What if you could see the inspection through their eyes?
An AML inspector walks into your office. Their tone is polite. They ask for documents. They may say it’s “just a routine check.”
But in truth, the inspection began long before they stepped in, and their mind is already processing dozens of silent signals.
This blog puts you in the inspector’s seat: not just the checklists, but the psychology. What they notice. What they don’t say. And what they really expect you to show.
Think Like an Inspector: The Compliance Psychology
AML inspections are part compliance audit, part behavioral analysis.
Inspectors aren’t just verifying forms. They’re testing assumptions:
- Is this firm serious about AML, or ticking boxes?
- Can this team handle real red flags, or just pretend to?
- Is the leadership involved, or detached?
Your documentation answers one layer. Your behavior answers the rest.
Five Things Inspectors Look For, But Rarely Ask Directly
1. "Show Me, Don’t Tell Me", Real Evidence, Not Good Intentions
You say your firm screens for PEPs? Prove it.
You say you perform risk assessments? Show live examples, not blank templates.
Tip: If it’s not documented, it didn’t happen. Inspectors won’t chase your words, they’ll chase your records.
2. "Who’s Actually in Control?", Leadership Accountability
Compliance isn’t a back-office task. It’s a governance issue.
Inspectors observe:
- Does the Compliance Officer own the subject matter?
- Can the CEO speak to AML risks without needing a script?
- Is there a real reporting line from compliance to management?
Why It Matters: Firms where the CEO is disengaged, or the CO is isolated, signal weak governance structures.
3. "Would This System Catch a Launderer?", Functional Red Flags
Beyond theory, they test your system logic:
- How would a suspicious transaction be spotted?
- Is there a record of rejected STRs or only zero submissions?
- Are staff trained to escalate grey-area cases?
Practical Check: If you’ve never documented an STR decision, even a rejected one, it suggests your process might be passive, not proactive.
4. "Is Risk Real or Just a Label?", Meaningful Risk Scoring
Risk scores without explanation raise red flags.
Inspectors assess:
- Why a client is high, medium, or low risk
- Whether Enhanced Due Diligence is actually triggered
- If your scoring adapts when things change (e.g. new country of funds)
Behavioral Insight: Assigning “Low Risk” to every client with no variation is viewed as willful negligence, not efficiency.
5. "What’s Behind That Folder?", Spot Checks for Substance
Inspectors pick random files and explore:
- Is the ID expired?
- Are SoF and SoW clearly documented?
- Do internal notes reflect actual red flags or investigations?
Field Reality: One well-reviewed file can earn trust. One messy one can raise the entire firm’s risk rating.
Why This Blog Is Different
Most AML guides give you checklists. This blog gives you behavioral advantage.
If you understand how inspectors think, not just what they check, you position your firm ahead of the curve.
That’s exactly why InfoAML was built with:
- Document versioning and client-specific folders
- Risk scoring with logic, not labels
- Screening history and rejected STR logs
- Internal notes + audit trails that reflect your actual decision-making
Bonus: Documents to Prepare Before the Inspector Asks
Inspections don’t always begin with a checklist, but they often end with penalties when documentation is missing, outdated, or disorganized.
Even though some of the following items aren’t strictly AML-specific, they’re commonly reviewed by inspectors to assess overall business legitimacy and risk alignment.
Here’s what you should prepare, organize, and keep readily accessible:
Core AML Compliance Documents
- goAML Registration Certificate and current login access
- Latest AML/CFT Policy, signed and approved by management
- Risk Assessment Matrix with risk categories and scoring logic
-
Sample KYC Files for individuals and legal persons, including:
- Valid ID/passports
- Verified Source of Funds (SoF) and Source of Wealth (SoW)
- Beneficial Ownership declarations
- Sanctions Screening Logs (UAE, UN, and others used)
- PEP Screening Logs, matches and cleared cases
- Training Records, attendance sheets, topics, trainers, dates
- STR/SAR Register, including:
- Filed reports (if any)
- Documented decisions not to file (with rationale)
- Internal AML Communications, escalation memos, alerts, or staff inquiries
- Ownership & Control Documents (UBO info, corporate structure charts)
- Inspection History (past reports, corrective actions if applicable)
- Past Inspection or Audit Reports, if any, with response actions
General Business Documents Commonly Reviewed During AML Inspections
- Valid Trade License and any AML-specific registration
- Tenancy Contract or property ownership certificate
- Company Bank Statements (past 6-12 months)
- Organizational Chart showing reporting lines (especially compliance)
- External Auditor Report (if applicable)
- Corporate Structure & Shareholder Register
- Memorandum of Association (MoA) or equivalent founding documents
- Employee Register (staff list, especially for front office & compliance)
Smart Tip: Don’t just store these. Label them, timestamp them, and centralize them, whether in folders, digital drives, or compliance platforms like InfoAML. You’re not just organizing files, you’re demonstrating governance.
Final Word: Win the Inspection Before It Starts
AML inspections are never truly “routine.” Every inspection is an opportunity, or a liability.
If you prepare like it’s a formality, you risk failing.
If you prepare like it’s a conversation between two professionals who understand risk, you earn respect.
“The best AML programs don’t perform for inspectors. They perform for integrity. The inspector just verifies it.”
👉 Ready to see how InfoAML makes your compliance inspection-ready from day one? Book a Demo