AML Red Flags: Suspicious Activity Indicators for Canadian Compliance Teams

AML red flags are behavioural, transactional or documentary indicators that suggest a customer relationship or financial transaction may be connected to money laundering, terrorist financing or another predicate offence. Under Canadian federal law, identifying these indicators and acting on them is a legal obligation under the Proceeds of Crime (Money Laundering) and Terrorist Financing Act (PCMLTFA), enforced by the Financial Transactions and Reports Analysis Centre of Canada (FINTRAC). Reporting entities that fail to maintain adequate detection and reporting systems face civil penalties of up to CAD $2 million per violation and criminal prosecution resulting in up to five years' imprisonment.

FINTRAC received more than 31.5 million transaction reports across all reporting categories in its 2022-23 fiscal year, reflecting the broad scope of Canada's transaction reporting regime and the depth of AML compliance obligations across the financial sector.

This article is provided for informational purposes only and does not constitute legal, financial or regulatory advice. Regulatory references are accurate as of the publication date. Consult a qualified legal professional for guidance tailored to your organization's circumstances.

What Are AML Red Flags Under Canadian Law?

An AML red flag is any indicator that, individually or in combination with others, gives a reporting entity reasonable grounds to suspect that a transaction or business relationship is connected to money laundering, terrorist financing or sanctions evasion. A red flag does not establish guilt: it triggers an obligation to investigate further and, where suspicion is formed, to file a Suspicious Transaction Report (STR) with FINTRAC.

The PCMLTFA and FINTRAC's compliance guidelines require reporting entities to submit an STR when there are reasonable grounds to suspect that a transaction — or an attempted transaction — is related to the commission of a money laundering offence or a terrorist activity financing offence, regardless of the transaction amount. The FATF 40 Recommendations provide internationally recognised typologies of red flags that inform FINTRAC's guidance documents and sector-specific compliance expectations.

FINTRAC regulations distinguish between transaction-based reports (mandatory at specified thresholds) and suspicion-based reports (STRs, triggered by reasonable grounds to suspect regardless of amount). Compliance officers must understand both streams and ensure their monitoring systems generate alerts for both categories.

Categories of AML Red Flags

Red flags fall into four primary categories. The table below provides a structured overview that compliance teams can use as a baseline framework for their PCMLTFA compliance programs.

When red flags from multiple categories appear together, the overall risk level increases materially and must trigger a formal internal review and likely STR filing, regardless of the relationship's commercial value.

For a broader view of documentary compliance obligations that sit alongside these indicators, see our document compliance guide.

Sector-Specific Red Flags

Banks and Financial Institutions

Federally regulated financial institutions are subject to oversight by the Office of the Superintendent of Financial Institutions (OSFI) for prudential matters and FINTRAC for AML/ATF compliance. Key indicators include:

• Frequent cash deposits just below CAD $10,000 across multiple branches or ATMs on the same day.
• Accounts that remain dormant before suddenly processing high volumes of international wire transfers.
• Round-dollar transfers at consistent amounts — a classic structuring signal.
• Business accounts with cash-intensive transaction patterns inconsistent with the stated industry.

The CAD $10,000 threshold triggers mandatory Large Cash Transaction Reports (LCTRs) for all cash transactions in a single business day, regardless of whether there is any suspicion of money laundering. This is a transaction-based reporting obligation, separate from STRs which are suspicion-based and have no minimum threshold.

Real Estate

Canada's real estate sector has been identified as a high-risk channel for laundering proceeds — particularly in markets like Vancouver and Toronto, where the Cullen Commission of Inquiry documented significant vulnerabilities. FINTRAC's AML obligations for real estate were significantly expanded in June 2023 to cover mortgage brokers, title insurance companies, and real estate developers in addition to real estate brokers and agents.

Key red flags in Canadian real estate:

• Purchases made using third-party funds with no disclosed relationship to the buyer.
• Transactions conducted entirely or primarily in cash for high-value properties.
• Buyers who show little interest in property details but urgency in closing.
• Corporate vehicle or trust ownership structures where beneficial owners cannot be identified.

Money Services Businesses (MSBs)

MSBs registered with FINTRAC — including foreign exchange dealers, money transfer services, and cryptocurrency exchanges — are subject to the full PCMLTFA regime. Sector-specific red flags include:

• Customers conducting multiple transfers just below threshold amounts across multiple outlets.
• High volumes of small outbound transfers to the same foreign recipient accounts.
• Customers presenting multiple identification documents with inconsistent personal information.
• Cryptocurrency transactions to or from addresses associated with sanctioned entities or darknet markets.

Designated Non-Financial Businesses and Professions (DNFBPs)

Accountants, lawyers (through their law society obligations), dealers in precious metals and stones, and casinos are reporting entities under the PCMLTFA. Red flags in these sectors include:

• Legal or accounting clients who are secretive about the source of funds and unwilling to provide documentation.
• Requests to hold client funds for purposes unconnected to the underlying legal or accounting matter.
• Casino transactions where patrons conduct large cash buy-ins followed by immediate cash-outs with minimal gaming activity (chip-walking).

Our detailed article on AML transaction monitoring rules and thresholds covers the automated detection layer that operates alongside human review.

Canadian Legal Framework: PCMLTFA and FINTRAC Reporting Obligations

The primary Canadian AML legislative framework consists of the PCMLTFA, the Proceeds of Crime (Money Laundering) and Terrorist Financing Regulations (PCMLTFR), and FINTRAC's administrative monetary penalties regime. The FINTRAC compliance guidelines provide detailed sector-specific requirements.

