What are the KYC requirements in Turkey?

Turkish KYC requirements are set by Law No. 5549 and MASAK. All obliged entities must verify customer identity, conduct CDD, apply risk-based monitoring and retain records for eight years. KYC Turkey compliance requires documents including TC Kimlik Kartı, Turkish national ID alternatives, passport and foreigner ID card for non-citizens. eKYC Turkey solutions using NFC chip verification accelerate identity verification while meeting BDDK and MASAK standards.

What is MASAK and what does AML compliance Turkey require?

MASAK is Turkey's Financial Intelligence Unit under the Ministry of Treasury and Finance. AML compliance Turkey obligations require financial institutions to conduct CDD, submit suspicious transaction reports via the MASAK Online system, maintain eight-year records and appoint a compliance officer at senior management level. MASAK compliance applies to banks, payment providers, crypto platforms and all obliged entities.

How does KVKK compliance affect KYC data handling in Turkey?

KVKK (Law No. 6698) requires all data controllers to register with VERBIS before processing personal data. KYC data is classified as personal data and must be encrypted, purpose-limited and subject to data subject access rights. KVKK compliance means cross-border transfers require equivalent protection standards. Turkish identity verification Turkey must align with both KVKK data protection and AML compliance requirements.

What documents are accepted for Turkish national ID KYC verification?

Primary documents for Turkish national ID KYC include TC Kimlik Kartı and Turkish Passport. Secondary documents include Sürücü Belgesi, Yabancı Kimlik Kartı and İkamet İzni for foreign nationals. Chip-based national ID cards with NFC receive preference. eKYC Turkey solutions support all 26 Turkish document types including biometric verification.

What are the KYB requirements for verifying Turkish businesses?

Turkish KYB verification requires Ticaret Sicil Gazetesi, Faaliyet Belgesi and Articles of Association for entity identity. Tax identity uses VKN. UBO identification is mandatory under Law No. 5549, requiring Ortaklık Yapısı, Pay Defteri and Gerçek Faydalanıcı Bildirimi documentation. KYB Turkey compliance includes verification of all beneficial owners at 25% ownership thresholds.

How does Shufti support crypto KYC Turkey compliance under CMB regulations?

Crypto KYC Turkey compliance is governed by CMB Law No. 7518, which requires platforms to obtain Capital Markets Board licences by June 2026. Shufti provides full KYC onboarding, jurisdiction verification for Travel Rule compliance, sanctions screening and eight-year record retention. Our crypto KYC Turkey solutions support CMB licence applications and post-licensing MASAK reporting obligations.

What is the data retention requirement for AML records in Turkey?

Law No. 5549 mandates eight-year retention of all AML records from the end of the business relationship. This covers KYC files, transaction records and STR documentation. AML compliance Turkey requires automated retention schedules and maintains audit-ready records for MASAK examinations and regulatory inspections.

How does Turkey's FATF membership affect AML compliance Turkey obligations?

Turkey has been a FATF member since 1991 and was removed from the grey list in June 2024 after addressing compliance gaps. Post-greylisting, MASAK and BDDK enforce heightened AML standards. FATF's 40 Recommendations guide Turkish AML policy and international correspondent banking expectations. AML compliance Turkey now requires demonstrable controls exceeding minimum standards.

What are the penalties for non-compliance with Turkish KYC and AML regulations?

Non-compliance with Turkish KYC and Law No. 5549 AML obligations results in administrative penalties and potential criminal sanctions. MASAK compliance violations attract fines; failure to maintain eight-year records, conduct proper KYC Turkey verification, or submit STRs results in enforcement action. Crypto platforms failing to obtain CMB licences by June 2026 face liquidation. Enhanced penalties apply to repeat violations.

Greece

Identity Verification & KYC For Greece

Shufti automates identity verification, KYC due diligence, and KYB checks under Law 4557/2018, Bank of Greece AML regulations, and HCMC requirements for Greek compliance.

Operational performance for Greece KYC

Our Numbers Speak Volumes

97.49%

Pass Rates

100%

NFC
Verification

75%

eIDV
Coverage

Evidence-Ready Checks Across People & Businesses in Greece

Individual Documents We Verify

Shufti supports 16 Greek document types.

