Bet365 fails to placate anti-money laundering regulator – Does AUSTRAC’s post-audit enforcement signal a tougher approach by its new CEO?

On 7 March 2024, Australia’s anti-money laundering (AML) regulator, AUSTRAC, announced the commencement of an enforcement investigation into whether Hillside (Australia New Media) Pty Limited, which trades in Australia as Bet365, has complied with its obligations under the Anti-Money Laundering and Counter-Terrorism Financing Act 2006 (AML/CTF Act).

While AUSTRAC has engaged in several enforcement investigations in recent years, this one is notable for two reasons. It is the first enforcement investigation to be publicly announced since the commencement of AUSTRAC’s new CEO, Brendan Thomas, in January this year. It is also the first time that AUSTRAC has announced an intention to commence an enforcement investigation into a reporting entity at the conclusion of a compulsory external audit process.

Since 2019, AUSTRAC has ordered external AML audits of five other organisations. Of these, two enforcement investigations were closed upon receipt of the completed AML audit report and two resulted in the acceptance by AUSTRAC of an Enforceable Undertaking (EU). It remains to be seen how the fifth external AML audit (imposed on Sportsbet on the same day as the one for Bet365) concludes.

The Bet365 audit

AUSTRAC issued a notice to Bet365 to appoint an external auditor to conduct an AML compliance audit, on 2 November 2022. That notice stated AUSTRAC’s suspicion that Bet365 had contravened sections 36 (the obligation to conduct ongoing customer due diligence) and 81 (the obligation to have an AML and counter-terrorism financing program) of the AML/CTF Act and consequently required Bet365 to:

  • Within 28 days of the notice, short-list three nominated auditors, receive from each of them a scope of work and related documents, and submit those details to AUSTRAC for consideration;
  • Subsequently engage the auditor chosen by AUSTRAC; and
  • Within 180 days of that auditor’s engagement, have produced and submitted to AUSTRAC an audit report that included details of:
    • Any provisions of the AML/CTF Act and/or the AML/CTF Rules which the auditor concludes Bet365 has not complied with or is not complying with;
    • The facts on which the auditor has relied to conclude the above;
    • Any measures which the auditor believes Bet365 should implement to ensure that it complies with the AML/CTF Act and the AML/CTF Rules; and
    • The auditor’s view of the capacity of Bet365 to implement these measures.

AUSTRAC’s announcement of its subsequent enforcement investigation into Bet365 is silent as to the reason for its decision, save for confirming that AUSTRAC had considered the external audit report.

The two post-audit enforceable undertakings

Some observations can be drawn from the two instances where post-audit EUs were accepted by AUSTRAC, which suggest that the absence of one for Bet365 may warrant particular attention.

In both previous instances, AUSTRAC was prepared to accept EUs even in circumstances where it had expressed concerns with potential future non-compliance by each of the organisations. Similarly, in one of those matters, the external auditor agreed in their report with many of AUSTRAC’s concerns, but this was no bar to that organisation securing an EU. It is also noteworthy that in one of those matters, the organisation had previously commenced a remediation program, the scope of which had to be substantially broadened and the date for completion extended upon further issues coming to light.

The EUs themselves provide some indication of the types of concessions that AUSTRAC tends to expect from these arrangements. In both instances, the EUs:

  • Note the organisations’ cooperation with AUSTRAC throughout the process;
  • Include an express acknowledgment by the organisations of AUSTRAC’s concerns;
  • Reflect demonstrable and ongoing work by the organisations on uplifting their compliance programs;
  • Record the organisations’ agreement to the continued supply of documents and information to AUSTRAC for monitoring their compliance with the EUs; and
  • Include a commitment to completing the remediation or appointing another external auditor to confirm implementation of the remediation by an agreed date.


There is currently insufficient public information on which to conclude why Bet365 was unable to convince AUSTRAC to take no further action against it following the auditor’s report, or to at least accept an EU as a measure of reassurance of Bet365’s continuing remediation efforts.

