Qatar -- AML/CFT Compliance Regulatory Overview

**Law No. (20) of 2019 on Combating Money Laundering and Terrorist Financing:** This is the foundational law establishing the AML/CFT framework, defining offenses, obligations for reporting entities, and the powers of regulatory and law enforcement bodies. It aligns Qatar's framework with the latest FATF Recommendations.

**QCB Regulations and Circulars:** The Qatar Central Bank (QCB) issues various circulars and directives that supplement Law No. 20 of 2019, providing detailed guidance on its implementation. While there might not be a single "VASP-specific" circular outside the QFC, the general AML/CFT directives apply to entities dealing with virtual assets.

**Qatar Financial Centre Regulatory Authority (QFCRA) Rulebook:** For entities licensed within the Qatar Financial Centre (QFC), the QFCRA Rulebook, particularly its **AML/CFT Rulebook**, provides specific and comprehensive requirements. The QFC has been more explicit in classifying and regulating virtual asset activities.

**Identification and Verification of Customers:**

**Natural Persons:** Obtain and verify the customer's name, permanent address, date of birth, nationality, and official identification document number (e.g., QID, passport).

**Legal Persons/Arrangements:** Obtain and verify the entity's name, legal form, proof of incorporation/establishment, registered address, details of directors/senior management, and the full structure of ownership and control.

**Beneficial Ownership Identification:** Identify and verify the identity of the beneficial owner(s) – any natural person(s) who ultimately own or control 25% or more of the legal person, or on whose behalf a transaction is being conducted.

**Purpose and Intended Nature of the Business Relationship:** Understand the reasons for establishing the relationship and the expected types of transactions.

**Source of Funds and Source of Wealth:** For high-risk customers or transactions, obtain information on the source of funds (where the funds came from for a specific transaction) and the source of wealth (the overall economic activity that generates the customer's total net worth). This is particularly crucial in the virtual asset space.

**Ongoing Monitoring:** Continuously monitor the business relationship and transactions to ensure they are consistent with the VASP's knowledge of the customer, their business, and risk profile. This includes monitoring for unusual or suspicious activities.

**Politically Exposed Persons (PEPs):** Implement procedures to determine if a customer or beneficial owner is a PEP. Apply enhanced due diligence (EDD) measures to PEPs, their family members, and close associates.

**Sanctions Screening:** Screen customers and transactions against national and international sanctions lists (e.g., UNSC sanctions).

**Enhanced Due Diligence (EDD):** Apply EDD for higher-risk scenarios, which often include:

Transactions involving complex or opaque structures.

Transactions with no apparent economic or lawful purpose.

New technologies or business practices.

**Report Suspicious Activity:** Immediately report any transaction, attempted transaction, or funds where there are reasonable grounds to suspect that they are linked to money laundering or terrorist financing.

**No Tipping-Off:** Prohibited from disclosing to the customer or any third party that a suspicious transaction report has been filed or that an investigation is underway.

**Reporting Body:** All STRs must be submitted to the **Qatar Financial Information Unit (QFIU)**.

**Customer Identification Data:** All records obtained during CDD, including identification documents, verification data, and beneficial ownership information.

**Transaction Records:** Records of all domestic and international virtual asset transactions, including dates, amounts, types of assets, sender and receiver details (where available), and relevant transaction hashes.

**Business Correspondence:** All correspondence related to customer relationships and transactions.

**Duration:** Records must be maintained for a minimum of **five (5) years** from the date of the transaction or the end of the business relationship, whichever is later.

**Role:** The primary financial regulator responsible for licensing, supervision, and enforcement of AML/CFT regulations for financial institutions operating in Qatar, including VASPs that operate outside the QFC framework.

**Role:** The independent financial regulator for firms operating within the Qatar Financial Centre (QFC). The QFCRA has been proactive in establishing a clear regulatory framework for virtual assets (e.g., through its Virtual Asset Services Rules), making it a key authority for VASPs licensed within the QFC.

**Qatar Financial Information Unit (QFIU):**

**Role:** The national central agency responsible for receiving, analyzing, and disseminating suspicious transaction reports (STRs) and other financial intelligence related to money laundering and terrorist financing.

**National Anti-Money Laundering and Terrorist Financing Committee (NAMLC):**

**Role:** Chaired by the QCB Governor, this committee coordinates Qatar's national AML/CFT strategy and ensures compliance with international standards.

**General Prohibition (Outside QFC):** The Qatar Central Bank (QCB) issued **Circular No. 2 of 2018 on Virtual Currencies** (dated 26 February 2018). This circular explicitly prohibits all banks and financial institutions operating under the QCB's supervision from dealing in virtual currencies or facilitating their trading. This effectively creates a widespread ban on most crypto-related activities for licensed financial entities in Qatar.

*Note: Direct official QCB links for older circulars can be challenging to find online, but this circular is widely acknowledged and forms the basis of the QCB's stance.*

**Regulated Environment (Within QFC):** The Qatar Financial Centre (QFC), a separate legal and regulatory jurisdiction, has taken a more nuanced approach. The QFC Regulatory Authority (QFCA) issued its **Digital Assets Rules (ADAR/EDAR) in 2020/2022** which permit and regulate certain digital asset activities, including those involving virtual assets, but under strict licensing and compliance requirements. For entities licensed by the QFC, specific AML/CFT and sanctions obligations apply, aligning with global standards.

