South Africa removed from FATF grey list: what this changes for fintech businesses

On 24 October 2025, the Financial Action Task Force (FATF) removed South Africa from its grey list of "Jurisdictions under Increased Monitoring," marking the end of 32 months of enhanced scrutiny. The decision followed a reform programme spanning more than two and a half years, and an on-site assessment in July 2025 that confirmed the sustainability of the changes South Africa had made to its anti-money laundering and counter-terrorism financing (AML/CFT) framework.

For enterprise fintech businesses, this matters. The grey listing was not a reputational inconvenience sitting at the edge of operations. It imposed direct, measurable costs on compliance functions, slowed international payment flows and created structural friction with overseas banking partners that rippled through product development timelines and cross-border expansion plans. Now that it has ended, understanding what it actually changes (and what it doesn't) is important for finance and compliance teams building forward.

How we got here

South Africa's grey listing stemmed from deficiencies identified in its 2021 FATF mutual evaluation report. While the country's laws were broadly aligned with FATF standards on paper, the evaluation found significant weaknesses in the practical effectiveness of the AML/CFT system - including in supervisory action, money laundering investigations and prosecutions, and asset confiscation. These gaps were compounded by institutional weaknesses and systemic vulnerabilities, many of which were exposed during the state capture era. 

To address the issue, South Africa reached an agreement with FATF to implement 22 action items as a condition for removal from the grey list, a process that took approximately 32 months to complete. The action items spanned legislative reform, improvements in beneficial ownership transparency, increased investigation and prosecution of complex money laundering cases, and tighter supervisory oversight across banks and designated non-financial businesses.

The compliance burden this created for businesses operating in South Africa was real and immediate. As a result of the grey listing, financial institutions around the globe were required to conduct additional AML compliance checks when working with South African customers and South African-originated business. KYC requests became more detailed, with a greater focus on source of wealth and source of funds. 

For fintech businesses specifically, this translated into longer onboarding processes with international partners, additional documentation demands from correspondent banks, and in some cases outright de-risking, where foreign institutions reduced or ended relationships with South African counterparties rather than absorb the compliance overhead.

What the exit unlocks

The most tangible near-term benefit is reduced friction on international payment flows and correspondent banking relationships. As Vincent Gaudel, Financial Crime Compliance Expert at LexisNexis Risk Solutions, noted following the announcement, removal from the grey list reduces friction in cross-border payments for corporates and individuals. Once jurisdictions such as the UK and EU update their high-risk lists, international counterparties require fewer enhanced due diligence steps. This enables expanded access to correspondent banking services, and trade finance operations become more efficient.

The macro picture supports this. According to a 2021 IMF working paper (Kida & Paetzold), grey listing reduces capital inflows by an average of 7.6% of GDP across affected countries, largely due to higher compliance costs and de-risking behaviour from global banks. For African economies, where trade, remittances and investment flows rely heavily on external clearing lines, the impact is direct: less liquidity, higher costs and constrained investor appetite.

For fintech businesses, the practical reversals are threefold.

First, cross-border online payments and remittances should become smoother and, over time, cheaper. International card, remittance and marketplace payments should face fewer additional checks over time as counterparties recalibrate their risk settings. Onboarding with foreign banks, PSPs or marketplaces may become smoother, and some correspondence and settlement times may shorten as enhanced due diligence flags are revised.

Second, fintechs pursuing international partnerships, international investment or global expansion will find the country risk profile improved. South Africa's grey listing cast a shadow over every interaction with a foreign institutional counterparty. That shadow has now lifted.

Third, the compliance cost base for businesses carrying AML obligations may ease at the margin. The heavy investment in compliance controls, KYC infrastructure and reporting systems that grey listing necessitated was a real strain, particularly for growth-stage businesses where engineering and product resource is precious. Some of that overhead reflected requirements specific to grey-listed jurisdictions that no longer apply.

What doesn't change

The more important message for compliance teams is what stays in place. FATF delisting does not reset the compliance clock.

Banks still apply global AML/CFT rules. The difference is that foreign counterparty banks are less likely to add extra checks just because the country is flagged. South African fintech businesses remain accountable to the Financial Intelligence Centre Act (FICA), the General Laws (Anti-Money Laundering and Combating the Financing of Terrorism) Amendment Act, 2022passed in late 2022, and the full suite of domestic regulatory obligations that were strengthened as part of the reform programme.

Beneficial ownership requirements are a case in point. Transparency around the ultimate beneficial owners of companies was one of the most challenging of the 22 action items, and the legislative and administrative infrastructure put in place to address it is permanent. Fintechs that interface with business customers will need to maintain robust beneficial ownership verification processes regardless of FATF status.

