By Bradley Elliott, CEO of Anti-Money Laundering (AML) platform RelyComply 

In some of South Africa’s most affluent suburbs, the concentration of visible wealth is impossible to ignore. Multi-million rand properties changing hands. Exotic vehicles are parked outside restaurants. Complex ownership structures sitting behind prime real estate. We all see it. And when visible wealth appears to outpace visible enforcement, public trust erodes.

South Africa’s exit from the FATF grey list was an important milestone. It signalled that the country had addressed the technical deficiencies identified in its AML/ CFT framework. However, the next phase will be more demanding.

Ahead of the 2026-2027 Mutual Evaluation cycle, the focus shifts from technical compliance to sustained enforcement effectiveness. The draft General Laws (AML/CTF) Amendment Bill reflects that shift. It strengthens oversight, enhances access to beneficial ownership information, formalises lifestyle audit authority and extends record-keeping requirements from five to seven years. This is not regulatory overreach. It is regulatory maturation, and we need to be honest about why it is necessary.

In parts of South Africa, the visible concentration of high-value assets is striking. Financial crime is not theoretical. It settles into the real economy. Money laundering is not the underlying offence. It is the mechanism that allows corruption, fraud, tax crime and organised crime to convert illicit proceeds into legitimate-appearing wealth.

For years, much of our AML regime has focused on transaction monitoring. Suspicious transaction reports, threshold reporting, and pattern detection within financial institutions. That remains necessary, but it’s no longer sufficient. Criminal networks adapt. They use layered beneficial ownership structures, cross-border entities and professional intermediaries. By the time activity is visible inside a bank’s monitoring system, it is often several steps removed from the original offence.

Sometimes the signal is not in the transaction. It is in the lifestyle. The formalisation of lifestyle audits recognises that enforcement can’t rely exclusively on transactional red flags. Where asset accumulation appears materially inconsistent with legitimate income, proportionate and lawful inquiry is a rational starting point. That doesn’t imply guilt, but it reflects risk-based supervision.

Naturally, this expanded authority raises concerns about privacy and regulatory overreach. Strong powers without safeguards erode trust. But weak powers erode credibility. South Africa’s data protection framework cannot be sidelined in pursuit of enforcement. Clear thresholds, proportionality and robust data governance must accompany expanded authority.

But this is also not just a banking issue. Gatekeepers of high-value assets sit at critical control points in the financial crime ecosystem. Estate agents facilitating high-value property transactions. Dealers in luxury vehicles and other portable assets. Professional intermediaries structuring trusts and layered entities.

When meaningful scrutiny of source of funds and beneficial ownership is weak at those control points, illicit capital moves with relative ease. Strengthening oversight in these sectors is not punitive. It is logical. We should also be honest about the credibility gap. When visible asset accumulation continues to outpace visible enforcement outcomes, it creates the perception that financial crime can settle comfortably into the real economy. That perception is damaging, whether accurate or not.

The draft amendments also expand regulators’ ability to access information across public bodies and enhance beneficial ownership transparency. Financial crime thrives in fragmentation. Institutional silos create blind spots. At the same time, concerns about privacy and overreach are legitimate. Any expansion of investigative authority must be governed by clear thresholds, proportionality and robust data controls. South Africa’s data protection framework can’t be sidelined in the pursuit of enforcement.

The solution isn’t fewer tools; it’s better architecture. If we are serious about effectiveness, we must also address a structural weakness in our system: fragmented intelligence across the ecosystem. Banks hold transaction data. Telecommunications providers hold identity and device data. High-value asset dealers hold purchase records. Regulators hold supervisory insight. Each operates within its own legal and operational silo.

We have limited, reactive information sharing. Fraud detected in one institution may not meaningfully inform risk assessment elsewhere in a timely or structured way. Suspicious activity reporting flows to authorities, but cross-industry intelligence collaboration remains underdeveloped.

It is possible to design privacy-preserving, tokenised or risk-triggered information-sharing frameworks that strengthen collective defence without creating mass surveillance. Other jurisdictions are exploring such models. South Africa should not hesitate to lead that conversation. Enforcement maturity is not only about stronger powers. It is about coordinated capability.

For accountable institutions, the implication is clear. Compliance shifts from procedural to provable. Policies on paper will not withstand scrutiny unless they are supported by centralised, defensible data, coherent beneficial ownership records and a demonstrable source of wealth assessment.

Boards and executives should treat financial crime risk as a governance priority, not a compliance reporting line item. The reputational and systemic consequences of failure are too significant. This reform is not about targeting wealth. It is about protecting the integrity of the economic system. Visible, high-value asset accumulation that cannot be reconciled with legitimate economic activity erodes public trust. Logical, proportionate enforcement restores it.

South Africa has taken the first step by exiting the grey list. The Amendment Bill signals that the country understands the next requirement: credible, sustained enforcement. The real question is whether industry and regulators are prepared to move from isolated compliance efforts to coordinated, ecosystem-level action. If we are, this reform will strengthen trust in our financial system. If we are not, technical compliance alone will not carry us through the next evaluation cycle.