GLOBAL PAYMENTS KNOWLEDGEISO 20022 / SWIFT / SEPA / MT / MX

Fraud & Compliance / Learning brief

The travel rule in payments

Your notes

What this means in plain language

The travel rule, based on Financial Action Task Force Recommendation 16, requires specified originator and beneficiary information to travel with a transfer through the payment chain, so that every institution can screen it, monitor it, and trace the funds if asked.

The travel rule requires that certain information about the sender and the receiver of a payment travels with the payment itself, all the way along the chain of banks that handle it. It comes from Recommendation 16 (R.16) of the Financial Action Task Force (FATF), the international body that sets standards against money laundering and terrorist financing. The idea is straightforward: an institution can only screen a payment against sanctions lists, monitor it for suspicious patterns, and answer a later law-enforcement question if it can actually see who sent the money and who is receiving it. So the rule fixes what must be present — the originator's name and account, the beneficiary's name and account, and further identifying details — and requires each institution in the chain to pass that information on unchanged. When required information is missing, the receiving institution does not quietly ignore it; it follows a defined process to obtain, hold, reject, or report the transfer.

Understand the full idea, step by step

A registered letter does not just carry its contents — it carries a return address and a named recipient, so anyone handling it knows where it came from and where it is bound. Payments are asked to do the same: a defined set of facts about the two parties must ride along with the money the whole way. That requirement has a name.

The travel ruleparty information must travel with the payment

The travel rule takes its name from a simple requirement: defined information about the parties to a payment must travel with the payment from beginning to end. It is set out in Recommendation 16 of the Financial Action Task Force (FATF), the intergovernmental body whose recommendations form the global baseline for anti-money-laundering (AML) and counter-terrorist-financing controls. The information must be included in, or accompany, the payment message — the payment must not be anonymous to the institutions handling it.

What must travel, for a cross-border transfer

Originator name
Required
Originator account
The account number, or a unique transaction reference where there is no account
A further originator identifier
One of: address, national identity number, or date and place of birth
Beneficiary name
Required
Beneficiary account
Required

Why complete data is the whole point

The travel rule exists because the controls downstream of a payment are only as good as the data they can see. Sanctions screening compares names against lists of designated parties; if a name is missing or abbreviated, the filter has less to match and a listed party can pass unnoticed. Transaction monitoring needs to know who is sending and receiving to link related activity. And when law enforcement later asks an institution to trace funds, the answer depends on the party information it captured and kept. Complete, accurate data serves all three at once — which is why an intermediary must keep every piece of information that arrived with a transfer attached as it forwards the payment.

Does every payment, however small, have to carry the full set of details?

Not quite. Below a de minimis threshold — set at USD/EUR 1,000 in the FATF standard — a reduced set of information may be permitted, though the names and account numbers of both parties are still expected. And because jurisdictions implement the recommendation through their own laws, the exact fields and thresholds vary; some national regimes set a different monetary threshold for domestic transfers. The constant, above or below any threshold, is that the payment must not be anonymous to the institutions handling it.

WHAT IF — A transfer arrives lacking required originator or beneficiary information

What happens: Incomplete transfers are an expected event, not a rare one, so beneficiary and intermediary institutions must have risk-based policies for identifying them and deciding how to respond.

How it is handled: The defined options are to execute the payment while seeking the missing information, hold or suspend it pending that information, reject it, or — where warranted — restrict or end the relationship with a counterparty that repeatedly sends deficient data. A pattern of missing information can itself feed a suspicious activity report (SAR).

COMMON CONFUSION

Missing party information is a minor administrative gap that should not hold up an otherwise valid payment.

Missing data is a control signal to act on, not a detail to overlook so the payment can proceed. The party information is not administrative packaging — it is the raw material screening, monitoring, and tracing all depend on. A repeated pattern of deficient messages is itself a suspicious indicator worth reporting.

STRICTLY SPEAKING

Strictly speaking, the same logic now reaches beyond traditional banking. The FATF later extended the travel rule to transfers of virtual assets, requiring virtual asset service providers (VASPs) to pass equivalent originator and beneficiary information with a crypto transfer. The payments version described here is the original and remains the most widely implemented; the crypto extension applies the identical principle — value should not move anonymously — to a newer set of rails.

FOR NOW, REMEMBER

  • The travel rule, from FATF Recommendation 16, requires defined originator and beneficiary information to travel with a payment from end to end.
  • For a cross-border transfer that means both parties' names and accounts plus a further originator identifier; a reduced set may apply below a de minimis threshold, and national rules vary.
  • Complete data protects three controls at once — sanctions screening, transaction monitoring, and later tracing — so an intermediary must forward it intact.
  • Missing information is a control signal: execute-while-seeking, hold, reject, or restrict the relationship; a pattern can feed a SAR. The same logic now extends to crypto transfers via VASPs.