View All Supported Documents

Δελτίο Ταυτότητας (Greek National Identity Card)

National ID for Greek citizens aged 12+; valid 10 years; embedded chip, 12-digit PIN, biometric data; primary onboarding document.

Διαβατήριο (Greek Passport)

Biometric travel document issued by National Passport and Secure Document Centre; ICAO-compliant with machine-readable zone; valid 10 years for adults.

Δίπλωμα Οδήγησης (Greek Driving Licence)

Photo ID issued by National Passport and Secure Document Centre; EU-format security features; used for employment and financial onboarding.

Δελτίο Διαμονής (Residence Permit for Third Country Nationals)

Identity document for foreign residents in Greece; issued by immigration authorities at prefecture level; used for non-Greek citizens.

Ευρωπαϊκό Δελτίο Ταυτότητας (EU National Identity Card)

Valid ID for EU/EEA citizens; used for cross-border verification in Greek fintech and banking onboarding.

Business Entity Identity

General Commercial Register (GEMI) Certificate of Registration

Confirms business incorporation, legal entity type, registration date, and authorised business activities from Greek Companies Registry.

Certificate of Incorporation

Issued by Greek Companies Registry; includes company number, establishment date, legal status and registered address for verification.

Memorandum and Articles of Association

Constitutional documents defining corporate governance, ownership structure, voting rights, and beneficial owner disclosure thresholds.

Business Tax Identity

Tax Identification Number (AFM)

Nine-digit tax ID issued on company incorporation; format ΑΦΜ [nine digits]; required for all Greek business tax and banking purposes.

VAT Registration Number

Begins with "EL" followed by nine digits; required for taxable economic activity; validates tax registration and compliance status.

GMAO Registration

General Commercial Register filing confirming tax registration, business commencement date and ongoing compliance with Greek authorities.

Ownership & Control (UBO)

Central Register of Beneficial Owners (K.M.P.O.)

Mandatory register for all Greek entities; captures persons owning over 25 percent ownership or voting rights; electronic submission via Taxisnet.

Shareholder Registry

Internal records documenting share ownership distribution, voting rights, and percentage holdings; evidence of beneficial ownership structure.

Company Articles of Association (Ownership Section)

Governance documents identifying controlling persons and documenting beneficial owner threshold disclosures required by Law 4557/2018.

Languages We Cover

Greek script and Latin transliteration handling

Greek documents present names in both Greek alphabet and ELOT 743 Latin transliteration; Shufti captures both forms for verification.

Name matching for Greek diacritics and transliteration variance

Fuzzy matching and phonetic algorithms reconcile name variants; handles diacritical marks and ELOT 743 standard transliteration variations.

Evidence consistency across verification steps

Reconciles identity data across documents, transliterated forms, beneficial owner declarations, and screening outputs to ensure name-matching integrity.

GOVERNANCE & CONTROLS

Audit-Ready Decisions, Lower Operational Drag

Fewer Avoidable Re-Submissions

Transliteration-aware capture reduces friction across Greek and Latin name variants on documents.

Cleaner Audit Trails

5-year retention mandated; Shufti structures CDD, KYB and screening evidence for Bank of Greece and FIU.

Better Name Matching Outcomes

ELOT 743 transliteration and diacritic handling reduce false positives in PEP and sanctions screening.

One Workflow, One Back Office

KYC, KYB, AML screening consolidated; integrates Δελτίο Ταυτότητας, GEMI, AFM, K.M.P.O., and goAML.

National ID-First Flow Design

Δελτίο Ταυτότητας as primary document; capture flow optimised for faster, frictionless Greek onboarding.

Enterprise-grade compliance infrastructure

Greece IDV/KYC Challenges

Name Transliteration Variance

Greek names transliterate to Latin using ELOT 743; variation exists across systems; mismatches cause false negatives in lookups.

UBO Register Sync Delays

K.M.P.O. integration lags between tax authorities; real-time verification remains challenging; manual remediation adds cost.

