Politically Exposed Persons screening is part of the venue's AML/CTF policies under Part 1A of the AML/CTF Act (in force from 31 March 2026). Who counts as a foreign, domestic or international-organisation PEP under the AML/CTF Rules 2025, how third-party screening services (Dow Jones, World-Check) are commonly used, what enhanced CDD a match can trigger, and how false positives are handled. Working reference for AMLCOs and cage staff — not legal advice.
Working reference, not legal advice
PEP screening obligations turn on the venue's AML/CTF policies and the ML/TF risk assessment that drives them. The triggers also depend on which of the three PEP categories applies — foreign, domestic, or international-organisation. For a definitive view, talk to an AML lawyer or an external AML consultant.
The AML/CTF framework treats Politically Exposed Persons as a higher-risk customer category. The reasoning isn't that any individual PEP is a bad actor — it's that corrupt-funds patterns flow disproportionately through prominent-public-function networks, and reporting entities are expected to apply structurally tighter scrutiny to customers in those networks.
The Act recognises three PEP categories — foreign PEP, domestic PEP, and international-organisation PEP — and the ECDD trigger differs between them (see “Three PEP categories” below). The PEP definition captures current and former heads of state or government, senior politicians, senior judiciary, military officials, senior executives of state-owned enterprises, important political party officials, and similar prominent roles. Under s.5 of the AML/CTF Act, “family member” of a PEP includes a spouse or de facto partner, a child, a child's spouse or de facto partner, and a parent of the PEP. Close associates (people known to be in close business or social relationships with the PEP) are separately captured by the Rules.
Practically, a PEP match doesn't fail the customer or block the relationship — depending on the PEP category and the customer's ML/TF risk, it can activate enhanced CDD, senior-manager approval, and intensified ongoing monitoring. The customer relationship continues with tighter scrutiny where ECDD is triggered.
The AML/CTF Rules 2025 (Division 5, rr.6-23 and 6-24, and r.5-5) distinguish between three PEP categories. The enhanced-CDD trigger and the senior-manager approval trigger are not the same across them.
A foreign PEP can be treated as a domestic PEP for the ECDD-trigger sections where the designated service is being provided at or through a permanent establishment in a foreign country and the foreign PEP has that status because of their connection to the same foreign country (rr.6-23(3) and 5-5(2)). For most Australian club scenarios this carve-out will not apply.
The practical upshot for cage and floor screening: a hit on a foreign PEP record requires the venue to apply ECDD and obtain senior-manager approval before continuing; a hit on a domestic or international-organisation PEP record requires the venue to assess the customer's ML/TF risk and apply ECDD only where that risk is high. The risk assessment itself is documented under the venue's AML/CTF policies and ML/TF risk assessment.
Australian gaming venues commonly use a third-party PEP and sanctions screening service. Examples of providers used in the Australian market include:
The screening matches the customer's identified data (name, date of birth, country) against the database. The output is a list of potential matches with similarity scoring. The CDD process captures the screening result, the screening date, and how each match was handled (false positive, genuine match, enhanced CDD activated).
The screening runs at onboarding and at a frequency appropriate to the customer's ML/TF risk, and on specified triggers — including where a customer becomes a PEP after onboarding (Rules 2025 r.6-24). Material changes (new identification documents, change of address, change of residency, change in employment or public role) typically trigger a fresh screening.
Under the AML/CTF Act, a Politically Exposed Person is an individual who is or has been entrusted with prominent public functions — current or former heads of state or government, senior politicians, senior judiciary, military officials, senior executives of state-owned enterprises, important political party officials, and similar prominent roles. The Act recognises three categories — foreign PEP, domestic PEP, and international-organisation PEP — and treats them differently for the enhanced-CDD trigger. The definition extends to family members (under s.5 of the Act: a spouse or de facto partner, a child, a child's spouse or de facto partner, and a parent of the individual) and to close associates (people known to be in close business or social relationships with the PEP). The policy concern is corrupt funds flowing through prominent-public-function networks.
Because PEPs face a higher inherent risk profile for ML/TF reasons. The AML/CTF framework treats PEP status as a relevant risk factor: a foreign-PEP match triggers enhanced CDD and senior-manager approval automatically (AML/CTF Rules 2025 rr.6-23(1)(a) and 5-5(1)(a)); a domestic-PEP or international-organisation-PEP match triggers enhanced CDD and senior-manager approval only where the customer's ML/TF risk is high (rr.6-23(1)(b)–(c) and 5-5(1)(b)–(c)). A PEP match doesn't fail the customer or block the relationship; in the categories and circumstances where ECDD is triggered, it activates the enhanced-CDD layer and senior-manager approval.
