iaai currently use 6 Master Categories:

1. KYC / KYB Onboarding

• KYC Initial Customer Onboarding Flow

• KYB Corporate Entity Verification Flow

• Beneficial Owner Identification

• PEP / RCA Screening & Approval

• Enhanced Due Diligence (EDD)

• Risk Rating & Periodic Review Cycle

• Document Collection & Verification

• Case Routing & Analyst Assignment

• KYC Remediation Cycle

• KYC Exit & Offboarding Workflow

2. AML Investigations

• Transaction Monitoring Alert Handling

• Level 1 → Level 3 AML Escalation

• AML Investigation Case Structure

• Evidence Collection & Audit Trail

• SAR Preparation & Filing

• Post-SAR Customer Treatment

• AML Quality Assurance Workflow

• AML Model Governance Cycle

3. Sanctions & Screening

• Real-time Sanctions Screening Flow

• Batch Re-Screening Process

• False Positive Reduction (FPR) Workflow

• True Match Escalation (Level 2 Review)

• Indirect Exposure / Ownership Chain Review

• Grey-List Traffic Handling

• Weekly List Updates Workflow

• Sanctions Alert Documentation Requirements

4. Fraud Detection & Risk Operations

• Fraud Alert → Triage → Case Workflow

• Behavioural Analytics Exception Handling

• Chargeback Handling Flow

• Identity Fraud (IDV Failure) Handling

• Account Takeover Workflow

• Card Not Present Fraud Investigation

• Internal Fraud Escalation Pathway

5. Credit & Underwriting

• Credit Application Processing

• Risk Decisioning Logic

• Manual Underwriting Flow

• Document Collection & Verification

• Appeal & Exception Handling

• Credit Limit Review Cycle

6. Customer Operations & Complaints

• Complaints Intake → Routing → Response

• Vulnerable Customer Identification Flow

• FCA DISP Compliance Workflow

• Regulatory Complaints Escalation

• Complaint Closure & Assurance Review

1. Player Onboarding & Verification

• IDV → AML → KYC Flow

• SOF (Source of Funds) Verification

• SOW (Source of Wealth) Review

• Player Risk Rating Assignment

• Data Enrichment Workflow

• Failed Verification → Next Steps

2. Safer Gambling Workflows

• Marker of Harm Detection

• Automated Behavioural Flagging

• Manual Review Flow

• Player Conversations & Interventions

• Temporary Restrictions Workflow

• Permanent Exclusion Workflow

• Regulatory Reporting & Evidence Capture

3. AML (Gambling-Specific)

• AML Alert Handling

• Transaction Pattern Analysis

• AML Case Documentation

• Interaction Requirements

• High-Risk Customer Controls

• Reporting to Regulator

4. Fraud & Risk

• Bonus Abuse Workflow

• Multi-Accounting Detection

• Device & IP Risk Scoring

• Payment Fraud → Triage → Case

• Suspicious Activity Escalation

🟣 5. VIP & High-Value Players

• VIP Eligibility Assessment

• Enhanced Due Diligence (EDD)

• Responsible Gambling Monitoring

• Ongoing Compliance Review

1. Matter Intake

• New Client Check

• Conflict Check

• AML / CDD for Clients & Parties

• Engagement Letter Workflow

• Matter Setup in PMS

• Fee Structure Approvals

• Matter Acceptance Governance

2. Ongoing Legal Operations

• Document Lifecycle Workflow

• Data Protection Workflow

• GDPR/PII Handling

• DLP (Data Loss Prevention) Approval Path

• Secure File Transfer & Review

3. Risk & Compliance

• High-Risk Matter Escalation

• Sanctions Checks for Legal Clients

• Politically Exposed Client Assessment

• Ethical Wall Setup

• Breach Reporting Workflow

⚖️ 4. Billing & Financial

• Timekeeping → Pre-Bill → Billing Cycle

• Audit Trail for Adjustments

• Credit Control Workflow

1. Field Operations

• Maintenance Request Workflow

• Permit to Work

• Site Safety Checklists

• Field Incident Escalation

• Equipment Failure Investigation

2. Regulatory & Compliance

• Environmental Incident Reporting

• Audit Preparation Cycle

• Risk Assessment & Mitigation

• ESG Reporting Workflow

3. Supplier & Contractor Management

• Supplier Onboarding

• Supplier Risk Assessments

• Contract Compliance Review

1. AI-Powered Document Automation

• Document Intake → Classification → Extraction

• Accessibility Remediation Workflow

• Privacy & Security Scanning

• Tagging → Structuring → QA

• Exception Handling

• Human-in-the-loop Approval

2. RPA Automation

• Trigger → Bot Execution → Audit Logging

• Error Handling Workflow

• BOT QA & Release Management

1. Control Frameworks

• 1st/2nd/3rd Line Workflow

• QA → QC → Audit Trail

• Evidence Pipeline

• Risk Scoring Engine Flow

2. Operating Model Design

• RACI → Process → Controls Mapping

• Policy to Procedure Flow

• Governance Oversight Cycle

PHASE 2 — BEGINNING THE DETAILED LIBRARY CONTENT

PROCESS 1: KYC Onboarding Workflow (Full Detail)

Purpose

To onboard individual customers while meeting regulatory, risk, and compliance expectations for identity verification and financial crime controls.

Primary Stakeholders

• KYC Analyst

• Compliance

• Operations

• Risk

• Relationship Manager

• Automation Systems

• Screening Vendors

High-Level Stages

1. Customer Application Intake

2. Identity Verification (IDV)

3. Sanctions / PEP Screening

4. Risk scoring

5. Document Collection

6. Enhanced Due Diligence (if triggered)

7. Approval / Decline

8. Customer Activation

9. Audit & Evidence Logging

1. Application Intake

• Customer submits application through onboarding flow

• Personal information captured

• System triggers IDV provider (OCR, biometric, validation checks)

• Failure logic: Retry → Manual Review → Reject

2. Identity Verification

• ID document authenticity checks

• Liveness detection

• Face match algorithms

• Additional triggers: mismatched data → manual check

3. Screening

• Real-time screening for:

  • PEP

  • RCA

  • Sanctions lists

• False positive reduction

• Hit categorisation (Level 1, Level 2)

4. Risk Scoring

• Automated risk score based on:

  • Geography

  • Occupation

  • Behaviour models

  • Device intelligence

  • Customer profile

5. Document Collection

• Request bank statements / proof of address / financial documents

• Automation extracts key fields

• Exceptions routed to analysts

6. Enhanced Due Diligence

Triggers include:

• High-risk country

• Adverse media

• Wealth inconsistency

• Sanctions match

EDD steps:

• Deeper document checks

• Source of wealth review

• Senior Management escalation

7. Approval / Decline

• All steps logged

• Evidence files packaged

• Compliance sign-off

8. Activation

• Customer record created

• Access enabled

• Ongoing monitoring triggers registered

9. Audit Trail

• Full documentation

• Screening snapshot

• Analyst notes

• EDD evidence archive

• Policy references