Regulatory Complexity

Bank of Greece, AAMNE, HCMC, and HDPA operate overlapping regimes; different retention and reporting timelines create friction.

Address Document Fragmentation

Utility and bank statement formats vary; no standardised address verification database; reliance on paper bills slows closure.

Shufti's IDV/KYC Solutions for Greece

KYC Solutions

Face Verification

Detects synthetic identity and impersonation fraud; strengthens CDD evidence against forged Δελτίο Ταυτότητας and compromised biometric cards in Greece.

Age Verification

Selfie-based age estimation plus document verification fallback for gaming and gambling compliance under Greek regulatory requirements.

Address Verification

Verifies address documents using PPC, EYDAP, COSMOTE, Vodafone utilities and bank statements from Piraeus, NBG, Alpha, Eurobank.

Document Verification

Supports Δελτίο Ταυτότητας, Greek passport, driving licence, residence permits, EU national IDs with Greek script and ELOT 743 handling.

KYB Solutions

Business Verification

Validates entity status via GEMI registry; cross-references AFM tax ID; verifies beneficial owner disclosures aligned to K.M.P.O. requirements.

Enhanced Due Diligence (EDD)

Escalation workflows for high-risk entities, PEPs and cross-border exposure; produces audit-ready case files compliant with Law 4557/2018.

AML Screening

Business AML Screening

Screens entities and controlling persons against Bank of Greece, EU/UN sanctions and HCMC enforcement notices; identifies PEPs.

Transaction Screening

Ongoing monitoring under Greek AML law; flags suspicious patterns for FIU reporting via goAML; maintains audit trails for examinations.

REGULATORY ALIGNMENT

Built to Fit Greece's Compliance Landscape

Τράπεζα της Ελλάδος (Bank of Greece)

Supervises credit institutions and payment providers for AML/CFT compliance. Shufti aligns CDD evidence and recordkeeping to Bank of Greece examination standards. Official Website: https://www.bankofgreece.gr/en/homepage

Αρχή Καταπολέμησης Νομιμοποίησης Εσόδων (Hellenic Anti-Money Laundering Authority)

Operates Financial Intelligence Unit (Unit A) for suspicious transaction collection. Shufti produces goAML-compliant STRs and audit evidence for FIU exchange. Official Website: https://aml-authority.gov.gr/en/

Επιτροπή Κεφαλαιαγοράς (Hellenic Capital Market Commission)

Supervises capital markets, investment services and crypto providers. Shufti delivers KYC and KYB for HCMC-regulated fintech and crypto platforms. Official Website: http://www.hcmc.gr/en/web/portal/home

Ελληνική Αρχή Προστασίας Δεδομένων (Hellenic Data Protection Authority)

Enforces GDPR (Law 4624/2019) and personal data protection in Greece. Shufti implements GDPR-compliant retention controls aligned to HDPA requirements. Official Website: https://www.dpa.gr/en

Επιτροπή Εποπτείας Παιγνίων (Hellenic Gaming Commission)

Regulates gaming operations under AML/CFT and age verification rules. Shufti enables gaming compliance via identity and transaction monitoring. Official Website: https://www.gamingcommission.gov.gr/index.php/en/

Διεύθυνση Εποπτείας Ιδιωτικής Ασφάλισης (Directorate for Private Insurance Supervision)

Supervises insurance undertakings and enforces Solvency II and AML requirements. Shufti supports insurance KYC and due diligence aligned to Solvency II standards. Official Website: https://www.bankofgreece.gr/en/main-tasks/supervision/private-insurance

Διεύθυνση Εποπτείας Ταμείων Επαγγελματικής Σύνταξης (Occupational Pension Funds Supervision Directorate)

Supervises occupational pension funds under Law 5078/2023 and EIOPA guidelines. Shufti provides identity and beneficial owner verification for pension fund CDD. Official Website: https://www.bankofgreece.gr/en/main-tasks/supervision/occupational-pension-funds

Μονάδα Α΄ (Financial Intelligence Unit - Unit A)

Collects and evaluates STRs; exchanges intelligence with FIU networks via FIU.NET. Shufti enables goAML-compliant STR submission and case file structuring. Official Website: https://fiu.aml-authority.gov.gr/en/

Deployment Choice

AWS Local Zones in Athens; Microsoft Azure offers Attica data centres; on-premise options support data residency and enterprise governance requirements.

