# Customer Due Diligence
source: https://developer.mastercard.com/open-finance-europe/documentation/unlicensed/aiia-pay/customer-due-diligence/index.md

Mastercard is subject to Anti-Money Laundering (AML) and Counter Terrorist Financing (CTF) regulations.

To fulfil these regulations and ensure that our platform is secure, customer due diligence procedures are applied in complete compliance with regulatory requirements for anyone who seeks to use our service for accepting payments.

We use information about our end users and their companies for KYC (Know Your Customer) purposes. The end user will therefore be asked to go through our onboarding process.

We have designed our onboarding process to contain as few steps as possible, with the aim of enabling payments for the majority of applicants in minutes:

#### Step 1 {#step-1}

To get started, you need to request to onboard an end user with payments [Scope](https://developer.mastercard.com/open-finance-europe/documentation/unlicensed/aiia-pay/connect/scopes/index.md). The end user shares what accounts they want to use for sending and/or receiving payments in the [Connect Flow](https://developer.mastercard.com/open-finance-europe/documentation/unlicensed/aiia-pay/connect/connect-flow/index.md).

#### Step 2 {#step-2}

Through the [Connect Flow](https://developer.mastercard.com/open-finance-europe/documentation/unlicensed/aiia-pay/connect/connect-flow/index.md), the user will be asked for the country location of the company the user wants to onboard.
This helps us specify what information to ask for and provides the most convenient onboarding flow possible.

**Users and companies registered in Denmark**

The user is asked to provide the Company ID of the company they want to onboard.
We then fetch and provide the company information that is available in the official company register.

![CVR](https://static.developer.mastercard.com/content/open-finance-europe/uploads/CDD-CVR-input.png)

The user will then be asked to confirm if the data is correct. If none of the data is seen as high risk from our end, the user is automatically onboarded and ready to initiate payments.

If a company is successfully onboarded at this stage, then Steps 3-7 are not required.

**Users and companies outside of Denmark**

Users outside of Denmark are currently required to go through our extended customer due diligence process. This process is described in the steps below.

#### Step 3 {#step-3}

Once the end user has finished adding their bank accounts to our service, we'll send an e-mail in which the end user can begin our customer due diligence process.

![E-mail](https://static.developer.mastercard.com/content/open-finance-europe/uploads/CDD-intro-email.png)

#### Step 4 {#step-4}

The end user is redirected to our due diligence form through the e-mail. Here, the end user first needs to fill out information about the company they are working for.

![Document](https://static.developer.mastercard.com/content/open-finance-europe/uploads/CDD-verification-page.png)

#### Step 5 {#step-5}

Next, the end user is asked to give information on the beneficial owners and the senior management of the company.

#### Step 6 {#step-6}

Finally, the end user needs to upload image documentation on the key people informed from the previous step. Image documentation is also needed for the shared accounts that should be set up for payments.

#### Step 7 {#step-7}

The due diligence process is then finished. We notify the user by e-mail when the process has concluded. We are doing our very best to finish our due diligence process within a reasonable timeframe.

![Document](https://static.developer.mastercard.com/content/open-finance-europe/uploads/CDD-confirmation-email.png)