Do I still need a solicitor for AML/CTF Tranche 2 compliance?

Yes. HeadStart Docs products are digital publications that give you a substantial head start, but they must be reviewed and tailored by a qualified solicitor to your specific business circumstances before implementation.

How is HeadStart Docs different from the free AUSTRAC Starter Kits?

AUSTRAC Starter Kits are generic starting points that require significant customisation. HeadStart products are sector-specific, pre-populated with industry-relevant risk factors and scenarios, and include 12 months of AML Portal access for ongoing compliance including screening, record keeping and reporting tools.

What if the AML/CTF rules change after I purchase?

Your digital products are yours to keep. If significant regulatory changes occur, updated versions will be available to active portal subscribers. The AML Portal itself is continuously updated to reflect current AUSTRAC requirements and sanctions lists.

What happens after my 12-month AML portal access expires?

Your documentation is yours forever. To continue using the AML Portal (screening tools, compliance calendar, record keeping), you pay $35 per customer CDD. Cancel anytime — no subscription required.

Is HeadStart Docs a law firm?

No. HeadStart Docs is a digital publisher and platform provider. We sell digital compliance products and portal access. We do not provide legal advice. Referrals for legal advice can be made to our related law firm, HeadStart Counsel.

When does AML/CTF Tranche 2 commence in Australia?

Tranche 2 AML/CTF obligations commence on 1 July 2026. All reporting entities in designated sectors including lawyers, accountants, real estate agents, conveyancers, and trust and company service providers must have their AML/CTF programs in place by this date.

20 December 2025•Third-Party Reliance

Third-Party Reliance: Using Another Firm's KYC

Name: HeadStart Docs
Brand: HeadStart Docs
Price: 679 AUD

Can you rely on customer identification performed by another firm? Yes, but only under strict conditions set out in Section 37A. Get it wrong and you are responsible for the failure.

What is third-party reliance?

Third-party reliance allows you to accept customer identification (KYC) performed by another reporting entity, rather than conducting it yourself. This includes beneficial owner identification and other CDD measures. This can be useful when:

A client is referred from another professional
Multiple professionals are working on the same transaction
You are part of a professional network or group

Conditions for reliance (Section 37A)

All conditions must be met

The third party is a reporting entity: They must be enrolled with AUSTRAC and subject to AML/CTF obligations
Written arrangement in place: You must have a formal arrangement that permits the reliance
CDD was conducted to the required standard: The third party must have applied appropriate CDD measures
Records available on request: You must be able to obtain copies of the CDD records promptly - see record keeping requirements
You remain responsible: Ultimate responsibility stays with you - reliance does not transfer liability

Who can you rely on?

Acceptable third parties

Other law firms (reporting entities)
Accounting firms (reporting entities)
Real estate agencies (reporting entities)
Banks and financial institutions
Other Tranche 2 reporting entities

Cannot rely on

Non-reporting entities
The client themselves
Unregulated third parties
Entities in high-risk jurisdictions (special conditions)

The written arrangement

Your reliance arrangement should address:

Scope of reliance (which CDD elements)
Confirmation the third party is a reporting entity
Timeframe for providing records on request
Confirmation of CDD standards applied
Notification requirements if issues arise

You remain responsible

Critical point: reliance does not transfer responsibility. If the third party's CDD was inadequate, you are still liable for failing to properly identify your client. Reliance is a convenience, not an escape from obligation.

Practical example

Scenario: Lawyer-to-lawyer referral

A client is referred to you by another law firm for a property matter. The referring firm has already completed full KYC on the client for a previous matter.

To rely on their KYC, you must:

Confirm the referring firm is enrolled with AUSTRAC
Have a written reliance agreement in place
Obtain confirmation of what CDD was performed
Request copies of the CDD records
Assess whether additional CDD is needed for your matter

Remember: You must still conduct your own risk assessment and may need to supplement the third party's CDD.

Key Takeaway

Third-party reliance under Section 37A allows you to use another reporting entity's KYC, but only with a written arrangement and where all conditions are met. You remain responsible for compliance - reliance is not a safe harbour.

Read our complete Tranche 2 Guide

Key dates, affected sectors, obligations and how to prepare

Disclaimer: This article is general information only. It is not legal, financial or compliance advice. HeadStart Docs™ provides free compliance documents, not legal services.

We do not guarantee the accuracy of information provided. Obligations may apply depending on your designated services. Always confirm your specific requirements with a qualified adviser.

Need a lawyer to review your AML/CTF program? HeadStart Counsel offers fixed-fee tailoring from $1,800+GST. Separate entity and engagement.