MACO is to become the recognised standard-setting body for the accreditation, certification and qualification of knowledge, skills and competences of Compliance Officers serving in the Maltese financial services sector. It will also act as a single professional industry voice on matters
related to compliance in Malta.

MACO Values are as follow:


Issue papers of interest from time to time such as for example on the Role of Compliance Officers in FinServ in Malta


Upkeep of online forum for members. Open platform for third party training activities.


Update circular to members. Training events (for members and non-members) in collaboration with sponsors.


Issue of position papers/reactions to proposed legislation/regulation. Social events.


MoU with MFSA and MITC. Networking with sister Organisations and Associations. Sponsorship

Membership of MACO will provide you with a wide range of tools and resources to help you achieve your professional goals.

Learn more
The mission of MACO is to create professional education and knowledge standards for Compliance Officers serving in the Maltese financial services sector, enrich the professional culture and enhance both Maltese and international relations and alliances.

MACO Mission Statement

Insight News

September 13, 2018

International news and developments – August 2018

UK Region Pension scam victims lose an average of £91,000 in 2017   RBS bottom of bank league tables   Regulation round-up from the FCA   UK regulator fines KPMG for misconduct on Ted Baker audit   FCA enforcement action increases in the wake of senior managers regime   Banks consider ‘early warning system’ to fight misconduct   Is Britain to become a cashless society?   UK aid will ‘stop dirty money in its tracks’   UK’s ‘Transforming Compliance and Enforcement Programme’ put on hold     EMEA Region Top four EU banks have shed €1.5 trillion in assets since 2013   Bank of Spain’s website hit by cyber attack   Money laundering thriving in Germany   EU admits gaps in AML framework, but action won’t be taken till ‘next year or beyond’   ING fined €775 million for weak crime prevention     APAC Region HKMA intervenes in currency market   Pakistani court to look into ex-President in money laundering probe   Japan developing technology to predict money laundering   Iranian constitutional body calls for anti money laundering changes     North America Region $4.9 billion penalty for RBS to settle US misconduct claims   President Trump’s former lawyer investigated for $20m bank fraud   Swiss bank fined $60m over tax evasion in the US   Thinktank: Canada has a lot of catching up to do on money laundering   Fugitive at centre of 1MDB probe charged with money laundering     LATAM Region Brazilian FIFA official jailed for four years for corruption   Guatemala bullish in face of criticism for denying entry to UN anti-corruption body   Singapore to return $11 million to in 1MDB-linked funds
September 6, 2018

How to make third-party risk management less painful

By Amy Hayenhjelm and Neil Isherwood, Dun & Bradstreet Dun & Bradstreet’s Amy Hayenhjelm and Neil Isherwood will be discussing ‘How to make third-party risk management less painful’, on 26 September as part of our #BigCompConvo webinar series. Register here for the webinar to hear practical recommendations for faster and efficient onboarding and the successful management of third party compliance. It takes 20 years to build a reputation and five minutes to ruin it. If you think about that, you’ll do things differently. – Warren Buffet Managing a compliance programme can be extremely disruptive to an organisation. Firms must not only run checks on potential customers, but also ensure that third-party risk is a key part of their comprehensive compliance programme, to avoid exposure to bribery and corruption and the associated reputational ramifications. In addition, with business pressure to move quickly and efficiently a common driver, the onboarding process is a key area where competitive advantage can be gained or lost. Verifying third-parties, determining risk and creating visibility for your stakeholders are all key to an effective programme – but this can still be a manual process which does not make the best use of your human capital. Approaching the programme in an organised manner will help you manage your resources effectively, ensuring that you are protecting your company and your brand, while not overwhelming your team. A multi-step compliance programme will deliver tangible results from loss avoidance related to global penalties/fines and third-party risk, but will require content, processing, analysis and adherence at each step:  Identify & Verify: Identify the specific entity and its relationships and verify data against that business, taking a risk-based approach Beneficial Ownership: Establish ownership of the business and determine ultimate beneficial owners. Leverage that information based on your company’s risk tolerance  Screen: Screen entities for sanctions, politically exposed persons, reputational risk and litigation risk  Assess Risk: Assess the risk of the entity to determine whether the business passes your compliance policy  Reporting: Demonstrate and document adherence to established policies Monitor: Keep watch on the businesses in your portfolio for any changes to circumstance events and compliance flags that may change how you assess the entity However, collecting all the information required to manage your compliance programme is not only time consuming but can be costly. So, how exactly do we propose to make this less painful? Leveraging best practices and automation can allow the management of your compliance programme to be effective and achievable. During the webinar, we will cover best practices and ways to automate your compliance programme across these four key areas:  Policy and adherence – All parties, internal and external, need to understand what is required, how to comply and what are the consequences of non-compliance. A compliance policy is only as good as its execution.  Using a risk-based approach – A risk assessment process to identify, segment, mitigate, and monitor risks and risk factors will assist in identifying where you need to focus, and will also enable you to create a programme that is both designed around your company’s risk tolerance and cost effective for your organisation.  ID and verification – Knowing exactly who you are doing business with – not just the company, but the people behind it – and leveraging multiple sources to verify self-reported information is the starting point for every compliance programme.  Automating data collection – Automate the collection of data from your customers, suppliers and third parties in a flexible way. Join Amy and Neil on Wednesday 26 September 2018, 14:00 BST to learn more. Register here.
September 3, 2018

Financial crime prevention: cleaning up the world

ICAW10870 Infogram

MACO Sponsorship Partners