KYC and AML Compliance for Fintech in Argentina (UIF & CNV)

Argentina's Evolving Fintech Regulatory Environment

Argentina's fintech sector has grown rapidly, driven by a tech-savvy population, high smartphone penetration, and persistent demand for alternative financial services. The regulatory landscape is shaped by multiple authorities, with the Unidad de Informacion Financiera (UIF) leading AML/CFT oversight, the Comision Nacional de Valores (CNV) regulating securities-related activities, and the Banco Central de la Republica Argentina (BCRA) supervising payment service providers and banking operations.

Understanding how these regulators interact is essential for any fintech company seeking to operate compliantly in the Argentine market.

Key Regulatory Bodies

UIF (Unidad de Informacion Financiera)

The UIF is Argentina's financial intelligence unit, established under Ley 25.246 (the Anti-Money Laundering Law). It is responsible for analyzing suspicious transaction reports, issuing AML/CFT regulations, and supervising compliance among obligated entities. The UIF has progressively expanded its regulatory reach to include fintech companies and virtual asset service providers.

CNV (Comision Nacional de Valores)

The CNV oversees Argentina's capital markets and regulates entities that offer securities-related services. Fintech companies involved in crowdfunding, digital asset trading (where assets qualify as securities), or investment platforms must comply with CNV registration and compliance requirements.

BCRA (Banco Central de la Republica Argentina)

The BCRA regulates the monetary and financial system, including payment service providers (PSPs). Through its Comunicacion A series of regulations, the BCRA has established a framework for PSP licensing, operational requirements, and interoperability standards that directly affect fintech companies.

Ley 25.246: Argentina's AML Framework

Ley 25.246, as amended, is the cornerstone of Argentina's anti-money laundering regime. The law establishes:

• A comprehensive list of predicate offenses for money laundering
• Reporting obligations for designated entities (sujetos obligados)
• The UIF's authority to issue binding regulations
• Criminal penalties for money laundering and terrorism financing
• Obligations for customer identification, record keeping, and suspicious activity reporting

Obligated Entities

The law designates a broad range of obligated entities, including banks, insurance companies, securities brokers, and increasingly, fintech companies and VASPs. Obligated entities must register with the UIF, implement compliance programs, and report suspicious transactions.

KYC Requirements for Argentine Fintechs

Individual Customer Identification

Fintech companies must collect and verify:

• DNI (Documento Nacional de Identidad): Argentina's primary identification document, now available in digital format through the Mi Argentina app.
• CUIT/CUIL: Tax identification numbers required for all financial relationships.
• Full name, date of birth, nationality, and marital status.
• Residential address with supporting documentation.
• Economic activity and source of income declaration.
• PEP (Persona Expuesta Politicamente) self-declaration.

Legal Entity Identification

For corporate customers, requirements include:

• Estatuto social (articles of incorporation) and amendments
• Certificate of current registration from the Inspeccion General de Justicia (IGJ) or equivalent provincial body
• CUIT registration
• Identification of beneficial owners holding 20% or more
• Financial statements certified by a public accountant
• Board resolution authorizing the financial relationship

Risk-Based Due Diligence

The UIF mandates a risk-based approach to CDD. Higher-risk scenarios requiring enhanced measures include:

• PEPs and their close associates and family members
• Non-resident customers
• Customers from FATF-identified high-risk jurisdictions
• Complex corporate structures with opaque beneficial ownership
• Unusual transaction patterns relative to declared activity

Joinble's AI-powered identity verification helps Argentine fintechs automate these CDD processes, from DNI validation and biometric matching to real-time PEP and sanctions screening. For a comprehensive introduction to KYC principles, see our guide on what is KYC.

PSP Licensing Under BCRA

The BCRA regulates payment service providers through the Comunicacion A series of circulars. Key regulations affecting fintech KYC include:

Comunicacion A Framework

• Registration and licensing: PSPs must register with the BCRA and meet minimum capital, governance, and technology requirements.
• Interoperability: PSPs must participate in interoperable payment schemes, requiring standardized customer identification across platforms.
• Digital wallets: Providers of digital wallets (billeteras digitales) must implement KYC procedures consistent with UIF requirements and BCRA operational standards.
• Transaction limits: BCRA establishes transaction limits tied to the level of customer verification completed.

