Workflow
Build the customer book once. Run engagements that reuse it.
In duely, Customer Due Diligence (CDD) lives on the customer — verification, ownership, screening, and an inherent risk rating, all versioned. Every engagement starts from that baseline, decides whether it's adequate, tops up if it isn't, and builds its own risk rating from the services involved.
Accounting firms
You'll see "Engagements"
New audit engagement for Acme Pty Ltd
Real estate agencies
You'll see "Transactions"
Property sale — 42 Smith St, Bondi
Law firms
You'll see "Matters"
Estate planning matter — Chen family
Set your firm type once during setup. Labels, workflows, and reporting adapt automatically.
Three phases: customer, engagement, run
Customer onboarding
Build the customer book once — identity, ownership structure, screening, and a versioned Customer Due Diligence (CDD) review with an inherent risk rating. This is the foundation every future engagement reuses.
Engagement scoping
Create the matter, add one or more parties, declare the designated services. The platform decides whether the engagement falls under Tranche 2 obligations.
Run the engagement
Reuse the customer's CDD if adequate for this engagement, or top up. Build the engagement's risk rating. Run Enhanced CDD (ECDD) if triggered. Approve and commence with a tamper-evident evidence pack.
Customer profile
StaffAdd the customer to the firm's customer book. They can be an individual, company, trust, or partnership. Captured once and reused on every future engagement.
Evidence captured
Customer record · Customer type and jurisdiction · Created-by + timestamp
Beneficial owners + controllers
StaffFor entity customers, capture beneficial owners (25% threshold) and control relationships such as trustees, directors, partners, and settlors. The platform builds the ownership structure and flags risk signals automatically.
Evidence captured
Beneficial owner and controller records · Ownership percentages · Structure risk flags
Identity verification + screening
Staff / SystemVerify identity using one of three paths (safe harbour, non-safe harbour, or manual), then screen the customer and beneficial owners against sanctions, PEP (Politically Exposed Person), and adverse media lists. Any hits route to the AMLCO (AML/CTF Compliance Officer) for review.
Evidence captured
Verification method path · Provider reference IDs · Screening results with decision + rationale
CDD review complete
Staff / ApproverFinalise the customer's CDD review — versioned, signed off, and assigned an inherent risk rating. This becomes the baseline every future engagement starts from.
Evidence captured
Versioned CDD review · Customer inherent risk rating · Reviewer + completion timestamp
Create the matter, add parties
StaffCreate the engagement and link one or more customers as parties — primary client, additional parties, and representatives. Assign the owner and the matter team.
Evidence captured
Matter record · Linked parties · Owner + team assignment
Declare designated services
StaffPick the services the firm will provide on this matter from the firm's AML/CTF program catalog. Once added, services can't be silently removed — every change is recorded.
Evidence captured
Service decisions (every change recorded) · Statutory + catalog service codes · Recorded-by + timestamp
In scope or out of scope
SystemThe platform decides whether the engagement falls under Tranche 2 obligations, based on the declared services and the firm's program. Out-of-scope matters skip the remaining CDD steps; in-scope matters move to engagement CDD.
Evidence captured
Scoping conclusion (in / out of scope) · Rationale · Versioned against the firm's program
CDD adequacy per party
StaffFor each customer on the matter, decide whether their existing CDD review is adequate for this engagement — reuse it, top up with additional verification, or trigger a fresh review. The decision and basis are captured per party.
Evidence captured
CDD sufficiency decision per party · Basis: Reuse / Top-up / New review · Linked CDD review version
Engagement risk assessment
System / StaffThe platform builds the matter's risk rating from customer baseline ratings, service complexity, jurisdictional exposure (the customer, their beneficial owners and controllers, and any additional jurisdictions on the matter), screening signals, and the firm's AML/CTF program profile.
Evidence captured
Calculated risk rating · Components and triggers · Mandatory human approval
Enhanced CDD (if triggered)
Staff / ApproverIf the engagement risk hits the high band, run ECDD — source of funds, source of wealth, additional verification — and capture the outcome.
Evidence captured
ECDD case · Source of funds / source of wealth (SOF / SOW) documentation · ECDD decision + rationale
Approve and commence
ApproverMatter-level approval is the single commencement gate. Once the nominated approver signs off, the engagement begins and the evidence pack is generated. It's tamper-evident, cryptographically hashed (SHA-256), and audit-ready.
Evidence captured
Approval record · Versioned, hashed evidence pack · Retention anchor
Every step produces audit-ready evidence
When AUSTRAC asks for your compliance record, the trail is already there — versioned, SHA-256 hashed, and tamper-evident.
- A matter-level decision trail
- Linked customer and beneficial owner data
- Risk and ECDD records where relevant
- Approval history with approver identity
- A versioned, hashed evidence pack
- Reporting references where required
See how the workflow fits your firm
Ready to explore how duely can structure your firm's Tranche 2 compliance?