AMLC Certificate of Registration in the Philippines: Validity and Renewal Guide

If a bank, LGU, payment provider, real estate client, or business partner is asking for your “AMLC certificate,” they usually mean your AMLC Certificate of Registration (COR) or, while your registration is still being reviewed, your Provisional Certificate of Registration (PCOR). The confusing part is that many people call the two-year mandatory update a “renewal,” even though the current AMLC system treats it as an online registration update to keep your AMLC Portal access active.

What an AMLC Certificate of Registration Means

An AMLC Certificate of Registration is proof that a covered person is registered with the Anti-Money Laundering Council for anti-money laundering and counter-terrorism financing compliance.

The AMLC is the Philippines’ financial intelligence unit and AML/CTF authority. Its registration system is not a general “clearance” saying that a person or company has no money-laundering issue. It is a compliance registration for entities and professionals that fall under the Anti-Money Laundering Act.

Under the AMLC’s 2024 Guidelines on Compliance Optimization and Registration System, also called CORS Guidelines, a COR is the document issued by the AMLC evidencing registration, while a PCOR is temporary proof of registration after email validation and before final approval. (Scribd)

In practice, a COR or PCOR is often needed for:

  • business permit processing or renewal for covered DNFBPs;
  • onboarding with banks, payment providers, remittance partners, or brokers;
  • customer due diligence when one covered person deals with another covered person;
  • access to AMLC’s electronic reporting system for covered and suspicious transaction reporting;
  • proof that the business has complied with AMLC registration requirements.

Who Needs AMLC Registration in the Philippines?

AMLC registration is only for covered persons under Republic Act No. 9160, the Anti-Money Laundering Act of 2001, as amended. The AMLC has specifically reminded the public that registration is exclusively for covered persons and is free. (amlc.gov.ph)

Covered persons generally include the following:

Covered sector Common examples
BSP-regulated financial institutions banks, quasi-banks, trust entities, pawnshops, money service businesses, remittance and transfer companies, foreign exchange dealers, electronic money issuers
Insurance Commission-regulated entities insurance companies, pre-need companies, insurance agents and brokers, mutual benefit associations
SEC-regulated financial and investment entities securities brokers, dealers, investment houses, investment advisers, mutual funds, other SEC-supervised financial entities
DNFBPs jewelry dealers, dealers in precious metals or stones, company service providers, covered lawyers/accountants/professionals, real estate brokers and developers
Gaming-related covered persons casinos, internet-based casinos, ship-based casinos, offshore gaming operators, and covered service providers

The 2024 CORS Guidelines list covered persons that must register, including BSP-, IC-, and SEC-supervised persons, DNFBPs, casinos, real estate brokers and developers, and offshore gaming operators and service providers. (Scribd)

Do ordinary businesses need AMLC registration?

Not always.

A restaurant, sari-sari store, online shop, construction contractor, marketing agency, school, or ordinary trading business does not automatically need AMLC registration just because it handles money. The key question is whether the business performs a covered activity under the AMLA.

If AMLC or another authority identifies a person or entity as possibly covered, but the person claims it is not engaged in covered services, the CORS Guidelines allow a Sworn Statement of Non-Engagement in Covered Services. This sworn statement is made under pain of administrative and criminal sanctions, and it does not prevent AMLC from later checking whether the entity is actually performing covered activities. (Scribd)

Special rule for lawyers and accountants

Lawyers and accountants are not automatically required to register merely because they practice law or accountancy.

They may be covered when they provide specific services such as:

  • managing client money, securities, or other assets;
  • managing bank, savings, securities, or other accounts;
  • organizing contributions for creating, operating, or managing companies;
  • creating, operating, or managing juridical persons or arrangements;
  • buying and selling business entities for clients.

