FINMA ·

FINMA sets digital-fraud risk expectations for banks

Swiss banks must bring digital-fraud risks into operational-risk and AML controls

Change
On 9 April 2026, FINMA issued guidance requiring banks and persons under Article 1b of the Banking Act to establish risk-management frameworks that identify, assess, manage and monitor digital-fraud risks.
Why it matters
FINMA now expects digital-fraud risk to be handled as an enterprise-wide operational-risk and AML issue, not only as a customer-protection problem. Banks must cover risks from online client onboarding, unauthorised account access and the use of bank accounts to launder fraud proceeds. The guidance makes digital-channel controls, fraud-risk monitoring and AML detection part of the same supervisory expectation.
Implications
  • Senior management at banks and persons under Article 1b of the Banking Act must document a digital-fraud risk-management framework covering all business activities — failure leaves the firm outside FINMA’s stated supervisory expectations.
  • Operational-risk teams must include online client onboarding and unauthorised account-access scenarios in digital-fraud risk assessments — failure leaves key digital-channel attack vectors outside the firm’s control framework.
  • AML and compliance teams must update monitoring controls to detect bank accounts used to launder proceeds of digital fraud — failure leaves fraud-proceeds laundering risk insufficiently covered under FINMA’s guidance.
  • Digital-banking product and technology teams must align onboarding, authentication and account-access controls with the firm’s digital-fraud risk framework — failure creates control gaps between digital growth and supervisory risk expectations.
Who is affected
  • Senior management at banks and persons under Article 1b of the Banking Act
  • Operational-risk teams at banks
  • AML and compliance teams at banks
  • Digital-banking product and technology teams
What to watch
  • FINMA follow-up supervision on whether banks have implemented digital-fraud risk frameworks across online onboarding, account access and AML monitoring.
  • Further FINMA guidance or enforcement involving digital fraud, operational risk or laundering of fraud proceeds through bank accounts.
View on FINMA
Clarify this change

Grounded in this brief and its source — your questions stay private.

Clarify with AI — Pro only

You asked:

Clarify turns any brief into answers specific to your role and exposure.

Pro includes

Implications — what this change may force you to review
Who is affected — which people, workflows, or obligations are touched
What to watch — dates, deadlines, and triggers that matter next
Real-time alerts — delivered when a decision-forcing change is published
Clarify with AI — ask what this change means for you

$29/month · Founding rate, locked for life. Cancel anytime.

Create a free account to keep clarifying

You asked:

You've used your free guest questions for now. A free account gives you more every month and saves your history — or start a Pro trial for unlimited Clarify and real-time alerts.

Pro includes

Implications — what this change may force you to review
Who is affected — which people, workflows, or obligations are touched
What to watch — dates, deadlines, and triggers that matter next
Real-time alerts — delivered when a decision-forcing change is published
Clarify with AI — ask what this change means for you

Free account: no card, ever. Pro trial: $29/month after 14 days, no card to start, cancel anytime.