Credit Union AML/ATF Training — Canada
Meeting FINTRAC Requirements for Credit Unions and Caisses Populaires
Canadian credit unions and caisses populaires are reporting entities under the Proceeds of Crime (Money Laundering) and Terrorist Financing Act (PCMLTFA). That means AML/ATF compliance is not optional — it is a statutory obligation, enforced by FINTRAC through regular compliance examinations and, where deficiencies are found, administrative monetary penalties.
AML/ATF training is a mandatory pillar of that compliance obligation. Credit unions of every size — from a single-branch caisse populaire to a large multi-provincial credit union — must maintain a training program that is risk-informed, documented, ongoing, and effective.
This guide explains what FINTRAC requires from credit union AML training programs, where credit unions most commonly fall short, and how Tamlo’s Flag the Money course series is built specifically for the credit union environment.
Credit unions share the same core FINTRAC obligations as banks and trust companies, but they operate in an environment that creates specific compliance pressures:
Member-centric culture: Credit unions exist to serve their members. That culture of trust and familiarity is a strength — and a money laundering risk. Members who have banked with the same branch for decades may not trigger the same scrutiny as new customers at a large bank, even when their transaction patterns change. Training must specifically address how to apply KYC and ongoing monitoring to long-standing member relationships.
Decentralized branch networks: Many credit unions operate across multiple branches with varying levels of compliance oversight. Ensuring consistent training delivery and documentation across all locations — including smaller rural branches — is a practical challenge that FINTRAC examiners evaluate.
Staff turnover: Credit unions frequently employ part-time and seasonal staff at the frontline level, particularly at tellers and member services. High turnover creates ongoing training gaps that must be actively managed.
Dual regulatory environment: Credit unions are provincially chartered but federally regulated for AML/ATF purposes under the PCMLTFA. Provincial regulators (FSRA in Ontario, BCFSA in BC, ARSF in Alberta, and others) add a second layer of oversight. AML compliance must satisfy FINTRAC first, but provincial expectations may add additional requirements.
Smaller compliance teams: Unlike Schedule I banks, many credit unions — particularly smaller ones — have a designated compliance officer who also carries other responsibilities. This makes a well-structured, efficient training program even more important.
Under s.5 of the PCMLTFA, credit unions and caisses populaires are classified as financial entities — the same category as Schedule I, II, and III banks. This is significant because financial entities carry some of the most comprehensive obligations under the Act, including:
All of these obligations feed into the training requirement. Staff must understand not just that these obligations exist, but how to apply them to the specific transactions and member relationships they encounter every day.
FINTRAC’s compliance program requirements apply to credit unions exactly as they do to banks. The five mandatory pillars are:
Training is not a standalone activity — it must be designed around what the risk assessment says. A credit union serving a rural community with a predominantly retired member base has a different risk profile than an urban credit union with significant commercial lending or a high volume of international wire transfers. Training content should reflect that difference.
When FINTRAC examines a credit union’s compliance program, the training component is evaluated directly. Based on FINTRAC’s published guidance and compliance assessment methodology, examiners look for:
Training must reach every staff member with AML/ATF responsibilities — not just compliance officers. This includes:
Part-time staff, contract employees, and new hires must all receive appropriate training before they begin handling transactions or member accounts.
The training curriculum must reflect the credit union’s specific risks. A credit union that handles significant cash transactions needs deeper training on LCTR obligations and cash structuring typologies. A credit union with international membership needs stronger content on EFT reporting and cross-border risk indicators. Training content that is identical across all credit unions regardless of risk profile will not satisfy FINTRAC’s risk-based expectations.
Training records must show:
FINTRAC examiners request these records routinely. Credit unions that manage training through email distribution or informal in-branch sessions without documentation records face serious examination risk.
Training must be updated when regulations change, when the credit union’s risk assessment identifies new threats, or when an employee changes roles. The June 2021 regulatory amendments (SOR/2021-78) are a recent example — credit unions were required to update their training programs to reflect significantly strengthened beneficial ownership requirements and enhanced PEPs/HIOs obligations that directly affect credit union compliance programs. Credit unions whose members engage in virtual currency transactions should also be aware that FINTRAC’s virtual currency guidance — primarily governing MSBs dealing in virtual currency — may inform risk assessment and ongoing monitoring obligations for those accounts.
