Loading...
compliance

Title 31 AML Compliance Audit

Audit your casino’s Title 31 AML program with a structured checklist for controls, training, alerts, reporting, and recordkeeping. Use it to spot gaps before they become exam findings or repeat deficiencies.

Fill it now — Free Get Started
Customize with AI → Live preview →

Trusted by frontline teams 15 years of frontline software AI customization in seconds

Built for: Casino Gaming · Tribal Gaming · Hospitality And Entertainment · Gaming Compliance

Overview

This Title 31 AML Compliance Audit template is a structured inspection tool for reviewing a casino’s anti-money laundering program against the controls that matter most in practice: written procedures, independence, training, transaction monitoring, suspicious activity reporting, and record retention.

Use it when you need a periodic independent test of the AML program, when management wants proof that controls are operating as written, or when prior findings need a documented follow-up review. The template is also useful after a policy update, a surveillance workflow change, a new alert threshold, or a regulatory exam so you can verify that the revised process is actually being followed.

It is not meant for a casual walkthrough or a general compliance checklist. If you are not reviewing evidence, sampling alerts or cases, checking training records, and confirming management oversight, you are not really testing the program. It is also not the right tool for non-casino financial institutions or for a one-time policy drafting exercise.

The sections are ordered the way an auditor would work: confirm scope and independence first, verify the written AML program and internal controls, test training and employee awareness, review transaction monitoring and reporting, then close with records, retention, and corrective action tracking. That sequence helps you move from design to operation to follow-up without missing the evidence that supports each conclusion.

Standards & compliance context

  • The template is aligned to the Title 31 and Bank Secrecy Act framework commonly used for casino AML programs, including expectations for internal controls, suspicious activity monitoring, and recordkeeping.
  • The training and oversight sections support the kind of role-based awareness and documented supervision expected under gaming AML programs and related BSA/AML guidance.
  • The records and retention checks help verify that required AML evidence can be produced promptly during an exam or independent test.
  • If your property operates under state gaming rules, use this audit alongside any regulator-specific AML testing requirements and management reporting obligations.
  • Where your program references broader compliance frameworks, the structure also fits common internal audit and quality-management expectations for documented corrective action and follow-up.

General regulatory context for orientation only — verify current requirements with counsel or the relevant agency before relying on this template for compliance.

What's inside this template

Audit Scope and Independence

This section proves the review is independent, properly bounded, and based on the right policies and prior findings before any testing begins.

  • Audit period and property scope documented (critical · weight 2.0)
  • Independent tester has no operational responsibility for the AML program (critical · weight 3.0)
  • Audit plan includes internal controls, training, reporting, and recordkeeping (critical · weight 3.0)
  • Prior audit findings and corrective actions reviewed (weight 2.0)
  • Applicable gaming and BSA/AML policies obtained for review (weight 2.0)

Written AML Program and Internal Controls

This section checks whether the AML program is current, approved, and actually built to detect, escalate, and separate duties the way it says it should.

  • Written AML program is current and approved by management (critical · weight 5.0)
  • Program includes customer due diligence and enhanced due diligence triggers (critical · weight 5.0)
  • Cash transaction monitoring controls are defined and operating (critical · weight 5.0)
  • Thresholds, alerts, and escalation criteria are documented (critical · weight 4.0)
  • Segregation of duties exists for transaction review and approval (weight 3.0)
  • Independent testing frequency meets program requirement (weight 3.0)

Training and Employee Awareness

This section matters because even strong controls fail when front-line staff do not understand Title 31 obligations or the escalation path.

  • Training curriculum covers Title 31 obligations and red flags (critical · weight 4.0)
  • Training is role-based for cage, slots, table games, surveillance, and supervisors (critical · weight 4.0)
  • Training completion rate for required employees (weight 4.0)
  • Training records include date, content, and attendee verification (weight 4.0)
  • Employees can describe escalation steps for suspicious activity (weight 4.0)

Transaction Monitoring and Reporting

This section tests whether alerts, exceptions, and suspicious activity decisions are reviewed on time and documented well enough to defend the outcome.

