Markets
Serving 6 Continents and 4 Global Regions under 1 World
Ensuring your compliance with customer data privacy laws and operating as a United Kingdom regulated payment institution
Generally, providing a payments service in the United Kingdom (“UK”) requires a license with the Financial Conduct Authority (“FCA”), whether as an authorized payment institution (“PI”) or electronic money institution (“EMI”), to conduct business with UK customers. Moreover, how a company utilizes customer data may impact stringent data privacy classifications under the UK General Data Protection Regulations (“UK-GDPR”).
Stratis advises companies on their go to market strategy for operating in the UK, how to develop and maintain a strong foundation of compliance with UK laws and regulations, successfully complete examinations based on FCA priorities such as AML, sanctions, safeguarding, consumer duty, notifications, etc. and separately, ensure compliance with UK-GDPR.
Ensuring your compliance with customer data privacy laws and operating as a United Kingdom regulated payment institution
Generally, providing a payments service in the United Kingdom (“UK”) requires a license with the Financial Conduct Authority (“FCA”), whether as an authorized payment institution (“PI”) or electronic money institution (“EMI”), to conduct business with UK customers. Moreover, how a company utilizes customer data may impact stringent data privacy classifications under the UK General Data Protection Regulations (“UK-GDPR”).
Stratis advises companies on their go to market strategy for operating in the UK, how to develop and maintain a strong foundation of compliance with UK laws and regulations, successfully complete examinations based on FCA priorities such as AML, sanctions, safeguarding, consumer duty, notifications, etc. and separately, ensure compliance with UK-GDPR.
Unlocking your payments and digital infrastructure market opportunities
in the APAC region
Whether operating an independent company or a subsidiary of a global institution, aligning closely with the laws and guidelines of the Australian Transaction Reports and Analysis Centre (“AUSTRAC”) and the Monetary Authority of Singapore (“MAS”) is critical in the evolving digital finance landscape of the Asia Pacific region.
Stratis assists Australian payment companies by enhancing their Anti-Money Laundering and Combating the Financing of Terrorism (“AML/CTF”), anti-fraud, and cybersecurity frameworks, which are crucial for growth and expansion, including companies using the New Payments Platform (“NPP”) open access infrastructure for fast payments. In Singapore, Stratis advises companies how to best align with MAS’s standards for digital payment systems and financial technology innovations, including the Payment Services Act (“PSA”) and Personal Data Protection Act (“PDPA”), to ensure ongoing compliance and sustained competitive edge in digital banking transformation.
Unlocking your payments and digital infrastructure market opportunities in the APAC region
Whether operating an independent company or a subsidiary of a global institution, aligning closely with the laws and guidelines of the Australian Transaction Reports and Analysis Centre (“AUSTRAC”) and the Monetary Authority of Singapore (“MAS”) is critical in the evolving digital finance landscape of the Asia Pacific region.
Stratis assists Australian payment companies by enhancing their Anti-Money Laundering and Combating the Financing of Terrorism (“AML/CTF”), anti-fraud, and cybersecurity frameworks, which are crucial for growth and expansion, including companies using the New Payments Platform (“NPP”) open access infrastructure for fast payments. In Singapore, Stratis advises companies how to best align with MAS’s standards for digital payment systems and financial technology innovations, including the Payment Services Act (“PSA”) and Personal Data Protection Act (“PDPA”), to ensure ongoing compliance and sustained competitive edge in digital banking transformation.
Navigating your compliance with the European Union’s AML, cybersecurity, operational resilience, and data privacy laws
With passporting from the UK sunset post-Brexit, operating in Europe requires setting up operations with a European Union (“EU”) Member State such as the Republic of Ireland, Netherlands, Lithuania, etc. and achieving appropriate regulatory licenses. Companies operating in the EU need to comply with the Fourth Anti-Money Laundering Directive (“AMLD IV”), revised Payment Services Directive 2 (“PSD2”), EU General Data Protection Regulation (“GDPR”), and the DORA Digital Operational Resilience Act (“DORA”), among others.
Whether already onshore in the EU or expanding from abroad, Stratis supports newly formed and established companies to help ensure compliance under AML, GDPR, and DORA laws and effectiveness of enterprise-wide risk programs required for launching and operating in EU Member States.
