Bangladesh

Identity Verification & KYC For Bangladesh

Shufti delivers KYC and AML compliance tailored to Bangladesh's regulatory framework. Our identity verification platform integrates with Smart NID biometric data and e-Passport chip verification, meeting Bangladesh Bank guidelines and BFIU reporting standards for financial institutions.

Operational performance for Bangladesh KYC

Our Numbers Speak Volumes

98.58%

Pass rates

< 5 sec

Verification
Time

95%

EIDV
Verification

Evidence-Ready Checks Across People & Businesses

Individual Documents We Verify

Shufti supports 14 Bangladeshi document types.

View All Supported Documents

National Identity Card (NID)

Foundational identity issued by Election Commission to citizens age 16+. Machine-readable, bilingual Bengali-English; used for banking, employment, government services, and passport issuance.

Smart National Identity Card (Smart NID)

Chip-based card (2016+) with 25 security features: embedded fingerprints, iris scans, digital signature. Serves as physical and downloadable digital identity; primary KYC anchor in Bangladesh.

Bangladeshi e-Passport / Machine Readable Passport

ICAO-compliant biometric passport (2016+) with 41 security features. Embedded microchip holds all 10 fingerprints, iris data, photo, signature. Bilingual Bengali-English; highest-security travel document for international KYC.

Machine-readable Driving Licence (BRTA format)

High-tech card with embedded chip and biometric data (Bangladesh Road Transport Authority). Requires valid NID; covers seven vehicle categories; online application via BRTA Service Portal.

Business Entity Identity

Certificate of Incorporation (RJSC)

Official document confirming company legal establishment (Registrar of Joint Stock Companies and Firms). Processing: 20–30 working days. Mandatory for private limited, public limited, and domestic companies.

Trade Licence

Local business operation permit (City Corporation or Municipality). Processing: 3–4 working days. Mandatory for all entities; separate from RJSC registration; online e-licence applications available.

Business Tax Identity

Taxpayer Identification Number (TIN) Certificate

12-digit unique identifier (National Board of Revenue). Generated within 15–20 minutes; does not require renewal. Accepted for tax compliance and entity due diligence.

Ownership & Control (UBO)

Memorandum and Articles of Association (MAoA)

Corporate governance document outlining management structure, powers, duties. Required for UBO verification and beneficial ownership understanding.

Form XV (Return of Allotment)

RJSC filing documenting share distribution and beneficial ownership. Tracks shareholding changes and corporate control; critical for KYB ownership verification.

Annual Return to RJSC

Yearly submission disclosing shareholding patterns and ownership structure changes. Provides auditable UBO record; mandatory for ongoing KYB compliance and beneficial ownership verification.

Languages We Cover

Bengali Script and Document Language

NIDs and e-Passports present both Bengali and English text on front sides; back pages Bengali-only. Shufti's capture and OCR systems handle both scripts and bilingual presentation simultaneously.

Name Matching Controls

Bengali names lack standardised romanisation; multiple phonetic variants create inconsistencies across documents ("Karim" vs. "Kareem"). Shufti employs phonetic ambiguity detection and Bengali-to-Latin transliteration mapping.

Evidence Consistency

Identity verified across multiple document types and form steps. Shufti cross-validates NID, Smart NID, passport, and supporting documents to detect discrepancies in name transliteration, biometric markers, or biographical data.

GOVERNANCE & CONTROLS

Audit-Ready Decisions, Lower Operational Drag

Fewer Avoidable Re-submissions

Old-NID and Smart-NID dual-format capture in single workflow reduces repetitive KYC across banks. Customers onboard once; fewer false rejections due to document format confusion.

Cleaner Audit
Trails

Complete evidence logs and decision documentation meet BFIU goAML reporting requirements and Bangladesh Bank compliance expectations. Audit-ready records accelerate supervisory inspections and regulatory correspondence.

Better Name Matching Outcomes

Bengali-to-Latin transliteration mapping and phonetic ambiguity detection reduce false-positive rejections. Manual review workload decreases; processing delays lower; customer friction eases.

