Guidance on Banking Services for Individuals with Higher Risk Profiles (2026-05-27)

Circulars Email: HKMA E-mail Alert of 28 May 2026 (05:00 p.m. HKT)

Back to Summaries PDF Original Document
Document Information

Title: Guidance on Banking Services for Individuals with Higher Risk Profiles (2026-05-27)

Type: Circulars

URL: https://brdr.hkma.gov.hk/eng/doc-ldg/current/20260526-1-EN

Email Received: 2026-05-28 19:24

Summary Created: 2026-05-28 14:04

English Summary (4836 chars)
Quick section switch
Management Summary
  • Purpose / Background: To balance AML/CFT risk management with the principle of financial inclusion. The HKMA aims to ensure that individuals assessed as "higher-risk" (e.g., those under investigation or prosecution) still have access to basic banking services in Hong Kong, rather than being subject to blanket service denials.
  • One-line conclusion: AIs must move away from "one-size-fits-all" de-risking and instead implement case-by-case risk-based measures that allow for the provision of basic banking services to higher-risk residents.
  • Key Changes:
  • Explicit shift from blanket exclusion to a risk-based "appropriate safeguards" approach.
  • Requirement to distinguish between individuals with prior convictions vs. those currently under investigation.
  • Expectation to provide tailored, limited service arrangements rather than full service termination where possible.
  • Mandate for clear customer communication regarding service limitations and the rationale for risk-based controls.
  • Requirement to review and update internal policies to reflect these financial inclusion expectations.
  • Key Dates / Deadlines: Effective immediately (27 May 2026). AIs are expected to review and revise policies as soon as practicable.
  • Applicability / Impact scope: All Authorized Institutions (AIs), with a primary focus on those providing retail banking services to individual customers.
  • Recommended management actions:
  • Conduct a gap analysis of current customer exit/service-restriction policies against the new guidance.
  • Implement a structured, case-by-case assessment framework for higher-risk individuals.
  • Define "Basic Banking Services" and the corresponding "safe-guarding" thresholds for this cohort.
  • Train front-line and compliance staff on the shift from blanket de-risking to risk-mitigated service provision.
  • Establish clear documentation standards for the rationale behind any service refusal or limitation.
Detailed Summary

1) Document overview
This circular provides formal guidance to AIs regarding the management of banking services for individuals assessed as higher-risk. It emphasizes that while AIs must mitigate AML/CFT risks, they must also support financial inclusion for individuals who have genuine banking needs, particularly those residing in Hong Kong who are under investigation but not yet convicted.

2) Main requirements

  • Risk-Based Approach: AIs must avoid "one-size-fits-all" approaches to risk management.
  • Case-by-Case Assessment: Decisions to restrict services must be based on individual risk assessments, not merely on a higher-risk classification.
  • Tailored Services: For higher-risk residents with legitimate needs, AIs are encouraged to offer "basic banking services" coupled with specific limitations or safeguards commensurate to the assessed risk.
  • Communication: AIs must communicate clearly with affected customers about the nature of the services provided and why specific limitations are applied.

3) Key changes

  • Formal movement towards an explicit mandate to support financial inclusion for the accused/investigated population.
  • Transition from presumptive service termination to the implementation of "service arrangements" that balance risk mitigation with access.

4) Important dates & transition

  • The guidance is effective as of the date of the circular (27 May 2026). AIs are expected to integrate this guidance into their existing AML/CFT compliance frameworks without delay.

5) Impact and risks

  • Compliance: Need to update AML/CFT policies and procedures to ensure alignment.
  • Operations: Potential increase in operational effort to perform more granular, case-by-case reviews of higher-risk accounts.
  • Reputational: Proper implementation reduces the risk of "de-risking" that may negatively affect public perception and financial inclusion goals.

6) Compliance action checklist

  • [ ] Review current internal policy for managing "higher-risk" individual customers.
  • [ ] Identify if current policies use "blanket" exclusion triggers.
  • [ ] Draft internal guidelines for applying "basic banking" service arrangements.
  • [ ] Update staff training modules to reflect the balance between risk mitigation and financial inclusion.
  • [ ] Establish a review panel or process for challenging/verifying high-risk case decisions.

