advisoryaicontact
Back to advisory insightsAdvisory Insights

BillC-29andCanada'sFinancialCrimesAgency:WhatReportingEntitiesShouldPrepareFor

Rockwell AdvisoryRegulatory Update9 min read

Sources: Parliament of Canada Bill C-29 status and first-reading bill text

View Bill C-29 statusRead the bill text

Bill C-29, the proposed Financial Crimes Agency Act, was introduced and received first reading in the House of Commons on April 27, 2026. As of June 3, 2026, Parliament lists the bill as being at second reading in the House of Commons.

The bill would establish the Financial Crimes Agency as a specialized federal law enforcement body. The bill text describes the Agency's mandate as investigating financial crimes and contributing to the recovery of proceeds of crime.

This is not a new reporting obligation yet, and it should not be read as law until enacted. But for reporting entities, MSBs, fintechs, payment companies, real estate brokerages, casinos, DPMS operators, and financial entities, it is another signal that Canada is building a more coordinated financial-crime enforcement environment.

The compliance lesson is not to wait for a new agency to begin operating. Reporting entities should make sure their existing AML evidence can support the intelligence and reporting decisions they already make.

what Bill C-29 would create

The proposed Agency is framed as a specialized federal law enforcement agency focused on financial crime. The bill also gives the Commissioner authority, in fulfilling the Agency's mandate, to investigate financial crime or offences under federal legislation committed in relation to financial crime.

For reporting entities, the practical point is not that the Agency replaces FINTRAC. FINTRAC remains Canada's financial intelligence unit and AML/ATF supervisor. The point is that more law enforcement capacity around financial crime increases the importance of the reporting entity's first-mile evidence: the customer file, transaction pattern, reviewer notes, escalation history, and STR rationale.

why this matters for AML operations

Financial-crime investigations often depend on records created before a case becomes visible to law enforcement. That is where reporting entities matter. A suspicious transaction report is more useful when it explains the pattern, identifies related parties, preserves transaction details, and shows why the reporting entity had reasonable grounds to suspect money laundering or terrorist financing.

If the compliance workflow is vague, the evidence is weaker. If the risk assessment is generic, the control logic is harder to defend. If alerts are reviewed informally, the business may struggle to explain why it filed, why it did not file, or why an issue was escalated.

what Rockwell would review first

Rockwell would use Bill C-29 as a readiness prompt. The question is whether the reporting entity can show that its AML program produces useful, timely, and defensible evidence when financial-crime risk appears.

  • Risk assessment: Does the assessment connect client, product, service, channel, geography, virtual asset, fraud, sanctions, and organized-crime exposure to actual controls?
  • KYC/KYB evidence: Can reviewers understand the customer, beneficial ownership, expected activity, source of funds, and stated business purpose?
  • Monitoring and escalation: Are unusual patterns reviewed by the right person, with clear escalation thresholds and supporting facts?
  • STR decisioning: Does the record show the pattern, reviewer rationale, timeline, escalation path, related parties, and filing accountability?
  • Effectiveness review readiness: Can an independent reviewer trace controls from policy to transaction file to remediation?

where reporting entities get exposed

A stronger enforcement environment can expose gaps that were previously treated as administrative noise. Missing beneficial ownership notes, shallow client purpose, generic high-risk measures, unclear reviewer ownership, and incomplete report narratives all become more serious when they sit inside a financial-crime investigation.

The problem is rarely that a reporting entity has no policy. The problem is that the policy has not been translated into a workflow that produces consistent evidence. That is what banks, auditors, effectiveness reviewers, FINTRAC examiners, and law enforcement partners ultimately need to see.

prepare the program before the pressure arrives

Bill C-29 is still moving through Parliament. But the policy direction is clear: Canada is putting more attention on complex financial crime, proceeds recovery, fraud, money laundering, and coordinated enforcement. Reporting entities should respond by tightening the operating parts of the compliance program now.

Review Rockwell's effectiveness review readiness support, or explore outsourced compliance officer support if your AML program needs stronger evidence, clearer ownership, and reporting workflows that can withstand a more active enforcement environment.

need a compliance officer?

Rockwell Advisory helps MSBs and reporting entities design, run, and document AML programs that can stand up to banks, auditors, and FINTRAC reviews.

Book a compliance callExplore outsourced CCO