Last updated: March 2026
KYC has a cost problem. According to Fenergo's 2025 global survey, the average financial institution now spends US$72.9 million per year on KYC and related procedures, up from the $60 million average reported in earlier Consult Hyperion research, with larger institutions spending up to $500 million. Individual identity checks cost between $13 and $130 each. Globally, 70% of financial institutions lost clients to slow or inefficient onboarding in 2025, up from 48% in 2023. And despite all this spending, 20% of digital KYC checks still fail.
These numbers describe an industry that is spending heavily without getting proportionate results. The problem is not a lack of investment. It is a lack of calibration. Most KYC processes apply friction uniformly rather than intelligently, and the result is abandonment, cost overruns, and compliance gaps all at once.
Frictionless and secure KYC is not a trade-off between compliance and experience. It is a design goal that uses risk-based decisioning and AI-powered verification to apply the right checks to the right applicants at the right time. This guide covers what KYC is, why it is so expensive, the latest trends reshaping it, and the five pillars of a program that is both frictionless and secure.
TL;DR
KYC costs the average financial institution US$72.9 million per year (Fenergo 2025), with individual checks running $13 to $130 each and a 20% digital failure rate across the industry.
70% of financial institutions globally lost clients due to slow or inefficient onboarding in 2025, up from 48% in 2023. Abandoned financial services onboarding costs the European industry approximately €5.7 billion per year.
AML/KYC penalties totaled $4.6 billion globally in 2024. H1 2025 saw a 417% surge in regulatory penalties year-on-year, driven by enforcement in North America and the cryptocurrency sector.
The latest KYC trends include a frictionless push from regulators, digital identity portability, stricter crypto mandates, and AI-generated synthetic identity fraud.
Five pillars define a modern KYC program: a proactive and continuous strategy, dynamic checks, the right tooling, a tailored approach by customer segment, and applied AI for automated decisioning.
Coast reduced manual KYC review volume by 75% using Oscilar's risk-based onboarding platform without reducing fraud detection accuracy.
What is KYC?
KYC stands for Know Your Customer. It is the process financial institutions use to verify the identity of their customers, assess the risk they represent, and monitor their activity over time. KYC is required under anti-money laundering (AML) regulations in most jurisdictions worldwide, including the Bank Secrecy Act in the United States and the EU's Anti-Money Laundering Directives. A complete KYC program rests on three pillars.
Customer Identification Program (CIP)
CIP is the foundation of KYC. It requires institutions to collect and verify identifying information before onboarding a customer. Under FinCEN's Customer Identification Program rule (31 CFR 1020.220), covered institutions must obtain a customer's name, date of birth, address, and identification number, then verify that information through documentary or non-documentary means.
Customer Due Diligence (CDD)
CDD goes beyond identity verification to assess the nature and purpose of the customer relationship and the risks it represents. It includes reviewing the customer's expected transaction behavior, their source of funds, and any adverse media or watchlist matches. Enhanced due diligence (EDD) applies to higher-risk customers, such as politically exposed persons (PEPs) or customers in high-risk jurisdictions.
Ongoing monitoring
KYC is not a one-time check at onboarding. Ongoing monitoring requires institutions to review customer activity continuously against their established risk profile, update customer records as circumstances change, and escalate unusual activity for review. Perpetual KYC programs automate this monitoring so that records stay current without triggering a formal periodic review cycle.
What is KYB?
KYB stands for Know Your Business. It applies the same verification principles as KYC but to commercial customers rather than individuals. KYB requires verifying the legal existence of a business, its ownership structure, and the identities of its beneficial owners (the individuals who ultimately own or control it).
In the United States, the Corporate Transparency Act (effective January 2024) requires most companies to report their beneficial owners to FinCEN, giving financial institutions a structured way to verify UBO information. In the EU, the Anti-Money Laundering Authority (AMLA), established in 2025, brings consistent UBO verification standards across member states.
KYB onboarding is typically more complex than individual KYC because business structures can involve multiple legal entities, complex ownership chains, and jurisdictions with different disclosure requirements. Forrester research found that manual KYB onboarding can take between 2 and 34 weeks, a range that reflects wide variation in process maturity across institutions.
The true cost of KYC
Fenergo's 2025 global survey of 800 financial institutions found the average annual KYC spend has risen to US $72.9 million per firm. UK institutions reported the highest average at US$78.4 million, followed by the US at US$72.2 million. The $500 million upper bound for the largest institutions remains, and the total cost of financial crime compliance in the US and Canada alone reached $61 billion in 2024 according to LexisNexis. These figures include analyst labor, system infrastructure, vendor fees, and the cost of failed verifications that require manual remediation.
Individual check costs vary significantly by type. A database verification against a credit bureau or government registry may cost as little as $13. A full document verification with biometric matching and liveness detection can reach $130. Institutions running high-volume programs across multiple check types face compounding costs for every applicant who does not auto-clear.