Navigating your compliance with the European Union’s AML, cybersecurity, operational resilience, and data privacy laws
With passporting from the UK sunset post-Brexit, operating in Europe requires setting up operations with a European Union (“EU”) Member State such as the Republic of Ireland, Netherlands, Lithuania, etc. and achieving appropriate regulatory licenses. Companies operating in the EU need to comply with the Fourth Anti-Money Laundering Directive (“AMLD IV”), revised Payment Services Directive 2 (“PSD2”), EU General Data Protection Regulation (“GDPR”), and the DORA Digital Operational Resilience Act (“DORA”), among others.
Whether already onshore in the EU or expanding from abroad, Stratis supports newly formed and established companies to help ensure compliance under AML, GDPR, and DORA laws and effectiveness of enterprise-wide risk programs required for launching and operating in EU Member States.
Ensuring you are operating compliantly across Canada, including the province of Québec
Going to market in Canada with payment functionality typically involves registering with the Financial Transactions and Reports Analysis Centre of Canada (“FINTRAC”) as a Money Services Business (“MSB”) or a foreign MSB (“FMSB”). While the registration itself is a relatively straightforward process, operating as a MSB or FMSB requires compliance with the Proceeds of Crime (Money Laundering) and Terrorist Financing Act (“PCMLTFA”), which includes meeting obligations of electronic funds transfers reporting (“EFTR”), sanctions imposed under the United Nations Act (“UNA”), and non-UN sanctions. Separately, Quebec maintains its own MSB regime under the Money-Services Businesses Act (“MSBA”) with Revenu Québec.
Stratis supports Canadian and foreign companies seeking to operate as MSBs or FMSBs by managing the FINTRAC and Revenu Québec registration process, developing scale-appropriate compliance programs, executing FINTRAC reporting requirements, and completing required effectiveness reviews under the PCMLTFA and the MSBA.
Ensuring you are operating compliantly across Canada, including the province of Québec
Going to market in Canada with payment functionality typically involves registering with the Financial Transactions and Reports Analysis Centre of Canada (“FINTRAC”) as a Money Services Business (“MSB”) or a foreign MSB (“FMSB”). While the registration itself is a relatively straightforward process, operating as a MSB or FMSB requires compliance with the Proceeds of Crime (Money Laundering) and Terrorist Financing Act (“PCMLTFA”), which includes meeting obligations of electronic funds transfers reporting (“EFTR”), sanctions imposed under the United Nations Act (“UNA”), and non-UN sanctions. Separately, Quebec maintains its own MSB regime under the Money-Services Businesses Act (“MSBA”) with Revenu Québec.
Stratis supports Canadian and foreign companies seeking to operate as MSBs or FMSBs by managing the FINTRAC and Revenu Québec registration process, developing scale-appropriate compliance programs, executing FINTRAC reporting requirements, and completing required effectiveness reviews under the PCMLTFA and the MSBA.
Achieving and maintaining your compliance with New York’s cybersecurity and transaction monitoring requirements
Unique to the New York State Department of Financial Services (“NYS DFS”) is a focus on multiple operational elements in the application stage for a money transmitter, virtual currency business activity, trust charter, or banking license. Importantly, this includes well-developed and documented cybersecurity (“Part 500”) and transaction monitoring and screening (“Part 504”) programs. Subsequently, upon licensure, NYS DFS deploys an extensive examination process, which includes governance, operations, finance, compliance, and cybersecurity, inclusive of both Part 500 and Part 504.
Stratis prepares companies seeking to achieve a license in New York and those already operating as a NYS DFS covered entity to successfully execute their license applications, Part 500 and Part 504 annual certifications, enhanced cybersecurity, AML, sanctions, and enterprise-wide risk assessments, model validation of internal systems, and compliance program development leading to successful licensee examinations.
Achieving and maintaining your compliance with New York’s cybersecurity and transaction monitoring requirements
Unique to the New York State Department of Financial Services (“NYS DFS”) is a focus on multiple operational elements in the application stage for a money transmitter, virtual currency business activity, trust charter, or banking license. Importantly, this includes well-developed and documented cybersecurity (“Part 500”) and transaction monitoring and screening (“Part 504”) programs. Subsequently, upon licensure, NYS DFS deploys an extensive examination process, which includes governance, operations, finance, compliance, and cybersecurity, inclusive of both Part 500 and Part 504.
