We would be very happy to answer any queries that you may have about InScope-AML.
You may also have a look at the most frequently asked questions below.
What is InScope-AML?
InScope-AML is a comprehensive and secure tool for all your AML and KYC requirements which puts you in control through an end-to-end automated system, providing you with a 360-degree view of the customer.
Can InScope-AML be adapted to our risk policies and procedures?
Totally. InScope-AML’s powerful configuration engine has already been tailored to fit into the risk policies and procedures of many clients across various jurisdictions, across different industries and with companies of different sizes.
Is assistance during setup and training provided?
Yes. We will assist you in setting up InScope rules in terms of your risk appetite and will allocate free support hours based on the package that suits your needs. We will also provide training to end-users and administrators.
Does InScope-AML get updated when there are changes to legislation?
You are always responsible in ensuring that the way InScope-AML is configured and the processes you define around its use are in line with local legislation. Our software is global in nature and is used by organizations across different jurisdictions. In most cases, InScope can be changed to abide to new legislation through configuration changes
Are upgrades free of charge?
InScope-AML gets updated regularly. We have a team continuously working on new features and in fact you can track all changes we’ve made over the past years on our release blog. These changes are borne out of feedback we receive from our clients and fall into two categories – improvements and new modules. Improvements are always free of charge while new modules can be offered at an additional cost. For cloud-hosted environments, the upgrade process itself is free. For on-premise installations, upgrades are scheduled to be carried out with the client and an additional charge for their installation applies. You can find information about these updates here.
Can I integrate InScope-AML into a third-party application?
Yes. We can develop modules to integrate InScope-AML into third-party applications. In fact, we have already implemented modules that allow InScope-AML to integrate into some data provider platforms. We also have integrations into leading document management systems (SharePoint, OneDrive, Google Drive and AWS S3). Your third-party applications can also integrate into InScope-AML via our REST API endpoint.
Can you help me migrate data to InScope-AML?
Yes. We can provide you with Excel templates that enable you to bulk import data into InScope-AML.
Can my clients upload their own data into InScope-AML?
Yes. This is available via a separate module called Self-Service Portal. This module is available free of charge as part of the Standard and Enterprise packages and at an additional cost for Cloud and Basic. Once clients upload their information, this needs to be reviewed by your compliance team before it is added to the client profile within InScope-AML.
Where is my data stored?
Data can be stored in the cloud and managed by us or hosted on servers provided by yourself (on-premise). If you opt for our managed hosting option, data is stored on servers in Frankfurt provided by leading cloud platforms such as Amazon, Microsoft or Google.
What access does InScope-AML have to my data?
If InScope-AML is hosted on your servers, we would not have direct access to your data. We will require access to your environment for installation, configuration, support and upgrades. In such cases, access can be temporary, limited as required and monitored and we will only access data in line with your internal security policies and upon your instructions.
What about GDPR?
Our relationship is governed by appropriate data-processer agreements. InScope-AML helps you stay GDPR compliant by providing you with a central view of all your client data, with the ability to permanently delete data as required.
Is the cloud-hosting option secure?
When hosted in the cloud, we apply industry-standard approaches to ensure data is secure at all times. We only use reputable cloud-hosting platforms such as Amazon and Microsoft. Data is encrypted at rest and all data transfer is done over HTTPS. Data is backed up daily, backups are encrypted and stored in a different location and tested on a regular basis. The system undergoes regular penetration testing.
If I opt for a cloud-hosted setup, is my data siloed from other client data?
Yes. While the underlying infrastructure and application is shared for all our cloud-hosted clients, all our clients get their own separate database.
Can users log into InScope-AML using existing credentials (e.g. Active Directory)?
Yes. InScope-AML does not provide any custom username/password options. We decided to rely on the authentication mechanisms that our clients already use, making it easy for users to access the application without having to remember any additional credentials. Moreover, this ensures that password policies remain in line with your organisation’s policy and access to InScope is automatically disabled once a user is removed from your oranisation’s directory. InScope-AML allows authentication via Active Directory (on-premise installations only), Azure AD or Google Authentication.
Can we enforce multi-factor authentication?
As per above, InScope-AML does not implement its own authentication process so if your users are forced to use multi-factor authentication through Active Directory, Azure AD or Google, these policies are also applied within InScope-AML.
What are Multiple Teams?
Multiple Teams are an efficient way to assign client entities and their associated warnings to a specific team, after which users can be assigned to the team and will only be displayed warnings relative to their workload.
Can the Self-Service Portal be configured to mirror the questions we need to ask?
Yes, the Self-Service portal can feature the questions you ask a business when gathering all the client data. Any document, question or related country type can be included in the Self-Service Portal request.
Does the system update me when requests are returned?
The system will have internal notifications, however presently we do not support email or push notifications in the self-service portal.
Can the Self-Service Portal be configured to automatically send requests?
No, each request must be manually triggered.
Does the Self-Service Portal automatically update the system?
No, the information received must be manually vetted and accepted, after which it will update the system.
Can Passport/ID card information be collected via the Self-Service Portal?
Yes, ID documents can be included for collection via the Self-Service Portal.