Art. 28 Administrative sanctions and measures | Transfer of funds regulation (TFR) | AML

1. Without prejudice to the right to provide for and impose criminal sanctions, Member States shall lay down the rules on administrative sanctions and measures applicable to breaches of the provisions of this Regulation and shall take all measures necessary to ensure that they are implemented. The sanctions and measures provided for shall be effective, proportionate and dissuasive and shall be consistent with those laid down in accordance with Chapter VI, Section 4, of Directive (EU) 2015/849.
2. Member States may decide not to lay down rules on administrative sanctions or measures for breach of the provisions of this Regulation which are subject to criminal sanctions in their national law. In that case, Member States shall communicate to the Commission the relevant criminal law provisions.
1. Member States shall ensure that, where obligations apply to payment service providersmeans the categories of payment service provider referred to in Article 1(1) of Directive (EU) 2015/2366, natural or legal persons benefiting from a waiver pursuant to Article 32 thereof and legal persons benefiting from a waiver pursuant to Article 9 of Directive 2009/110/EC, providing transfer of funds services; and crypto-asset service providersmeans a crypto-asset service provider as defined in Article 3(1), point (15), of Regulation (EU) 2023/1114, where performing one or more crypto-asset services as defined in Article 3(1), point (16), of that Regulation;, in the event of a breach of provisions of this Regulation sanctions or measures can, subject to national law, be applied to the members of the management bodymeans an obliged entity’s body or bodies, which are appointed in accordance with national law, which are empowered to set the obliged entity’s strategy, objectives and overall direction, and which oversee and monitor management decision-making, and include the persons who effectively direct the business of the obliged entity; where no such body exists, the person who effectively directs the business of the obliged entity; of the relevant service provider and to any other natural person who, under national law, is responsible for the breach.
1. Member States shall notify the rules referred to in paragraph 1 to the Commission and to the permanent internal committee on anti-money-laundering and countering terrorist financingmeans terrorist financing as defined in Article 1(5) of Directive (EU) 2015/849; referred to in Article 9a(7) of Regulation (EU) No 1093/2010. Member States shall notify the Commission and that permanent internal committee without undue delay of any subsequent amendments thereto.
1. In accordance with Article 58(4) of Directive (EU) 2015/849, competent authoritiesmeans:a Financial Intelligence Unit (FIU);a supervisory authority;a public authority that has the function of investigating or prosecuting money laundering, its predicate offences or terrorist financing, or that has the function of tracing, seizing or freezing and confiscating criminal assets;a public authority with designated responsibilities for combating money laundering or terrorist financing; shall have all the supervisory and investigatory powers that are necessary for the exercise of their functions. In the exercise of their powers to impose administrative sanctions and measures, competent authoritiesmeans:a Financial Intelligence Unit (FIU);a supervisory authority;a public authority that has the function of investigating or prosecuting money laundering, its predicate offences or terrorist financing, or that has the function of tracing, seizing or freezing and confiscating criminal assets;a public authority with designated responsibilities for combating money laundering or terrorist financing; shall cooperate closely to ensure that those administrative sanctions or measures produce the desired results and to coordinate their action when dealing with cross-border cases.
1. Member States shall ensure that legal persons can be held liable for the breaches referred to in Article 29 committed for their benefit by any person acting individually or as part of an organ of that legal person, and having a leading position within the legal person based on any of the following:
  1. power to represent the legal person;
  2. authority to take decisions on behalf of the legal person;
  3. authority to exercise control within the legal person.
1. Member States shall also ensure that legal persons can be held liable where the lack of supervision or control by a person referred to in paragraph 5 of this Article has made it possible to commit one of the breaches referred to in Article 29 for the benefit of that legal person by a person under its authority.
1. Competent authoritiesmeans:a Financial Intelligence Unit (FIU);a supervisory authority;a public authority that has the function of investigating or prosecuting money laundering, its predicate offences or terrorist financing, or that has the function of tracing, seizing or freezing and confiscating criminal assets;a public authority with designated responsibilities for combating money laundering or terrorist financing; shall exercise their powers to impose administrative sanctions and measures in accordance with this Regulation in any of the following ways:
  1. directly;
  2. in collaboration with other authorities;
  3. under their responsibility by delegation to such other authorities;
  4. by application to the competent judicial authorities.
2. In the exercise of their powers to impose administrative sanctions and measures, competent authoritiesmeans:a Financial Intelligence Unit (FIU);a supervisory authority;a public authority that has the function of investigating or prosecuting money laundering, its predicate offences or terrorist financing, or that has the function of tracing, seizing or freezing and confiscating criminal assets;a public authority with designated responsibilities for combating money laundering or terrorist financing; shall cooperate closely in order to ensure that those administrative sanctions or measures produce the desired results and to coordinate their action when dealing with cross-border cases.