United Kingdom

Identity Verification & KYC for the United Kingdom

Unified KYC, KYB, and AML controls aligned to the United Kingdom’s regulatory ecosystem. One platform to capture, verify, screen, and retain audit-ready evidence across FCA, HMRC, OFSI, NCA, and Companies House expectations.

Operational performance for United Kingdom KYC

Our Numbers Speak Volumes

94.85%

Pass
Rate

100%

NFC
Verification
Coverage

95%

EIDV Pass
Rate

END-TO-END VERIFICATION COVERAGE

Evidence-Ready Checks Across People & Businesses

Individual Documents We Verify

Shufti Verifies 20+ Individual UK Documents

View All Supported Documents

UK Passport (blue e-passport; legacy burgundy valid until expiry)

Primary high-assurance photo ID for remote UK onboarding; ICAO-compliant MRZ supports structured extraction and matching.

UK Photocard Driving Licence (DVLA – Great Britain)

Common domestic photo ID alternative to a passport for residents in England, Scotland, and Wales.

Northern Ireland Photocard Driving Licence (DVA – NI)

Accepted domestic photo ID for Northern Ireland residents; older formats remain valid until renewal cycles.

Biometric Residence Permit (BRP – legacy card)

Used by non-UK nationals as identity and immigration status evidence; may require a digital status cross-check due to the eVisa transition.

eVisa / UKVI Digital Immigration Status

Digital proof of immigration status accessed via a UKVI account; increasingly relevant where BRPs have expired but permission remains valid.

Non-UK Passport / EEA National ID (where accepted)

Primary ID for non-UK nationals onboarding in the UK, subject to programme policy and sector rules.

Entity Identity

Certificate of Incorporation (Companies House)

Confirms legal existence, company number, and incorporation date.

Companies House Register Extract / Company Overview

Verifies status, registered office, officers, filing history, and charges.

Confirmation Statement

Confirms up-to-date corporate information, including shareholders and SIC codes.

Accounts Filing Evidence

Identifies overdue filings or strike-off risk indicators, relevant for KYB risk assessment.

Tax Identity

VAT Registration Number (HMRC check)

Validates VAT status and registered trading details.

Unique Taxpayer Reference (UTR)

Reconciles corporation tax or self-assessment identity where required by sector policy.

Ownership & Control (UBO)

PSC (People with Significant Control) Filings

Identifies individuals with >25% ownership, voting rights, or significant influence/control.

Directors & Officers Register Entries

Confirms governance roles and control structure.

Companies House Identity Verification Personal Code (where applicable)

Confirms verified status of directors and PSCs under the strengthened IDV regime.

Languages We Cover

Document text handling

UK identity and corporate documents are primarily in Latin script. Shufti captures VIZ data and normalises MRZ constraints (A–Z/0–9 format) for structured comparison.

Name matching controls

Handles apostrophe removal (O’Connor → OCONNOR), hyphen substitution (Anne-Marie → ANNE MARIE), and diacritic normalisation (García → GARCIA) to reduce false mismatches in UK datasets.

Evidence consistency

Maintains a unified identity profile across document, biometric,c and registry checks to ensure the same individual or entity is traceable across onboarding stages.

GOVERNANCE & CONTROLS

Audit-Ready Decisions, Lower Operational Drag

Fewer Avoidable Re-Submissions

Optimised capture for UK passports and photocard licences reduces format-related failures and repeat uploads.

Cleaner Audit Trails

Structured logs support FCA, HMRC, and UKFIU expectations for escalation, recordkeeping and decision evidence.

Better Name Matching Outcomes

MRZ-aware normalisation addresses apostrophes, hyphens, and diacritics common in UK names and records.

One workflow, one back office

KYC, KYB, sanctions screening, and monitoring are managed in a unified case view.

Primary ID-first flow design

Journeys built around primary UK IDs, passport and photocard driving licence.

Enterprise-grade compliance infrastructure

United Kingdom IDV/KYC Challenges

No Single National ID

UK onboarding relies on passport or driving licence combinations. The absence of a universal ID increases document exceptions, manual reviews, and user drop-off.

BRP → eVisa Transition Friction

Expired BRPs may still map to a valid immigration status. Failure to handle digital eVisa proof correctly can lead to false declines and compliance exposure.