Stratis prepares companies seeking to achieve a license in New York and those already operating as a NYS DFS covered entity to successfully execute their license applications, Part 500 and Part 504 annual certifications, enhanced cybersecurity, AML, sanctions, and enterprise-wide risk assessments, model validation of internal systems, and compliance program development leading to successful licensee examinations.
Executing your United States regulated and partner-based business strategies
The US offers numerous options to enable financial products and services, whether through regulated licensing such as a money transmitter, consumer lender, or a limited purpose trust, payment processor or agent of the payee exemptions, or partner-channels such as Banking as a Service (“BaaS”) programs, For Benefit Of (“FBO”) accounts, operating as an agent of a money service business (“MSB”), or card-based bank sponsorship. However, the US regulatory regime is a maze of laws and guidance on everything from AML under the Bank Secrecy Act (“BSA”), data privacy such as the California Consumer Privacy Act (“CCPA”), the Colorado Privacy Act (“CPA”), and Health Insurance Portability and Accountability Act (“HIPAA”), beneficial ownership under the Corporate Transparency Act (“CTA”), and interagency guidance on third-party risk management from customers to technology solutions providers.
Stratis helps companies by developing and executing the go to market strategy, bank/partner due diligence, regulatory licensing, and providing the ongoing risk, compliance, and cybersecurity support needed to launch, scale, and optimize operations from seed stage through Fortune 500 public company.
Executing your United States regulated and partner-based business strategies
The US offers numerous options to enable financial products and services, whether through regulated licensing such as a money transmitter, consumer lender, or a limited purpose trust, payment processor or agent of the payee exemptions, or partner-channels such as Banking as a Service (“BaaS”) programs, For Benefit Of (“FBO”) accounts, operating as an agent of a money service business (“MSB”), or card-based bank sponsorship. However, the US regulatory regime is a maze of laws and guidance on everything from AML under the Bank Secrecy Act (“BSA”), data privacy such as the California Consumer Privacy Act (“CCPA”), the Colorado Privacy Act (“CPA”), and Health Insurance Portability and Accountability Act (“HIPAA”), beneficial ownership under the Corporate Transparency Act (“CTA”), and interagency guidance on third-party risk management from customers to technology solutions providers.
Stratis helps companies by developing and executing the go to market strategy, bank/partner due diligence, regulatory licensing, and providing the ongoing risk, compliance, and cybersecurity support needed to launch, scale, and optimize operations from seed stage through Fortune 500 public company.
Enhancing your operations in LATAM amid increasing beneficial ownership, data privacy, and cybersecurity regulations
Offshore regulations continue to tighten with enhanced AML, data protection, and cybersecurity laws, whether from oversight by the Cayman Islands Monetary Authority (“CIMA”) to the British Virgin Islands (“BVI”) Financial Services Commission (“FSC”), operating in LATAM requires a refreshed view on corporate structures and expanded due diligence requirements. Private wealth and digital financial services are on the rise from Brazil to Argentina with institutions and consumers seeking access to global currencies, markets, and goods.
From publishing the first materials on the offshore permuta bond swap market, Stratis has been serving international conglomerates, correspondent and private banks, growing technology companies, financial services startups, institutional investors and ultra-high net worth (“UHNW”) families and individuals, compliantly operate across various corporate structures, global currency regimes, asset protection strategies, and offshore banking options.
Enhancing your operations in LATAM amid increasing beneficial ownership, data privacy, and cybersecurity regulations
Offshore regulations continue to tighten with enhanced AML, data protection, and cybersecurity laws, whether from oversight by the Cayman Islands Monetary Authority (“CIMA”) to the British Virgin Islands (“BVI”) Financial Services Commission (“FSC”), operating in LATAM requires a refreshed view on corporate structures and expanded due diligence requirements. Private wealth and digital financial services are on the rise from Brazil to Argentina with institutions and consumers seeking access to global currencies, markets, and goods.