**QFC Digital Assets Rules (ADAR/EDAR):**

QFCA Website - Digital Assets (Provides an overview and links to relevant rules)

QFCA (Amended) Digital Assets Rules (EDAR) 2022

**Legal Basis:** Qatar implements UN Security Council Resolutions through its domestic legal framework, primarily **Law No. 20 of 2019 on Combating Money Laundering and Terrorist Financing**. This law mandates compliance with UN sanctions, including the freezing of funds and assets of designated individuals and entities.

Law No. 20 of 2019 on Combating Money Laundering and Terrorist Financing (Al-Meezan, Qatar's Legal Portal)

**Obligations:** Financial institutions (and any QFC-licensed VASP) are required to screen customers and transactions against the UN sanctions lists (e.g., Al-Qaida Sanctions List, ISIL (Da'esh) and Al-Qaida Sanctions List, Taliban Sanctions List, and other country-specific sanctions regimes). They must freeze assets and report any matches to the National Anti-Money Laundering and Combating the Financing of Terrorism Committee (NAMLC/NACLC) or the relevant authorities without delay.

**Indirect but Critical Compliance:** Although not directly mandated by Qatari domestic law, compliance with OFAC (US Office of Foreign Assets Control) and EU sanctions is crucial for any entity operating in Qatar, particularly for those with international dealings, USD transactions, or exposure to US/EU markets. Failure to comply can lead to:

**Secondary Sanctions:** Penalties imposed by the US or EU on non-US/EU persons for engaging in certain activities with sanctioned countries or persons.

**Reputational Damage:** Loss of trust and access to international financial systems.

**De-risking by Correspondent Banks:** Global banks may refuse to process transactions or maintain relationships with entities perceived as high risk due to non-compliance with major sanctions regimes.

**Best Practice:** Any QFC-licensed VASP, to mitigate significant financial, legal, and reputational risks, would be expected to screen against OFAC's Specially Designated Nationals (SDN) and other sanctions lists, as well as the EU's Consolidated Financial Sanctions List.

**Mandatory Screening:** **Law No. 20 of 2019** and its implementing regulations, along with specific rules from the QCB and QFCA, mandate robust Know Your Customer (KYC) and transaction monitoring procedures. This includes screening against:

**UN Sanctions Lists:** As detailed above.

**Qatari National Terrorist Lists:** Issued by the NAMLC/NACLC and published through official channels (see below).

**Other Relevant Lists (Best Practice):** OFAC, EU, and other relevant international sanctions lists (e.g., UK HM Treasury) as part of a comprehensive risk-based approach.

**Real-time or Batch Screening:** Entities must implement systems to screen both new customers/accounts and existing ones, as well as transactions, on an ongoing basis.

**Internal (QCB Ban):** The QCB's Circular No. 2 of 2018 serves as a significant internal geographic restriction, effectively limiting the scope of legal crypto operations to the QFC.

Any financial institution or VASP in Qatar is prohibited from conducting business with, or facilitating transactions to/from, individuals, entities, or jurisdictions subject to UN sanctions.

Practically, to avoid secondary sanctions and maintain international financial access, dealings with jurisdictions under comprehensive OFAC or EU sanctions (e.g., Iran, North Korea, Syria, Cuba) would be severely restricted or entirely prohibited, even for activities within the QFC. This extends to virtual asset transactions, given their potential for cross-border movement.

**Law No. 20 of 2019 on Combating Money Laundering and Terrorist Financing:**

**Imprisonment:** Individuals found guilty of money laundering or terrorist financing offenses can face lengthy prison sentences (e.g., up to 10 years).

**Fines:** Significant monetary fines can be imposed on individuals and legal entities. For legal entities, fines can reach millions of Qatari Riyals (e.g., up to QAR 50 million for certain offenses).

**Confiscation of Assets:** Assets involved in or derived from illegal activities are subject to confiscation.

**QCB:** For entities under its supervision, the QCB can impose administrative fines, suspend or revoke licenses, and issue directives.

**QFCA:** For QFC-licensed entities, the QFCA has the power to impose substantial financial penalties, issue public censures, suspend or revoke licenses, and disqualify individuals from holding management positions. These penalties are outlined in the QFC Regulatory Authority's enforcement policies and rules.

**National Anti-Money Laundering and Combating the Financing of Terrorism Committee (NAMLC/NACLC):** This committee is the primary body responsible for developing Qatar's AML/CFT policies and implementing UN Security Council Resolutions. It coordinates the issuance and updates of national lists.

**Cabinet Resolutions:** The Qatari Cabinet periodically issues resolutions designating individuals and entities as terrorists or terrorist financiers, which triggers asset freezing and other prohibitions. These resolutions are published in the Official Gazette.

*Note: Specific links to these Cabinet Resolutions can be difficult to track down directly on a public, consolidated list, as they are typically published in the Official Gazette as they occur. However, financial institutions in Qatar would be provided with or expected to access these lists via official channels.*

**Ministry of Interior:** Also plays a role in identifying and designating entities related to terrorism.