Regulatory Alignment

Law 4624/2019 (GDPR) and Hellenic Data Protection Authority accountability obligations; compliant data processing and breach notification.

Retention Controls

Configurable retention aligned to Law 4557/2018 five-year AML recordkeeping obligation; automatic purge after expiry.

Encryption Posture

Strong encryption in transit and at rest per DORA, NIS2, and industry security standards; AES-256, TLS 1.2+, and FIPS 140-2 validated encryption modules.

Data and Privacy Controls in Greece

BUILT FOR COMPLIANCE TEAMS

Greece AML Sources That Strengthen Decision

Hellenic Parliament

Bank of Greece - Sanctions

Hellenic Capital Market Commission

Eurobank Asset Management

Ekathimerini

The Greek Reporter

Ta Nea

Hellenic Parliament

Bank of Greece - Sanctions

Hellenic Capital Market Commission

Eurobank Asset Management

Ekathimerini

The Greek Reporter

Ta Nea

Hellenic Parliament

Bank of Greece - Sanctions

Hellenic Capital Market Commission

Eurobank Asset Management

Ekathimerini

The Greek Reporter

Ta Nea

Hellenic Parliament

Bank of Greece - Sanctions

Hellenic Capital Market Commission

Frequently Asked Questions

What are the primary identity documents accepted for KYC in Greece?

The Greek National Identity Card (Δελτίο Ταυτότητας), valid for 10 years with embedded chip and 12-digit PIN, is the primary document. Greek passports and driving licences are secondary alternatives. EU/EEA national IDs are accepted for foreign residents. Modern cards issued from 2023 onwards support eIDV (electronic identity verification).

How do you verify a Greek National ID (Δελτίο Ταυτότητας) for AML compliance?

Verify the 12-digit PIN, signature, photograph, and security features (hologram, microprinting). Modern biometric cards support eIDV where infrastructure exists. Confirm non-expiry and cross-reference with Greek Police registry. Implement ELOT 743 name transliteration matching to handle variant spellings.

What is Law 4557/2018 and what are its KYC requirements?

Law 4557/2018 is Greece's primary AML law implementing EU Directives 2015/849 and 2018/843. It mandates customer due diligence, five-year record retention, beneficial owner identification (25% threshold), suspicious transaction reporting via goAML to the FIU, and enhanced due diligence for high-risk customers.

How do you register and verify beneficial owners (UBOs) in Greece?

All Greek entities must register UBOs in K.M.P.O. within 60 days of establishment. UBOs own greater than 25% of shares or voting rights. Registration occurs via Taxisnet. Non-compliance incurs fines from EUR 10,000 to EUR 100,000 and blocks tax clearance certificates.

What is goAML and how does FIU reporting work in Greece?

goAML is the UNODC platform for suspicious transaction reporting (STRs). Greece's Financial Intelligence Unit receives STRs via goAML. Obliged entities must report immediately if money laundering or terrorist financing is suspected. The FIU examines, evaluates, and shares intelligence with international FIU networks and EU authorities via FIU.NET.

Why is Greek name transliteration challenging for KYC and how do you handle variant matching?

Greek names transliterate to Latin using ELOT 743 standard. Variation exists (e.g., "Dimitrios" vs "Demetrios" for Δημήτριος). Modern ID cards show both Greek script and transliterated forms. KYC systems must implement fuzzy matching, phonetic algorithms, and multi-transliteration lookups to reconcile variants across documents and databases.

What are the data residency and GDPR obligations for storing KYC data in Greece?

The Hellenic Data Protection Authority supervises GDPR compliance via Law 4624/2019. AML data must be retained five years, overriding GDPR right-to-erasure during retention. Azure, GCP, and AWS offer Greece-based data centres in Athens and Attica. Financial institutions may choose on-premise or private cloud to satisfy data residency preferences.

What are the consequences of non-compliance with Greek KYC and AML regulations?

