Employees identify risk. Compliance decides. The entity files.

Comply+ is how entities prepare and submit reports to FINTRAC.

Front-line staff spot suspicious activity every day. Your internal policies govern how that gets escalated.

Comply+ handles what comes next.

Upload transaction data in bulk, review reportable activity, and submit directly to FINTRAC’s API—no FWR login—with AI-assisted STR drafting.

No FWR login required
Bulk CSV ingestion
AI-assisted STR drafting

How STR reporting actually works

Under the PCMLTFA, the legal obligation to report to FINTRAC rests with the reporting entity, not individual employees.

In practice:

  • Employees identify and escalate suspicious activity
  • Compliance reviews and determines whether a report is required
  • The entity submits filings to FINTRAC

Your role is to recognize indicators and escalate internally according to your employer’s procedures.

Comply+ is not an employee ticketing tool.

It is the reporting platform where compliance teams upload data, prepare reports, and submit directly to FINTRAC’s API—without logging into FWR—with AI-assisted STR drafting.

What constitutes suspicion

You should escalate when you have reasonable grounds to suspect a transaction is related to money laundering or terrorist financing.

You do not need proof or to investigate. You need to recognize indicators and escalate.

Common indicators include:

  • A client conducting transactions that are inconsistent with their known financial profile
  • Transactions that appear designed to avoid reporting thresholds (structuring)
  • Clients who are reluctant to provide identification or who provide information that appears false
  • Transactions with no apparent economic purpose
  • Clients who are unusually concerned about reporting requirements
  • Requests to rush transactions or bypass standard procedures

Why this matters

  • Missed or delayed escalation creates compliance gaps and STR exposure
  • Inconsistent reporting increases audit and supervisory risk
  • Proper escalation builds a defensible record for FINTRAC review
  • Manual workflows break at scale—structured reporting systems don’t

Confidentiality (“No tipping off”)

You must not tell a client or third party that a report was or may be filed with FINTRAC, or that a transaction is under suspicion in connection with money laundering or terrorist financing. These rules apply to individuals—do not hint, warn, or discuss concerns outside proper internal channels.

Where Comply+ fits: FINTRAC reporting

After internal review determines that a report is required, the reporting entity must file with FINTRAC. Comply+ is built for that step:

Bulk data upload

Load transaction data (e.g. CSV) to identify reportable activity and generate draft reports.

Direct API submission

Comply+ sends filings to FINTRAC via API—no need to log into FWR for each submission.

AI-assisted STR drafting

aiSTR™ helps surface suspicious activity and draft narratives; your compliance team reviews and decides what is filed.

Internal escalation is governed by your program.

Comply+ is the platform for preparing and submitting what the entity is required to file with FINTRAC.

Enforcement & Penalties

The Cost of Non-Compliance

FINTRAC enforcement is intensifying. Recent penalties demonstrate that compliance failures result in significant financial consequences, with Bill C-2 increasing maximum penalties to $20 million for entities.

Recent FINTRAC Penalties

FINTRAC has imposed significant Administrative Monetary Penalties (AMPs) for compliance failures across multiple sectors.

Juba Express Inc. — $67,150

December 2025 — Toronto, Ontario

Multiple compliance failures including no effective compliance regime, no proper risk assessment, and failures to submit EFT and LCT reports.

Read case study

MP Technology Services Ltd. — $536,853.35

December 2025 — Foreign MSB (Seychelles)

Failed to submit STRs for transactions with exposure to darknet marketplaces, sanctioned entities, and child sexual abuse material.

Read case study

Xeltox Enterprises (Cryptomus) — $176,960,190

October 2025 — British Columbia

2,593 violations including 1,068 unreported STRs, 1,518 unreported LVCTRs, and failure to comply with Ministerial Directive on Iran.

Read case study

KuCoin (Peken Global) — $19,552,000

September 2025 — Foreign MSB (Seychelles)

Unregistered foreign MSB, 2,952 unreported LVCTRs, and 33 unreported STRs linked to darknet marketplaces and illicit chemical trade.