The business cost of friction is equally significant. Fenergo's 2025 data found that 70% of financial institutions globally lost clients due to inefficient onboarding, up from 48% in 2023. Abandoned financial services onboarding costs the European industry approximately €5.7 billion per year. Each lost applicant represents both lost revenue and wasted verification spend on an application that never converted.
Regulatory non-compliance carries its own cost. AML/KYC penalties totaled $4.6 billion globally in 2024, with the first half of 2025 seeing a 417% increase in penalties year-on-year as regulators intensified enforcement. The single largest penalty in recent history came in 2024, when TD Bank was fined $3.09 billion by US regulators for systemic AML compliance failures. The cost of getting KYC wrong, both in fines and reputational damage, far exceeds the cost of building it properly.
Benefits of an effective KYC program
Fewer fraud losses
A well-designed KYC program stops fraudulent accounts at the door. Synthetic identity document fraud surged 311% between Q1 2024 and Q1 2025 according to Sumsub, making it one of the fastest-growing fraud types globally. US lenders faced $3.3 billion in exposure to suspected synthetic identities in H1 2025 alone (TransUnion). Strong CIP and CDD processes catch the inconsistencies that synthetic identities produce. Oscilar's AI-powered identity verification, which cross-references document data, behavioral signals, and adverse media in real time, reduces the rate of fraudulent accounts that clear onboarding.
Regulatory compliance
Meeting CIP, CDD, and ongoing monitoring requirements keeps institutions in good standing with regulators and avoids the fines and enforcement actions that follow KYC failures. AML/KYC penalties totaled $4.6 billion globally in 2024, and enforcement is accelerating. Compliance is not just a checkbox. It is an operational capability that requires ongoing investment in process, technology, and staffing.
Business growth
Faster, lower-friction onboarding converts more applicants into customers. Clara processed 3x the onboarding volume with the same team size after implementing Oscilar's no-code compliance platform for multi-market KYC configuration. Parker reduced B2B onboarding processing time by 40% and cleared a compliance engineering backlog that had been slowing down rule updates.
Customer trust
Customers who experience a smooth, professional onboarding process form a better initial impression of the institution. Conversely, a clunky or intrusive KYC process signals operational immaturity. In markets where customers have choices, onboarding quality is a differentiator.
Latest KYC trends
The frictionless push
Regulators and industry bodies have increasingly recognized that excessive KYC friction creates its own risks: it drives legitimate customers away and toward less-regulated alternatives, and it generates analyst fatigue that reduces the quality of high-risk case review. The industry shift toward risk-based KYC, applying checks proportionate to risk rather than uniformly to all applicants, reflects this recognition.
Digital identity digitization
The EU Digital Identity Wallet, established under eIDAS 2.0 (in force 2024), allows EU citizens to use a single digital identity credential across member states and across private-sector services. The UK's Digital Identity and Attributes Trust Framework supports portable KYC credentials that can be reused across institutions. These developments reduce the need for re-verification at each onboarding step and create infrastructure for faster, lower-cost identity checks.
New KYC mandates for crypto
Cryptocurrency platforms now face KYC requirements comparable to traditional financial institutions in most major jurisdictions. The EU's Markets in Crypto-Assets Regulation (MiCA), fully in force in 2024, requires crypto asset service providers to implement full CIP and CDD programs. The Financial Action Task Force (FATF) Travel Rule requires virtual asset service providers to transmit originator and beneficiary information on transfers above threshold amounts. Regulators are enforcing these requirements aggressively: in H1 2025, fines against crypto firms exceeded $927 million, including a $504 million penalty against OKX for failures in its AML program.
AI-generated synthetic identities
Generative AI has substantially lowered the barrier to creating convincing synthetic identities. Deepfake fraud surged 1,100% globally according to Sumsub, and AI-driven deepfakes caused over $3 billion in losses in the US between January and September 2025 alone. Synthetic identity document fraud rose 311% year-on-year in the US. Deepfake tools are now available for as little as $5, and ready-to-use synthetic identities sell for under $15 on criminal marketplaces. This arms race has accelerated adoption of active liveness detection, which requires applicants to perform real-time actions deepfake systems cannot replicate, and of behavioral biometrics that flag anomalous session patterns before document submission. AI adoption among KYC/AML teams has kept pace: Fenergo found that reported use of advanced AI tools surged from 42% to 82% of institutions between 2024 and 2025.
Five pillars of frictionless and secure KYC
1. A proactive and continuous strategy
KYC is not a one-time check. A proactive strategy means designing verification as an ongoing process rather than a point-in-time event. This includes perpetual KYC, where customer records update automatically as new information becomes available, and event-driven re-verification, where changes in customer behavior or risk signals trigger targeted reviews rather than scheduled periodic assessments.
