Designated Non-Financial Business or Profession (DNFBP): Definition and Use in Compliance

What is Designated Non-Financial Business or Profession (DNFBP)?

A Designated Non-Financial Business or Profession (DNFBP) is a non-bank business that FATF requires to follow anti-money laundering and counter-terrorist financing rules because its services can be abused to move or hide criminal money. The category exists to cover the gatekeepers that sit outside banking but still touch high-value transactions.

FATF lists five groups. Casinos, when customers transact above a set threshold. Real estate agents involved in buying and selling property. Dealers in precious metals and stones, for cash deals above a threshold. Lawyers, notaries, and other independent legal professionals when they handle client money, property, or company formation. Accountants and trust or company service providers performing similar activities.

The trigger is the activity, not the job title. A solicitor drafting a will is not acting as a DNFBP. The same solicitor holding client funds to complete a property purchase is. This distinction matters because it sets the boundary of regulatory duty.

Why single these professions out? Criminals follow the path of least resistance. Once banks tightened controls, illicit funds moved toward sectors with no reporting obligations. A shell-company purchase of a luxury apartment, arranged through a lawyer and an estate agent, can launder large sums while looking like an ordinary deal. Bringing these firms into the AML perimeter removes that blind spot.

In practice the obligations are the same controls banks run: identify the customer, find the real owner, assess risk, monitor, and report. A precious-metals dealer accepting a six-figure cash payment, for example, must verify identity and consider filing a report if the source of funds looks suspect.

How is Designated Non-Financial Business or Profession (DNFBP) used in practice?

Compliance officers use the term in two directions: as something they are, and as something they supervise or bank.

A firm that qualifies as a DNFBP builds an AML program scaled to its risk. Take a mid-size accounting practice. It screens new corporate clients against sanctions and PEP lists, verifies the beneficial owner of each entity, and applies a risk-based approach so that a local retailer gets standard checks while an offshore holding structure gets enhanced due diligence. When the partners spot something off, say a client insisting on settling fees through a third party in a high-risk jurisdiction, they file a suspicious activity report with the national FIU.

Banks use the term differently. To a bank, a law firm or casino is a customer, and a higher-risk one. During onboarding the bank's KYB process asks whether the DNFBP runs its own AML controls. A casino with weak controls becomes a conduit for placement, so the bank may apply tighter monitoring or, in some cases, de-risk the relationship entirely.

Tooling depends on size. A two-partner law firm might log checks in a spreadsheet and screen manually. A national real estate chain runs automated screening and case management. The decision usually comes down to transaction volume and how much regulatory exposure the leadership is willing to carry.

Designated Non-Financial Business or Profession (DNFBP) in regulatory context

The legal backbone is FATF Recommendations 22 and 23, which extend customer due diligence, record-keeping, and suspicious-transaction reporting to DNFBPs. You can read the full standard on the FATF Recommendations page. FATF sets the standard; individual countries write it into law and supervise compliance.

The names diverge across jurisdictions. The European Union, through its successive AML Directives including the Sixth Anti-Money Laundering Directive, calls these firms "obliged entities" and folds them into the same regime as banks. In the United States, the picture is uneven. Casinos have long been subject to the Bank Secrecy Act and report to FinCEN, while lawyers and accountants have historically faced lighter federal AML duties, a gap FATF has criticized in its mutual evaluations of the US.

Enforcement is real. The FATF mutual evaluation process scores countries partly on how well they regulate DNFBPs, and weak coverage can push a jurisdiction toward the FATF grey list. Real estate has drawn particular attention. FinCEN's geographic targeting orders, and its 2024 residential real estate rule, force reporting on certain non-financed property transfers precisely because the sector was a known laundering channel.

Consider a notary in an EU member state. Under national transposition of the directives, that notary must identify clients, verify ownership of any company involved in a transfer, and report suspicion to the FIU. Failure brings supervisory penalties. The obligation is enforceable, audited, and increasingly checked against documented evidence.

Common challenges and how to address them

The biggest problem is awareness. Many small DNFBPs do not see themselves as financial businesses and underestimate their duties. A sole-practitioner conveyancer may not realize that holding completion funds makes them a regulated entity. The fix is sector-specific guidance and supervisory outreach, plus clear internal triggers that flag when a matter crosses into regulated territory.

Resourcing is the second challenge. A boutique firm cannot staff a compliance department the way a bank does. Practical responses include outsourcing screening to a vendor, adopting a shared MLRO service, and using automated sanctions screening so a small team can clear checks without manual list lookups. The goal is proportionate controls, not a bank-grade program the firm cannot sustain.

Beneficial ownership is a recurring pain point. DNFBPs frequently deal with corporate structures, and identifying the ultimate beneficial owner behind a shell company is hard when registries are incomplete. Pairing registry data with independent verification and adverse media checks closes part of that gap.

False positives drown small teams. A name-screening tool that flags every partial match wastes the limited hours a firm has. Threshold tuning and fuzzy matching calibrated to the firm's actual client base cut the noise.

One more issue: evidence. Supervisors ask DNFBPs to show their work. Keeping a clear audit trail of every decision, who checked what and why, turns an exam from a scramble into a routine review.

Related terms and concepts

DNFBPs sit inside the wider financial crime compliance framework, so the surrounding vocabulary overlaps heavily with banking AML.

On the customer side, the core concepts are know your customer and customer due diligence, which scale up to enhanced due diligence for higher-risk relationships and down to simplified due diligence where risk is low. Identifying the beneficial owner is central, since DNFBPs often face opaque corporate clients.

On reporting, the key outputs are the suspicious activity report and, in many jurisdictions, the suspicious transaction report, both filed to a Financial Intelligence Unit. Casinos may also handle currency transaction reports for large cash dealings.

The governing body is the Financial Action Task Force, whose recommendations created the category and whose evaluations drive national enforcement. Closely related is the role of the money laundering reporting officer, the person responsible for filing reports inside a covered firm.

Typology-wise, DNFBPs feature in real estate money laundering, casino money laundering, and art-based money laundering. Each shows why FATF pulled these professions into the perimeter. Firms that want to operationalize these duties often turn to KYC and AML automation to keep pace without overbuilding.