The role of the MLRO (nominated officer)

If you are subject to the Money Laundering Regulations 2017, the rules do not just tell you what to do — they tell you that someone must be responsible for it. That someone is the nominated officer, almost universally known as the MLRO: the Money Laundering Reporting Officer.

1Two roles, often confused

The MLRs actually contemplate two distinct compliance roles, and it is worth keeping them apart.

The nominated officer. Under the Proceeds of Crime Act 2002, staff who suspect money laundering discharge their duty by reporting internally to a nominated officer. That officer then decides whether to escalate the matter to the National Crime Agency as a Suspicious Activity Report. In common usage, "the MLRO" is this person.

The MLR-compliance officer. Separately, regulation 21 of the MLRs requires firms — where appropriate to their size and nature — to appoint a member of the board or senior management as the officer responsible for compliance with the regulations, and to appoint a nominated officer. Regulation 21 also requires screening of relevant employees and, in larger firms, an independent audit function.

In a small firm one person may wear both hats. In a large firm they are usually separate: a senior manager owning the AML framework, and an MLRO owning the reporting decision.

2What the MLRO actually does

The day-to-day substance of the role typically includes:

• Receiving internal reports of suspicion from staff and assessing them.
• Deciding whether to file a SAR with the NCA — and, where the firm wants to proceed with a transaction touching suspected criminal property, seeking a Defence Against Money Laundering.
• Managing the tipping-off risk so that reporting does not prejudice an investigation.
• Acting as the point of contact for the firm's supervisor and law enforcement.
• Maintaining oversight of the firm's AML systems, training and record-keeping, and keeping the firm-wide risk assessment current.

3Why it carries personal weight

The MLRO role is not a title to hand out lightly, because failures attach to people, not just firms. Under POCA section 331, a nominated officer in the regulated sector who fails to make a disclosure to the NCA when they have the requisite knowledge or suspicion can commit a criminal offence. In regulated financial services, the role also sits within the FCA's senior-managers regime, with individual accountability.

The practical consequence: an MLRO needs genuine seniority, independence, and the authority to halt business when the AML position demands it. An MLRO who can be overruled by the people generating the revenue is an MLRO in name only.

4What a good MLRO needs

To do the job properly, an MLRO needs:

• Access — to the information, systems and people required to assess suspicion.
• Resources — enough time and support for the role to be real, not nominal.
• Independence — the standing to make an unpopular call.
• Evidence — a reliable, documented basis for decisions, so that "we considered this and concluded X" can be shown later.

5Where Probitas fits

That last point is where Probitas helps. When an MLRO is weighing whether a relationship or transaction is suspicious, a single sourced report on the entity — its ownership, sanctions and PEP exposure, filings and adverse media — turns a vague unease into a documented assessment. Probitas is the evidence layer beneath the MLRO's judgement; the reporting decision, and the legal responsibility for it, remain the officer's own.