It is clear, however, that close attention should be given to both this matter as it continues to unfold and the position AUSTRAC takes following its receipt of Sportsbet’s external AML audit report. Further clarity may then be gleaned on whether Mr Thomas is taking the regulator in a different direction or whether the position adopted in the context of Bet365 says more about that reporting entity than it does about AUSTRAC’s general approach.

Bryony Adams
Bryony Adams
Partner, Sydney
+61 2 9225 5288
Daniel Hyde
Daniel Hyde
Senior Associate, Sydney
+61 2 9225 5480

A step towards increased AML/CTF enforcement? Hong Kong SFC consults on enhancements to AML/CTF guidelines

On 18 September 2020, the Hong Kong Securities and Futures Commission (SFC) commenced a three month consultation on a wide range of proposed changes to its Guideline on Anti-Money Laundering and Counter-Financing of Terrorism (For Licensed Corporations) (Guideline) and the Prevention of Money Laundering and Terrorist Financing Guideline issued by the SFC for Associated Entities (AE Guideline). Continue reading


The Hong Kong government has published a report detailing the money laundering (ML) and terrorist financing (TF) risk assessment of Hong Kong. This follows the recommendations of the Financial Action Task Force (FATF) that jurisdictions identify and assess their ML/TF risks and apply mitigating measures, and is a pre-cursor to the FATF’s onsite evaluation of Hong Kong’s ML/TF safeguards, scheduled to take place this autumn.

The report examines the ML/TF threats and vulnerabilities facing Hong Kong as a whole as well as specific sectors. The key aspects of the report are highlighted in our e-bulletin of 4 May 2018. In a follow-up e-bulletin (please click here to access), we provide an overview of the report’s findings in relation to financial institutions and payment systems.

Among others, the Securities and Futures Commission, the Hong Kong Monetary Authority and the Insurance Authority have issued circulars to alert the entities under their purview of the report and provide guidance.


William Hallatt
William Hallatt
Head of Financial Services Regulatory, Hong Kong
+852 2101 4036
Vicky Man
Vicky Man
Senior Associate, Hong Kong
+852 2101 4243
Jackie Lam
Jackie Lam
Associate, Hong Kong
+852 2101 4194


In December 2017, the European Supervisory Authorities published a Report on draft Joint Regulatory Technical Standards (“RTS“) on the measures that credit and financial institutions should take to manage money laundering risk in their non-EU overseas branches and subsidiaries. The RTS focusses on the measures that EU firms must adopt when local law prevents their branches and subsidiaries sharing information with them for anti-money laundering purposes. To date, the draft RTS has received little attention, but it is potentially of significant importance to firms with branches and subsidiaries in non-EU jurisdictions with strict banking secrecy or data privacy requirements, as it may require them to adopt new monitoring strategies and arrangements. In this briefing we summarise the background to and requirements of the draft RTS. Continue reading

Corporate Crime update – December 2017


Welcome to the December 2017 edition of our corporate crime update – our round up of developments in relation to corruption, money laundering, fraud, sanctions and related matters. Our update now covers a number of jurisdictions. For the full update on each jurisdiction, please click on the name of the jurisdiction below. Below we provide a brief overview of what is covered in each update. Continue reading


On 19 October the UK Government published the text of a proposed new Sanctions and Anti-Money Laundering Bill (the “Bill”), which seeks to create a post-Brexit domestic legislative framework for the imposition and enforcement of sanctions. The introduction of the Bill follows the publication on 2 August of the Government’s response to the consultation on the UK’s future legal framework for sanctions (see our previous blog post).

Continue reading

Corporate Crime Monthly Update – August 2017

Welcome to the August 2017 edition of our corporate crime update – our round up of developments in relation to corruption, money laundering, fraud, sanctions and related matters. Our update now covers a number of jurisdictions. For the full update on each jurisdiction, please click on the name of the jurisdiction below. Below we provide a brief overview of what is covered in each update.

Continue reading