Bribery
In a Nutshell
- Bribery is a FATF-designated predicate offence and under UAE Federal Decree-Law No. 10 of 2025 proceeds from it trigger mandatory STR/SAR filing via the goAML portal.
- The STR/SAR filing obligation arises immediately upon forming a suspicion. There is no minimum transaction threshold and no requirement that the suspicion be proven.
- goAML supports multiple report types: STR and SAR for proceeds from illicit offence such as bribery.
- Tipping off a customer after an STR is filed is prohibited under Article 24 Federal Decree-Law No. 10 of 2025; penalties for breach are set out in Article 29.
- Failure to file where bribery is suspected can attract administrative penalties of AED 50,000 to AED 1,000,000 per violation and potential criminal exposure for the MLRO.
When a regulated entity in the UAE identifies activity connected to bribery, the reporting obligation is clear: a Suspicious Transaction Report or Suspicious Activity Report must be filed via the goAML portal, operated by the UAE Financial Intelligence Unit, without delay and without waiting for certainty.
This article explains the goAML filing mechanics for bribery-related matters, the full range of report types available on the platform, and the consequences of getting the filing decision wrong.
Why Bribery Creates a goAML Filing Obligation
Bribery is a FATF-designated predicate offence within the category of corruption and bribery. Under Article 1 of Federal Decree-Law No. 10 of 2025 (the AML/CFT/CPF Law), a predicate offence is any crime whose proceeds may be subject to a money laundering prosecution, whether committed inside or outside the UAE, provided the conduct is punishable in both jurisdictions.
The consequence is direct: any profit derived from bribery that is subsequently concealed, converted, transferred, acquired, possessed, or used constitutes a separate money laundering offence under Federal Decree-Law No. 10 of 2025. The underlying bribery and the laundering are prosecuted independently. A conviction for the predicate offence is no longer required to pursue the money laundering charge.
The Evidentiary Threshold Under the 2025 Law
Article 2 of Federal Decree-Law No. 10 of 2025 lowered the standard required to establish knowledge. A person commits money laundering if they know, or have sufficient or circumstantial evidence supporting knowledge, that funds derive from a predicate crime. This shift from actual knowledge to constructive knowledge has direct implications for the STR filing standard: the question is whether a regulated entity has formed reasonable grounds for suspicion, not whether it can prove the underlying crime.
In bribery cases, direct evidence is rarely available. Pattern indicators, PEP connections, agent payments without commercial rationale, and complex ownership structures are the more common triggers. These are objective circumstances capable of grounding the suspicion standard.
Not Sure If Your Business Is Exposed to Bribery Risks?
From third-party agents to procurement processes, bribery risks can emerge in unexpected areas of your organisation.
The goAML Report Types: Full Scope of Filing Obligations
goAML is not a single-report platform. Regulated entities are required to file the appropriate report type depending on the nature of the activity identified. For bribery-related matters, the report filed is the STR/SAR.
Suspicious Transaction Report (STR)
The STR is the primary instrument for reporting bribery-related suspicions. Regulated entities are required to file an STR via goAML immediately upon forming reasonable grounds for suspicion that a transaction or attempted transaction is connected to money laundering, terrorist financing, or a predicate offence, including bribery. The obligation arises under Federal Decree-Law No. 10 of 2025 and applies regardless of the transaction value.
There is no threshold below which the obligation disappears. Bribery-related STRs must be filed even where the transaction appears modest in value, because bribery schemes often involve deliberate value suppression or structuring to avoid detection.
Bribery Structuring Indicators That Trigger STR/SAR Review
Structuring is the deliberate breaking up of transactions to avoid detection thresholds. In bribery cases, it typically arises in the placement stage, where proceeds are introduced into the financial system. The following patterns should trigger prompt MLRO review and, where the suspicion threshold is met, STR/SAR filing.
