Glossary term
Ongoing Due Diligence
Ongoing due diligence is the continuing review of a customer relationship after onboarding to confirm that customer information, risk classification, and actual account behavior still make sense together.
Byline
Written by: Editorial Team
Updated
What Is Ongoing Due Diligence?
Ongoing due diligence is the continuing review of a customer relationship after onboarding to confirm that customer information, risk classification, and actual account behavior still make sense together. In finance, the institution does not finish its diligence obligations the day the account opens. It is expected to keep the customer profile reasonably current and to notice when account activity, ownership, geography, or relationship purpose changes in a way that affects risk.
This matters because a customer relationship can change materially over time. A simple domestic account can become cross-border. A business can add new owners. Payment flows can become larger, faster, or more opaque than expected. If the institution keeps relying on stale onboarding information, even strong account-opening review can quickly lose value. Ongoing due diligence is the control that keeps customer due diligence connected to the real behavior of the live account.
Key Takeaways
- Ongoing due diligence means customer review continues after onboarding.
- Its purpose is to keep customer information, risk classification, and account behavior aligned.
- It supports monitoring, screening, escalation, and periodic customer refresh work.
- Higher-risk relationships usually require deeper or more frequent review.
- Without ongoing due diligence, onboarding information can become stale and misleading.
How Ongoing Due Diligence Works
An institution maintains a customer profile that reflects the nature and purpose of the relationship, the expected activity, ownership information where relevant, and the factors that drove the original risk rating. Over time, the institution updates that understanding through periodic review, event-driven review, and transaction-based signals. The goal is not constant manual reinvestigation of every account. The goal is to refresh and deepen the file when the level of risk or the observed behavior justifies it.
That is why ongoing due diligence is usually linked to alerts, profile changes, periodic reviews, and trigger events such as ownership changes, unusual wires, new jurisdictions, or inconsistent activity patterns. The process may result in no change, a revised risk score, tighter monitoring, or escalation into enhanced due diligence.
Ongoing Due Diligence Versus Initial Onboarding
Initial onboarding asks whether the institution understands the customer well enough to open the relationship. Ongoing due diligence asks whether that understanding is still accurate after the relationship begins to operate. The second question matters because real account behavior often reveals more than the opening file did.
Stage | Main question |
|---|---|
Initial due diligence | Can the relationship be opened based on what is known today? |
Ongoing due diligence | Does the live relationship still fit the profile and risk classification? |
This distinction explains why onboarding and monitoring should not be treated as separate silos. Ongoing due diligence is what ties them together.
How It Connects to Monitoring
Ongoing due diligence depends heavily on transaction monitoring, sanctions review, ownership updates, and customer-contact information. Monitoring may show a pattern that no longer fits the expected profile. A sanctions or public-information review may reveal new exposure. A periodic refresh may show that the ownership chain changed or that the business model expanded into higher-risk activity. Ongoing due diligence turns those signals into an updated view of the relationship.
That updated view is important because a control system based only on old onboarding assumptions will generate weak alerts, poor escalation decisions, and inconsistent customer treatment.
Why Ongoing Due Diligence Matters Financially
Ongoing due diligence matters because financial-crime risk is dynamic. Institutions that treat due diligence as a one-time event may fail to notice when a once-simple relationship becomes materially more complex or more exposed to AML and sanctions risk. That can lead to missed suspicious activity, weaker screening decisions, operational losses, and regulatory problems.
For legitimate customers, this is one reason a long-open account may suddenly draw new questions. The institution may be updating the file because the account activity changed, the customer profile aged, or a periodic refresh is due.
The Bottom Line
Ongoing due diligence is the continuing review of a customer relationship after onboarding to confirm that customer information, risk classification, and actual account behavior still make sense together. It matters because customer risk does not stay fixed, and institutions need current information if they want monitoring and escalation decisions to remain accurate over time.