AML and KYC glossary

Key compliance terms for UK accountants and law firms

A plain-English reference guide to the terminology behind AML, KYC, CDD, and compliance workflows. Each definition includes a practical note on how accountants encounter the term day to day.

47 terms defined

Answer-first summary

What are the most important AML terms UK accountants need to know?

The core AML framework for accountants runs from the top-level obligation (AML) down through the practical steps: Customer Due Diligence (CDD) is how you verify clients; Know Your Customer (KYC) is the information you collect; risk assessment determines the level of scrutiny to apply; Enhanced Due Diligence (EDD) applies when risk is elevated; record keeping ensures evidence is available for inspection. Understanding these terms and how they relate to each other is the foundation of a compliant practice.

  • AML is the overarching legal framework; CDD and KYC are how you meet it
  • Risk assessment determines whether Standard CDD or Enhanced Due Diligence applies
  • PEP and sanctions screening are EDD tools for higher-risk clients
  • The MLRO is responsible for suspicious activity reporting within the firm
  • Record keeping obligations last for at least five years after the relationship ends
Practitioner-reviewed

Built for the people who carry AML risk day to day

Written for UK firms that need a defensible compliance workflow, not generic definitions. Partners, MLROs, compliance leads, and fee earners should each be able to see the decision from their own angle.

Managing partner

Commercial risk owner

Uses the glossary to align client acceptance, pricing, and escalation decisions with the firm's documented AML risk appetite.

MLRO / MLCO

Compliance decision owner

Needs terms to map cleanly to MLR 2017 obligations, file evidence, SAR escalation, and inspection conversations.

Client-facing team

Operational user

Needs plain English language for client onboarding, source-of-funds conversations, and consistent file notes.

UK-specific

Centred on MLR 2017, POCA, SAMLA, OFSI, HMRC, professional-body supervision, and SRA workflows.

Actionable

Every term includes how it appears in day-to-day accountancy or legal-sector practice.

What a good AML glossary should help your firm do

  • Use the same language across onboarding, file reviews, training, and partner sign-off.
  • Connect each term to a practical MLR 2017 or POCA obligation instead of leaving it as theory.
  • Give junior staff safe wording for client questions about identity, ownership, funds, and risk.
  • Create a clean path from definitions into deeper guides, service workflows, and software evaluation.
Put knowledge into practice

Put your compliance knowledge into practice with Certivus

Understanding the terminology is the first step. Certivus gives you the workflows — client intake, KYC requests, risk scoring, PEP and sanctions screening, and audit-ready records — to put it into practice across every client.

For a practical guide to AML obligations, see What is AML compliance?

For HMRC inspection preparation, see the HMRC AML audit checklist.