However, lawyers and accountants engaged as independent legal or accounting professionals are not required to register when they render purely legal, litigation, notarial, legal counseling, accounting, auditing, or similar professional services outside the covered activities. (Scribd)

Legal Basis for AMLC Registration, Validity, and Renewal

The legal framework comes from several layers:

Legal basis What it covers
Republic Act No. 9160 (2001) The original Anti-Money Laundering Act
RA No. 9194 (2003), RA No. 10167 (2012), RA No. 10365 (2013), RA No. 10927 (2017), RA No. 11521 (2021) Major amendments expanding covered persons, powers, and obligations
2018 AMLA Implementing Rules and Regulations Implementation rules for AMLA compliance
AMLC CORS Guidelines, Regulatory Issuance No. 01, Series of 2024 Current streamlined registration system, PCOR/COR process, two-year updating
DILG-AMLC Joint Memorandum Circular No. 01, Series of 2023 LGU business permit rules for DNFBPs
Rules of Procedure in Administrative Cases / AMLC sanctions rules Administrative consequences for AMLA and AMLC-issuance violations

RA No. 10365 expanded coverage to certain DNFBPs and requires covered persons to report covered and suspicious transactions to AMLC within five working days from occurrence, unless AMLC prescribes a different period not exceeding fifteen working days. (Lawphil) RA No. 10927 brought casinos under AMLA coverage. (Lawphil) RA No. 11521 further strengthened the AMLA and added real estate developers and brokers, as well as offshore gaming operators and service providers, to the covered-person framework. (Lawphil)

COR vs PCOR: What Is the Difference?

Document Meaning When issued Validity / practical effect
PCOR Provisional Certificate of Registration After successful online registration steps and validation of email addresses Valid for six months from issuance; temporary proof while AMLC reviews the application
COR Certificate of Registration After AMLC determines that registration information and documents are complete and accurate Proof of approved AMLC registration; user account must still be updated every two years

The AMLC has explained through an official FOI response that after successful registration, the system may immediately provide a PCOR valid for six months, and after AMLC evaluates the application and finds it in order, the PCOR is replaced by a COR downloadable from the AMLC Portal. (www.foi.gov.ph)

How Long Is an AMLC Certificate Valid?

For practical compliance, separate the certificate from the AMLC Portal user account.

PCOR validity

A PCOR is valid for six months from the date of issuance. Under the CORS Guidelines, the date of issuance refers to the date when the registered email address or addresses have been validated. (amlc.gov.ph)

COR and two-year updating

The COR proves approved registration, but the covered person must update its registration through the AMLC Online Registration System every two years. The CORS Guidelines state that covered persons must update their registration through the Account Setting of the ORS every two years, and failure to update results in deactivation of the covered person’s user access in the AMLC Portal. (amlc.gov.ph)

This is why many people say “AMLC COR renewal.” In everyday language, that is understandable. In AMLC terminology, the better phrase is mandatory updating of registration.

What happens if you miss the update?

If the registration is not updated, user access to the AMLC Portal may be deactivated. If deactivated, the Compliance Officer may be redirected to a page showing the covered person’s information. If there are no changes, the officer may submit the update; if there are changes, the officer may need to repeat the online registration process. (Scribd)

How to Renew or Update AMLC Registration Online

AMLC registration and updating are handled through the AMLC Portal. The AMLC Portal allows covered persons to register online, update registration details, and attach supporting documents without hardcopy submission. (portal.amlc.gov.ph)

Step 1: Confirm that you are a covered person

Before “renewing,” confirm that your business or profession is actually covered.

This matters because:

  • AMLC registration is not for everyone;
  • registering unnecessarily may create compliance obligations you do not actually have;
  • falsely claiming non-coverage in a sworn statement may expose responsible persons to administrative and criminal consequences.

If your business changed activities, review whether it has newly become covered. For example, an ordinary consulting firm may not be covered, but a company service provider regularly acting as a formation agent or nominee arrangement provider may be covered.

Step 2: Check your current registration status

Look for:

  • your existing COR or PCOR;
  • institution code, if already issued;
  • registered Compliance Officer email;
  • registered alternate officer email, if any;
  • AMLC Portal login access;
  • approval date and user account expiration date;
  • whether the entity already re-registered under CORS.