One workflow, one
back office

KYC, KYB, and AML screening consolidated in unified interface. Single customer view across identity, business, and sanctions screening; reduces operational complexity and compliance gaps.

NID-First Flow Design

Smart NID as primary identity anchor, with e-Passport and driving licence as fallbacks. Optimised for Bangladesh's document hierarchy and eIDV coverage. Streamlines onboarding for majority of population.

Enterprise-grade compliance infrastructure

Bangladesh IDV/KYC Challenges

Document Duplication

Old paper-laminated NIDs (2006–2015) and Smart NIDs (2016+) both in circulation. Lack of unified KYC standards creates repetitive onboarding and false rejections.

Bengali Name Transliteration

Bengali names lack standardised romanisation, generating multiple phonetic variants ("Karim" vs. "Kareem"). Automatic matching fails; manual review required.

Address Verification in Slums

~4 million Dhaka residents in slums lack formal addresses. Utility records incomplete; postal databases unreliable. Traditional address verification fails for low-income populations.

Rohingya Fraud Risk

1.2+ million Rohingya refugees operate with temporary UNHCR documentation. Refugee IDs lack Smart NID security features and database linkage. Fraud and forgery risks elevated; reliable verification nearly impossible.

Shufti’s IDV/KYC Solutions for Bangladesh

KYC Solutions

Fast track customer onboarding and authentication with real-time identity verification solutions.

Face Verification

Biometric facial matching against Smart NID and e-Passport chip data. Integrates Bangladesh's biometric infrastructure (fingerprints, iris scans in government documents). Detects presentation attacks and deepfake spoofing.

Age Verification

Selfie-based age estimation combined with document verification when required. Derives birth date from Smart NID and e-Passport data. Supports age-gated regulatory requirements and customer segment risk assessment.

Address Verification

Shufti can verify any address-bearing document. Integrates DESCO, DPDC, WASA, Titas Gas utilities. Cross-references banks: Islami Bank Bangladesh, Sonali Bank, Dutch-Bangla Bank, BRAC Bank, and bKash mobile financial records.

Document Verification

Smart NID and e-Passport chip verification, biometric extraction, security feature validation. Bilingual Bengali-English text recognition and OCR. Detects forged, altered, or duplicate documents.

KYB Solutions

Business Verification

Cross-references RJSC registry (Certificate of Incorporation), NBR TIN, and directors/beneficial owner details via MAoA and Form XV (Return of Allotment). Verifies legal status, shareholding structure, and UBO compliance.

Enhanced Due Diligence (EDD)

References Bangladesh PEP density via ACC lists. Implements audit-ready decision trails and beneficial ownership depth-checking aligned to BFIU goAML and Bangladesh Bank standards.

AML Screening

Utilise artificial intelligence models and 1700+ sanction and watchlists to identify and prevent money laundering attempts.

Business AML Screening

References BFIU domestic sanction list, UN UNSC designations, and OFAC lists. Screens business entities and controllers; supports beneficial owner identification for compliance reporting.

Transaction Screening

Monitors hundi and hawala remittance corridors. Integrates BFIU goAML thresholds (10 lac taka daily triggers). Supports ongoing monitoring for Bangladesh's informal economy and cross-border flows.

REGULATORY ALIGNMENT

Built to Fit Bangladesh's Compliance Landscape

Bangladesh Bank (BB)

Central bank and primary financial regulator. Issues KYC/AML guidelines and ICT Security Guideline v4.0 requiring encryption and audit-ready recordkeeping. Shufti provides evidence logs and decision trails aligned to Bangladesh Bank standards.

Bangladesh Financial Intelligence Unit (BFIU)

National FIU for analysis of Suspicious Transaction Reports and Cash Transaction Reports. Administers goAML secure portal for STR/CTR submission and maintains domestic sanctions lists. Shufti integrates BFIU sanction data and supports audit-ready goAML documentation.

Bangladesh Securities and Exchange Commission (BSEC)

Sole capital market regulator (Dhaka and Chittagong stock exchanges). Enforces customer identification and AML compliance for brokers and intermediaries. Shufti meets BSEC identity verification and beneficial owner requirements.