7) Appendices/attachments summary

  • Annex (Guidance on Banking Services): Contains the specific practical guidance on implementing service arrangements and safeguarding measures for higher-risk individuals. It details how AIs should calibrate their risk-based approach to ensure that financial inclusion remains a core consideration while maintaining strict AML/CFT compliance.
中文摘要 (1848 chars)
快速切換摘要區塊
管理層摘要
  • 目的/背景 針對個人客戶被評定為「高風險」(如涉及刑事調查、訴訟或洗錢/欺詐風險)時,銀行往往採取過於保守的服務限制。金管局旨在平衡反洗錢(AML/CFT)要求與普惠金融原則,確保居住在香港的高風險人士仍能獲取基礎銀行服務。
  • 一句話結論 銀行應放棄「一刀切」的拒絕或限制政策,改為依據風險評估,在實施適當防範措施的前提下,為有真實需求的高風險人士提供基礎銀行服務。
  • 關鍵變更
  1. 拒絕「一刀切」: 禁止僅因客戶被評定為高風險即自動拒絕服務。
  2. 風險導向調整: 鼓勵在提供基礎服務時,透過「適當的限制與保障措施」來管控風險,而非直接斷絕關係。
  3. 案例導向: 必須基於個別案例進行評估,區分未定罪人士與已定罪人士的處理方式。
  4. 透明溝通: 要求銀行向客戶清晰解釋服務限制的原因及性質。
  • 重要日期 即日生效(Circular 日期:2026-05-27)。
  • 適用對象 所有認可機構(AIs),特別是提供個人零售銀行服務的機構。
  • 管理層建議行動
  1. 檢視並修訂現行內部政策與操作程序,確保符合「風險導向」原則。
  2. 針對高風險個人客戶建立分級服務框架(如: 基礎帳戶功能限制)。
  3. 對前線人員進行培訓,確保其能正確區分並處理不同風險情境。
  4. 建立與客戶溝通的標準話術,確保溝通清晰透明。
  5. 定期審查高風險客戶組合,並根據最新調查/法律進展調整管控強度。
詳細摘要

1) 文檔概述
本文件由金管局(HKMA)銀行監理部與執法及反洗錢部聯合發布。核心目的在於透過指引,糾正銀行對高風險個人客戶(Higher-risk individuals)提供服務時的過度避險行為,確保香港銀行體系在維持高標準 AML/CFT 防禦的同時,兼顧金融包容性。

2) 主要要求

  • 風險導向原則 要求銀行將風險管控與普惠金融兩者結合,不得簡單地對所有被評定為高風險的客戶實施拒絕服務。
  • 基礎銀行服務 鼓勵銀行為居住在香港、有真實需求的高風險人士提供「基礎服務」(Basic banking services),並配以適當的防範措施。
  • 個案處理機制 服務安排應針對個案(Case-by-case)進行,特別關注「尚在調查或訴訟中、但尚未被定罪」的個人。
  • 禁止一刀切 明確禁止機構僅憑風險分類結果,而不考慮實際案情就對客戶採取統一的強制限制或終止服務。

3) 關鍵變更

  • 從過去常見的「零容忍/高限度」處理模式,轉向「有條件的基礎服務提供」模式。
  • 強調銀行需在「風險暴露程度」與「客戶需求」之間取得平衡,並具體化管控手段(如帳戶功能限制、加強監控)。

4) 重要日期與過渡安排

  • 該指引自 2026 年 5 月 27 日起生效。銀行應立即檢視並調整內部政策,確保現行操作程序符合指引要求。

5) 對機構的影響與風險

  • 營運 需優化 KYC 及持續客戶盡職調查(CDD)程序,以細化高風險客戶的服務級別。
  • 合規 需修訂反洗錢相關作業手冊,避免因過度拒絕服務而招致監管關注,同時需防範因提供服務而產生的洗錢/欺詐風險。
  • 聲譽 明確的溝通機制能降低因服務爭議引發的顧客投訴及公眾輿論風險。

6) 合規動作清單 (Checklist)

  • [ ] 檢討現有「高風險客戶名單」的處理準則,廢除一刀切政策。
  • [ ] 設定一套「基礎銀行服務」定義(如: 轉帳限額、功能權限),作為高風險客戶的預設服務框架。
  • [ ] 更新內部 AML 政策與程序書(P&P),納入本指引關於普惠金融的要求。
  • [ ] 向前線及審批人員發布內部指引,規範針對未定罪人士的處理說明。
  • [ ] 審查目前的客戶溝通範本,確保解釋內容符合透明度要求。

7) 附件/附錄摘要

  • Annex(附件) 該附錄詳述了提供銀行服務予高風險人士的實際操作指引,旨在平衡 AML/CFT 監管負擔與普惠金融需求,是本 Circular 的核心執行框架。其內容側重於如何在保留風險監控門檻的前提下,靈活運用帳戶功能限制,是各銀行落實相關內部政策的指導依據。