What Is a Politically Exposed Person? Guide to PEP Compliance

A Politically Exposed Person (PEP) is someone who holds — or has recently held — a prominent public position, making them a higher risk for involvement in financial crimes like bribery, corruption, and money laundering.

Think heads of state, senior politicians, senior military leaders, senior judges, and top executives of state-owned companies. And here's the thing that catches many compliance professionals off guard: the label doesn't stop with the individual. Their family members and close associates are PEPs too.

Now, before we go any further, let's be clear about something important.

Being classified as a PEP doesn't mean someone is a criminal. It simply means that, because of their position and influence, they could be more vulnerable to financial crime. It's a risk flag, not a guilty verdict.

If you work in banking, financial services, or any regulated industry, understanding PEPs is one of the most critical pieces of the financial crime compliance puzzle.

Let's break it down.

Where Did the Term "PEP" Come From?

The term "Politically Exposed Person" traces back to the late 1990s and a scandal so enormous it changed global financial regulation forever.

General Sani Abacha served as the military ruler of Nigeria from 1993 until his death in 1998. During that time, he and his family systematically looted the country's treasury. How much are we talking about? According to Transparency International, Abacha is estimated to have stolen between $3 billion and $5 billion in public funds.

The money didn't just vanish under a mattress. It was laundered through bank accounts across the globe: in the United States, the United Kingdom, Switzerland, Jersey, and Liechtenstein.

His son, Mohammed Abacha, had hundreds of millions of dollars routed through accounts in US and UK banks that should have been flagged immediately.

The fallout was staggering.

The U.S. Department of Justice eventually forfeited and returned approximately $334.7 million to Nigeria through the Kleptocracy Asset Recovery Initiative. Switzerland repatriated $322 million. Jersey recovered over $267 million. And the legal battles stretched on for more than two decades.

The Abacha affair was a wake-up call. It exposed just how easily powerful political figures could exploit the global banking system. In response, the Financial Action Task Force (FATF) — the international body that sets anti-money laundering standards — formally introduced the PEP framework. In the UK, this is reinforced by the Financial Conduct Authority (FCA) and the National Crime Agency (NCA).

Since then, more than 100 countries have updated their financial regulations to address the risks posed by politically exposed persons.

In short:

• PEPs = higher corruption risk
• Higher risk = enhanced due diligence (EDD)
• Enhanced due diligence = deeper scrutiny, ongoing monitoring

Simple in theory. More complex in practice.

Who Exactly Qualifies as a Politically Exposed Person?

This is where things get interesting and a bit complicated. There's no single, universally agreed-upon list of who counts as a PEP. However, the FATF provides a widely adopted framework that most countries base their definitions on.

The FATF groups PEPs into three main categories:

1. Foreign PEPs — Political figures, government employees, or significant public personalities in other countries. If someone holds a senior role in a foreign government and wants to open an account at your institution, they're a foreign PEP.

2. Domestic PEPs — Public figures or politicians from the same country as the financial institution. Your country's own senior politicians and officials fall here.

Example: A UK Member of Parliament banking with a UK bank.

3. International Organisation PEPs — Individuals who hold prominent positions in international organisations like the United Nations, World Bank, or International Monetary Fund.

Within those categories, the types of roles that trigger PEP status are broad. Here's a snapshot:

And remember — family members and close associates are swept in too. That includes spouses, children, siblings, in-laws, business partners, and anyone with joint beneficial ownership of legal entities connected to the PEP.

Even people who used to hold these positions remain classified as PEPs. Most jurisdictions maintain the PEP label for at least 12 to 18 months after an individual leaves office. Some institutions keep the designation even longer. Handling of former PEPs is risk‑based and not always determined by fixed time limits.

The PEP Screening Process

So how does PEP screening actually work in practice? It typically follows a structured process:

Step 1: Collect customer information. During onboarding, gather key personal and business details — full name, date of birth, nationality, and identification documents.

Step 2: Screen against PEP databases. Cross-check that information against regulatory and commercial PEP databases. Cross‑check that information against commercial PEP databases and, where relevant, official public sources (for example, government or parliamentary registers), as well as sanctions and watchlists. International standard‑setters like the FATF define the requirements but do not maintain PEP lists themselves.

Step 3: Assess the risk level. Not all PEPs carry the same risk. A local council member and a head of state require very different levels of scrutiny. Institutions assign risk ratings based on the individual's role, jurisdiction, transaction patterns, and other factors.

Step 4: Apply appropriate measures. Based on the risk assessment, apply standard or enhanced due diligence. Higher-risk PEPs get more frequent reviews, stricter monitoring, and senior management oversight.

Step 5: Monitor continuously. PEP status changes. People enter and leave public offices. Family relationships shift. Effective compliance requires ongoing monitoring, not just a one-time check at account opening.

Why Financial Institutions Need to Pay Attention

Here's where the rubber meets the road:

If you're working in compliance, risk management, or client onboarding, PEP screening is a legal obligation in most jurisdictions.

The consequences of getting it wrong are severe. Let's look at some real numbers:

• In 2023, ADM Investor Services International Ltd was fined £6.47 million ($8.7 million) by the FCA for inadequate anti-money laundering controls involving PEP clients.
• That same year, Guaranty Trust Bank UK Ltd received a £7.6 million ($10.2 million) fine for serious weaknesses in its AML systems, including poor due diligence on high-risk clients such as PEPs.
• In October 2024, TD Bank became the largest U.S. bank in history to plead guilty to federal AML violations, paying a record of over $3 billion in penalties.