Transaction-Level Indicators
Multiple cash deposits of similar amounts made within a short period across different accounts or entities, where no clear business purpose explains the pattern, are a primary structuring indicator. Payments to agents or consultants at rates materially above market norms, or without any verifiable commercial justification, represent a further category of concern. Unexplained round-sum transfers to jurisdictions inconsistent with the customer’s declared business are also a common pattern in bribery-proceeds layering.
Relationship-Level Indicators
Foreign PEP involvement in a transaction or business relationship without a clear commercial rationale is a high-priority indicator. Complex corporate structures using nominee directors, layered holding entities, or offshore trusts, obscuring the ultimate beneficial owner (UBO), represent a structural risk indicator that compounds any transaction-level concerns. Customer reluctance to provide source of wealth or source of funds information during CDD, particularly in high-value transactions, is a behavioural indicator that warrants escalation.
Jurisdictional Indicators
Transactions routed through FATF-listed jurisdictions, or through jurisdictions known for corporate opacity, are a red flag in any bribery assessment. Where these jurisdictional factors compound a PEP connection or unexplained payment pattern, the combined weight of indicators is generally sufficient to meet the STR/SAR threshold.
Filing Mechanics: How to Submit a Bribery-Related STR/SAR on goAML
The MLRO is the designated individual responsible for STR/SAR filing decisions. Internal escalation protocols should ensure that any staff member who identifies a bribery indicator can pass the matter to the MLRO promptly, without the filing being delayed by hierarchical review processes.
Step 1: Internal Escalation
The staff member who identifies the concern documents the indicator and escalates it to the MLRO. The escalation should include the transaction or customer details, the specific indicator identified, and any supporting documentation. The escalation log forms part of the regulatory record.
Step 2: MLRO Assessment
The MLRO reviews the escalated matter against all available information, including CDD records, transaction history, PEP screening results, adverse media, and any other relevant intelligence. Where the assessment concludes that reasonable grounds for suspicion exist, the STR obligation arises immediately.
Step 3: goAML Submission
The MLRO or a designated deputy submits the STR/SAR via the goAML portal. The report must contain sufficient detail to allow the FIU to understand the nature of the suspicion, the parties involved, and the transactions or behaviour giving rise to it. Incomplete reports are less effective and may be returned for supplementation.
Step 4: Post-Filing Management
Once the STR/SAR is filed, the confidentiality and no-disclosure obligations under Article 24 of Federal Decree-Law No. 10 of 2025 and Article 19 of Cabinet Resolution No. 134 of 2025 apply immediately. The MLRO and any other staff aware of the filing are required to ensure that no information is disclosed to the customer, counterparties, or any third party that could indicate that a report has been filed, that related information has been shared with the FIU, or that an investigation is underway.
Subsequent customer-facing interactions must be managed with care. Staff who become aware of the filing should not alter their behaviour in a way that signals the reporting to the customer. This requirement extends to routine account maintenance, renewal processes, and any communications that might otherwise prompt a customer enquiry.
Step 5: MLRO Decision Log
The MLRO should maintain a formal decision log for all STR/SAR assessments, including matters where the suspicion threshold was considered but not met. A sound approach is to document the indicators reviewed, the information gathered, and the reasoning supporting the decision. This record supports supervisory review and demonstrates that the filing decision was based on a genuine assessment rather than a procedural default.
Looking to Build a Stronger Compliance Culture?
An effective anti-bribery programme goes beyond policies. It creates accountability, awareness, and stronger decision-making.
Button: Strengthen Compliance
Consequences of Failing to File
Failure to file an STR/SAR where bribery-related suspicious activity has been identified is a breach of the AML/CFT/CPF obligations under Federal Decree-Law No. 10 of 2025 and Cabinet Resolution No. 134 of 2025.
