Financial Sanctions

The FMA’s competence in the area of combating of financing of proliferation

The scope of the Financial Markets Anti-Money Laundering Act (“FM-GwG”; Finanzmarkt-Geldwäschegesetz) was extended on 14 December 2024. The new rules relate to the prevention of non-implementation and evasion of targeted financial sanctions in conjunction with the financing of proliferation and correspond to the recommendations issued by the Financial Action Task Force (FATF). The newly added Article 23a FM-GwG is particularly significant for the Financial Market Authority’s (FMA) new competence. This provision defines the organisational measures and training measures that obliged entities are required to conduct. Within the scope of its supervision, the FMA monitored observances of these rules.

What is (the financing of) proliferation?

Proliferation not only covers the (direct) broader distribution of weapons of mass destruction and accompanying delivery systems, but also the distribution of systems, technologies and components for their manufacture, including the required know-how to do so. In this regard dual-use goods, i.e. goods or products that have dual usage purposes that may be deployed for both civilian and military purposes are also relevant.

Article 2 nos. 24 and 25 FM-GwG respectively define the terms “targeted financial sanctions” and “targeted financial sanctions in relation to the financing of proliferation”. The relevant decisions and regulations predominantly relate to the EU’s restrictive measures enforced against the Democratic People’s Republic of Korea (North Korea) and Iran, from which a freezing order as well as the prohibition of direct and indirect proliferation arise. In the interests of effective preventive work, obliged entities are in any case required to observe with regard to the financing of proliferation that further jurisdictions may also be associated with a generally increased risk and in particular it is necessary to take into consideration the risk of potential transactions and constructions for circumventing measures. “Know Your Customer” (KYC) and “Know Your Customer’s Customer” (KYCC) information that obliged entities are already required to gather for the purpose of prevention of money laundering and terrorist financing may also form a suitable starting point for analyses and inspection measures in this regard. Due to the different issues and objectives for effectively preventing the financing of proliferation, it may be necessary to gather further specific data, information and evidential proof.

Organisational provisions under the FM-GwG

In conjunction with the organisational framework conditions set out in Article 23 FM-GwG, of which obliged entities are already well aware in relation to the prevention of money laundering and terrorist financing, the measures in (the new) Article 23a FM-GwG also cover special requirements in relation to the risk of non-implementation and evasion of targeted financial sanctions in connection with the financing of proliferation. The obligation arises from this provision to determine strategies, checks and procedures (and as applicable also at group level), that in particular cover the risk assessment at company level, measures for identifying risk factors, potential indications for the non-implementation or evasion or potentially risk-prone constellations, risk management systems as well as notification and reporting obligations. To monitor the observance of these rules, in addition a specific officer function (as necessary also at group level) is to be established, appropriate training measures conducted, and ensured that independent reviews are conducted by the internal audit function. In the event of breaches of these obligations, there is the threat of an administrative penalty being imposed by the FMA.

Practical requirements

For implementing the actions laid out in Article 23a FM-GwG, obliged entities are in particular required to consider the following issues:

• How do you assess the risk of your entity being misused for the financing of proliferation, and what leads you to this conclusion? Is the outcome stated separately within the risk assessment at company level pursuant to Article 4 FM-GwG?
• What risk criteria were defined in relation to the financing of proliferation during the risk assessment conducted on an individual customer level? (for example: specific sectors with an increased level of risk or trade financing products etc.)
• How is the prevention of the financing of proliferation treated separately in manuals, operating procedures or similar documents as well as in training measures? (e.g. definition, delineation with money laundering and terrorist financing, indications for anomalies and measures etc.)
• What do you consider as specific anomalies in relation to the financing of proliferation?
• What measures did you use to ensure the observance of targeted financial sanctions against Iran and North Korea in relation to the financing of proliferation (e.g. comparing lists, restrictions on payments etc.)?
• What measures are you taking to detect and subsequently minimise the evasion of targeted financial sanctions in relation to the financing of proliferation? (E.g. application of enhanced customer due diligence, conducting manually checking activities etc.)
• Does your entity use special indicators for the ongoing monitoring by automated means with regard to the financing of proliferation? (E.g. regarding countries known for evasion purposes, specific payment purposes etc.)

