KYC / Customer Identity Data Quality

BSAfree

Validate customer identity data — legal names, DOB, government IDs, address verification, KYC refresh, PEP flags, and duplicate detection per CIP/FATF/eIDAS requirements.

10 rules 1141 downloads4.9 avg (47)

kyccipidentityonboardingfatfpepdue-diligencecustomer-verification

4.9(47 ratings)

Test this pack with your data

Download the template, fill in your data, and see quality results instantly.

Test This Pack

Download & Install

Choose your tool — get a ready-to-run file

Run this on your data? Upload your CSV — we'll auto-map the columns, validate, and report the bad rows.Test my data Want this certified on your data? Book a 30-min demo.Book a demo

Or use the CLI

$ npx dqhub install kyc-customer-identity --format soda --table YOUR_TABLE

About this pack

Data quality checks for Know Your Customer and Customer Identification Program compliance. Covers: - Legal name presence and completeness - Date of birth validity and age verification (>=18) - Government ID format validation (SSN, passport, driver license) - Address verification flag - KYC refresh timeliness (risk-based: 1/2/3 year cycles) - Duplicate customer detection (name + DOB + address) - Politically Exposed Person (PEP) flag - Nationality ISO code validation - Source of funds documentation (high-risk) - Customer status lifecycle validation Standards: BSA CIP (§326), FATF Recommendations 10-12, EU AMLD5/6, eIDAS

Sources & References

BSA/AML — 31 CFR 1020.220(a)(2)(i)(A) - CIP Rule Section 326

Financial institutions must obtain the customer's name at account opening as part of the Customer Identification Program

FATF — Recommendation 10 - Customer Due Diligence

Customer name is a mandatory element for customer due diligence and ongoing monitoring

eIDAS — Regulation (EU) No 910/2014 Article 24

Identity verification requires the full legal name of the natural person

BSA/AML — 31 CFR 1020.220(a)(2)(i)(B) - CIP Rule Section 326

Financial institutions must obtain the customer's date of birth at account opening as part of the Customer Identification Program

BSA/AML — 31 CFR 1020.220(a)(2)(i)(C) - CIP Rule Section 326

Financial institutions must obtain a government-issued identification number at account opening for identity verification

eIDAS — Regulation (EU) No 910/2014 Article 8

Electronic identification must meet assurance levels tied to government-issued identity documents

BSA/AML — 31 CFR 1020.220(a)(2)(i)(D) - CIP Rule Section 326

Financial institutions must obtain the customer's address at account opening and verify identity through documentary or non-documentary means

BSA/AML — 31 CFR 1020.210(b)(5) - CDD Rule

Financial institutions must conduct ongoing monitoring and update customer information on a risk basis

FATF — Recommendation 10 - Ongoing Due Diligence

Enhanced due diligence with more frequent reviews is required for higher-risk customers

eIDAS — AMLD5 Directive (EU) 2018/843 Article 14

Customer due diligence measures must be applied on a risk-sensitive basis with regular updates

BSA/AML — 31 CFR 1020.210 - CDD Rule

Accurate customer records are essential for effective CDD; duplicates undermine transaction monitoring and suspicious activity detection

eIDAS — AMLD5 Directive (EU) 2018/843 Article 13

Obliged entities must identify and resolve duplicate customer records to ensure accurate beneficial ownership information

BSA/AML — 31 CFR 1010.620 - Due Diligence for PEPs

Financial institutions must establish risk-based procedures for detecting and conducting enhanced due diligence on politically exposed persons

FATF — Recommendation 12 - Politically Exposed Persons

Financial institutions must determine whether a customer or beneficial owner is a PEP and apply enhanced due diligence measures

eIDAS — AMLD5 Directive (EU) 2018/843 Article 20

Obliged entities must apply enhanced due diligence measures for PEPs, including family members and close associates

BSA/AML — 31 CFR 1010.312 - FATCA and CRS Reporting

Accurate nationality and country of residence codes are required for automatic exchange of financial account information

BSA/AML — 31 CFR 1010.610 - Enhanced Due Diligence

Financial institutions must apply enhanced due diligence to high-risk customers, including establishing the source of funds

FATF — Recommendation 10 - Enhanced Due Diligence

Where risks are higher, financial institutions must apply enhanced measures including determining the source of funds

eIDAS — AMLD5 Directive (EU) 2018/843 Article 18

Enhanced due diligence in high-risk situations must include identifying the source and origin of funds

What's included

4completeness rules

3format rules

1range rules

1freshness rules

1uniqueness rules

Checks included (10)

Customer Legal Name Present(legal_name)

Validates that the customer legal name field is non-null and non-empty. A complete legal name is required for all customer records under CIP regulations to establish and verify customer identity during account opening.

Customer Address Verified(address_verified)

Validates that the address_verified flag is true for all active customers. CIP regulations require financial institutions to verify the customer's physical address through documentary or non-documentary methods. An unverified address on an active account indicates an incomplete onboarding process.

Politically Exposed Person Flag Present(pep_flag)

Validates that the Politically Exposed Person (PEP) flag is non-null for all customer records. The PEP flag must be explicitly set to true or false; a null value indicates the PEP screening was not performed, which is a compliance gap for enhanced due diligence requirements.

Source of Funds Documented for High-Risk Customers(source_of_funds)

Validates that the source_of_funds field is non-null and non-empty for all high-risk customers. Enhanced due diligence requires documenting the origin of customer funds to detect potential money laundering, terrorist financing, or other illicit financial activity.

Government ID Number Format(gov_id_number)

Validates that the government-issued identification number conforms to expected formats based on ID type: SSN must be 9 digits (NNN-NN-NNNN or NNNNNNNNN), passport must be 6-9 alphanumeric characters, and driver license must follow state code plus number pattern. Proper ID format is essential for identity verification under CIP requirements.

Customer Nationality ISO Country Code Valid(nationality)

Validates that the customer nationality field contains a valid ISO 3166-1 alpha-2 country code (two uppercase letters). Standardized country codes are required for sanctions screening, FATCA/CRS reporting, and cross-border regulatory compliance.

Customer Status Valid(customer_status)

Validates that the customer status field contains one of the allowed values: active, dormant, suspended, closed, or pending_review. Invalid or unexpected status values can break downstream processes for transaction monitoring, regulatory reporting, and account lifecycle management.

Date of Birth Valid and Customer is Adult(date_of_birth)

Validates that the customer date of birth is a valid date, is not in the future, and that the customer is at least 18 years of age. CIP regulations require date of birth collection, and most financial products require the customer to be a legal adult.

KYC Review Date Current(kyc_review_date)

Validates that the KYC review date is not stale based on the customer risk rating. High-risk customers must have KYC refreshed within 1 year, medium-risk within 2 years, and low-risk within 3 years. Stale KYC reviews expose the institution to regulatory risk and may indicate gaps in ongoing due diligence.

Duplicate Customer Detection(legal_name)

Flags potential duplicate customer records by identifying rows with the same legal name, same date of birth, and similar address within the customer base. Duplicate records can lead to fragmented transaction monitoring, missed suspicious activity, and regulatory reporting failures.