The AMLC started implementing CORS on 30 April 2024, and covered persons with valid registration were required to re-register under the new system within the transition period, with AMLC advisories referring to the 29 April 2025 deadline. (amlc.gov.ph)

Step 3: Prepare the required information

The CORS Guidelines require basic information and contact details, including:

  • nature of business;
  • covered person name;
  • head office mailing address and zip code;
  • CEO, managing partner, or real estate broker contact details;
  • Compliance Officer information;
  • alternate officer information, if applicable;
  • valid and professional email addresses.

AMLC may disapprove registration if the email address is not identifiable to the user or entity, or if it uses offensive, scandalous, or indecent names. (Scribd)

Step 4: Prepare the required documents

The documentary requirements depend on the type of covered person.

Applicant type Common AMLC registration documents
BSP-, IC-, SEC-supervised covered persons Notarized board resolution or secretary’s certificate showing Compliance Officer designation for corporations/partnerships
PAGCOR, CEZA, or APECO-licensed covered persons Relevant gaming license, where applicable
Sole proprietors Notarized written authority designating the Compliance Officer, unless the sole proprietor assumes the role
Other DNFBPs SEC Articles of Incorporation and latest GIS, SEC Articles of Partnership, DTI Certificate of Registration, or PRC real estate broker certificate/license, depending on the entity
Corporations or partnerships Notarized board resolution or secretary’s certificate showing Compliance Officer designation
Real estate brokers, lawyers, accountants, and other individual professionals providing covered services Notarized written authority designating the Compliance Officer, where applicable

The CORS Guidelines state that documents may be uploaded in PDF or readable image formats such as JPEG, GIF, or TIF. (Scribd)

Step 5: Log in and update through Account Settings

For the two-year mandatory update, the Compliance Officer should access the AMLC Portal and proceed through the account update process.

If nothing has changed, the update may be completed by confirming the existing information. If there are changes, such as a new Compliance Officer, new email address, new address, or material change in registration information, the system may require a fuller update or repeat registration process. (Scribd)

Step 6: Verify emails within 72 hours

The CORS procedure requires Compliance Officers and alternates to verify their email addresses within 72 hours from receiving the system-generated email verification link. If the link expires, the online registration must be repeated. (Scribd)

Step 7: Download and store the PCOR or COR

After email validation, a PCOR may be issued. After AMLC review and approval, the COR may be issued and made available through the AMLC Portal. Keep digital and printed copies in a compliance folder together with:

  • AMLC Portal credentials custody record;
  • board resolution or secretary’s certificate;
  • proof of Compliance Officer designation;
  • latest SEC, DTI, PRC, or regulator documents;
  • AML/CFT policies and risk assessment documents;
  • renewal/update calendar.

Typical Timelines

Action Usual timeline / rule
Email verification Within 72 hours from system-generated email
PCOR issuance After successful email validation
PCOR validity Six months from issuance
AMLC review of registration Within six months from PCOR issuance under CORS
DNFBP risk assessment questionnaire Newly registered DNFBPs should accomplish it within 30 days from PCOR issuance
Mandatory update Every two years through ORS Account Settings
Update reminders Email reminders begin around 30 days before account expiration and continue periodically
DNFBP notice of branch commencement, transfer, closure Generally within five working days, depending on the event
Change of name or ownership/control for DNFBPs Notify AMLC before the change takes effect

The CORS Guidelines specify the six-month PCOR validity, 30-day DNFBP questionnaire period, AMLC review within six months, two-year mandatory updating, and notice rules for certain DNFBP changes. (Scribd)

Is There an AMLC Registration or Renewal Fee?

No official AMLC registration fee is charged.

The AMLC has issued an advisory stating that it does not charge any fee for registration or for issuance of PCORs or CORs. (amlc.gov.ph)

Be careful with anyone claiming that AMLC requires a “processing fee,” “certificate fee,” “renewal fee,” or “expedite fee.” Professional service providers may charge for assisting with documents or compliance work, but that is separate from AMLC itself.

Why LGUs and Banks Ask for AMLC COR or PCOR

For DNFBPs, the COR or PCOR can affect business permit processing.

