When Data Fails: Real Consequences

The FCA fined Metro Bank £16,675,200. The regulator said that between June 2016 and December 2020, Metro failed to have the right systems and controls to adequately monitor over 60 million transactions, with a value of over £51 billion, for money laundering risks.

Why it matters: this is a direct reminder that monitoring effectiveness is not just about the existence of a monitoring process. It is about whether the right population of activity is actually being monitored, with sufficient coverage and control support.

The FCA fined Starling Bank £28,959,426 for financial crime failings related to its financial sanctions screening. The FCA also said the bank repeatedly breached a requirement not to open accounts for high-risk customers.

Why it matters: screening is often spoken about as if it is only a rules or list-matching challenge. In practice, data completeness, customer classification, and operational control discipline matter just as much.

The FCA fined Monzo Bank Ltd £21,091,300 for inadequate anti-financial-crime systems and controls between October 2018 and August 2020. The regulator also said Monzo repeatedly breached a requirement preventing it from opening accounts for high-risk customers between August 2020 and June 2022.

Why it matters: rapid growth amplifies control weaknesses. When governance, screening, onboarding and monitoring controls do not keep pace, weaknesses become structural rather than isolated.

The FCA fined Nationwide Building Society £44 million for inadequate anti-financial-crime systems and controls. The regulator said that during the relevant period Nationwide had ineffective systems for keeping up-to-date due diligence and risk assessments for all its personal current account customers and for monitoring their transactions.

Why it matters: this is a useful reminder that financial crime control weakness is not only about monitoring logic. Customer due diligence, risk assessment freshness and monitoring effectiveness sit in the same control chain.

The Federal Reserve fined Silvergate Capital Corporation and Silvergate Bank $43 million for deficiencies in Silvergate's monitoring of transactions in compliance with anti-money laundering laws.

Why it matters: even where the regulatory wording is concise, the signal is strong: monitoring coverage and monitoring effectiveness remain central areas of supervisory focus, especially where transaction volumes and risk complexity are high.

The Federal Reserve announced a $41 million penalty and consent order against Deutsche Bank AG for anti-money-laundering deficiencies. In the accompanying order, the Fed said deficiencies in Deutsche Bank's transaction monitoring capabilities prevented it from properly assessing BSA/AML risk for billions of dollars in potentially suspicious transactions processed between 2011 and 2015 for certain affiliates.

Why it matters: this is a powerful example of how transaction monitoring weakness is not merely a model issue. Coverage, data quality, affiliate data sufficiency and the overall capability to assess risk are tightly connected.

FinCEN announced a $1.3 billion settlement with TD Bank and described it as the largest penalty against a depository institution in U.S. Treasury and FinCEN history. In the FinCEN consent order, the agency said TD Bank's monitoring system lacked transaction codes necessary to monitor 98% of domestic ACH transactions. Separately, the OCC announced a cease and desist order and a $450 million civil money penalty for deficiencies in the bank's BSA/AML compliance program.

Why it matters: this is the clearest modern example of why monitoring architecture, transaction coding, coverage design and investment discipline matter. A monitoring estate that does not actually see what it needs to see is not a strong control environment.