Proactive monitoring also means staying ahead of regulatory changes. The EU AMLA's harmonized AML standards, effective 2025, and FinCEN's ongoing BSA/AML modernization create a regulatory environment where KYC programs need to adapt continuously, not just at implementation.
2. Dynamic KYC checks
Static KYC programs apply the same checks to every applicant regardless of their risk profile. Dynamic checks calibrate verification intensity to the signals available at the time of application. A low-risk applicant with consistent identity data, a clean device signal, and no adverse flags may clear with a database verification alone. A higher-risk applicant with inconsistencies or flags receives additional document checks or enhanced due diligence.
Dynamic check orchestration requires a real-time decisioning engine that evaluates all available signals simultaneously and routes each applicant through the appropriate verification path automatically. Nuvei achieved a 15% lift in auto-adjudication rates and 50% faster review cycles after implementing Oscilar's decisioning engine, with zero missed SLAs.
3. The right tool for the job
No single vendor provides optimal coverage across all KYC check types. Database verification, document authentication, biometric matching, liveness detection, adverse media screening, and PEP/sanctions checking each involve specialized providers with different strengths in different markets and customer segments.
The operational challenge is integrating multiple providers without creating a complex, brittle stack. Oscilar's 80+ pre-built data integrations for identity verification, fraud signals, and compliance data allow compliance teams to connect best-in-class providers and configure waterfall logic, for example: try database verification first; escalate to document check only if the first check is inconclusive, without engineering work for each new integration.
4. A tailored approach by customer segment
Consumer onboarding and business onboarding require different KYC programs. B2C KYC prioritizes speed and low friction for high-volume individual applicants. B2B KYB requires deeper investigation into ownership structures, beneficial owners, and business purpose, and must handle the complexity of multi-entity structures across jurisdictions.
Clara's expansion across Latin American markets required configuring different KYC rules, data sources, and risk thresholds for each country, all within a single platform. Oscilar's no-code compliance interface allowed Clara's team to configure regional rules without engineering involvement, handling 3x the volume with the same team size.
5. Applied AI
Machine learning models improve both the accuracy and efficiency of KYC programs in ways that rule-based systems cannot match. ML models detect synthetic identity patterns by identifying statistical inconsistencies across data points that individually appear clean. They surface anomalous behavioral signals during the onboarding session. They prioritize manual review queues so analysts focus on the highest-risk cases first.
Oscilar's AI-native decisioning platform combines configurable rules with ML models that improve over time as new fraud patterns emerge. Coast reduced manual KYC review volume by 75% using Oscilar's risk-based platform, processing significantly higher volume without adding analyst headcount.
FAQs: Frictionless KYC
What is KYC and why does it matter?
KYC stands for Know Your Customer. It is the process financial institutions use to verify customer identities, assess risk, and monitor activity over time. KYC matters because it is required by anti-money laundering regulations globally, and because getting it wrong carries both fraud losses and regulatory penalties. AML/KYC penalties totaled $4.6 billion globally in 2024, and the first half of 2025 saw a 417% year-on-year surge in enforcement actions.
How much does KYC cost financial institutions?
Fenergo's 2025 global survey found the average financial institution now spends US$72.9 million per year on KYC and related procedures, up from $60 million in earlier estimates. UK institutions average US$78.4 million; US institutions US$72.2 million. Larger institutions can spend up to $500 million annually. LexisNexis estimates total financial crime compliance costs in the US and Canada reached $61 billion in 2024. Individual check costs range from $13 for a basic database verification to $130 for a full document and biometric check. The primary cost drivers are analyst labor for manual review, false positive remediation, and system infrastructure.
What is the difference between KYC and KYB?
KYC (Know Your Customer) applies to individual customers. KYB (Know Your Business) applies to commercial customers and requires verifying the legal existence of a business, its ownership structure, and the identities of its beneficial owners. KYB is generally more complex due to multi-entity ownership structures and cross-jurisdictional requirements. Forrester research found manual KYB onboarding takes between 2 and 34 weeks.
Why do digital KYC checks fail at a 20% rate?
The 20% digital KYC failure rate reflects several compounding issues: poor image capture guidance that produces unusable document photos, miscalibrated verification thresholds that trigger false positives, form design that leads to inconsistent data entry, and document verification systems not optimized for the full range of ID types they encounter. Well-tuned programs with guided capture and calibrated thresholds achieve substantially lower failure rates.
What are the five pillars of a frictionless and secure KYC program?
The five pillars are: (1) a proactive and continuous strategy that treats KYC as an ongoing process rather than a one-time check; (2) dynamic checks that calibrate verification intensity to each applicant's risk signals; (3) the right tooling, integrating best-in-class providers for each check type; (4) a tailored approach that distinguishes consumer onboarding from business onboarding; and (5) applied AI that improves detection accuracy and reduces manual review volume over time.