• Federal Act on the Prevention of Money Laundering and Terrorist Financing in Financial Markets (Financial Markets Anti-Money Laundering Act (FM-GwG; Finanzmarkt- Geldwäschegesetz)
• Definition of proliferation (in German only)
• Dual-use goods (in German only)
• Council Decision (CFSP) 2016/849
• Council Decision (CFSP) 2010/413
• Regulation (EU) 2017/1509
• Regulation (EU) No 267/2012
• Guidelines on internal policies, procedures and controls to ensure the implementation of Union and national restrictive measures (two sets of Guidelines) (Format: pdf, Size: 951,3 KB, Language: English)

FMA to assume new duties in the monitoring of financial sanctions.

The Austrian Financial Market Authority (FMA) will assume competences with effect from 01.01.2026 for the monitoring and implementation financial sanctions ordered by the EU and the UN, such as those against Russia and Iran. As a result of the transfer of competences, supervision in the area of the prevention of money laundering, terrorist financing and proliferation financing or the monitoring of financial sanctions will be integrated and bundled under a single roof.

In addition to the transferring of the area of competence hitherto under the auspices of the Oesterreichische Nationalbank (OeNB) to the FMA the scope of addressees is also being extended to cover all “financial market participants” by  Article II of the Act regarding Amendments in relation to the FATF Country Inspection of 2024 (FATF-Prüfungsanpassungsgesetz 2024). Consequently, with effect from 01.01.2026 the credit institutions, financial institutions and payment institutions, supervised in this regard to date by the OeNB, will also be joined by insurance undertakings (including non-life insurers), electronic money institutions and crypto-asset service providers. As a result of extended official powers and specific duties being conferred upon the FMA in relation to the monitoring and enforcement of compliance with sanction measures, such as official investigative procedures, supervisory measures for establishing legal compliance etc., the powers will be harmonised with those that apply in the area of the Prevention of Money Laundering & Terrorist Financing. In the event of obligations under the Sanctions Act 2024 (SanktG 2024; Sanktionengesetz 2024) being breached, in the future the FMA will be able to impose administrative penalties.

The close cooperation between the OeNB and the FMA in relation to the monitoring of financial sanctions for credit institutions, financial institutions as well as payment services will be extended step-by-step during the transitional period in 2025, to guarantee knowledge transfer across authorities as well as a seamless transfer of competences. The legal basis for this can be found in the SanktG 2024, which was enacted in Article I of the Act regarding Amendments in relation to the FATF Country Inspection of 2024 (FATF-Prüfungsanpassungsgesetz 2024). Within the scope of the support activities under Article 19 para. 4 SanktG 2024, in 2025 the FMA will borh participate in sanctions inspections conducted by the OeNB, as well as also conducting on-site inspections at institutions in its own capacity on behalf of the OeNB. In addition, the FMA will assist the OeNB in official procedures or conduct such procedures on behalf of the OeNB.

Amended framework conditions already apply for this transitional period from the Sanctions Act 2024: To heighten awareness about the effective compliance with sanctions measures, Article 7 SanktG 2024 contains specific rules about the internal organisation of financial market participants. This obligation to draw up strategies, checks and procedures in writing corresponds with the rules set out in Article 23a FM-GwG. In addition the EBA Guidelines published to date also contain a range of specific more precise definitions of previous rules.

Page on Financial Sanctions on the Oesterreichische Nationalbank (OeNB) website (in German only)

Guidelines on internal policies, procedures and controls to ensure the implementation of Union and national restrictive measures (two sets of Guidelines) (Format: pdf, Size: 951,3 KB, Language: English)