Most Australian gaming venues use a third-party PEP and sanctions screening service — Dow Jones Risk & Compliance, World-Check (Refinitiv/LSEG), AcurisRisk, or similar. The service maintains structured databases of PEPs, PEP relatives, PEP associates, and sanctioned individuals/entities. The venue's CDD process runs the customer's identified information against the database at onboarding, captures the result, and re-checks periodically (typically annually or on any material change). The screening is structured data-matching, not visual identification.
The AML/CTF Rules 2025 recognise three categories — foreign PEPs (individuals from overseas jurisdictions in prominent public functions), domestic PEPs (Australian individuals in prominent public functions), and international-organisation PEPs (individuals entrusted with prominent functions by an international organisation, e.g. United Nations, World Trade Organization). They are not treated the same way for the enhanced-CDD trigger. A foreign-PEP match triggers ECDD and senior-manager approval automatically (rr.6-23(1)(a) and 5-5(1)(a)). A domestic-PEP or international-organisation-PEP match triggers ECDD and senior-manager approval only where the customer's ML/TF risk is high (rr.6-23(1)(b)–(c) and 5-5(1)(b)–(c)). The venue's ML/TF risk assessment and AML/CTF policies document how each category is handled. Higher-risk foreign jurisdictions are a separate risk factor that can elevate ML/TF risk independently.
Where ECDD is triggered (a foreign PEP automatically, or a domestic or international-organisation PEP where the customer's ML/TF risk is high), the elements above baseline CDD include: (1) Source of wealth — where the customer's overall wealth comes from, captured with documentation where appropriate (Rules 2025 r.6-23(2)). (2) Source of funds for the specific transactions — different from source of wealth, this captures where the money for this particular transaction or relationship comes from. (3) Beneficial ownership extension — for any entity-form customer, deeper checks on the natural persons behind the entity. (4) Senior-manager approval — required for foreign PEPs and for high-risk domestic / international-organisation PEPs (Rules 2025 r.5-5); the approval is documented in the customer file. (5) Ongoing monitoring intensification — the customer is reviewed at a frequency appropriate to ML/TF risk, with broader data sources (Rules 2025 r.6-24).
Family members and close associates are captured by the same ECDD-trigger rules as the PEP themselves — automatically where the PEP is a foreign PEP, and only where the customer's ML/TF risk is high where the PEP is a domestic or international-organisation PEP. The reasoning is that corrupt-funds networks operate through proximity, not just through the PEP themselves. Family member under s.5 of the AML/CTF Act covers a spouse or de facto partner, a child, a child's spouse or de facto partner, and a parent of the PEP. The venue's CDD captures the relationship type alongside the PEP match.
Both are typically run together by the same screening service against the same database call. PEP screening identifies higher-risk individuals; sanctions screening identifies prohibited individuals (those on Australian or international sanctions lists). The handling is different: a PEP match can trigger enhanced CDD (automatically for a foreign PEP; only where the customer's ML/TF risk is high for a domestic or international-organisation PEP), with the relationship continuing under tighter scrutiny; a sanctions match typically prohibits the relationship continuing at all. Some screening services bundle additional lists — adverse media flags, regulatory warning lists, watchlists from international agencies. The venue configures which lists the screening checks against, with the AMLCO documenting the choice in the venue's AML/CTF policies.
False positives are common because PEP screening matches on structured data (name, date of birth, country) and many people share those attributes. The handling: the AMLCO or trained staff member reviews the match against the customer's verified identification and confirms whether it's a genuine match. False positives are documented and the customer file marked accordingly so future screening doesn't re-flag the same individual. Genuine matches engage the relevant ECDD-trigger rules — automatic for foreign PEPs, conditional on high ML/TF risk for domestic and international-organisation PEPs. The match-handling process itself is part of the venue's AML/CTF policies, with documented procedures and an audit trail showing how each match was resolved.
Where PEP screening sits inside the broader onboarding/ongoing/enhanced CDD framework.
How PEP screening procedures are documented in the venue's AML/CTF policies and how the ML/TF risk assessment treats foreign, domestic, and international-organisation PEPs.
BNDRY bundles Dow Jones PEP/sanctions data through Identitii — relevant context if PEP screening sophistication is a primary procurement criterion.
Screening service vendor-agnostic, results captured against the customer file, false-positive handling documented in the same audit trail as enhanced CDD activation. First three months free, no card up front.