Companies House IDV Changes

Directors and PSCs must verify identity and use personal codes in filings. KYB teams must capture updated control evidence without delaying onboarding.

SAR Portal + Audit Burden

SAR reporting has moved to the UK SAR Portal. MLRO teams face increased workflow change, documentation demands, and scrutiny over suspicion rationale.

Shufti’s IDV Solution for the United Kingdom

KYC Solutions

Fast track customer onboarding and authentication with real-time identity verification solutions.

Face Verification

Matches a live selfie against passport or driving licence imagery. This matters in the UK, where remote onboarding is common, and fraud controls must align with FCA and sector AML expectations.

Age Verification

Combines selfie-based age estimation with a document verification step that requires regulatory certainty. This matters in the UK for gambling, vaping, alcohol, and other age-restricted sectors.

Address Verification

Verifies any address-bearing document, including utility bills, council tax letters, and UK bank statements. This matters in the UK, where proof of address is often required alongside photo ID to satisfy CDD expectations.

Document Verification

Supports UK passports, GB and NI driving licences, BRPs, and non-UK passports. We handle MRZ extraction, legacy format variants because multiple valid document designs coexist and no single national ID exists.

Behavioural Biometrics

Globally compliant biometric authentication for selfie-based login to help businesses satisfy stringent identity verification requirements.

Video KYC

Onboard real customers and eliminate ID fraud through cost effective in house or outsourced video KYC.

KYB Solutions

Business Verification

Validates Companies House registration data, directors, PSCs, VAT numbers and filing status. This matters in the UK, where entity status, beneficial ownership, and up-to-date filings are central to AML supervision.

Enhanced Due Diligence (EDD)

Triggers on overdue filings, complex ownership chains, sanctions exposure, or higher-risk sectors. Produces structured evidence packs. This matters in the UK, where regulators expect a documented risk-based approach and defensible audit trails.

AML Screening

Utilise artificial intelligence models and 1700+ sanction and watchlists to identify and prevent money laundering attempts.

Business AML Screening

Screens entities, directors, and PSCs against UK sanctions (OFSI), PEP, and global watchlists. This matters in the UK, where domestic sanctions compliance and beneficial ownership transparency are regulatory priorities.

Transaction Screening

Supports ongoing monitoring for unusual payment patterns, cross-border risk exposure, and threshold-based alerts. This matters in the UK, where firms must evidence ongoing monitoring under AML frameworks.

REGULATORY ALIGNMENT

Built To Fit the United Kingdom's Compliance Landscape

Financial Conduct Authority (FCA)

UK regulator responsible for conduct, consumer protection, market integrity, and financial crime systems and controls for financial services firms.

HM Revenue & Customs (HMRC)

UK authority responsible for tax collection and customs, and AML supervision for many non-financial regulated sectors.

National Crime Agency (NCA) – UK Financial Intelligence Unit (UKFIU)

National law enforcement agency that tackles serious and organised crime; UKFIU receives and analyses Suspicious Activity Reports (SARs).

Office of Financial Sanctions Implementation (OFSI) – HM Treasury

HM Treasury unit responsible for implementing and enforcing UK financial sanctions.

Companies House

UK registrar of companies responsible for maintaining the corporate register, PSC framework, and company filing records.

Information Commissioner’s Office (ICO)

UK independent authority set up to uphold information rights and enforce data protection laws including UK GDPR and the Data Protection Act 2018.

UK Gambling Commission

Regulator for commercial gambling in Great Britain, overseeing licensing, AML, and consumer protection compliance.

Home Office (including UKVI & HM Passport Office)

UK government department responsible for immigration, security, passports, and law enforcement policy.

Deployment Choice

Cloud (UK regions such as London) or on-premise deployment supports UK GDPR accountability and supervisory expectations under the FCA and HMRC.

Regulatory Alignment

Aligned to the UK Money Laundering Regulations (MLRs) and UK GDPR principles including lawfulness, purpose limitation and integrity of processing.

Retention controls

AML records must generally be retained for five years from the end of the business relationship, consistent with MLR record-keeping rules and UK GDPR storage limitation principles.

Encryption posture

Technical and organisational security measures, including encryption, support Article 32 UK GDPR obligations on security of processing.