The DILG-AMLC Joint Memorandum Circular No. 01, Series of 2023 requires covered DNFBPs to register with AMLC before starting operations, and for business permit renewal, LGUs may require existing DNFBPs to present their AMLC PCOR or COR. Failure to submit the PCOR or COR may constitute non-compliance with documentary requirements for renewal of the business license or permit. (DILG)

Banks and other covered persons may also ask for the COR or PCOR as part of customer due diligence and risk profiling. AMLC advisories remind covered persons to deal only with registered DNFBPs with valid or subsisting PCORs or CORs, or risk being cited for serious violations under AMLC administrative rules. (amlc.gov.ph)

Common Problems During AMLC Renewal or Updating

1. The Compliance Officer left the company

This is one of the most common bottlenecks. The AMLC Portal access is tied to the registered Compliance Officer and registered email. If the officer resigned, changed email addresses, or lost access to the account, the company may need to repeat or substantially update the registration.

Keep a board-approved succession process for the Compliance Officer and alternate officer.

2. The registered email is unprofessional or inaccessible

The CORS Guidelines require a valid, professional-looking email address identifiable to the user or entity. Avoid personal nicknames, shared generic accounts with no accountable person, or email addresses no one monitors.

A good practice is to use both:

  • a named officer email, such as juan.delacruz@company.com; and
  • an internally monitored compliance email, if allowed by the company’s access controls.

3. The business waits until mayor’s permit renewal season

Many DNFBPs only discover the issue in January when renewing their business permit. By then, the LGU may ask for a PCOR or COR, and the AMLC review process may not match the LGU deadline.

Real estate brokers, real estate developers, jewelry dealers, company service providers, and other DNFBPs should maintain AMLC registration before the permit renewal rush.

4. The applicant confuses PCOR with COR

A PCOR is temporary. It is useful proof that registration has been initiated and provisionally accepted, but it is not the same as final COR approval.

If your PCOR is about to expire and you have not received a COR, check whether AMLC requested additional documents, whether emails were missed, or whether the registration details contained inconsistencies.

5. Corporate documents are outdated

For corporations, AMLC registration problems often come from outdated SEC records, old GIS, inconsistent business names, old addresses, or board resolutions that do not clearly designate the Compliance Officer.

Before updating AMLC registration, reconcile your:

  • SEC records;
  • DTI records, if sole proprietorship;
  • PRC license, for real estate brokers;
  • LGU business permit;
  • BIR Certificate of Registration;
  • primary regulator license, if any;
  • AMLC Portal details.

6. Foreign directors or foreign documents cause delays

Foreign-owned Philippine companies and foreign officers often encounter signing and authentication issues.

If a document is executed abroad or issued by a foreign authority, the receiving Philippine agency may require apostille, consular authentication, embassy attestation, or equivalent authentication depending on the country and document type. DFA guidance notes that foreign documents are not apostillized by the Philippine DFA; they must generally be handled through the issuing country’s authentication or attestation process before use in the Philippines. (Apostille Services)

For AMLC purposes, the practical issue is simple: make sure the uploaded document is readable, properly signed, notarized or authenticated when needed, and consistent with Philippine registration records.

What Happens If You Do Not Update or Renew AMLC Registration?

Failure to keep AMLC registration active can cause several problems:

  • deactivation of AMLC Portal access;
  • inability to file covered transaction reports or suspicious transaction reports electronically;
  • delays in business permit renewal for DNFBPs;
  • refusal by banks or counterparties to onboard or continue the relationship;
  • compliance findings during AMLC, BSP, SEC, IC, PAGCOR, or LGU checks;
  • possible administrative sanctions for non-compliance.