Transferencias 3.0

The BCRA's Transferencias 3.0 initiative mandated interoperability among all digital payment providers. This system requires consistent customer identification standards across all participating entities, reinforcing the importance of robust KYC at onboarding.

FATF/GAFILAT Mutual Evaluation and Enhanced Follow-Up

Contrary to a widespread misconception, Argentina is not on the FATF grey list. The country was at risk of being listed during its 2024 assessment, but it was not included.

GAFILAT (the Financial Action Task Force of Latin America) is the regional body that applies FATF standards across the region. Together with the FATF, it evaluated Argentina in the fourth round: an on-site visit in March 2024, a report adopted at the October 2024 plenary, and publication in December 2024 — the first such evaluation since 2010.

The outcome: Argentina avoided the grey list and was placed under enhanced follow-up, a standard post-evaluation status that requires periodic progress reporting. It is not a sanction. The report praised inter-agency and international cooperation, but flagged deficiencies that land squarely on the fintech sector:

• Low suspicious-transaction reporting in high-risk sectors — securities, real estate, and virtual asset service providers.
• Limited use of cross-border cash-movement intelligence.
• Weak overall effectiveness outcomes, despite a stronger legal framework after the Ley 27.739 reform.

The practical implication for fintechs: regulators will scrutinize the quality of your reporting, not just whether it exists. A KYC program that only ticks boxes is exactly what the evaluation criticized.

Suspicious Activity Reporting

Argentine fintechs classified as obligated entities must report to the UIF:

• Reportes de Operaciones Sospechosas (ROS): Filed when there are reasonable grounds to suspect money laundering or terrorism financing. Reports must be filed within the deadlines established by UIF regulations, typically within 30 calendar days of detection for standard reports and 48 hours for terrorism financing suspicions.
• Systematic reports: Regular reports on transactions exceeding defined thresholds, filed through the UIF's electronic reporting system.
• Tipping-off prohibition: Entities must not disclose to customers that a suspicious report has been or will be filed.

Technology Requirements and Digital Onboarding

Argentina has made significant strides in digital identity infrastructure:

• The DNI digital is available through the Mi Argentina app and is legally valid for identity verification.
• RENAPER (Registro Nacional de las Personas) maintains biometric databases that can be used for verification.
• The UIF has issued guidance permitting digital onboarding using validated electronic identification methods.

Joinble's identity verification platform leverages these digital infrastructure capabilities, offering Argentine fintechs seamless integration with document verification, facial biometrics, and compliance screening in a unified solution.

Penalties for Non-Compliance

Non-compliance with AML/CFT obligations in Argentina carries serious consequences:

• Administrative fines imposed by the UIF of up to ten times the value of the suspicious transaction
• Criminal penalties under Ley 25.246 including imprisonment
• License revocation by the BCRA or CNV
• Personal liability for compliance officers, directors, and senior management

Frequently Asked Questions

What is the UIF and what role does it play in fintech compliance?

The Unidad de Informacion Financiera (UIF) is Argentina's financial intelligence unit. It issues AML/CFT regulations, receives suspicious transaction reports, and supervises compliance among obligated entities, including fintech companies.

Is Argentina on the FATF grey list?

No. Argentina was at risk during its 2024 mutual evaluation, but the FATF did not list it. Following the joint FATF/GAFILAT evaluation, Argentina was placed under enhanced follow-up — a status that requires periodic progress reporting, not the increased monitoring of the grey list. The evaluation did flag low suspicious-transaction reporting as a deficiency to fix.

What documents are required for KYC in Argentine fintechs?

For individuals, the DNI (physical or digital), CUIT/CUIL, proof of address, source of income declaration, and PEP self-declaration are required. Legal entities must provide incorporation documents, CUIT, beneficial ownership information, and certified financial statements.

Do PSPs need a BCRA license to operate in Argentina?

Yes. Payment service providers must register with the BCRA and comply with the Comunicacion A series of regulations, which establish licensing, operational, and interoperability requirements.

Can fintechs use the digital DNI for customer verification in Argentina?

Yes. The digital DNI available through the Mi Argentina app is legally valid for identity verification purposes. The UIF permits digital onboarding using validated electronic identification methods.

What are the reporting deadlines for suspicious transactions in Argentina?

Standard suspicious transaction reports must be filed within 30 calendar days of detection. Terrorism financing suspicions require reporting within 48 hours. All reports are filed electronically through the UIF's reporting system.