Data And Privacy Controls In UK

BUILT FOR COMPLIANCE TEAMS

United Kingdom AML Sources That Strengthen Decision

House of Commons of the United Kingdom

British West Indies Guard Ship (Historical Royal Navy Command)

University of St Andrews

National Cyber Security Centre (NCSC)

Local Government Association (LGA)

Lambeth London Borough Council

London Borough of Hackney

Royal Borough of Kensington and Chelsea

House of Commons of the United Kingdom

British West Indies Guard Ship (Historical Royal Navy Command)

University of St Andrews

National Cyber Security Centre (NCSC)

Local Government Association (LGA)

Lambeth London Borough Council

London Borough of Hackney

Royal Borough of Kensington and Chelsea

House of Commons of the United Kingdom

British West Indies Guard Ship (Historical Royal Navy Command)

University of St Andrews

National Cyber Security Centre (NCSC)

Local Government Association (LGA)

Lambeth London Borough Council

London Borough of Hackney

Royal Borough of Kensington and Chelsea

Frequently Asked Questions

What is the primary ID used for UK KYC?

A UK passport is typically the highest-assurance document. A GB or NI photocard driving licence is widely accepted as an alternative.

Can onboarding proceed if a BRP has expired?

Potentially, yes. If immigration permission remains valid, digital status via a UKVI eVisa account may be required to confirm status.

Are UK firms required to screen domestic sanctions lists?

Yes. UK sanctions are implemented by OFSI. Firms typically screen against UK sanctions lists alongside global watchlists and PEP data.

How are Suspicious Activity Reports submitted in the UK?

SARs are submitted through the UK SAR Portal managed by the UKFIU within the NCA. Firms must maintain documented suspicion rationale and supporting evidence.

What documents are commonly required for UK KYB?

Certificate of Incorporation, Companies House status check, directors and PSC details, and, where relevant, VAT or UTR confirmation.

How does Shufti handle UK name variations?

The system normalises MRZ formats and accounts for apostrophes, hyphens, and diacritics to reduce false mismatches across datasets.

How is biometric data handled under UK privacy law?

Biometric processing must align with UK GDPR and the Data Protection Act 2018. Shufti supports defined retention policies and access controls.

What happens if a user fails document capture?

Workflows allow structured retries with clear failure reasons to reduce drop-off while preserving an audit trail.

Build a UK-ready KYC, KYB & AML programme with Shufti

Check Pricing Request Demo

INDEPENDENTLY AUDITED. GLOBALLY CERTIFIED.

Certified to Global Standards

PROVEN WORKFLOWS

Use Cases for Regulated Growth in United kingdom

Fintech

Forex

Banking

Gaming

Gig Economy

Crypto

Marketplace

Fintech

Forex

Banking

Gaming

Gig Economy

Crypto

Marketplace

Fintech

Forex

Banking

Gaming

Gig Economy

Crypto

Marketplace

Accelerate Growth, Eliminate Friction

Onboard users in seconds, not days. Deploy tiered address verification flows that maximise completion rates for genuine users while filtering out synthetic fraud.

Learn More Try Now

Onboard Global Traders in Real-Time

Verify investors across 250+ countries & territories. Ensure compliance with international financial regulations while preventing identity theft and high-risk chargebacks.

Learn More Try Now

Secure Trust at Every Transaction

Automate KYC and AML workflows to reduce manual onboarding costs. Strengthen residency checks while delivering the frictionless digital experience modern customers expect.

Learn More Try Now

Power a Fair & Secure Player Experience

Reduce bonus abuse and multi-accounting rings at the door. Enforce location rules and trigger step-up checks without disrupting the player journey.

Learn More Try Now

Build a Trusted, Verified Workforce

Screen freelancers and drivers at scale. Verify residency and reduce onboarding friction while maintaining trust between users.

Learn More Try Now

Scale Your Exchange with Confidence

Balance anonymity with compliance. Instantly verify user jurisdiction to meet Travel Rule obligations and help stop abuse without slowing down legitimate trading volume.

Learn More Try Now

Reduce fraud without blocking growth

Shufti supports marketplace integrity by verifying seller and buyer identities, enabling age-gated journeys where needed, and preserving evidence to support investigations, disputes and risk-led enforcement actions.

Learn More Try Now