  • Suspicious activity review process is documented and followed (critical · weight 5.0)
  • Alerts and exception reports are reviewed on a defined schedule (critical · weight 5.0)
  • Sampled alerts were escalated with complete case notes (critical · weight 5.0)
  • Suspicious activity reports were filed when required (critical · weight 5.0)
  • Reporting timelines met internal policy and regulatory expectations (critical · weight 5.0)

Records, Retention, and Management Oversight

This section confirms the program leaves a retrievable record trail and that management is tracking deficiencies to closure instead of just noting them.

  • Required AML records are retained and readily retrievable (critical · weight 4.0)
  • Management receives periodic AML compliance reporting (weight 3.0)
  • Open deficiencies have assigned owners and due dates (weight 4.0)
  • Corrective actions address root cause and are tracked to closure (weight 4.0)

How to use this template

  1. Define the audit period, property scope, and reviewer independence, then collect the current AML program, prior findings, and any corrective action logs before fieldwork begins.
  2. Review the written internal controls against actual practice by sampling thresholds, alerts, escalation criteria, and segregation of duties for transaction review and approval.
  3. Check training by department and role, then verify completion records, content coverage, and whether employees can explain how suspicious activity is escalated.
  4. Test transaction monitoring by tracing a sample of alerts or exceptions from generation through review, case notes, escalation, and SAR filing decisions where applicable.
  5. Confirm that required records are retained and retrievable, management receives periodic AML reporting, and each open deficiency has an owner, due date, and documented root-cause fix.

Best practices

  • Use a sample that includes both routine alerts and higher-risk exceptions so you can see how the process behaves under normal and unusual conditions.
  • Photograph or export evidence at the time of review, especially for logs, dashboards, and case notes that may change after the audit window closes.
  • Separate design testing from operating testing by checking whether the control exists first and then whether staff actually used it during the audit period.
  • Verify that training is role-based, because cage, slots, table games, surveillance, and supervisors should not all receive the same level of detail.
  • Trace at least one prior deficiency from finding to corrective action to closure so repeat issues do not get buried in a status report.
  • Look for missing escalation rationale in case notes, because a closed alert without a clear decision trail is a common audit weakness.
  • Confirm that management review is dated and specific, not just a generic sign-off on a monthly report package.

What this template typically catches

Issues teams running this template most often surface in practice:

Written AML procedures are outdated after a threshold, queue, or case-management workflow change.
Escalation criteria exist on paper but staff cannot explain when an alert must be elevated.
Training records show completion, but the attendee list does not clearly verify who actually attended.
Sampled alerts were closed without enough case notes to explain the decision or supporting evidence.
Suspicious activity reports were delayed because review ownership was unclear or handoffs were not documented.
Management reporting exists, but open deficiencies do not have named owners or due dates.
Prior corrective actions were marked complete without proof that the root cause was addressed.
Required AML records are stored in multiple places and cannot be retrieved quickly during review.

Common use cases

Casino Compliance Manager reviewing annual AML testing
Use this template to document the annual independent test of the property’s Title 31 program, including evidence from training, alert review, and management oversight. It helps the compliance team present a clean audit trail before an exam or board review.
Internal auditor validating suspicious activity escalation
Use this audit to trace a sample of alerts from generation through review, escalation, and SAR decisioning. It is especially useful when the property has changed surveillance, cage, or case-management workflows.
Tribal gaming compliance lead standardizing multi-site reviews
Use the same structure across multiple properties to compare control design, training completion, and corrective action closure. This makes it easier to spot inconsistent practices between sites and roll findings into a single management report.
AML program owner closing prior findings
Use the corrective action section to show whether each prior deficiency was fixed, verified, and sustained. It is useful after a regulator comment, internal audit issue, or policy revision that needs documented follow-up.

Frequently asked questions

What does this Title 31 AML Compliance Audit template cover?

It covers the core elements of a casino AML program that are typically reviewed in a periodic independent test: audit scope and independence, written internal controls, employee training, transaction monitoring, suspicious activity reporting, and records retention. It is designed to document whether the program is operating as written and whether exceptions were escalated and resolved. It also helps you track prior findings and corrective actions so repeat issues are visible.

How often should this audit be run?

Use it on the cadence required by your property’s AML program and gaming obligations, then align the timing with your internal risk profile and prior findings. Many teams run it annually, but higher-risk operations may need more frequent testing or targeted follow-up reviews. The template is built to support both full-scope periodic audits and narrower interim checks.

