Skip to content

Workflow

Build the customer book once. Run engagements that reuse it.

In duely, Customer Due Diligence (CDD) lives on the customer — verification, ownership, screening, and an inherent risk rating, all versioned. Every engagement starts from that baseline, decides whether it's adequate, tops up if it isn't, and builds its own risk rating from the services involved.

Accounting firms

You'll see "Engagements"

New audit engagement for Acme Pty Ltd

Real estate agencies

You'll see "Transactions"

Property sale — 42 Smith St, Bondi

Law firms

You'll see "Matters"

Estate planning matter — Chen family

Set your firm type once during setup. Labels, workflows, and reporting adapt automatically.

Three phases: customer, engagement, run

Phase 1

Customer onboarding

Build the customer book once — identity, ownership structure, screening, and a versioned Customer Due Diligence (CDD) review with an inherent risk rating. This is the foundation every future engagement reuses.

Phase 2

Engagement scoping

Create the matter, add one or more parties, declare the designated services. The platform decides whether the engagement falls under Tranche 2 obligations.

Phase 3

Run the engagement

Reuse the customer's CDD if adequate for this engagement, or top up. Build the engagement's risk rating. Run Enhanced CDD (ECDD) if triggered. Approve and commence with a tamper-evident evidence pack.

Phase 1 Customer onboarding

Customer profile

Staff

Add the customer to the firm's customer book. They can be an individual, company, trust, or partnership. Captured once and reused on every future engagement.

Evidence captured

Customer record · Customer type and jurisdiction · Created-by + timestamp

Beneficial owners + controllers

Staff

For entity customers, capture beneficial owners (25% threshold) and control relationships such as trustees, directors, partners, and settlors. The platform builds the ownership structure and flags risk signals automatically.

Evidence captured

Beneficial owner and controller records · Ownership percentages · Structure risk flags

Identity verification + screening

Staff / System

Verify identity using one of three paths (safe harbour, non-safe harbour, or manual), then screen the customer and beneficial owners against sanctions, PEP (Politically Exposed Person), and adverse media lists. Any hits route to the AMLCO (AML/CTF Compliance Officer) for review.

Evidence captured

Verification method path · Provider reference IDs · Screening results with decision + rationale

CDD review complete

Staff / Approver

Finalise the customer's CDD review — versioned, signed off, and assigned an inherent risk rating. This becomes the baseline every future engagement starts from.

Evidence captured

Versioned CDD review · Customer inherent risk rating · Reviewer + completion timestamp

Phase 2 Engagement scoping

Create the matter, add parties

Staff

Create the engagement and link one or more customers as parties — primary client, additional parties, and representatives. Assign the owner and the matter team.

Evidence captured

Matter record · Linked parties · Owner + team assignment

Declare designated services

Staff

Pick the services the firm will provide on this matter from the firm's AML/CTF program catalog. Once added, services can't be silently removed — every change is recorded.

Evidence captured

Service decisions (every change recorded) · Statutory + catalog service codes · Recorded-by + timestamp

In scope or out of scope

System

The platform decides whether the engagement falls under Tranche 2 obligations, based on the declared services and the firm's program. Out-of-scope matters skip the remaining CDD steps; in-scope matters move to engagement CDD.

Evidence captured

Scoping conclusion (in / out of scope) · Rationale · Versioned against the firm's program

Phase 3 Run the engagement

CDD adequacy per party

Staff

For each customer on the matter, decide whether their existing CDD review is adequate for this engagement — reuse it, top up with additional verification, or trigger a fresh review. The decision and basis are captured per party.

Evidence captured

CDD sufficiency decision per party · Basis: Reuse / Top-up / New review · Linked CDD review version

Engagement risk assessment

System / Staff

The platform builds the matter's risk rating from customer baseline ratings, service complexity, jurisdictional exposure (the customer, their beneficial owners and controllers, and any additional jurisdictions on the matter), screening signals, and the firm's AML/CTF program profile.

Evidence captured

Calculated risk rating · Components and triggers · Mandatory human approval

Enhanced CDD (if triggered)

Staff / Approver

If the engagement risk hits the high band, run ECDD — source of funds, source of wealth, additional verification — and capture the outcome.

Evidence captured

ECDD case · Source of funds / source of wealth (SOF / SOW) documentation · ECDD decision + rationale

Approve and commence

Approver

Matter-level approval is the single commencement gate. Once the nominated approver signs off, the engagement begins and the evidence pack is generated. It's tamper-evident, cryptographically hashed (SHA-256), and audit-ready.

Evidence captured

Approval record · Versioned, hashed evidence pack · Retention anchor

Every step produces audit-ready evidence

When AUSTRAC asks for your compliance record, the trail is already there — versioned, SHA-256 hashed, and tamper-evident.

  • A matter-level decision trail
  • Linked customer and beneficial owner data
  • Risk and ECDD records where relevant
  • Approval history with approver identity
  • A versioned, hashed evidence pack
  • Reporting references where required

See how the workflow fits your firm

Ready to explore how duely can structure your firm's Tranche 2 compliance?