Risk Scoring

Crypto Risk Scoring

A structured analytical framework to assess and quantify the financial crime risk associated with customers, transactions, and wallets.

Crypto risk scoring is a structured analytical framework used to assess and quantify the financial crime risk associated with customers, transactions, and virtual asset wallets. Its primary objective is to enable regulated entities to prioritise compliance resources in a proportionate and risk-based manner, consistent with applicable anti-money laundering (AML) and counter-terrorist financing (CTF) obligations.

By assigning a measurable risk score to relevant entities and activities, institutions are able to enhance decision-making, strengthen monitoring capabilities, and ensure that higher-risk exposures are subject to appropriate levels of scrutiny and enhanced due diligence.

Risk Factors

Categories of risk indicators

Risk scoring models typically incorporate multiple categories of risk indicators, each contributing to an aggregated overall assessment.

Customer Risk

Customer-related risk factors relate to the identity, background, and profile of the individual or entity engaging with the platform. Key considerations include:

  • Politically Exposed Person (PEP) status or association
  • Occupation, including exposure to cash-intensive or high-risk industries
  • Geographic exposure, particularly links to high-risk or non-cooperative jurisdictions

Transaction Risk

Transaction-level risk focuses on behavioural patterns and financial activity associated with the customer’s account. Key indicators include:

  • Transaction volume, including unusually high or inconsistent amounts
  • Frequency of transactions and deviations from expected behaviour
  • Transactional patterns suggestive of layering, structuring, or abnormal fund movement

Wallet Risk

Wallet-based risk assessment is particularly relevant in the context of virtual assets and blockchain transactions. Key considerations include:

  • Exposure to sanctioned addresses or designated entities
  • Interaction with cryptocurrency mixers or tumbling services
  • Links to darknet marketplaces or illicit financial ecosystems

Jurisdiction Risk

Jurisdictional risk reflects the regulatory, geopolitical, and financial crime environment associated with a customer or transaction. Key indicators include:

  • Jurisdictions listed on the FATF grey list, indicating strategic AML deficiencies
  • Jurisdictions listed on the FATF black list, indicating high-risk or non-cooperative status
Sample Risk Scale

A standardised numerical scale

Risk scoring is typically expressed on a standardised numerical scale to facilitate consistent interpretation and application across compliance systems.

Score RangeRisk Classification
0 – 25Low
26 – 50Medium
51 – 75High
76 – 100Critical

This framework enables institutions to apply proportionate controls, with higher scores triggering enhanced due diligence, increased monitoring frequency, and potential escalation to compliance or risk committees.

Ongoing Risk Reviews

Risk scoring is not a static exercise and must be subject to continuous reassessment throughout the duration of the customer relationship. Dynamic risk scoring models allow for the real-time adjustment of risk profiles based on evolving behavioural, transactional, and external risk indicators.

This ongoing review process ensures that risk assessments remain current, accurate, and reflective of the customer’s actual activity, rather than solely their initial onboarding profile. It also supports early detection of emerging risks and facilitates timely compliance intervention where necessary.