Beyond the Retrospective AML Checklist

The Human Side of AML Monitoring in Lithuania in 2026.

A few years ago, during a review session with an AML team at a fast-growing Vilnius fintech, we were staring at what felt like an endless stack of false-positive alerts. She leaned

back and jokingly said something I haven’t forgotten:

In 2026, that observation feels even more relevant.

Lithuania has secured its position as a European fintech hub. Exceeding 80+ active Electronic Money institutions, dozens of Crowdfunding projects, Specialized banks, etc. With that recognition comes closer scrutiny. The EU’s Anti-Money Laundering Authority (AMLA) is now operational in Frankfurt, the MiCA transition period has ended, and supervisory expectations have matured. Monitoring transactions is with ever-growing expectations beyond proving you installed the right tools - its demonstrating that you understand what your data is telling you.

Alerts don’t live in isolation. Not long ago, monitoring often meant reacting to thresholds. A €15,000 transfer triggered an alert, an analyst reviewed it, documented the decision, and moved on.

Supervisory expectations have shifted. The Bank of Lithuania and the Financial Crime

Investigation Service (FCIS) increasingly expects institutions to view transactions within the

context of the customer relationship.

When something looks unusual, the question is no longer only “Is the amount suspicious?” but also:

1. Does this activity align with the customer’s stated source of wealth?

2. Does it match the business profile verified during onboarding?

3. Have there been recent behavioral changes?

If monitoring systems operate separately from KYC and CDD data, the process becomes

fragmented. In the current supervisory model, that fragmentation is not just inefficient — it

raises questions about compliance effectiveness.

Payment institutions felt the shift sharply when real-time beneficiary name verification became mandatory across SEPA in late 2025. It was a great technical upgrade. It changed the timing of compliance decisions.

Monitoring used to be predominantly retrospective. Now, intervention is expected before a

payment leaves the system. IBANs and beneficiary names must be verified instantly, and

mismatches must be handled in real time.

The FCIS reporting timeline remains unchanged — suspicious activity reports must still be filed within three working hours once suspicion is confirmed — but the moment of “confirmation” now arrives much faster.

For compliance teams, this means decision windows are shorter and operational coordination must be tighter.

For crypto-asset service providers, January 1, 2026 marked the end of the transitional period. Firms holding a MiCA licence from the Bank of Lithuania are operating under a significantly more structured supervisory environment.

The Travel Rule is a standard practice. In Lithuania, CASP-to-CASP transfers require originator and beneficiary information regardless of value. Monitoring is therefore not limited to detecting layering patterns or unusual flows. It also involves ensuring the completeness, accuracy, and traceability of transferred data, down to the smallest unit transferred.

Questions worth asking internally

If you are responsible for monitoring today, three practical checks can reveal a lot about your program’s maturity.

• Does risk scoring actually change monitoring behaviour?

• When a customer’s risk profile increases, are monitoring thresholds and scenarios adjusted automatically, or does the change sit in a file waiting for the next review cycle?

• Can an external reviewer understand why alerts were cleared?

Supervisors increasingly focus on decision rationale. A documented explanation carries more weight than a simple disposition status.

Reporting is moving toward more integrated EU frameworks. Data must be structured so it can be exported, interpreted, and understood without relying on internal shorthand.

Transaction monitoring is often framed as a regulatory burden. In practice, it is a real-time

narrative of how an institution manages risk and safeguards trust.

When you open your monitoring dashboard today, you are not just looking at alerts and

metrics. You are looking at how your organisation demonstrates reliability — to customers,

partners, and the Bank of Lithuania.

And increasingly, regulators are not only reviewing the systems you deploy. They are evaluating the judgment behind the decisions.