Glossary term
Customer Due Diligence (CDD)
Customer due diligence, or CDD, is the process financial institutions use to understand the customer, the purpose of the relationship, and the level of risk the account may present.
Updated
Read time
What Is Customer Due Diligence (CDD)?
Customer due diligence, or CDD, is the process financial institutions use to understand the customer, the purpose of the relationship, and the level of risk the account may present. In practice, CDD builds on basic identification and verification by asking what kind of relationship is being opened, what activity is expected, and whether there are features of the customer or account that call for more review.
Financial risk does not end once a customer is identified. A bank may know the customer's name and still not understand whether the activity makes sense, whether a legal entity has hidden owners, or whether the relationship should be treated as higher risk. CDD therefore sits between basic onboarding and deeper enhanced due diligence in many compliance frameworks.
Key Takeaways
- CDD is the broader process of understanding the customer and the expected relationship.
- It goes beyond basic identity collection and verification.
- CDD often includes customer purpose, expected activity, risk profiling, and beneficial-owner review.
- It supports AML monitoring and suspicious-activity review.
- Strong CDD helps institutions decide when a customer relationship needs more scrutiny.
How CDD Works
A firm collects enough information to understand who the customer is, why the account is being opened, and what kind of activity should be expected. That may include the nature of the business, source of funds, expected transaction patterns, ownership and control structure, geographic exposure, or other risk-relevant information. The goal is to build a customer risk profile that makes later monitoring and review more meaningful.
CDD is not just another label for CIP. CIP helps establish identity. CDD helps establish the broader context of the relationship.
CDD Versus CIP and KYC
CIP, KYC, and CDD overlap, but they are not identical. CIP focuses on core identity collection and verification at account opening. KYC is the broader customer-identification and understanding framework. CDD is the practical risk-understanding component that develops the profile used for ongoing review and monitoring.
Term | Main focus |
|---|---|
CIP | Collect and verify minimum identity information |
KYC | Identify and understand the customer relationship broadly |
CDD | Develop a risk-based understanding of the customer and expected activity |
How CDD Shapes Customer Risk Review
CDD affects onboarding speed, compliance cost, and the quality of fraud and AML controls. If a firm has weak CDD, it may miss suspicious patterns, misclassify customer risk, or discover too late that the relationship was more complex than it appeared. If a firm has stronger CDD, it is better positioned to monitor the account and respond when activity falls outside the expected pattern.
For legitimate customers, stronger CDD can still mean extra documentation or follow-up questions. Those steps are usually about getting enough context to operate the relationship safely, not just about identifying the person.
CDD and Beneficial Ownership
CDD often includes identifying and understanding the beneficial owners of legal entity customers. A company name alone does not necessarily reveal who ultimately controls or benefits from the relationship. Ownership and control details can change the risk assessment materially.
This is one reason CDD becomes more important as customer structures become more layered or opaque.
The Bottom Line
Customer due diligence, or CDD, is the process financial institutions use to understand the customer, the purpose of the relationship, and the level of risk the account may present. Stronger CDD helps institutions make better onboarding, monitoring, and AML decisions than basic identity checks alone can support.