TRY IT YOURSELF

Meridian Bank, acting as an intermediary, receives a cross-border transfer that arrived with the originator's full details, and prepares to forward it to Nordbank. What does the travel rule require of Meridian here?

Meridian may forward only the beneficiary details, since as an intermediary it is not the institution that knows the originator.

Not this one — Dropping the originator information mid-chain would blind every institution further along — precisely what the travel rule forbids. An intermediary must keep the party information that arrived attached as it forwards the payment.

Meridian must keep the originator and beneficiary information that arrived attached to the payment as it forwards it onward.

Correct — Correct. The rule is that the information keeps travelling. An intermediary preserves and passes on the party data it received, so downstream institutions can screen, monitor, and trace the funds if asked.

Meridian should strip the party details before forwarding, to protect the customers' privacy in transit.

Not this one — Removing party data defeats screening, monitoring, and tracing — and stripping information is the abuse transparency controls exist to detect. The travel rule requires the data to remain with the payment, not be removed.

You have followed the party data from the rule that mandates it to the message that carries it. The message-screening topic goes deeper into how each field is read, mapped, and defended as a control.

KEEP GOING

Three things to remember

  1. 01

    The travel rule, from Financial Action Task Force Recommendation 16, requires specified originator and beneficiary information to accompany a transfer through every institution in the chain.

  2. 02

    Complete party data is what makes sanctions screening, transaction monitoring, and law-enforcement tracing possible; incomplete data undermines all three.

  3. 03

    When required information is missing, institutions follow risk-based procedures to request, hold, reject, or report the transfer rather than passing it on blindly.

Where you would use this

USE CASE 01

An ordering institution collects and includes the required originator and beneficiary details before releasing a cross-border payment, so downstream banks can screen it.

USE CASE 02

An intermediary bank ensures all information received with a transfer stays attached to it as the payment is forwarded, keeping records of what travelled.

USE CASE 03

A beneficiary bank runs a control that flags incoming transfers missing required fields and routes them to an analyst who requests the missing data or rejects the payment.

Put the idea into a real situation

Illustrative example: a fictional bank, Aldermere Bank, sends a USD 18,750.00 cross-border payment on behalf of its customer, Northwind Textiles, to a beneficiary at another fictional bank, Cape Union Bank. Under the travel rule, Aldermere must include the originator's name, account number, and address, together with the beneficiary's name and account number, in the payment message. The message reaches an intermediary that forwards it unchanged, keeping all of that information attached. At Cape Union, a completeness check notices the beneficiary account number is present but the originator's address field is empty. Rather than releasing the funds, Cape Union holds the payment and sends a request for the missing information back up the chain. Only once the originator's address is supplied, and screening against sanctions lists has run against the full set of names, is the payment credited. The threshold above which full information is required is set at USD/EUR 1,000 in the FATF standard, though jurisdictions apply their own limits.

Evidence & review

REVIEWED 2026-07-13

FATF Recommendation 16 travel rule for cross-border transfers, plus its VASP/virtual-asset extension; national implementations vary in fields and thresholds.

What this brief simplifies: States the FATF baseline; exact required fields, thresholds, and domestic rules are set by each jurisdiction's own law and should be checked against it.

Sources for this brief2
  1. Official requirement

    The FATF Recommendations: International Standards on Combating Money Laundering and the Financing of Terrorism & ProliferationFinancial Action Task Force

    The global standards countries implement against money laundering, terrorist financing, and proliferation financing, including targeted financial sanctions and payment transparency under Recommendation 16. · Checked 2026-07-12

    Adopted in 2012 and updated regularly since; the June 2025 FATF plenary agreed revisions to Recommendation 16 on payment transparency. Consult the live consolidated text for the current wording.

  2. Simplified educational illustration

    Payments Signal editorial teaching modelsPayments Signal

    This site's own simplified teaching models. · Checked 2026-07-12

    Used wherever diagrams, scenarios, figures, or example values are didactic constructions rather than sourced facts; every such use carries a simplifications disclosure. All people, companies, banks, and list entries in examples are fictional.

Learn this properly

Related briefs

View Fraud & Compliance archive

Screening for politically exposed persons (PEPs)

Politically exposed persons hold prominent public roles that carry higher corruption risk. Screening flags them so a bank applies enhanced due diligence — a deeper, documented review and senior sign-off — rather than the hard payment stop a sanctions match triggers.

READ BRIEF

Adverse media screening

Adverse media screening checks a customer against negative news linking them to crime or misconduct. It surfaces risk that official lists miss and feeds due diligence rather than blocking payments — while generating false positives a programme must control.

READ BRIEF

AML transaction monitoring

Anti-money-laundering transaction monitoring reviews many transactions over time for patterns that suggest financial crime, after they settle rather than in the payment path. Alerts that survive investigation become suspicious activity reports filed with the authorities.

READ BRIEF