Delivering training is not enough. FINTRAC looks for evidence that training is working — that staff can identify suspicious transactions, apply KYC correctly, and know when and how to escalate. Knowledge checks, scenario-based assessments, and periodic competency reviews demonstrate effectiveness and produce the documentation examiners want.
The following training deficiencies appear repeatedly in FINTRAC compliance assessments of credit unions:
Any of these findings can produce a deficiency in a FINTRAC examination. CRITICAL findings in the training pillar — particularly the complete absence of documentation — can result in administrative monetary penalties under s.73.1 of the PCMLTFA.
Tamlo’s Flag the Money course series was developed with the Canadian financial services environment in mind. The credit union version of Flag the Money addresses the specific obligations and transaction types credit union staff encounter:
All Flag the Money modules are available in English and French, making them suitable for credit unions serving bilingual communities and for caisses populaires operating primarily in French.
The series is built to the SCORM 1.2 standard — the technical format that any LMS will accept — and produces automatic completion records, pass/fail results, and per-employee documentation for examination readiness.
Tamlo’s Flag the Money course series has been recognized with the Viddy Award for excellence in instructional video production — a reflection of the production quality and instructional design that goes into every module. The courses are scenario-based, character-driven, and built to hold the attention of employees who have sat through compliance training before. Regulatory accuracy is non-negotiable, but it is not enough if employees stop paying attention halfway through the module.
RapidLMS (Hosted)
Access Flag the Money through Tamlo’s own hosted learning management system. No IT setup, no LMS infrastructure required. Tamlo manages enrolment, tracking, completion certificates, and reporting. Ideal for smaller credit unions without a dedicated LMS or for organizations that want a turnkey solution with minimal administrative overhead.
SCORM Package (Non-Hosted)
Deploy Flag the Money in your existing LMS. Works with SuccessFactors, TalentLMS, Absorb, Moodle, Cornerstone, Docebo, and any other SCORM 1.2-compatible platform. Full ownership of your training data and completion records. Pricing is based on seat count or site licence.
Both delivery models produce the training documentation — completion records, training materials, assessment results — that FINTRAC examiners require.
Are credit unions required to have AML training under FINTRAC?
Yes. Credit unions and caisses populaires are classified as financial entities under s.5 of the PCMLTFA and are subject to all FINTRAC reporting entity obligations, including the requirement to maintain a five-pillar compliance program. Ongoing AML/ATF training is Pillar 4 of that program and is a mandatory, enforceable obligation.
What does FINTRAC specifically require from credit union training programs?
FINTRAC requires credit union training to be ongoing, risk-informed, role-specific, documented, and assessed for effectiveness. Training must cover all AML/ATF obligations relevant to each employee’s role, must be updated when regulations or internal policies change, and must reach all staff with compliance responsibilities — including part-time staff, new hires, and the compliance officer.
How often must credit unions train staff on AML/ATF?
FINTRAC requires ongoing training — not a fixed annual calendar. New employees must receive training before taking on compliance-relevant responsibilities. All staff must receive updated training when regulations or the credit union’s policies change. Annual training is a common minimum baseline but must be supplemented whenever triggering events occur.
Does FINTRAC accept online AML training for credit unions?
Yes. FINTRAC does not prescribe a delivery format. Online SCORM-based e-learning is widely accepted and preferred because it produces automatic documentation — completion records, training materials, and assessment results — that directly satisfies examination requirements.
Is Tamlo’s Flag the Money course suitable for credit unions?
Yes. Flag the Money includes a credit-union-specific version that covers the FINTRAC obligations, transaction types, and member relationship scenarios relevant to credit union staff. Courses are bilingual (English and French), SCORM-compatible, and built to the compliance standards FINTRAC examiners evaluate.
What happens if a credit union fails a FINTRAC compliance examination on training?
A deficient training program can produce MINOR, MAJOR, or CRITICAL examination findings. CRITICAL findings — particularly the complete absence of training records — can result in administrative monetary penalties (AMPs) under s.73.1 of the PCMLTFA. Repeated deficiencies across examination cycles carry escalating enforcement risk.
Tamlo works with credit unions and caisses populaires across Canada — from single-branch organizations to large multi-provincial credit unions. Whether you need a fully hosted solution through RapidLMS or a SCORM package for your own LMS, we can help you meet your FINTRAC obligations and document every step for your next compliance examination.
[Get a Quote] [Browse Flag the Money Courses] [Contact Us]