Insurance Development and Regulatory Authority (IDRA)

Sole insurance sector regulator. Mandates KYC and AML compliance for insurance providers and oversees Suspicious Transaction Reporting. Shufti meets IDRA's customer identification requirements.

Bangladesh Telecommunication Regulatory Commission (BTRC)

Regulates telecommunications and mobile financial services (bKash) critical for remittances. Issues AML/KYC regulations for mobile money and telecom service providers. Shufti serves fintech platforms with identity verification and transaction screening.

Anti-Corruption Commission (ACC)

Statutory body for corruption prevention and enforcement. Maintains politically exposed persons registry and produces PEP Level 2 lists. Shufti incorporates ACC PEP data supporting Bangladesh institutions in PEP identification.

Ministry of Finance – Financial Institutions Division (FID)

Government division responsible for law and policy on financial institutions, capital market, and insurance. Drafts regulatory framework and AML legislative reforms. Shufti aligns with FID regulatory modernisation.

National Board of Revenue (NBR)

Apex tax administration authority for income tax, VAT, customs, and excise duties. Issues and maintains Taxpayer Identification Numbers. Shufti's KYB verification integrates NBR TIN data for entity authentication.

Deployment Choice

AWS, Azure, GCP operate no dedicated data centre regions in Bangladesh. Regulated financial institutions may require on-premise or private cloud deployment to maintain data sovereignty and comply with Bangladesh Bank ICT Security Guidelines.

Regulatory Alignment

Digital Security Act 2018 and Money Laundering Prevention Act 2012 impose recordkeeping obligations monitored by BFIU and Bangladesh Bank. Shufti generates audit-ready records aligned to both statutes.

Retention controls

Money Laundering Prevention Act 2012 requires five-year minimum retention of customer identification, transaction records, and compliance documentation. Shufti provides configurable retention and purge settings.

Encryption posture

Standard encryption applied to personal and financial data in transit and at rest. Aligned to Bangladesh Bank ICT Security Guidelines v4.0, mandating encryption key management, backup security, and multi-layer data protection.

Data Controls & Privacy for Bangladesh

BUILT FOR COMPLIANCE TEAMS

Bangladesh AML Sources That Strengthen Decision

Bangladesh Financial Intelligence Unit (BFIU) - Domestic Sanction List

Bangladesh Financial Intelligence Unit (BFIU)

Bangladesh Bank (Central Bank of Bangladesh)

Anti-Corruption Commission (ACC) Bangladesh

Bureau of Anti-Corruption (Bangladesh)

Jatiya Sangsad (Parliament of Bangladesh)

Ministry of Finance

Ministry of Foreign Affairs

Bangladesh Financial Intelligence Unit (BFIU) - Domestic Sanction List

Bangladesh Financial Intelligence Unit (BFIU)

Bangladesh Bank (Central Bank of Bangladesh)

Anti-Corruption Commission (ACC) Bangladesh

Bureau of Anti-Corruption (Bangladesh)

Jatiya Sangsad (Parliament of Bangladesh)

Ministry of Finance

Ministry of Foreign Affairs

Bangladesh Financial Intelligence Unit (BFIU) - Domestic Sanction List

Bangladesh Financial Intelligence Unit (BFIU)

Bangladesh Bank (Central Bank of Bangladesh)

Anti-Corruption Commission (ACC) Bangladesh

Bureau of Anti-Corruption (Bangladesh)

Jatiya Sangsad (Parliament of Bangladesh)

Ministry of Finance

Ministry of Foreign Affairs

Frequently Asked Questions

Do we need to support both old NID and Smart NID in our KYC process?

Yes. Old paper-laminated NIDs (2006–2015) remain in circulation; Smart NIDs (2016+) are newly issued. Shufti's document verification detects both formats and validates security features accordingly. Single workflow captures both; no parallel processes required.

Can e-Passport be used as a primary KYC document if NID is unavailable?

