AUSTRAC reporting entity status

Compliance / Veraxa Research / 2026-07-18

How Australian firms can reason about designated services, reporting entity status, and the operating work created by Tranche 2.

Reporting entity status is not decided by job title alone. It follows the service being provided. Under the AML/CTF Act, a business becomes an AUSTRAC reporting entity when it provides a designated service with the required Australian connection.

That distinction matters for Tranche 2. A law firm, accounting practice, conveyancer or real estate business may not be in scope for every piece of work. Same client, different matter, different answer.

AUSTRAC publishes guidance on professional designated services and next steps for AML/CTF reforms, which are the best starting points for deciding in-scope services.

Start with service, not sector

AML/CTF Act uses designated services to define regulated activity. Section 6 sets out tables of services. If a business provides one of those services, and the service has the required link to Australia, the business may be a reporting entity for that activity.

Tranche 2 extends the regime to new professional and property-related services from 1 July 2026. Relevant businesses can include lawyers, accountants, conveyancers, real estate professionals, dealers in precious metals, stones and products, and trust and company service providers.

Useful first question is not, "is this an accounting firm?" Better question is, "what service is being provided on this matter?" Scope often turns on whether the firm is helping with a transaction, company structure, trust arrangement, real estate dealing, movement of money, or control of assets.

Some work will sit outside scope. General advice may not be the same as carrying out a designated service. Certain court or tribunal order scenarios are carved out in the professional services table. Legal professional privilege also has specific treatment. These details do not remove the need for triage. They make triage more important.

What changed under Tranche 2

From 1 July 2026, newly regulated entities that provide relevant designated services must comply with AML/CTF Act and Rules. Enrolment is due within 28 days of first providing a designated service, which usually points to 29 July 2026 for firms that begin providing those services on commencement.

Core obligations include AML/CTF programme, customer due diligence, ongoing due diligence, reporting, staff training, record keeping, and compliance officer arrangements. Civil penalty exposure is material. AUSTRAC says Federal Court civil penalties can reach 100,000 penalty units for a body corporate and 20,000 penalty units for other persons. Current Commonwealth penalty unit is $330 for contraventions on or after 7 November 2024.

Scope review should answer practical questions before policy wording is finalised:

  • Which services does the firm provide, not only what sector does the firm belong to.
  • Which services have Australian geographical link.
  • Who is the customer receiving the designated service.
  • Which matters require customer due diligence before work starts.
  • Which exceptions need partner, MLRO or senior compliance review.

Use this 60-second triage routine before engaging on a new matter:

  • Confirm the exact service requested and the client role.
  • Confirm the customer is asking for a service that fits a designated-service description.
  • Confirm the required Australian connection.
  • Check whether the matter includes entity, trust, representative, or high-risk jurisdiction elements.
  • Set whether CDD begins now and who reviews exceptions.

Scope work is usually where firms discover the awkward truth: client onboarding was already a risk decision, it just was not written down that way.

Why this becomes an operating-model problem

In-scope status changes how firms need to manage records. Engagement letter and ID check are not enough. Firm needs a client record that explains service type, customer, beneficial owners, risk rating, screening result, reviewer, exception path, and reason work proceeded.

Hard cases will be mixed matters. A client may first instruct on property transaction, then ask for company restructuring, then later require trust-related work. Static intake form will struggle because scope can change as matter changes. Compliance team needs to see when new work creates new AML/CTF questions.

Better operating model treats onboarding as start of customer lifecycle, not a one-off gate. Client record should absorb new matters, new evidence, changed ownership, fresh screening outcomes, and periodic review. That is where Tranche 2 becomes less about panic before deadline and more about building memory into regulated work. For operating model view, see flow-led onboarding

Practical next step: pick ten recent matters and classify them by service, customer, jurisdiction link, evidence collected, and reviewer decision. That small sample will usually show whether the firm needs a simple triage checklist, a deeper CDD flow, or a full operating-model change. It also gives partners something concrete to debate before policy drafting starts.

What each matter record should answer

  • Why the firm is captured as a reporting entity for this matter.
  • Which service is being provided and which rule path was selected.
  • What evidence was required and what changed the flow decision.
  • Who approved any uncertainty or exception.
  • When the relationship should be reviewed next.