PEP Screening: Politically Exposed Persons Compliance Guide
Politically Exposed Persons (PEPs) are individuals entrusted with prominent public functions, plus their family members and close associates. PEPs are not inherently criminal — but their position creates elevated exposure to bribery, corruption, and the proceeds of crime, which is why FATF requires regulated firms to apply Enhanced Due Diligence to all foreign PEP relationships. This guide explains who qualifies as a PEP, how PEP screening works, and how to manage PEP relationships compliantly.
PEP compliance is one of the most frequently misunderstood areas of AML regulation. The PEP designation is not an accusation of wrongdoing — most PEPs are honest public servants whose only "offence" is having reached a position of authority. The regulatory expectation is not that firms refuse to do business with PEPs, but that they apply heightened scrutiny to the relationship to manage the elevated risk of bribery and corruption proceeds passing through.
Done well, PEP compliance protects both the firm and the customer. Done badly, it creates two equally serious failures: false positives that exclude legitimate customers (high-profile PEPs are often blocked from opening accounts at firms whose screening systems cannot distinguish them from genuine sanctions matches), or false negatives that allow PEP relationships to be onboarded without the EDD that regulators require.
Who Qualifies as a PEP: The Three Categories
FATF Recommendation 12 and the AMLD 6 Article 22 definitions distinguish three categories of PEP, with different EDD treatments applying to each:
Foreign PEPs
Foreign PEPs are individuals entrusted with prominent public functions in a foreign country. Foreign PEPs receive the strictest treatment — EDD must be applied in all cases, regardless of any individual risk assessment. A foreign PEP relationship requires source-of-wealth documentation, senior management approval before establishment, and enhanced ongoing monitoring throughout.
Domestic PEPs
Domestic PEPs are individuals entrusted with prominent public functions in the firm's own country. Domestic PEPs receive a more nuanced treatment — EDD is required only where the relationship presents higher risk, with the assessment of higher risk based on the firm's own risk-based methodology. The firm must be able to explain and justify the methodology, but is not required to apply EDD universally.
PEPs of International Organisations
PEPs of international organisations are senior officials of bodies such as the UN, IMF, World Bank, or major regional intergovernmental organisations. Treatment is similar to domestic PEPs — risk-based EDD where the relationship presents elevated risk.
Family Members and Close Associates
The PEP definition does not stop at the PEP themselves. It extends to two further categories of individuals — and getting these right is where many compliance programmes fall short.
Family members typically include the PEP's spouse or recognised partner, their parents, their children, and their children's spouses. Some jurisdictions extend further to siblings; the firm must check the specific national definition that applies to its operations. Close associates are individuals known to have close business or personal relationships with the PEP — joint beneficial owners of corporate entities, business partners, professional advisers, and personal advisers in roles that grant influence or access. The close-associate category is interpreted broadly by regulators: an individual who is publicly known to be a close personal friend of a PEP and who jointly owns property with the PEP would typically qualify, even without a formal business relationship.A complete PEP database must therefore include not just designated PEPs but also their identified family members and close associates — and the screening engine must check against all three categories.
How Long PEP Status Persists
PEP status does not end immediately when an individual leaves their public position. FATF guidance recommends a minimum of 12 months continued treatment as a PEP after the individual leaves office — but the right approach is risk-based, not time-bound.
A long-serving senior PEP whose wealth was largely accumulated during their period of office should continue to be treated as a PEP for substantially longer than 12 months — potentially indefinitely if the public role was sufficiently senior or sufficiently exposed to corruption risk. The decision is the firm's, but it must be documented and justifiable.
Building a PEP Screening Process
A complete PEP screening process has three components: a comprehensive PEP database, a screening engine that performs the matching, and an analyst workflow that resolves matches into accept/reject/EDD-required outcomes.
- The PEP database must cover foreign PEPs, domestic PEPs, international organisation PEPs, family members, and close associates — across all jurisdictions where the firm operates. It must be refreshed continuously as designations change.
- The screening engine must perform fuzzy name matching that handles transliterations, name variations, and partial matches without producing unmanageable false-positive volumes. Secondary identifier filtering — using date of birth, nationality, and country of residence — is essential.
- The analyst workflow presents matches for human review with the customer's data and the PEP database entry side-by-side, with documented escalation paths for confirmed matches that require Enhanced Due Diligence.
Our compliance portal integrates all three components with the rest of the AML platform — onboarding, transaction monitoring, periodic review — so a confirmed PEP match automatically triggers the appropriate EDD workflow without manual hand-off.
PEP Compliance Errors That Trigger Enforcement
Supervisory inspections consistently surface a small set of recurring PEP compliance failures:
- Inadequate database coverage — using a PEP list that covers only the largest jurisdictions or that omits family members and close associates entirely.
- Failure to re-screen ongoing relationships — applying PEP screening at onboarding only and missing customers who become PEPs after the relationship is established.
- Inconsistent EDD application — applying source-of-wealth review to some PEP relationships but not others, with no documented methodology for the differentiation.
- Missing senior management approval — establishing PEP relationships at the operational level without the documented senior management sign-off that EDD requires.
- Stale risk ratings — failing to escalate the risk rating of an existing customer who acquires PEP status during the relationship.
PEP Screening That Distinguishes Real Matches from Noise
One Constellation's PEP screening combines a comprehensive global database with fuzzy matching, secondary-identifier filtering, and structured analyst workflows — so your team focuses on real matches and EDD execution, not on resolving false positives.