TCSP1-SIS2A Form Guideline

Supplementary Information Form 2A is a supplementary information form that TCSP licensees must submit annually.

Part 1: Guidance on filling out business information

Staff planning

Fill in the key points:

• The number of staff expected to provide trust or company services in Hong Kong must include:
• All directors (whether executive or not)
• Full-time staff providing trust or company services
• Part-time staff providing trust or company services

Professional Tips:

When filling out this form, consider your business development plan for the next 12 months to ensure your staffing is adequate to handle the anticipated volume. A conservative estimate is recommended to avoid staff shortages that could impact service quality later in the process.

Customer source analysis

Three major source categories:

1. Introductions/Referrals - usually account for the largest portion of business
2. Walk-in - Direct inquiries from customers
3. Other - Online marketing, conference contacts, etc.

Entry Strategy:

• The total weight must equal 100%
• It is recommended to fill in the information based on actual data from the past 12 months
• For the "Other" category, please provide a detailed explanation of the specific source

Client Residence/Place of Establishment

Compliance Considerations:

• Hong Kong Clients - Relatively Lower Risk
• Mainland China Clients - Requires Enhanced Due Diligence
• 其他国家/Other Countries/Regions - Requires Assessment of Local Regulatory Environment and Risk Level

Part II: Anti-Money Laundering and Terrorist Financing Regulations

Risk-Based Approach (Articles 1-3)

Institutional Risk Assessment (Section 1(a))

Reasons for answering "yes":

• According to the Hong Kong Anti-Money Laundering Guidelines, all TCSP licensees must conduct a comprehensive institutional risk assessment covering:
• Customer risk
• Geographic risk
• Operational risk
• Product and service risk

Implementation recommendations:

Establish a standardized risk assessment framework and regularly update the risk matrix to ensure that the assessment covers all business areas.

Regular Risk Assessment (Section 1(b))

Compliance Requirements:

• A comprehensive review every two years
• Immediate review upon major triggering events
• Triggering events include: new product launches, regulatory changes, major customer changes, etc.

New Product Risk Assessment (Section 2)

Proactive Compliance:

Before launching any new service, a risk assessment must be completed and appropriate risk management measures must be developed.

AML/AML/CFT System Establishment (Articles 4-8)

Policy and Procedure Establishment (Article 4)

Core Elements:

1. Compliance Management Arrangements - Clear Division of Responsibilities
2. Independent Audit Function - Regularly Review System Effectiveness
3. Employee Selection Process - Ensure the Right People Are Hired
4. Ongoing Training Program - Maintain Compliance Awareness Within the Team

Appointment of Compliance Officer (Article 6)

Important Reminder:

• A Compliance Officer (CO) and Money Laundering Reporting Officer (MLRO) must be appointed.
• Both roles can be held by the same individual, but responsibilities must be clearly defined.
• Documents of appointment and a description of responsibilities must be kept.

Professional Advice:

It is recommended to appoint a senior staff member with relevant experience and qualifications to ensure they have sufficient authority to carry out their duties.

Customer Due Diligence (Section 9)

When to Conduct (Section 9(a))

CDD must be conducted in the following circumstances:

1. Before establishing a business relationship
2. Before executing a non-recurring transaction of HK$120,000 or more
3. When money laundering/terrorist financing is suspected
4. When the authenticity of past identification information is in doubt

Specific Measures (Section 9(b))

Core Requirements:

1. Identification and Verification - Use reliable independent sources
2. Beneficial Owner Identification - Understand ultimate control
3. Purpose of the Business Relationship - Understand the reasons for establishing the relationship
4. Agent Authorization - Verify authority to act on behalf of clients

Strict Due Diligence (Section 10)

Managing High-Risk Situations

Circumstances requiring EDD:

• Clients from high-risk jurisdictions
• Politically Exposed Persons (PEPs)
• Complex corporate structures
• Unusual trading patterns

Handling Politically Exposed Persons

Category Management:

1. Non-Hong Kong PEPs - All EDD measures must be implemented
2. Hong Kong PEPs/International Organization PEPs - EDD implemented in high-risk situations
3. Enhanced Ongoing Monitoring - All PEP relationships

Ongoing Monitoring (Article 12)

Systematic Monitoring Requirements

Core Principles:

1. Regular Review - Ensure data is up-to-date
2. Transaction Review - Comply with customer profile and risk profile
3. Anomaly Identification - Proactively identify suspicious transactions

Professional Advice:

It is strongly recommended to implement an AML system for continuous monitoring to improve efficiency and accuracy.

The Importance and Recommendations of an AML System

Why is an AML System Necessary?

Efficiency Improvement:

• Automated Customer Screening
• Real-Time Risk Assessment
• Automated Transaction Monitoring

Compliance Assurance:

• Reduce Human Error
• Ensure Procedural Consistency
• Complete Audit Trail

Cost Effectiveness:

• Long-Term Labor Cost Savings
• Reduced Compliance Risk
• Improved Service Quality

System Selection Recommendations

Core Functional Requirements:

1. Customer Screening - Integration with Sanctions Lists and PEP Database
2. Risk Assessment - Automated risk calculation and grading
3. Transaction monitoring - Identify unusual trading patterns
4. Report generation - Automatically generate compliance reports
5. Document management - Electronic document storage

Record retention requirements (Article 15)

Retention Periods

55-Year Rule:

• Client Relationship Documents: 5 years after the relationship ends
• Transaction Documents: 5 years after the transaction ends
• Training Records: Minimum 3 years

Document Categories

Documents Required to Be Retained:

1. Identification Documents
2. Due Diligence Records
3. Business Communication Records
4. Transaction Analysis Results
5. Training Records

Training Requirements (Articles 16-18)

Training Content Planning

Scope of Coverage:

1. AML/CFT Regulatory Requirements
2. Company Policies and Procedures
3. Suspicious Transaction Identification
4. Emerging Money Laundering Techniques
5. Personal Legal Responsibility
6. New Product Development
7. Innovative Technology Applications

Training Record Management

Record Elements:

• Training Target Groups
• Training Duration
• Training Content
• Assessment Results

Best Practices for Form Completion

Form Completion Principles

1. Be Honest and Accurate - All information must be true
2. Be consistent - Avoid conflicting information
3. Be detailed - Explain the reason for a "no" answer
4. Preserve evidence - Back up all supporting documents

Common Mistakes to Avoid

1. Underestimating risk - Overly optimistic assessments
2. Incomplete procedures - Omitting important steps
3. Inadequate records - Lack of sufficient evidence
4. Inadequate training - Neglecting ongoing education

Summary

The TCSP1-SIS2A form is not only a compliance requirement but also a crucial tool for enterprise risk management. Through a systematic approach and appropriate technical support, we can establish a robust AML/CFT program that meets regulatory requirements and improves business operational efficiency.

Key Success Factors:

• Senior Management Commitment
• Adequate Resource Allocation
• Continuous Training and Updates
• Technical System Support
• Regular Review and Improvement

合规不Compliance is not a one-time effort, but an ongoing process. Investing in appropriate AML systems and training will provide your business with long-term competitive advantage and risk mitigation.务带来长远的竞争优势和风险保障。