Transaction monitoring requirements also remain. Modern monitoring systems should be capable of detecting behavioural anomalies, structuring (including smurfing, where transactions are broken into smaller amounts to avoid reporting thresholds), use of multiple intermediaries to layer funds, rapid fund movements, cross-border transactions, geographic risk, network analysis and mule account detection. These are not grey-listing-specific obligations. They are the baseline for any regulated entity in the payments space, and the reforms South Africa undertook have raised the minimum standard permanently.

‍

There is also a forward-looking element that compliance teams should factor in. SARS Commissioner Edward Kieswetter noted that removing the designation of grey listing is "not a finish line but a milestone on a long-term journey toward building a robust and resilient financial ecosystem South Africa's next full FATF mutual evaluation is expected to commence in the first half of 2026, with the report due for adoption at plenary in October 2027, when the organisation will apply its new methodology for assessing financial transparency and AML compliance. The compliance infrastructure businesses have built should be maintained and matured, not wound back.

The opportunity for fintech businesses now

Grey listing created a kind of compliance arms race in South Africa's fintech sector. Businesses that invested seriously in KYC, AML monitoring and regulatory reporting infrastructure, often at significant cost, built capabilities that are now a competitive asset rather than merely a compliance cost centre.

The businesses that treated the grey listing period as an opportunity to professionalise their compliance functions are now better positioned to pursue international partnerships, access global payment rails and attract cross-border investment capital. The compliance infrastructure required to pass scrutiny from grey-list-era correspondent banks is the same infrastructure that will support credible expansion into new markets.

For fintech businesses at an earlier stage that deferred product launches or partnership development due to compliance complexity, the reduced friction environment creates a more practical path forward. This is particularly relevant for Pay by bank and online payments providers with cross-border ambitions, as well as businesses operating in categories such as remittances, gaming and lending that carry elevated AML exposure.

The Stitch 2025 Consumer Payments Report showed that nearly half of South African consumers surveyed have used Pay by bank or Capitec Pay in the last year, indicating rising consumer confidence in bank-to-bank payment methods. The conditions now support extending that infrastructure more easily across borders.

The bottom line

South Africa's exit from the FATF grey list is a genuine milestone. Delisting reduces the international risk profile of South African transactions and confirms that the country has substantially addressed the strategic deficiencies identified in its AML/CFT framework. For fintech businesses, that means fewer barriers to international banking relationships, faster cross-border payment flows and a more favourable country risk label when engaging with foreign investors and partners.

What it does not mean is a relaxation of the compliance standards that South African businesses are now held to. The AML/CFT framework that emerged from the reform programme is more robust than what preceded grey listing, and maintaining it is not optional. While South Africa has been removed from the grey list, its capacity to fight financial crime will continue to be monitored and evaluated by FATF. 

The businesses best positioned for what comes next are those that treated compliance not as a cost imposed by regulation, but as infrastructure worth building well.

‍

FAQs

When did South Africa exit the FATF grey list?

South Africa was officially removed from the FATF grey list on 24 October 2025, following a decision at the FATF Plenary in Paris. The delisting ended 32 months of enhanced international monitoring that began when South Africa was grey-listed in February 2023. South Africa was one of four countries removed at the October 2025 Plenary, alongside Nigeria, Mozambique and Burkina Faso.

What did South Africa's FATF grey listing mean for fintech businesses?

Grey listing triggered enhanced due diligence requirements from international correspondent banks, which increased the complexity and cost of cross-border transactions for South African businesses. Fintechs experienced more demanding KYC requests from overseas partners, longer onboarding processes, slower cross-border payment flows and in some cases de-risking by foreign banks. The period also required significant investment in compliance infrastructure, which strained resource-constrained growth-stage businesses.

What changes for fintech businesses now that South Africa is off the grey list?

The most immediate changes are reduced friction on cross-border payments and correspondent banking relationships, as foreign institutions recalibrate their risk settings for South African counterparties. Onboarding with international banking and payment partners should become smoother, and additional checks applied specifically because of grey-list status should ease over time. South African fintech businesses pursuing international expansion or investment will also find the country risk profile more favourable.

Do AML and KYC obligations go away after the FATF grey listing ends?

No. FATF delisting does not remove domestic AML/CFT compliance obligations. South African businesses remain subject to the Financial Intelligence Centre Act (FICA), the General Laws (AML/CFT) Amendment Act and all associated requirements around KYC, beneficial ownership verification, transaction monitoring and suspicious activity reporting. The reforms South Africa implemented to exit the grey list raised the compliance baseline permanently - that baseline remains in place regardless of FATF monitoring status.

When is South Africa's next FATF evaluation?

South Africa's next full FATF evaluation is scheduled to commence in the first half of 2026 and conclude in October 2027. The evaluation will apply FATF's updated methodology for assessing financial transparency and AML compliance. Businesses and regulators are expected to demonstrate that the reforms implemented during the grey listing period have been embedded sustainably, not simply fulfilled as one-time requirements.