The PCMLTFA requires reporting entities to file a Suspicious Transaction Report (STR) when there are reasonable grounds to suspect a money laundering or terrorist financing offence, regardless of the transaction amount. Reasonable grounds to suspect is a lower threshold than reasonable grounds to believe — it does not require certainty or even a balance of probabilities, only a reasonable possibility that money laundering has occurred.

Key FINTRAC reporting requirements:

• Large Cash Transaction Reports (LCTRs): all cash transactions of CAD $10,000 or more in a single business day, mandatory regardless of suspicion.
• Electronic Funds Transfer Reports (EFTRs): international EFTs of CAD $10,000 or more, incoming or outgoing, mandatory regardless of suspicion.
• Suspicious Transaction Reports (STRs): any transaction, attempted transaction or series of transactions where reasonable grounds to suspect exist — no minimum threshold.
• Terrorist Property Reports (TPRs): property owned or controlled by designated terrorist entities, mandatory and immediate.

STRs are filed directly with FINTRAC via the FINTRAC Web Reporting System or batch reporting for high-volume filers. The tipping-off prohibition under section 8 of the PCMLTFA makes it a criminal offence to disclose that an STR has been filed or that a money laundering investigation is underway.

FINTRAC administrative monetary penalties for non-compliance can reach CAD $1 million per violation for individuals and CAD $500,000 per violation for entities for minor violations, with higher penalties available for serious violations. Criminal penalties for willful non-compliance include imprisonment up to five years.

From Detection to STR Filing: the Internal Process

Effective management of AML red flags follows a structured PCMLTFA compliance program. FINTRAC examinations consistently identify the absence of a documented internal escalation workflow as a key deficiency in smaller reporting entities.

Step 1 – Detection. The red flag is identified through automated transaction monitoring, document verification tools, or by a staff member. CheckFile's platform flags 94% of fraudulent documents in under 2 seconds (CheckFile internal benchmark, March 2026), enabling compliance teams to identify documentary red flags at the point of onboarding.

Step 2 – Internal escalation. The identifying staff member reports to the Compliance Officer — the designated individual responsible for PCMLTFA compliance — using the institution's internal reporting procedures. Staff who knowingly fail to report internally may face individual liability.

Step 3 – Investigation. The Compliance Officer reviews the transaction history, KYC file, open-source information, and sanctions screening results. The investigation must be documented whether or not it results in an STR.

Step 4 – STR decision. If reasonable grounds to suspect are formed, the Compliance Officer files the STR with FINTRAC within the applicable timeframe — as soon as practicable after the reasonable grounds to suspect arise.

Step 5 – Record retention. All supporting records must be retained for five years from the date of the transaction or the end of the business relationship, in accordance with the PCMLTFR. FINTRAC may examine records during compliance assessments.

Step 6 – Operational decision. The institution decides independently whether to continue or exit the business relationship. An STR filing does not automatically require account termination, but the risk assessment must be updated.

Our anti-money laundering compliance guide covers the governance requirements that underpin this process. Explore how CheckFile integrates document verification into AML compliance workflows, or review our pricing plans.

Common Questions from Compliance Forums

Is there a minimum transaction amount to file an STR with FINTRAC?

No. Unlike Large Cash Transaction Reports and EFT Reports — which have a CAD $10,000 threshold — STRs must be filed whenever reasonable grounds to suspect arise, regardless of the dollar amount involved. A CAD $200 transaction can warrant an STR if the surrounding circumstances generate reasonable grounds to suspect money laundering. The threshold triggers mandatory transaction reporting; suspicion triggers STR filing.

What is the difference between LCTRs, EFTRs, and STRs?

LCTRs and EFTRs are mandatory transaction-based reports filed at specified dollar thresholds regardless of any suspicion of criminal activity. STRs are suspicion-based reports filed when a reporting entity has reasonable grounds to suspect money laundering or terrorist financing — they have no minimum dollar threshold and may be filed for transactions below the LCTR/EFTR thresholds.

Frequently Asked Questions

Who is required to report to FINTRAC?

Reporting entities under the PCMLTFA include banks and credit unions, life insurance companies, securities dealers, money services businesses, casinos, accountants, real estate brokers and agents (and since 2023, mortgage brokers and developers), and dealers in precious metals and stones. Lawyers are subject to PCMLTFA obligations through their law society rules in most provinces, though the application of federal PCMLTFA obligations to lawyers has been subject to constitutional litigation.

How does CheckFile support AML red flag detection?

CheckFile's document verification platform analyses the authenticity of identity documents, proof of address and financial records submitted during customer onboarding and ongoing due diligence. It identifies inconsistencies, alterations and documents originating from high-risk sources in real time. Our KYC solution for banking and financial services integrates this verification into the onboarding workflow.

What are the penalties for PCMLTFA non-compliance?

FINTRAC can impose administrative monetary penalties up to CAD $1 million per violation for individuals and issue compliance agreements requiring remediation. Criminal penalties for willful violations include up to five years' imprisonment. FINTRAC publishes administrative monetary penalty decisions on its website, which provide useful benchmarks for the level of sanctions imposed in practice.

Where can I find FINTRAC's current guidance on AML red flags?

FINTRAC publishes sector-specific compliance guidance, including detailed red flag indicators for each reporting sector. FINTRAC also publishes an annual report with statistics on STR filings and enforcement actions. Review our pricing plans to understand how CheckFile fits your compliance budget.