Bill C-12 AML compliance introduces major changes for reporting entities regulated under Canada’s anti-money laundering framework. After receiving Royal Assent on March 26, 2026, Bill C-12 became part of the Government of Canada’s broader effort to strengthen border security, fight transnational organized crime, and prevent illicit financing.
For businesses covered by the Proceeds of Crime (Money Laundering) and Terrorist Financing Act, also known as the PCMLTFA, the new rules significantly expand FINTRAC compliance obligations and increase the financial consequences of AML violations. Reporting entities should now review their AML programs, customer due diligence controls, risk assessments, and suspicious transaction reporting systems to ensure they remain compliant.
Bill C-12 focuses on several key areas:
- FINTRAC registration for reporting entities;
- higher AML administrative monetary penalties;
- compliance orders and agreements;
- AML effectiveness reviews;
- restrictions on anonymous and false-name accounts;
- stronger regulatory oversight across PCMLTFA-covered sectors.
These changes make Bill C-12 AML compliance a priority for Canadian businesses operating in regulated sectors.
#What Is Bill C-12?
Bill C-12 is a Canadian legislative update designed to strengthen the country’s anti-money laundering and counter-terrorist financing framework. It builds on earlier proposals and introduces stricter obligations for reporting entities under the PCMLTFA.
The purpose of Bill C-12 is to support Canada’s efforts to combat:
- money laundering;
- terrorist financing;
- organized crime;
- cross-border illicit finance;
- financial fraud;
- misuse of regulated businesses.
For Canadian reporting entities, the bill creates stronger expectations around AML governance, internal controls, compliance monitoring, and timely remediation of identified weaknesses.
#New Maximum Penalties Under Bill C-12
One of the most important changes under Bill C-12 is the increase in maximum administrative monetary penalties for AML compliance violations in Canada. The updated penalty framework substantially raises the financial consequences for businesses that fail to meet their obligations.
Under the new penalty structure:
- Minor violations may increase from a previous maximum penalty of $1,000 to a new maximum of $40,000.
- Serious violations may increase from $100,000 to a maximum of $4 million.
- Very serious violations may increase from $500,000 to a maximum of $20 million.
These higher penalties show a stronger regulatory focus on effective AML controls, accurate reporting, proper record-keeping, and timely correction of compliance failures. For reporting entities, weak or outdated AML programs may now create significantly higher financial and regulatory risk.
#FINTRAC Registration Requirements
Under the previous framework, FINTRAC registration mainly applied to money services businesses, also known as MSBs. Bill C-12 expands this approach by introducing broader FINTRAC enrolment obligations for reporting entities covered by the PCMLTFA.
This means that more businesses may need to register or enrol with FINTRAC, depending on their sector and activities.
Affected businesses may include:
- money services businesses;
- foreign money services businesses;
- payment companies;
- securities dealers;
- real estate businesses;
- casinos and gaming operators;
- dealers in precious metals and stones;
- other entities covered by Canadian AML regulations.
For regulated businesses, FINTRAC registration is not just an administrative step. It forms part of a broader compliance framework that requires companies to demonstrate proper AML controls, risk management, and accountability.
#Compliance Orders and Agreements
Bill C-12 also strengthens FINTRAC’s authority to require corrective action after identifying compliance failures. Reporting entities found to be in breach of the PCMLTFA may be required to enter into a compliance agreement with FINTRAC.
A compliance agreement may include:
- specific deficiencies identified by FINTRAC;
- corrective measures required from the business;
- implementation deadlines;
- reporting obligations;
- evidence needed to demonstrate remediation.
If an entity fails to comply, it may face significant financial consequences. Bill C-12 introduces the possibility of penalties of up to $30 million or 3% of worldwide gross revenue, depending on the circumstances.
This creates a stronger incentive for businesses to address AML weaknesses before they become enforcement issues.
#AML Program Effectiveness Reviews
A key part of Bill C-12 AML compliance is the increased focus on the real effectiveness of AML programs. Reporting entities must be able to show that their compliance systems are not only documented, but also properly designed, risk-based, and functioning in practice.
An effective AML compliance program should include:
- a documented business-wide risk assessment;
- written AML policies and procedures;
- customer identification and verification controls;
- customer due diligence and enhanced due diligence measures;
- suspicious transaction monitoring;
- record-keeping procedures;
- ongoing staff training;
- independent AML effectiveness reviews;
- board or senior management oversight.
This means that having AML policies on paper may not be enough. Canadian reporting entities must be able to demonstrate that their AML framework works in day-to-day operations.
#Ban on Anonymous and False-Name Accounts
Bill C-12 also strengthens restrictions on anonymous accounts and accounts opened under false names. This is especially relevant for account-based reporting entities and businesses that onboard customers digitally.
Reporting entities should ensure that their onboarding process can properly verify customer identity and detect inaccurate, incomplete, or misleading information.
Important controls may include:
- reliable identity verification;
- beneficial ownership checks;
- sanctions and watchlist screening;
- business information verification;
- monitoring for suspicious account activity;
- escalation procedures for inconsistent customer data.
These requirements are particularly important for financial institutions, MSBs, fintech companies, payment providers, and other businesses exposed to higher financial crime risks.
#Who Will Be Affected by Bill C-12?
Bill C-12 affects reporting entities subject to Canada’s AML framework. This includes businesses and professionals with obligations under the PCMLTFA and related regulations.
The changes are especially important for:
- money services businesses;
- foreign money services businesses;
- fintech platforms;
- payment service providers;
- securities dealers;
- real estate businesses;
- casinos;
- dealers in precious metals and stones;
- accountants and accounting firms;
- other regulated businesses under Canadian AML law.
Because the bill expands FINTRAC’s enforcement reach, all reporting entities should assess whether their current AML compliance program is still sufficient.
#What Reporting Entities Should Do Now
To prepare for the updated requirements, Canadian reporting entities should review their AML compliance framework and identify gaps before FINTRAC raises concerns.
#Recommended steps include:
- reviewing current AML policies and procedures;
- updating the business-wide risk assessment;
- testing customer due diligence controls;
- reviewing transaction monitoring rules;
- checking suspicious transaction reporting procedures;
- assessing beneficial ownership verification;
- updating staff training materials;
- documenting board and senior management oversight;
- preparing for possible FINTRAC examination;
- conducting an independent AML program review.
Businesses should also ensure that compliance responsibilities are clearly assigned and supported by adequate resources. Under the updated framework, AML compliance should be treated as a core governance issue, not only as an administrative function.
#Why Bill C-12 Matters for AML Compliance in Canada
Bill C-12 marks a major shift in AML compliance in Canada. Higher penalties, broader FINTRAC registration, stronger enforcement powers, and increased focus on AML effectiveness all mean that reporting entities face greater regulatory risk if their programs are outdated or poorly implemented.
For Canadian businesses, the key message is clear: AML compliance must be practical, risk-based, documented, and regularly tested.
Companies that act early can reduce regulatory exposure, improve internal controls, and show FINTRAC that they take their obligations seriously.
#Final Thoughts
Bill C-12 AML compliance should now be a key priority for Canadian reporting entities. With higher penalties and expanded FINTRAC authority, businesses should not wait for a regulatory examination before updating their AML framework.
A properly designed AML program can help reporting entities meet PCMLTFA requirements, reduce financial crime risk, and avoid costly enforcement action. For companies operating in regulated sectors, now is the right time to review policies, test controls, and strengthen internal compliance systems.