How does Oscilar support frictionless KYC?
Oscilar's risk-based onboarding decisioning platform processes applications in real time across 80+ integrated data sources, routing each applicant through a verification path calibrated to their risk signals. Compliance teams configure rules and thresholds through a no-code interface without engineering involvement. Coast reduced manual KYC review volume by 75% using Oscilar's platform. Nuvei achieved 50% faster review cycles and zero missed SLAs.
Related reading
DISCLAIMER
The content on this website is provided for informational purposes only and does not constitute legal, tax, financial, investment, or other professional advice. Any views or opinions expressed by quoted individuals, contributors, or third parties are solely their own and do not necessarily reflect the views of our organization.
Nothing herein should be construed as an endorsement, recommendation, or approval of any particular strategy, product, service, or viewpoint. Readers should consult their own qualified advisors before making any financial or investment decisions.
Oscilar makes no representations or warranties as to the accuracy, completeness, or timeliness of the information provided and disclaims any liability for any loss or damage arising from reliance on this content. This website may contain links to third-party websites, which Oscilar does not control or endorse.
![](data:image/svg+xml,<svg display="block" role="presentation" viewBox="0 0 48 48" xmlns="http://www.w3.org/2000/svg"><g d="M 0 48 L 0 0 L 48 0 L 48 48 Z M 44.447 0 L 3.544 0 C 1.584 0 0 1.547 0 3.459 L 0 44.531 C 0 46.444 1.584 48 3.544 48 L 44.447 48 C 46.406 48 48 46.444 48 44.541 L 48 3.459 C 48 1.547 46.406 0 44.447 0 Z M 14.241 40.903 L 7.116 40.903 L 7.116 17.991 L 14.241 17.991 Z M 10.678 14.869 C 8.391 14.869 6.544 13.022 6.544 10.744 C 6.544 8.466 8.391 6.619 10.678 6.619 C 12.956 6.619 14.803 8.466 14.803 10.744 C 14.803 13.013 12.956 14.869 10.678 14.869 Z M 40.903 40.903 L 33.787 40.903 L 33.787 29.766 C 33.787 27.113 33.741 23.691 30.084 23.691 C 26.381 23.691 25.819 26.588 25.819 29.578 L 25.819 40.903 L 18.712 40.903 L 18.712 17.991 L 25.537 17.991 L 25.537 21.122 L 25.631 21.122 C 26.578 19.322 28.903 17.419 32.362 17.419 C 39.572 17.419 40.903 22.163 40.903 28.331 L 40.903 40.903 Z" fill="transparent" height="48px" id="adFk4VB3K" width="48px"><path d="M 0 48 L 0 0 L 48 0 L 48 48 Z" fill="transparent" height="48px" id="DghPi7XP3" width="48px"/><path d="M 44.447 0 L 3.544 0 C 1.584 0 0 1.547 0 3.459 L 0 44.531 C 0 46.444 1.584 48 3.544 48 L 44.447 48 C 46.406 48 48 46.444 48 44.541 L 48 3.459 C 48 1.547 46.406 0 44.447 0 Z M 14.241 40.903 L 7.116 40.903 L 7.116 17.991 L 14.241 17.991 Z M 10.678 14.869 C 8.391 14.869 6.544 13.022 6.544 10.744 C 6.544 8.466 8.391 6.619 10.678 6.619 C 12.956 6.619 14.803 8.466 14.803 10.744 C 14.803 13.013 12.956 14.869 10.678 14.869 Z M 40.903 40.903 L 33.787 40.903 L 33.787 29.766 C 33.787 27.113 33.741 23.691 30.084 23.691 C 26.381 23.691 25.819 26.588 25.819 29.578 L 25.819 40.903 L 18.712 40.903 L 18.712 17.991 L 25.537 17.991 L 25.537 21.122 L 25.631 21.122 C 26.578 19.322 28.903 17.419 32.362 17.419 C 39.572 17.419 40.903 22.163 40.903 28.331 L 40.903 40.903 Z" fill="rgb(20, 20, 20)" height="48px" id="Qi9pnIQwR" width="48px"/></g></svg>)
![](data:image/svg+xml,<svg display="block" role="presentation" viewBox="0 0 48 48" xmlns="http://www.w3.org/2000/svg"><path d="M 34.653 0 L 41.4 0 L 26.659 16.847 L 44 39.772 L 30.422 39.772 L 19.788 25.868 L 7.62 39.772 L 0.869 39.772 L 16.635 21.752 L 0 0 L 13.922 0 L 23.535 12.709 Z M 32.285 35.734 L 36.023 35.734 L 11.891 3.826 L 7.879 3.826 Z" fill="rgb(20, 20, 20)" height="39.77194px" id="A8r2uGwai" transform="translate(2 3.808)" width="44px"/></svg>)