From publishing the first materials on the offshore permuta bond swap market, Stratis has been serving international conglomerates, correspondent and private banks, growing technology companies, financial services startups, institutional investors and ultra-high net worth (“UHNW”) families and individuals, compliantly operate across various corporate structures, global currency regimes, asset protection strategies, and offshore banking options.
Launching your digital services in Africa’s changing financial ecosystem
With its burgeoning financial ecosystem across technology hubs such as Ghana, Nigeria, Kenya, and South Africa, a new African financial access system is being powered by mobile and web-enabled technologies. With growing alignment of the Financial Action Task Force (“FATF”) Recommendations and Mutual Evaluations, each country maintains its own AML, anti-bribery and corruption (“ABC”) laws such as the Money Laundering Act and Corrupt Practices and other Related Offences Act in Nigeria, the Proceeds of Crime and AML Regulations in Kenya, and Prevention and Combating of Corrupt Activities Act (“PCCAA”) in South Africa.
Stratis helps companies seeking to bring financial technology solutions to African consumers accelerate their go-to-market strategy with deep knowledge of compliance requirements from local regulatory agencies such as the Central Bank of Nigeria to the South African Reserve Bank, nuanced insights for successfully connecting with payment partners, and proactive advice for maintaining compliance with payments licenses.
Launching your digital services in Africa’s changing financial ecosystem
With its burgeoning financial ecosystem across technology hubs such as Ghana, Nigeria, Kenya, and South Africa, a new African financial access system is being powered by mobile and web-enabled technologies. With growing alignment of the Financial Action Task Force (“FATF”) Recommendations and Mutual Evaluations, each country maintains its own AML, anti-bribery and corruption (“ABC”) laws such as the Money Laundering Act and Corrupt Practices and other Related Offences Act in Nigeria, the Proceeds of Crime and AML Regulations in Kenya, and Prevention and Combating of Corrupt Activities Act (“PCCAA”) in South Africa.
Stratis helps companies seeking to bring financial technology solutions to African consumers accelerate their go-to-market strategy with deep knowledge of compliance requirements from local regulatory agencies such as the Central Bank of Nigeria to the South African Reserve Bank, nuanced insights for successfully connecting with payment partners, and proactive advice for maintaining compliance with payments licenses.
Upskilling your talent to meet MENA’s trajectory as an emerging global financial center
As Abu Dhabi and Dubai in the United Arab Emirates (“UAE”) continue to rise as a prosperous global financial center in the MENA region, an increasing number of companies, banks, investors, and funds are setting up and partnering with MENA financial institutions under a global approach to doing business. In Dubai, operating as a regulated entity with oversight from the Dubai Financial Services Authority (“DFSA”) in the Dubai International Financial Centre (“DIFC”) requires compliance with AML and sanctions, privacy, and cybersecurity laws.
In the UAE and beyond, Stratis helps companies and regulated entities align with the FATF Recommendations, Know Your Customer (“KYC”) regulatory compliance requirements, and sanctions issued by the United Nations (“UN”) and the United States (“US”), which are dominant factors in the MENA region. Furthermore, Stratis delivers live and immersive training programs with a global approach focused on upskilling regional talent.
Upskilling your talent to meet MENA’s trajectory as an emerging global financial center
As Abu Dhabi and Dubai in the United Arab Emirates (“UAE”) continue to rise as a prosperous global financial center in the MENA region, an increasing number of companies, banks, investors, and funds are setting up and partnering with MENA financial institutions under a global approach to doing business. In Dubai, operating as a regulated entity with oversight from the Dubai Financial Services Authority (“DFSA”) in the Dubai International Financial Centre (“DIFC”) requires compliance with AML and sanctions, privacy, and cybersecurity laws.
In the UAE and beyond, Stratis helps companies and regulated entities align with the FATF Recommendations, Know Your Customer (“KYC”) regulatory compliance requirements, and sanctions issued by the United Nations (“UN”) and the United States (“US”), which are dominant factors in the MENA region. Furthermore, Stratis delivers live and immersive training programs with a global approach focused on upskilling regional talent.
RISK | STRATEGY | CYBER COMPLIANCE MANAGEMENT
