A third-party payment enterprise shall comply with the following provisions in undertaking customer due diligence (CDD) measures:
1.A third-party payment enterprise shall undertake CDD measures when:
(1)establishing or maintaining business relations with seller-side customers;
(2)providing services for buyer-side customer when any transaction reaches NT$50,000. However, this shall not apply to transactions paid by credit card in an amount of less than NT$200,000.
(3)there is a suspicion of money laundering or terrorist financing; or
(4)the third-party payment enterprise has doubts about the veracity or adequacy of previously obtained customer identification data.
2.The CDD measures to be taken by a third-party payment enterprise are as follows:
(1)Identifying the customer and verifying that customer's identity using reliable, independent source documents, data or information. In addition, a third-party payment enterprise shall retain copies of the customer's identity documents or record the relevant information thereon.
(2)The CDD measures shall include understanding and, as appropriate, obtaining information on, the purpose and intended nature of the business relationship.
3.When the customer is a legal person, an organization or a trust, a third-party payment enterprise shall understand the business nature of the customer and obtain relevant information to verify the customer identity.
4.Where a third-party payment enterprise is unable to complete the required CDD process on a customer, the third-party payment enterprise shall consider filing a suspicious transaction report (STR) on money laundering or terrorist financing in relation to the customer.
5.If a third-party payment enterprise forms a suspicion of money laundering or terrorist financing and reasonably believes that performing the CDD process will tip-off the customer, it is permitted not to pursue that process and file a STR instead.