategic Initiatives

Compliance Program Enhancement: Address gaps identified in assessment, prioritizing areas AMLA has indicated as supervisory focus points.

Cross-Border Coordination: For multi-jurisdiction entities, enhance coordination across operations ensuring consistent application of AML controls and leveraging AMLA's harmonised approach.

Stakeholder Engagement: Engage with AMLA through consultation processes, industry associations, and direct communication to understand evolving expectations.

Scenario Planning: Develop contingency plans for potential AMLA enforcement scenarios including remediation plans, communication strategies, and resource allocation.

Building a Culture of Compliance

Beyond technical compliance, AMLA's outcome-focused approach requires genuine compliance cultures:

Tone from the Top: Senior leadership must demonstrate genuine commitment to AML/CFT objectives, not mere regulatory box-ticking.

Resource Allocation: Compliance resources should match actual risk profiles. Underfunded compliance functions will struggle to satisfy AMLA expectations.

Effectiveness Metrics: Move beyond counting training sessions or transaction alerts toward measuring actual effectiveness in detecting and preventing illicit finance.

Continuous Improvement: Treating compliance as static checkbox exercise rather than continuous improvement process will not satisfy AMLA's outcome focus.

How VeriPlus Can Help

Navigating AMLA supervision requires robust compliance infrastructure combining technology, expertise, and operational excellence. VeriPlus provides solutions specifically designed for the EU regulatory environment.

Comprehensive AML Screening

Our AML screening platform meets AMLA expectations for automated, risk-based screening:

• Real-time screening against global sanctions lists, PEP databases, and adverse media
• Continuous monitoring for sanctions and PEP status changes
• Configurable risk rules matching your organisation's risk appetite
• Comprehensive audit trails documenting screening decisions
• Integration with major banking and payment platforms

Transaction Monitoring

AMLA expects sophisticated, effective transaction monitoring. VeriPlus provides:

• Scenario-based monitoring detecting money laundering typologies
• Behavioral analysis identifying unusual patterns
• Real-time alerting enabling rapid investigation
• Case management tools supporting investigation workflows
• Regulatory reporting automation

Customer Due Diligence

Enhanced due diligence is foundational to AML compliance. VeriPlus offers:

• Automated identity verification for individuals and entities
• Beneficial ownership identification and verification
• Risk scoring and customer segmentation
• Enhanced due diligence workflows for high-risk customers
• Periodic review automation ensuring ongoing due diligence

Regulatory Reporting

AMLA's reporting requirements demand robust data infrastructure. VeriPlus enables:

• Automated data collection for regulatory reporting
• Standardised reporting formats meeting AMLA specifications
• Audit trails documenting report creation and submission
• Historical reporting retention for supervisory review

Advisory Services

Beyond technology, VeriPlus provides expert guidance:

• Gap analyses comparing current programs against AMLA expectations
• Remediation planning addressing identified deficiencies
• Policy and procedure development
• Training programs for compliance teams
• Ongoing regulatory intelligence tracking AMLA developments

The Road Ahead

AMLA's launch represents just the beginning of institutional development. The authority will evolve its supervisory approaches based on early experiences, industry feedback, and emerging threats.

Expected Developments

Expanding Direct Supervision: AMLA will likely expand the list of directly supervised entities as it builds capacity and identifies additional high-risk institutions.

Enhanced Technology: AMLA's supervisory technology will become more sophisticated, leveraging artificial intelligence and machine learning for risk detection and supervision efficiency.

International Coordination: AMLA will increasingly coordinate with non-EU supervisors and financial intelligence units addressing the global nature of money laundering.

Sectoral Expansion: While initially focused on traditional financial institutions, AMLA will extend attention to emerging sectors including cryptoassets, payment platforms, and FinTech.

Enforcement Track Record: As enforcement actions accumulate, clearer patterns will emerge regarding AMLA priorities, enforcement thresholds, and penalty calculations.

Staying Ahead

Organizations positioned for success will:

• Monitor AMLA guidance, enforcement decisions, and public statements
• Engage in industry consultations and working groups
• Maintain adaptive compliance programs that evolve with supervisory expectations
• Invest in compliance capabilities proactively rather than reactively
• Build collaborative relationships with AMLA based on transparency and good faith

Take Action Now

AMLA supervision is not a distant prospect—it is the current reality for hundreds of European businesses and will increasingly affect thousands more. Organizations that prepare proactively will navigate this transition smoothly, while those that delay may face costly remediation under AMLA scrutiny.

VeriPlus helps organisations build compliance programs that not only satisfy AMLA requirements but create competitive advantages through operational efficiency and customer trust.

Book a demo to see how VeriPlus supports AMLA compliance, or contact our team to discuss your specific supervisory context and compliance needs.

Explore our comprehensive documentation for detailed technical guidance on implementing controls that meet modern European AML supervision expectations.

The era of fragmented, inconsistent AML supervision in Europe is ending. The AMLA era demands excellence—we help you deliver it.