You sold it for R100k or more... now you're an accountable institution. Are you FICA compliant?
Published on FICACompliant.co.za | FICA compliance | High Value Goods dealer | AML | Accountable Institutions | South Africa
Being FICA compliant is a legal obligation, not a voluntary standard and since late 2022 that obligation has extended well beyond banks, attorneys, and estate agents. Under the Financial Intelligence Centre Act, any entity that sells a physical item with an individual sales price of R100 000 or more is classified as a High-Value Goods Dealer (HVGD) and listed as an accountable institution under Schedule 1 of the FIC Act.
Engineering firms, industrial equipment suppliers, construction machinery dealers, and similar businesses now carry the same FICA registration, customer due diligence, RMCP and reporting obligations as financial institutions. The majority of businesses that crossed this threshold have not yet acted on it and that is where the regulatory exposure begins.
Why high-value goods dealers are a target for money launderers
The logic is straightforward. A single excavator, drilling rig, or piece of industrial processing equipment can legitimately cost several million rand. Transactions of that size, conducted through what appears to be normal commercial activity, are an effective mechanism for moving illicit funds. A shell company purchases equipment with proceeds from criminal activity, then leases it to a legitimate operator, sells it cross-border, or immediately resells it at a loss. The outcome in each case is the same: dirty money becomes documented proceeds from equipment sales, with a paper trail that resembles ordinary business.
Construction, mining, and infrastructure projects across the African continent provide the cover. The transactional volumes are large, the counterparties are often corporate entities whose beneficial ownership is not immediately obvious, and cross-border movement of equipment is routine. This is precisely why the FIC Act's December 2022 expansion specifically captured HVGDs and precisely why the Financial Intelligence Centre is now focused on whether these businesses have implemented adequate controls.
What the FIC Act actually requires from your business
None of these obligations are discretionary. They apply from the moment your first qualifying transaction closes not from the date you become aware of the requirement. An engineering supplier that has been selling equipment above the R100 000 threshold since January 2023 without having completed FICA registration or implemented an RMCP has been operating in breach of the FIC Act for that entire period.
Up to R100m
Maximum administrative penalty for non-compliance with the FIC Act
Criminal liability
Directors and compliance officers face personal exposure, not just the entity
Reputational damage
Association with money laundering investigations destroys client and partner trust
HVGD obligations under the FIC Act
FICA registration: register with the Financial Intelligence Centre before conducting any regulated transaction.
Client identification and verification: verify the identity of every client (individual or legal entity) before establishing a business relationship or concluding a transaction.
Sanctions and PEP screening: screen clients against the Targeted Financial Sanctions list and check for Politically Exposed Person status.
Cash reporting: report cash transactions of R50 000 or more to the FIC and file suspicious transaction reports via goAML where warranted.
Record retention: maintain all FICA documents and transaction records for a minimum of five years.
RMCP: develop, document, maintain, and implement a Risk Management and Compliance Programme specific to your business's risk profile and operations.
Three compliance failures HVGDs are most likely to make
Assuming FICA only applies to financial institutions. This is the most common and most costly misconception in the HVGD sector. The Schedule 1 expansion in December 2022 was a deliberate regulatory response to recognised vulnerabilities in high-value goods markets. The FIC Act draws no distinction between a bank and a mining equipment dealer when it comes to AML obligations. If your business sells qualifying goods, you are regulated. Unawareness does not constitute a defence during a FICA inspection.
Treating the RMCP as a once-off document. An RMCP is not a compliance certificate it is a living program that must reflect your business's actual risk environment. For an HVGD operating in cross-border markets or selling to corporate buyers whose beneficial ownership structures are complex, the RMCP must address those specific risks explicitly. A generic template that has not been reviewed against your transaction types, client categories and geographic exposure will not withstand scrutiny. Regulators assess whether the programme is being implemented, not just whether a document exists.
Failing to verify beneficial ownership of corporate buyers. When a client is a legal entity (a company, trust, or joint venture) the obligation to verify identity extends to the individuals who ultimately own or control that entity. Shell company structures used to launder money through equipment purchases depend on accountable institutions skipping this step. The FIC Act does not permit it. Every corporate client requires a documented beneficial ownership determination, regardless of how straightforward the transaction appears on the surface.
Immediate steps if your business qualifies as an HVGD
Confirm whether any of your products have an individual sales price of R100 000 or more if so, your FICA obligations are already active.
Complete FICA registration with the Financial Intelligence Centre if this has not been done. Registration is a prerequisite for all downstream compliance activity.
Develop or commission an RMCP that maps your specific client types, transaction sizes, geographic exposure, and money laundering risk indicators.
Implement a client onboarding process that captures identity verification, beneficial ownership, and sanctions screening for every qualifying transaction and documents the outcome.
Establish a goAML reporting process and train the staff responsible for identifying and filing suspicious transaction reports and cash threshold reports.
Set a calendar reminder to review your RMCP at least annually, or whenever your business activities, client base, or product lines change materially.
Conclusion
The December 2022 HVGD classification was not a minor regulatory update it brought an entire category of South African businesses into the full FICA compliance framework, with all the obligations that entails. Being FICA compliant as an engineering or industrial supplier means registering, verifying, screening, documenting, and reporting every time, for every qualifying transaction. The penalty exposure is severe, the personal liability for directors is real, and regulators are increasingly focused on sectors that have been slow to respond.
If your business has crossed the R100 000 threshold and your compliance program is not yet in place, visit FICACompliant.co.za for a free RMCP tailored for yoour business and use it as the foundation for a programme that meets the FIC Act's requirements from day one.