Who should complete the audit?

The tester should be independent from day-to-day AML operations and should not have operational responsibility for the controls being reviewed. That usually means internal audit, compliance, or an external reviewer with the right gaming and BSA/AML experience. The template includes an independence check so you can document that the reviewer is not auditing their own work.

Does this template align with Title 31 and gaming AML expectations?

Yes. It is structured around the kinds of controls regulators and examiners expect to see in a casino AML program under Title 31 and the Bank Secrecy Act framework. It also supports review of training, suspicious activity escalation, and record retention, which are common focus areas in gaming compliance reviews. You should still tailor it to your property’s policies and any state gaming requirements.

What are the most common mistakes this audit catches?

Common misses include outdated written procedures, weak escalation criteria, incomplete case notes for alerts, training records that do not prove attendance, and missing evidence that management reviewed open deficiencies. Another frequent issue is inconsistent follow-through on prior corrective actions. The template is set up to surface those gaps in a repeatable way.

Can I customize the template for different casino departments?

Yes. The training section already separates cage, slots, table games, surveillance, and supervisors, and you can add department-specific checks for your operation. You can also expand the transaction monitoring section to include the specific reports, thresholds, and exception queues used at your property. That makes it easier to use the same audit across multiple locations or business units.

How does this compare with an ad hoc AML review?

An ad hoc review often misses consistency, independence, and follow-up. This template gives you a repeatable structure, clear evidence fields, and a place to track corrective actions to closure. That makes it easier to compare audits over time and show that the program is being tested on a defined schedule.

What evidence should I attach when using this audit?

Attach the current AML program, training rosters, sample alert or case files, escalation logs, SAR support documentation where permitted, management reports, and records-retention evidence. If you find a deficiency, include photos or screenshots only when they help prove the issue and do not expose sensitive customer data. The goal is to make each finding traceable to objective evidence.

Related templates

Inspections

Casino Card Inspection and Rotation Log

Use this Casino Card Inspection and Rotation Log to document deck issuance, pre-use condition che...
Inspections

Casino Chip Counterfeiting Incident Report

Document suspected counterfeit, altered, or invalid casino chips with a clear chain of custody, e...
Inspections

Casino Dice Inspection Checklist

Use this checklist to verify craps dice identity, dimensions, spotting, and balance before they g...
Inspections

Progressive Jackpot Meter Verification Log

Use this Progressive Jackpot Meter Verification Log to compare each slot machine’s progressive me...
Inspections

Eye in the Sky Camera Coverage Audit

Audit dedicated surveillance camera coverage for every table game, cage, and cash handling point,...
Forms

Casino Cage Cash Count Sheet

A casino cage cash count sheet for recording currency, coin, chips, and instruments by denominati...
Sop

Cash Drawer Open & Count

Cash Drawer Open & Count is the SOP for verifying a drawer, counting the starting bank, recording...
Hr Policy

Anti-Harassment & Anti-Discrimination Policy

Anti-Harassment & Anti-Discrimination Policy template for defining prohibited conduct, reporting ...

Go deeper on the topic

Related concepts
  • Predictive Scheduling Law
    Predictive scheduling laws — also called fair workweek laws or secure scheduling — require employers in covered industries to publish employee schedules...
  • Overtime Calculation
    Overtime calculation is the process of applying federal, state, local, and contractual rules to hours worked to determine the correct pay — including...
  • Near-Miss Reporting
    A near-miss is an event that could have caused injury or damage but didn't — a slip that didn't fall, a load that shifted but didn't drop, a machine that...
  • Lockout/Tagout
    Lockout/tagout (LOTO) is the procedure for controlling hazardous energy — electrical, hydraulic, pneumatic, mechanical, thermal, chemical — before...
Related guides

Ready to use this template?

Get started with MangoApps and use Title 31 AML Compliance Audit with your team — pricing built for small business.

Get Started Customize with AI
Ask AI Product Advisor

Hi! I'm the MangoApps Product Advisor. I can help you with:

  • Understanding our 40+ workplace apps
  • Finding the right solution for your needs
  • Answering questions about pricing and features
  • Pointing you to free tools you can try right now

What would you like to know?

AI-generated responses may not be 100% accurate