Work with general risk assessment in KYC

Depending on the user rights for the employee, you can control which employee should see, edit or finalize the general risk assessment. Read more in Set user rights for employees about the different user rights for the general risk assessment.

1. Select KYC in the menu. .

Under the heading General risk assessment, you see the status of your agency's risk assessment.

2. Click To KYC overview.

A new window opens and you will now work in the KYC service.

3. Click Start under the header General risk assessment, if you haven't started a risk assessment before.

4. Click Continue under the header General risk assessment, if you have started but not completed the general risk assessment.

Under Activity-specific circumstances, answer the question Description of the agency's activities and organisation and related details to be provided. In the Metod & Källor section, you indicate how you collect data for the general risk assessment and which sources you use.

Here you can specify which tasks and services your agency performs and which risk factors and which level of risk are associated with them. Use your own words when describing the risk factors and motivate on how you have rated the risk. The image below shows an example.

For those who work with task in Practice management

If you are working with tasks, these will be merged automatically from Practice management. You need to supplement the assignments with risk factors and an overall risk level.

Note that even if you work with tasks, you may need to add additional services under the heading Övriga tjänster och produkter, for things that are not done regularly, such as company formation.

1. Click Lägg till riskfaktorto add a risk factor.

2. Name the risk factor and describe in your own words how likely it is that the risk will occur and what consequences it may entail.The image below shows an example.
3. Rate the Sannolikhet (Liten, Medel or Stor) and Konsekvens (Liten, Medel or Stor). Based on your choices, the risk level for the Påverkan risknivå is automatically displayed.
4. Motivate with your own words on how you have rated the risk.
5. Use the drop down in the right upper corner in order to give each assignment an overall Risknivå.

For those who do not work with tasks in Practice management

1. Click on Lägg till tjänst under the heading Övriga tjänster och produkter to add your services manually.

2. Start by naming the service(s).

3. Click Lägg till riskfaktor to complete with the risk factors linked to the various services.

4. Name the risk factor and describe in your own words how likely it is that the risk will occur and what consequences it may entail.The image below shows an example. Use the dropdown in order to give each assignment an overall risk level.

Here you describe in your own words which customer groups your agency works with, which risk factors are associated with them, and make a probability and consequence assessment. You can, for example, define customer groups based on industry, company type,customer category, revenue, risk level or geographic location.

The first question is Identifiera och beskriv kundernas geografiska områden. Here you answer questions linked to your agency's geography, for example whether you operate outside of Sweden, as well as describe in which countries your services are offered and whether there are any greater risks with this.

Here you describe how your communication with your customers takes place, how you obtain accounting documentation, and how the results are communicated to the customer. Is it through physical meetings or does it happen digitally, for example, through collaboration services? Does the agency have any subcontractors? This applies to all types of information and all kinds of channels. Specify how the ID check on customers/representatives is done. Describe in your own words which risk factors are associated with these, and make a probability and impact assessment.

Here you describe how you work with the general risk assessment, how you train/develop skills around the regulations and what channels you use to keep you updated on changes. Describe in your own words which risk factors are associated with these, and make a probability and impact assessment.

Compile an overall risk assessment for the agency's activities by weighing probability and impact from all sections of the general risk assessment. Make an assessment of the residual risk to the organisation after the measures have been implemented. Please also indicate how your risk assessment has been adapted to the size and nature of your organisation.

Describe in your own words what procedures, policies and measures your agency applies to prevent and counter money laundering and terrorist financing. Also indicate who is responsible for updating the general risk assessment, procedures/guidelines and measures. Indicate who is responsible for reporting to the financial police, regardless of the nature or size of the activity.

Here you will have the opportunity to review all responses and complete the general risk assessment:

Note! Only users with Full permission to read, create and finalize the general risk assessment that can complete the general risk assessment.

The general risk assessment must be redone at least once a year. If there are changes in your own operations that can affect the risk level, for example you start offering new services or take in a new type of customer group, the general risk assessment must be redone.

To redo the general risk assessment, click Starta ny in the overview in KYC.

After three months, you must also do a follow-up of the most recently completed risk assessment where you evaluate how the KYC work is going, based on what was written in the most recent assessment, for example whether the routines and measures are being followed and whether they need to be adjusted.

Events will automatically be created alerting you when the follow-up and annual renewal of the general risk assessment is due. These are visible in the overview and event list

Under the heading Allmän riskbedömning in the KYC overview, you can easily see when the last assessment and follow-up was done and when the next assessment is due. By clicking on Se all historik, you get a good overview of the risk assessments that have been carried out in the past.

Yes, all employees with access to KYC can print and export files in pdf-format. This is done from the Overview in the KYC service.

1. Go to Overview - KYC page.

2. Click To KYC overview.

A new window opens and you will now work in the KYC service.

3. Click Senaste bedömning under the header General risk assessment.

4. Select the version you wish to export to pdf.

5. Click the button Exportera on the left hand side.

The file is now created and stored on your computer with the name Allmän_riskbedömning (date).pdf