Financial Action Task Force requirements for information sharing on virtual asset transfers to prevent money laundering.
The Financial Action Task Force (FATF) Travel Rule, formally known as Recommendation 16, represents a landmark in international anti-money laundering regulation for virtual asset service providers (VASPs). Originally designed for traditional wire transfers, the Travel Rule was extended in 2019 to cover virtual asset transfers, requiring VASPs to collect, transmit, and receive originator and beneficiary information for virtual asset transactions.
The Travel Rule addresses a critical gap in AML/CFT frameworks: the relative anonymity of virtual asset transactions. By requiring VASPs to exchange customer identification information, the rule enables law enforcement to trace the flow of illicit funds through the blockchain and hold accountable both the sender and receiver of criminal proceeds. FATF requires countries to ensure that VASPs identify and conduct due diligence on their customers, and that they have systems in place to identify suspicious transactions.
The implementation of the Travel Rule has proven technically and operationally challenging for the crypto industry. The lack of standardized protocols for inter-VASP communication, uncertainty about the legal basis for data sharing, and the emergence of DeFi and unhosted wallets have created significant compliance complexity. FATF has responded by providing additional guidance and extending the implementation review period, while maintaining that the rule applies to all V-to-V transfers involving VASP counterparties.
VASPs must obtain and transmit: name, account number, physical address or national identity number, and legal entity identifier if applicable.
Transmit beneficiary name and account number (or unique transaction identifier) to receiving VASP before or during the transfer.
Verify that counterparty VASP is registered or licensed in its jurisdiction and has Travel Rule compliance procedures in place.
Maintain originator and beneficiary information for at least five years from the transaction date for law enforcement requests.
Apply enhanced due diligence for transfers to/from unhosted wallets, including risk assessment and transaction limits.
VASPs should not process transactions with unregistered or unlicensed counterparties, with limited exceptions.
No universally adopted protocol exists for Travel Rule data exchange, leading to multiple incompatible approaches and bilateral integrations.
Sharing customer personal data across borders raises concerns under GDPR and other data protection regimes, requiring careful legal analysis.
Decentralized protocols present challenges in identifying who "controls" the protocol and therefore would be responsible for compliance.
Different countries have implemented Travel Rule requirements differently, creating complexity for globally operating businesses.
RegPulse provides comprehensive FATF Travel Rule monitoring to keep you informed of global developments.
Tracking FATF mutual evaluation reports on Travel Rule implementation compliance in key jurisdictions.
Monitoring FATF guidance, best practices, and clarifications on Travel Rule interpretation and implementation.
Tracking how FATF member countries implement Travel Rule requirements through national legislation.
Monitoring FATF public compliance assessments on virtual asset and VASP regulation implementation.
Tracking development of Travel Rule protocols and industry solutions for data transmission.
Monitoring FATF typology reports on money laundering and terrorist financing involving virtual assets.
Get real-time alerts for FATF Travel Rule developments and global implementation updates.
Start Free TrialStay ahead of regulatory changes — monitor this regulation automatically
Start Free Trial →