Yes. e-Passport is ICAO-compliant, contains 41 security features, and carries embedded biometric data (fingerprints, iris, photo, signature). Widely accepted for international KYC; serves as high-security fallback when NID unavailable.

How do we screen against Bangladesh's domestic sanction lists?

BFIU maintains a domestic sanction list accessible to financial institutions. Shufti integrates BFIU sanction data, UN UNSC designations applicable in Bangladesh, and OFAC lists (where applicable). Screening runs against all three sources; results flagged for manual review and goAML reporting.

What is goAML, and how does it relate to KYC compliance?

goAML is Bangladesh Financial Intelligence Unit's secure online portal for reporting Suspicious Transaction Reports and Cash Transaction Reports. Financial institutions submit goAML reports when cash transactions exceed 10 lac taka (1,000,000 BDT) daily threshold or suspicious activity is detected. Shufti's audit trails and decision documentation support goAML reporting preparation.

What KYB documents do we need to collect for Bangladesh-registered entities?

Collect Certificate of Incorporation (RJSC), Trade Licence, Taxpayer Identification Number (TIN) Certificate, Memorandum and Articles of Association (MAoA), Form XV (Return of Allotment), and Annual Return to RJSC. Together, these verify legal status, tax identity, and beneficial ownership structure.

How do we handle Bengali name transliteration variations in matching?

Bengali names lack standardised romanisation; multiple phonetic variants exist ("Karim" vs. "Kareem"). Shufti employs Bengali-to-Latin transliteration mapping and phonetic ambiguity detection to flag and resolve mismatches. Manual review required for high-risk cases; reduces false rejections.

What is the data retention requirement under Bangladesh law?

Money Laundering Prevention Act 2012 Section 25 mandates minimum five-year retention of customer identification records, transaction records, correspondence, and due diligence documentation from date of account closure. Shufti supports configurable retention policies aligned to this requirement.

What happens if a customer drops off during re-submission?

Re-submission friction often signals document quality issues, Bengali name transliteration confusion, or address verification challenges. Shufti's single-workflow design for old/Smart NID capture and transliteration mapping minimises re-submission triggers, lowering customer abandonment.

Build a Bangladesh-ready KYC, KYB & AML programme with Shufti

Check Pricing Request Demo

INDEPENDENTLY AUDITED. GLOBALLY CERTIFIED.

Certified to Global Standards

PROVEN WORKFLOWS

Use Cases for Regulated Growth in Bangladesh

Fintech

Forex

Banking

Gaming

Gig Economy

Crypto

Marketplace

Fintech

Forex

Banking

Gaming

Gig Economy

Crypto

Marketplace

Fintech

Forex

Banking

Gaming

Gig Economy

Crypto

Marketplace

Accelerate Growth, Eliminate Friction

Onboard users in seconds, not days. Deploy tiered address verification flows that maximise completion rates for genuine users while filtering out synthetic fraud.

Learn More Try Now

Onboard Global Traders in Real-Time

Verify investors across 250+ countries & territories. Ensure compliance with international financial regulations while preventing identity theft and high-risk chargebacks.

Learn More Try Now

Secure Trust at Every Transaction

Automate KYC and AML workflows to reduce manual onboarding costs. Strengthen residency checks while delivering the frictionless digital experience modern customers expect.

Learn More Try Now

Power a Fair & Secure Player Experience

Reduce bonus abuse and multi-accounting rings at the door. Enforce location rules and trigger step-up checks without disrupting the player journey.

Learn More Try Now

Build a Trusted, Verified Workforce

Screen freelancers and drivers at scale. Verify residency and reduce onboarding friction while maintaining trust between users.

Learn More Try Now

Scale Your Exchange with Confidence

Balance anonymity with compliance. Instantly verify user jurisdiction to meet Travel Rule obligations and help stop abuse without slowing down legitimate trading volume.

Learn More Try Now

Reduce fraud without blocking growth

Shufti supports marketplace integrity by verifying seller and buyer identities, enabling age-gated journeys where needed, and preserving evidence to support investigations, disputes and risk-led enforcement actions.

Learn More Try Now