Compliance, KYC/KYB & AML Position

Sunriftica is designed as a responsible digital ecosystem, where user onboarding, partner checks, project evaluation, and operational processes are supported by clear internal controls, risk-based procedures, and continuous monitoring.

Our Compliance Approach

We follow a practical, risk-based approach to compliance. This means that every user, partner, project, or transaction flow is assessed according to the nature of the relationship, the expected activity, the jurisdictional context, and potential exposure to financial crime risks.

Our internal compliance framework focuses on:

Know Your Customer procedures;
Know Your Business procedures;
AML/CFT risk assessment;
sanctions and adverse media screening where appropriate;
identification of suspicious or inconsistent behaviour;
data protection and secure handling of personal information;
escalation of high-risk cases for additional review;
cooperation with regulated partners where licensed financial services are involved.

Sunriftica does not position itself as a bank, payment institution, e-money issuer, or regulated financial intermediary unless such status is formally obtained in the relevant jurisdiction. Where regulated services are required, they are provided by appropriately licensed partners, while Sunriftica focuses on operational, technological, onboarding, support, and ecosystem-management functions.

KYC: Know Your Customer

We believe that responsible onboarding starts with understanding who the customer is.

Depending on the product, jurisdiction, risk level, and partner requirements, KYC checks may include identity verification, document review, contact verification, selfie or biometric checks, proof of residence, source-of-funds clarification, and additional manual review where needed.

The purpose of KYC is not only to meet formal requirements, but also to prevent fake accounts, misuse of services, fraud, abuse, money laundering, terrorist financing, and other prohibited activity.

KYB: Know Your Business

For business clients, partners, vendors, and ecosystem participants, Sunriftica applies a KYB-oriented review process.

This may include reviewing company registration documents, ownership structure, directors and authorized representatives, business model, website and public presence, expected activity, jurisdictions of operation, and potential sanctions or reputational exposure.

We aim to understand not only who the business is, but also how it operates, who controls it, and whether the proposed relationship is consistent with Sunriftica's standards.

AML/CFT Risk Awareness

Sunriftica maintains a clear position against money laundering, terrorist financing, sanctions evasion, fraud, identity misuse, and other forms of financial crime.

Our internal approach is based on identifying risk indicators early, documenting the review process, and escalating cases where activity appears unusual, inconsistent, or potentially suspicious.

We do not support anonymous or deliberately opaque activity. We also do not assist users or partners in bypassing controls imposed by banks, payment providers, licensed financial institutions, regulators, or compliance departments.

Role of the Compliance Officer

Compliance oversight at Sunriftica is supported by Olesia Chaika, who acts as Compliance Officer for the project.

Olesia has completed dedicated AML/KYC training, including a basic AML/CFT course from AML Academy and a 50-hour KYC/AML Specialist training programme organised by the Estonian Training and Conference Center / Delfi Meedia AS. Her training covers AML/CFT risk identification, client-related risk mitigation, KYC procedures, customer and partner behaviour patterns, practical AML/CFT risk management, data protection in compliance processes, and the use of AI tools for client identification and suspicious activity detection.

Her role is to help Sunriftica maintain a responsible compliance culture, support internal checks, review risk indicators, and ensure that onboarding and partner-related processes are handled with appropriate care.

Data Protection & Confidentiality

Compliance requires trust. For this reason, Sunriftica treats personal, corporate, and verification data with strict confidentiality.

Information collected for onboarding, risk review, or operational purposes is handled only for legitimate business, compliance, security, and partner-related needs. Access to sensitive information is limited, and internal processes are designed to reduce unnecessary exposure of personal and corporate data.

Cooperation with Licensed Partners

Where Sunriftica works with banks, payment providers, card issuers, telecom providers, financial platforms, or other regulated partners, we respect their onboarding, monitoring, AML, sanctions, and risk-management requirements.

Final decisions regarding regulated financial services, where applicable, remain with the relevant licensed provider. Sunriftica may support the process through documentation, onboarding assistance, operational review, technical integration, user support, or ecosystem coordination.

Our Position

Responsible growth requires responsible compliance.

We are building an ecosystem that can grow internationally, work with serious partners, and protect users, businesses, and institutions from avoidable risk.

Compliance is not a barrier to innovation. It is the foundation that allows innovation to become sustainable, trustworthy, and scalable.

This document describes the internal compliance position of SUNRIFT LIMITED and does not constitute regulated financial advice. Regulated services, where applicable, are provided by licensed partners.