← scroll to see full table →
| Consequence | Legal Basis | Range / Nature |
|---|---|---|
| Supervisory action by MoET or CBUAE | Federal Decree-Law No. 10 of 2025 | Warning, restriction, licence suspension |
| Criminal exposure for MLRO | Federal Decree-Law No. 10 of 2025 | Imprisonment for principal ML offences |
| Criminal exposure for senior management | Federal Decree-Law No. 10 of 2025 | Individual liability where failure is deliberate or grossly negligent |
| Reputational damage | N/A | Regulatory publication, adverse media |
The same liability framework applies to tipping off. Disclosing to a customer that an STR has been filed, that related information has been shared with the FIU, or that an investigation is underway is a criminal offence under Article 29 of Federal Decree-Law No. 10 of 2025, covering both intentional and grossly negligent disclosures.
PEPs, Enhanced Due Diligence, and the goAML Intersection
Politically Exposed Persons are disproportionately represented in bribery typologies because their positions of authority make them both targets and conduits for corrupt payments. Under Cabinet Resolution No. 134 of 2025, foreign PEPs are subject to Enhanced Due Diligence, source of funds and wealth measures, senior management approval, and enhanced ongoing monitoring as standing requirements.
Domestic PEPs and persons entrusted with a prominent function in an international organisation require these enhanced measures where a high-risk business relationship exists.
For goAML purposes, EDD documentation is not filed with the FIU directly, but it underpins the quality of any STR/SAR submission. An STR/SAR filed in respect of a foreign PEP will be materially stronger if the reporting entity can demonstrate that it conducted proper EDD, identified the source of wealth, obtained senior management approval, and applied enhanced monitoring throughout the relationship. Entities that have not completed these steps before filing will face harder questions from the FIU and, in a supervisory review, from MoET or the CBUAE.
Get Support with goAML Registration and STR/SAR Filing
goAML registration and accurate STR/SAR filing are technical obligations that carry material legal consequences if handled incorrectly. Whether you are registering for the first time, reviewing your current reporting process, or managing a live bribery-related matter, specialist advisory support can make the difference between a compliant filing and a supervisory finding.
goAML Registration provides advisory services covering goAML platform registration, STR and SAR preparation and review, MLRO decision log framework design, and ongoing reporting support for DNFBPs and financial institutions operating in the UAE. Contact us to discuss your reporting obligations and how we can support your compliance function.
Ready to Strengthen Your Anti-Bribery Controls?
Our specialists help organisations identify risks, close compliance gaps, and build effective financial crime controls.
Frequently Asked Questions
Every reasonable suspicion requires an STR/SAR, regardless of whether the underlying bribery has been proven or is likely to be proven. The filing obligation arises when the MLRO forms reasonable grounds for suspicion, not when certainty is achieved. Filing is protective: it discharges the obligation and transfers the investigative responsibility to the FIU.
Yes, but the decision must be documented. The MLRO has the authority to assess whether the indicators amount to reasonable grounds for suspicion. Where the decision is not to file, the reasoning must be recorded in the MLRO decision log with sufficient detail to survive supervisory scrutiny. A bare no-file decision with no documented reasoning is a significant audit risk.
The FIU analyses the report as part of its financial intelligence function. It may request further information from the reporting entity, share intelligence with domestic or foreign law enforcement, or exercise its expanded powers under Federal Decree-Law No. 10 of 2025 to freeze suspected funds for up to 30 days, extendable by the Public Prosecutor. The reporting entity has no further obligation to act unless contacted by the FIU, but must maintain all records relating to the filed report for a minimum of five years under Cabinet Resolution No. 134 of 2025, Article 25.
Regulated entities in the UAE are required to register on the goAML portal operated by the FIU before they can file any report. Registration requires the submission of entity details, MLRO designation, and regulatory licence information. Entities that have not registered cannot discharge their STR/SAR filing obligation, and non-registration itself is a supervisory breach.
Federal Decree-Law No. 10 of 2025 applies to regulated entities operating in the UAE, including commercial free zones. Financial free zone entities in the DIFC and ADGM are supervised by the DFSA and FSRA, respectively, under their own AML frameworks, though the federal AML law applies concurrently. All regulated entities in scope are required to file STR/SARs via goAML.