North America


    Title III of the Uniting and Strengthening America by Providing Appropriate Tools Required to Intercept and Obstruct Terrorism (USA PATRIOT) Act of 2001 sets forth special measures for international counter money laundering, reporting of suspicious activities by financial institutions as well as currency crimes. 

    Last Updated: July 30, 2019

  • Requirements

    Subtitle A of Title III of the USA PATRIOT Act provides that it may be required from financial institutions and domestic financial agencies to take certain measures if reasonable grounds exist for concluding that a jurisdiction outside of the United States, or a financial institution operating outside of the U.S., or more classes of transactions within, or involving, a jurisdiction outside of the U.S., or types of accounts is of primary money laundering concern. These measures may include recordkeeping and reporting of certain financial transactionsinformation relating to beneficial ownershipinformation relating to certain payable-through accountsinformation relating to certain correspondent accounts and prohibitions or conditions on opening or maintaining certain correspondent or payable-through accounts 

    Furthermoretwo or more financial institutions and any association of financial institutions may share information with one another regarding individuals, entities, organizations, and countries suspected of possible terrorist or money laundering activities.  

    Covered financial institutions shall provide, no later than 120 hours after receiving a request, to the appropriate Federal banking agency, or make available at a location specified by the representative of the appropriate Federal banking agency, information and account documentation for any account opened, maintained, administered or managed in the United States by the institution. 

    Subtitle B of Title III of the USA PATRIOT Act amends the Bank Secrecy Act of 1970 and provides that each financial institution shall establish anti-money laundering programs, including, at a minimumthe development of internal policies, procedures, and controls, the designation of a compliance officeran ongoing employee training program and an independent audit function to test programs. In addition, it includes provisions on disclosing money laundering information and introduces penalties for violations of geographic targeting orders and certain recordkeeping requirements 

    Related Resources

  • How OneTrust Helps

    OneTrust Vendorpedia simplifies third-party risk management by combining automation with aggregated vendor research to streamline the vendor engagement lifecycle, from onboarding to offboarding. The platform helps organizations conduct faster and more in-depth security and privacy reviews. 

    Vendorpedia is backed by the world’s largest and most up-to-date database of privacy and security laws, frameworks, and standards, which directly power and enrich OneTrust Vendorpedia. Research is generated by 30 in-house security and privacy experts and a network of 500 lawyers across 300 jurisdictions. 

    For additional details on Vendorpedia, read more here. 

Want to learn more? Login to the full DataGuidance platform.

About OneTrust

OneTrust is the #1 most widely used privacy, security and third-party risk technology platform trusted by more than 3,000 companies to comply with the CCPA, GDPR, ISO27001 and hundreds of the world’s privacy and security laws. OneTrust's three primary offerings include OneTrust Privacy Management Software, OneTrust PreferenceChoice™ consent and preference management software, and OneTrust Vendorpedia™ third-party risk management software and vendor risk exchange. To learn more, visit or connect on LinkedIn, Twitter and Facebook.