In the context of AML and financial crime compliance, a regulator is a public authority designated by law to supervise obliged entities — ensuring that they meet their legal obligations to prevent, detect, and report money laundering and terrorist financing. Regulators occupy a central position in the overall AML architecture: they sit between the legislators (who write the rules) and the obliged entities (who must follow them), acting as the primary mechanism through which abstract legal requirements are translated into concrete, enforceable standards of conduct. In the EU, AML supervision is carried out at national level by designated competent authorities — which may be financial regulators (such as the Autorité de Contrôle Prudentiel et de Résolution in France or BaFin in Germany), professional self-regulatory bodies (such as bar associations or accounting institutes for legal and accounting professionals), or dedicated AML supervisors — with the framework being coordinated at EU level by the European Banking Authority (EBA) and, from 2025–2026 onwards, increasingly by the new Anti-Money Laundering Authority (AMLA). In the United Kingdom, the principal AML supervisors for the financial sector are the Financial Conduct Authority (FCA) and the Prudential Regulation Authority (PRA), operating under the Financial Services and Markets Act 2000 and the Money Laundering Regulations 2017. In the United States, the primary federal AML regulator is the Financial Crimes Enforcement Network (FinCEN), a bureau of the Treasury Department, which administers the Bank Secrecy Act framework, alongside sector-specific regulators such as the Office of the Comptroller of the Currency (OCC) for national banks and FINRA for broker-dealers.
The regulator’s role encompasses several distinct functions that together form a continuous supervisory cycle. First, regulators issue rules, guidance, and interpretive materials that clarify how the law applies in practice — for example, the EBA’s Risk Factor Guidelines or the FCA’s Financial Crime Guide in the UK. Second, they supervise obliged entities through a combination of desk-based reviews, on-site inspections, and thematic examinations — assessing whether firms have adequate AML policies, controls, and procedures in place and whether those controls are actually working in practice. Third, where deficiencies are found, regulators have enforcement powers ranging from requiring remediation and imposing conditions on a firm’s licence, through to issuing public censures, levying substantial financial penalties, and — in the most serious cases — revoking a firm’s authorisation to operate or referring individuals for criminal prosecution. Regulators also play an intelligence-sharing and coordination role, working with Financial Intelligence Units, law enforcement agencies, and their counterparts in other jurisdictions to identify emerging financial crime threats and ensure that supervisory responses are consistent and effective.