Fines are only one part of the story. Average stock price drops are also common, with losses potentially persisting for months afterwards.

Ultimately, just a compliance problem.

A Real-World Example: The Barclays PEP Failure

Want to see what PEP compliance failure looks like in practice?

In November 2015, Barclays Bank was reportedly fined £72 million ($108 million) by the FCA. The reason? The bank failed to properly manage the risk of being used to facilitate financial crime by politically exposed persons.

The individuals involved were PEPs who should have been subject to enhanced due diligence and ongoing monitoring (more on this in a moment).

Those procedures weren't followed. The bank didn't conduct the heightened checks that PEP relationships demand. Regulators held them accountable for it.

What makes this case particularly instructive is that it wasn't about a failure to identify PEPs. The bank knew who these clients were. The failure was in not applying the right level of scrutiny once they were identified.

It's a reminder that PEP compliance isn't a one-time checkbox exercise. It's an ongoing process that requires continuous monitoring and vigilance.

Enhanced Due Diligence: What Does It Involve?

When a customer is identified as a PEP, standard due diligence isn't enough. Financial institutions must apply Enhanced Due Diligence (EDD), which involves a deeper level of investigation.

Here's what that typically looks like:

Senior management approval — Opening or continuing a PEP relationship usually requires sign-off from senior leadership, not just the relationship manager.

Source of wealth and funds — Where did this person's money come from? Is it consistent with their known income, role, and background? If a mid-level government official suddenly deposits millions, that's a red flag.

Ongoing monitoring — PEP accounts require more frequent reviews and lower thresholds for flagging suspicious activity. Compliance teams need to keep a closer eye on transaction patterns, geographic connections, and changes in the PEP's status.

Beneficial ownership checks — PEPs sometimes use complex corporate structures, shell companies, or trusts to hide their involvement. Institutions need to dig deeper to identify who really controls the money.

In practical terms, this means more documentation, deeper questioning, and ongoing transaction scrutiny.

It does not mean you cannot bank a PEP. It means you must manage the risk properly.

Common Red Flags to Watch For

How do you spot a PEP who might be misusing the financial system? The FATF has identified several red flags that should put compliance teams on alert. Here's a brief overview of what to look for:

• Unexplained wealth — Transactions or account balances that don't match the PEP's known income or position
• Complex ownership structures — Use of shell companies, trusts, or corporate vehicles to obscure who really owns the assets
• Connections to high-risk countries — Transactions linked to jurisdictions known for corruption, weak AML controls, or tax haven status
• Inconsistent information — Details provided by the PEP that contradict publicly available information, such as asset declarations or official salary records
• Reluctance to provide information — A PEP who pushes back on standard due diligence requests is raising a flag, not a white one
• Suspicious transaction patterns — Unusual volumes, frequencies, or destinations that don't align with the stated purpose of the account

Common Misconceptions About PEPs

Now let’s briefly clear up a few myths:

Myth 1: “All PEPs are criminals.”

False. Being a PEP does not mean someone has done anything wrong. It simply means they hold a position that presents a higher risk.

Myth 2: “Domestic PEPs are low risk.”

Not necessarily. While foreign PEPs often carry higher inherent risk, domestic PEPs still require enhanced monitoring under UK regulations.

Myth 3: “Once a PEP, always a PEP.”

Not exactly. Many frameworks apply PEP status for at least 12 months after leaving office. However, risk assessments may extend beyond that if influence remains.

How to Strengthen Your Financial Crime Compliance Skills

Regulators are tightening the screws every year. Fines are getting bigger. Expectations are higher. And the professionals who understand how to navigate PEP screening, enhanced due diligence, and financial crime compliance are the ones who'll be indispensable to their organisations.

To summarise: what is a Politically Exposed Person?

• A Politically Exposed Person (PEP) is someone in a prominent public role who presents a higher corruption risk
• PEPs require enhanced due diligence
• You must include family members and close associates
• Not all PEPs are criminals
• Failure to manage PEP risk can result in severe regulatory consequences

The landscape is evolving. The EU's new Anti-Money Laundering Authority (AMLA) is bringing supranational oversight, and the updated EU Regulation 2024/1624 is expanding and clarifying PEP definitions — particularly around regional officials, family members, and associates.

Staying current isn't optional.

Understanding PEPs is just one piece of the financial crime compliance puzzle. If you want to build the expertise that sets you apart and protects your organisation from costly regulatory failures, now is the time to invest in your professional development.

Learn from expert instructors who bring real-world experience to every session with Redcliffe Training's Financial Crime Compliance courses. Whether you're looking to master AML screening, sanctions compliance, or enhanced due diligence, our live training gives you practical skills you can apply from day one.

Take control of your compliance career today.

FAQ

Is there a PEP list?

There is no single global “PEP list.” A Politically Exposed Person (PEP) is defined under anti-money laundering frameworks such as the Financial Action Task Force (FATF) Recommendations, but each country applies its own rules.

In practice, firms use commercial PEP databases compiled by compliance providers (e.g., Dow Jones Risk & Compliance or Refinitiv) to screen clients.

Therefore, there is no official universal PEP list—only jurisdictional definitions and private databases used for screening.