When it comes to anti-money laundering (AML) obligations, not all clients present the same level of risk. While most can be onboarded using standard Customer Due...
Annual AML/CFT reporting 2026
From 1 July 2026 the Department of Internal Affairs becomes New Zealand's sole AML/CFT supervisor. Find out what's changing for your annual report, and how to prepare before the deadline.
Summary
- The annual report window opens 1 July and closes 31 August 2026 - no extensions.
- This year everyone files with the DIA through AML Online. If you're new to the portal, get registered in June before the window opens.
- The report is only as hard as your record-keeping. Tidy records through the year means a quick review at filing time rather than a scramble.
- AMLHUB keeps everything in one place so you can pull a management report across your dates and have your figures ready to go.
August shouldn't be stressful. For a lot of compliance officers it can be, and almost always for the same reason. A transaction monitoring note in one place, a Customer Due Diligence (CDD) record in another, a training log on someone's desktop that may or may not be current. The information required can be scattered.
The report itself is straightforward. It covers the period from 1 July 2025 to 30 June 2026, it's submitted through AML Online within the 1 July to 31 August 2026 window, and it asks you to account for how your AML/CFT programme ran across the year. The filing is the easy part when the underlying records are in order.
One change worth knowing about
From 1 July 2026, the DIA becomes the sole AML/CFT supervisor. If you've been filing with the DIA already, nothing changes for you. If you've been supervised by the FMA or the Reserve Bank until now, this is the year you move to AML Online.
Registration for transferring entities opens in June. You'll need a RealMe login, and the invitation goes to the compliance officer contact your current supervisor has on file, so it's worth making sure those details are current before then. The DIA has guides and training material on the portal to help you get set up ahead of the window.
What goes in the annual report
The report asks you to show your supervisor that your programme did what it was supposed to do over the past year. That covers your customer onboarding and due diligence activity, what your transaction monitoring picked up, any reports you made to the FIU, how you kept staff trained, and whether your risk assessment is still current. If anything changed in your business or its risk profile during the year, that goes in too.
None of it is a trick. The report is designed to reflect a programme that's been running properly, which means if you've been doing the work, you already have what you need.
The records problem
Where it gets painful is when the year's activity hasn't been documented consistently. A CDD record that's incomplete, a training session that no one logged, a risk assessment that hasn't been touched since the previous filing. These aren't hard to fix when you find them early. When you find them in the last week of August, they become a problem.
Starting your preparation now gives you time to identify any gaps and sort them before the window closes and before your supervisor potentially spots them first.
How AMLHUB makes this easier
The whole point of keeping your compliance activity in one platform is that it's all there when you need it. When the reporting window opens, you can run a management report across your dates and pull your year's figures in one step: onboarding numbers, CDD activity, monitoring records, training logs, instead of piecing it together from three different sources.
If you'd like to see how that works in practice before reporting season hits, we can walk you through it.