Read case study

Bill C-2: Increased Penalties

Under Bill C-2 (tabled June 2025), maximum Administrative Monetary Penalties would increase dramatically:

  • Entities: Up to $20 million (previously $500,000) — a 40x increase
  • Individuals: Up to $4 million (previously $100,000)
  • Criminal penalties: Certain compliance failures can result in criminal prosecution
Learn more about Bill C-2

Enforcement Trends

  • 23 Notices of Violation issued in 2024–25, the highest annual volume since 2008
  • More than $25 million in total penalties in 2024–25
  • Over 150 penalties imposed since 2008 across all regulated sectors
  • FINTRAC is moving to a supervisory model anchored in credible deterrence

Why Choose Comply+

A platform for preparing and submitting FINTRAC reports: batch upload, submission through FINTRAC’s API (no FWR login), and AI-assisted STR drafting—your team stays in control of what gets submitted.

FINTRAC’s API, not FWR

After you prepare reports in Comply+, filings go to FINTRAC through FINTRAC’s API—no need to log in to FWR for each submission.

Bulk upload & reporting

Import transactions (e.g. CSV) to detect reportable activity and build drafts. Built for teams that run reporting from batch data, not for replacing your internal escalation policies.

AI-assisted STR

aiSTR™ supports suspicious-transaction workflows with AI-assisted flagging and narrative drafting. Your compliance staff review and approve before Comply+ submits through FINTRAC’s API.

Platform Features

FINTRAC reporting in Comply+

Batch upload into Comply+, submission via FINTRAC’s API (no FWR login), and AI-assisted STR—focused on filing with FINTRAC, not on replacing your internal escalation process.

File via FINTRAC’s API

You batch upload and build reports in Comply+; Comply+ submits to FINTRAC’s API—no FWR login required for each filing.

Connected reporting (where configured)

Where your environment supports it, automate recurring report types from connected data. STRs still follow your review process.

Bulk CSV upload

Upload transaction batches to detect reportable activity and generate drafts for the FINTRAC report types you use.

AI-assisted STR (aiSTR™)

AI-supported flagging and STR narrative drafting; compliance reviews and approves before Comply+ submits through FINTRAC’s API.

Customer & location records

Keep customers and locations in Comply+ so report fields populate consistently when you build and file submissions.

Drafts & submission history

Save drafts—including STR narratives—and track submission status tied to FINTRAC receipt where available.

STR add-ons to other reports

Attach STR details to existing LCTR, LVCTR, EFTR, or CDR flows when your scenario requires both.

COMING SOON

AI Model Configuration

Risk Detection Settings

Risk Indicator A
Identified: 87%
Risk Indicator B
Identified: 94%
Risk Indicator C
Identified: 82%
Overall Risk Rating78%

Recommended STR filing

aiSTR 2.0

We’re extending AI-assisted STR support—still with human review before Comply+ submits through FINTRAC’s API. Details will ship when they’re ready; get notified if you want updates.

Richer AI support for STR narratives and risk indicators

More control over how aiSTR scores and surfaces activity for compliance review

Ongoing improvements to accuracy and review ergonomics

30-Minute Demo

Employees identify risk. Compliance decides. The entity files.

In 30 minutes, see how the entity uses Comply+ after internal escalation: batch transaction data, draft reports, AI-assisted STR narratives your team reviews, and submission through FINTRAC's API without logging into the Web Reporting System (FWR) for each filing.

1. Draft report preparation

Upload a CSV or connect your system and see how Comply+ helps surface reportable activity for LCTR, LVCTR, EFTR, and CDR workflows.

2. STR review path

See how aiSTR™ supports narrative drafts and how your compliance team reviews and decides what is filed.

3. Submit and confirm

Follow submission through FINTRAC's API and where confirmations and status live in Comply+.

Book the same workflow as above

Enter your work email. We will open the calendar to schedule your demo.

We will send demo details and redirect you to schedule

Disclaimer

This page is provided for general informational purposes only and reflects our interpretation and opinions based on publicly available information at the time of writing. It does not constitute legal advice, financial advice, regulatory guidance, or a substitute for professional counsel. Reporting entities and businesses subject to FINTRAC obligations should consult qualified legal and compliance advisors before making decisions relating to FINTRAC, AML obligations, or compliance requirements.