Compliance Glossary

The Single Euro Payments Area (SEPA) is a payment-integration initiative that lets consumers, businesses, and public bodies make and ...

The Sixth Anti-Money Laundering Directive (6AMLD) is an EU criminal-law regulation that harmonizes the definition of money laundering ...

Smurfing is a money laundering technique in which a large cash sum is split into multiple smaller deposits or transactions, each kept below ...

SOC 2 is an auditing standard, developed by the American Institute of Certified Public Accountants (AICPA), that evaluates a service ...

The Society for Worldwide Interbank Financial Telecommunication (SWIFT) is a Belgium-based cooperative that operates a secure messaging ...

The Specially Designated Nationals List (SDN) is a sanctions database published by the U.S. Office of Foreign Assets Control (OFAC) that ...

A stablecoin is a cryptocurrency that pegs its value to a reference asset, usually a fiat currency like the US dollar, to hold a steady ...

Strong Customer Authentication (SCA) is a payments security requirement that verifies a payer's identity using at least two independent ...

Structuring is an anti-money laundering offense in which a person deliberately breaks financial transactions into smaller amounts to avoid ...

A Suspicious Activity Report (SAR) is a regulatory disclosure document that financial institutions file with their national financial ...

A Suspicious Transaction Report (STR) is a mandatory regulatory filing that financial institutions submit to their jurisdiction's financial ...

Synthetic identity fraud is a financial crime in which criminals combine a real Social Security Number with fabricated personal details to ...

Tabletop exercise is a discussion-based preparedness activity in which key organizational stakeholders walk through a predefined crisis ...

Tax evasion is an illegal act in which an individual or entity deliberately misrepresents or conceals income, assets, or financial ...

Terrorism financing (TF) is a financial crime category that covers the provision, collection, or movement of funds intended to support ...

Third-party fraud is a category of financial crime in which a perpetrator uses a real person's identity, account credentials, or financial ...

Third-Party Risk Management (TPRM) is a governance discipline that identifies, assesses, and controls the risks a financial institution ...

Three Lines of Defense is a risk governance framework that divides accountability for risk management into three distinct organizational ...

Threshold tuning is an AI-governance practice that adjusts the decision cutoffs in detection models and rule-based systems to control the ...

Tokenization is a data-protection method that replaces sensitive data, such as a card number or account identifier, with a non-sensitive ...