Administrative fines range from EUR 50,000 to EUR 10 million for legal entities; criminal penalties include up to 15 years imprisonment and EUR 2 million fines. In 2024, Bank of Greece fined two institutions EUR 280,000 each for failing to identify beneficial owners. Non-compliance triggers audits, license suspension, and reputational damage.

How does crypto and fintech KYC differ from traditional banking KYC in Greece?

Crypto asset service providers (CASPs) must register with HCMC and comply with Law 4557/2018 plus MiCA regulation (June 2023). Fintech platforms must implement remote electronic identification (eIDV) and strict KYC/KYB before onboarding. Both must report suspicious transactions to FIU via goAML and maintain ongoing transaction monitoring.

Build a Greece-ready KYC, KYB & AML programme with Shufti

Check Pricing Request Demo

INDEPENDENTLY AUDITED. GLOBALLY CERTIFIED.

Certified to Global Standards

PROVEN WORKFLOWS

Use Cases for Regulated Growth in Greece

Marketplace

Banking

Crypto

Fintech

Forex

Gaming

Gig Economy

Marketplace

Banking

Crypto

Fintech

Forex

Gaming

Gig Economy

Marketplace

Banking

Crypto

Fintech

Forex

Gaming

Gig Economy

Marketplace

Shufti supports marketplace integrity by verifying seller and buyer identities, enabling age-gated journeys where needed, and preserving evidence to support investigations, disputes, and risk-led enforcement actions.

Learn More Try Now

Banking

Automate KYC and AML workflows to reduce manual onboarding costs. Strengthen residency checks whilst delivering the frictionless digital experience modern customers expect.

Learn More Try Now

Crypto

Balance anonymity with compliance. Instantly verify user jurisdiction to meet Travel Rule obligations and help stop abuse without slowing down legitimate trading volume.

Learn More Try Now

Fintech

Onboard users in seconds, not days. Deploy tiered address verification flows that maximise completion rates for genuine users whilst filtering out synthetic fraud.

Learn More Try Now

Forex

Verify investors across 250+ countries & territories. Ensure compliance with international financial regulations whilst preventing identity theft and high-risk chargebacks.

Learn More Try Now

Gaming

Reduce bonus abuse and multi-accounting rings at the door. Enforce location rules and trigger step-up checks without disrupting the player journey.

Learn More Try Now

Gig Economy

Screen freelancers and drivers at scale. Verify residency and reduce onboarding friction whilst maintaining trust between users.

Learn More Try Now

Let’s Tailor your journey

Just a few quick questions to guide your Shufti experience.

Which products would you like to check out?

VideoIdent

Address Verification

eIDV (Docless)

KYB

AML Screening

Deepfake Detection

Face and ID Verification

Age Verification

Others

What is your expected yearly verification volume?

1 to 1,000

1,001 to 5,000

5,001 to 20,000

20,001 to 50,000

50,001 to 100,000

100,001 to 1,000,000

1,000,000+

Valid Invalid number

I agree that Shufti may use my email for marketing purposes, including to share updates about Shufti products & services, newsletters, invites to special events and free giveaways. You can unsubscribe at any time using the link from Shufti emails.

By clicking Submit, you accept our Privacy Policy and consent to marketing communications.

Shufti

Market Positioning and Commercial Assessment

Industry stands at 1.7rating

Best ID Verification Innovator

Explore Practical KYC & AML Resources

Explore Content library

16 August, 2025

5 minutes read

How Much of What You’ve Verified Is Actually Real?

Shufti’s Deepfake Blindspot Audit now runs fully inside your AWS environment, auditing historic KYC for manipulation signals without moving sensitive data off-prem.

whitepapers

16 August, 2025

5 minutes read

Prevent Account Takeover Fraud with a Multilayered Defense

This white paper highlights Shufti’s multilayered defense using verification, device fingerprinting, biometrics, and liveness detection to prevent ATO.

whitepapers

16 August, 2025

5 minutes read

An Enterprise Guide to Choose the Right Identity Verification Solution

Helps decision-makers select a platform that satisfies the requirements of risk, compliance, product, growth, and executive stakeholders simultaneously.

whitepapers

Explore Content library