AMLC administrative sanctions may range from reprimand to a fine not exceeding ₱500,000 per violation, or other measures allowed under AMLA rules. (amlc.gov.ph)

The CORS Guidelines also warn that failure to comply with responsibilities under the guidelines may expose covered persons and responsible directors, officers, and employees to criminal and administrative sanctions, including possible liability connected with Article 183 of the Revised Penal Code on perjury where false sworn statements are involved. (Scribd)

Practical Renewal Checklist

Before your two-year AMLC update deadline, prepare the following:

  • current COR or PCOR;
  • AMLC Portal access credentials;
  • registered Compliance Officer and alternate officer details;
  • latest SEC, DTI, CDA, PRC, or regulator documents;
  • latest GIS, if a corporation;
  • updated business address and branch list;
  • updated contact numbers and official emails;
  • notarized board resolution, secretary’s certificate, or written authority for Compliance Officer designation;
  • regulator license, if applicable;
  • record of material changes since last registration;
  • evidence that AML/CFT policies, risk assessment, and reporting responsibilities are maintained.

A simple internal rule helps: review AMLC registration details at least every quarter, even though the mandatory update is every two years.

Frequently Asked Questions

How do I renew my AMLC Certificate of Registration in the Philippines?

Renewal is usually done by updating your registration through the AMLC Portal’s Online Registration System. If there are no changes, the Compliance Officer may confirm and submit the existing information. If there are changes, such as a new Compliance Officer, new address, or material registration change, the system may require updated documents or a repeat registration process.

Is the AMLC COR valid for one year?

The current AMLC framework does not treat the usual update as an annual renewal. The important rule is the two-year mandatory updating of registration through the ORS. A PCOR, however, is temporary and valid for six months.

What is the difference between AMLC COR and PCOR?

A PCOR is provisional and temporary. It is issued after email validation and is valid for six months while AMLC reviews the application. A COR is issued after AMLC determines that the documentary requirements and registration information are complete and accurate.

Can I operate with only a PCOR?

A PCOR may serve as temporary proof that registration has been initiated and provisionally accepted. However, it is valid only for six months. The covered person should complete all requirements and monitor AMLC communications so the PCOR can be replaced by a COR after approval.

Is AMLC registration free?

Yes. AMLC registration and issuance of PCORs or CORs are free. The AMLC does not charge a government fee for registration or certificate issuance. (amlc.gov.ph)

Do real estate brokers need AMLC registration?

Yes, if they are covered under AMLA. The CORS Guidelines state that real estate brokers, whether practicing individually or under a real estate brokerage firm, must register individually as covered persons. (Scribd)

Do foreigners need an AMLC Certificate of Registration?

Nationality alone is not the test. A foreigner, foreign-owned company, or foreign-managed Philippine entity needs AMLC registration if it is a covered person under Philippine AMLA. Foreign documents or foreign-executed documents may also require apostille, consular authentication, or equivalent attestation depending on the document and issuing country.

What if my business is not a covered person but a bank asks for AMLC registration?

First, identify exactly what the bank needs. Some banks use “AMLC certificate” loosely. If the business is not a covered person, AMLC registration may not be appropriate. If AMLC or another authority has identified the entity as possibly covered, the CORS Guidelines allow a Sworn Statement of Non-Engagement in Covered Services, but it must be truthful and may be checked later by AMLC.

What happens if my AMLC Portal access is deactivated?

Deactivation may happen if the mandatory update is missed. The Compliance Officer may be redirected to a window showing the covered person’s information. If there are no changes, the officer may submit the update; if there are changes, the full online registration process may need to be repeated.

Does AMLC registration replace BSP, SEC, IC, PRC, PAGCOR, DTI, BIR, or LGU registration?

No. AMLC registration is separate. For example, a real estate broker may need a PRC license, BIR registration, LGU business permit, and AMLC registration. A company service provider may need SEC or DTI registration, BIR registration, LGU permit, and AMLC registration if it performs covered services.

Key Takeaways

  • An AMLC COR is proof of AMLC registration; a PCOR is temporary proof valid for six months.
  • AMLC registration is only for covered persons under the Anti-Money Laundering Act, not for every business.
  • The current “renewal” requirement is best understood as a mandatory online update every two years through the AMLC ORS.
  • Failure to update may deactivate AMLC Portal access and create problems with reporting, banking, counterparties, and LGU permit renewal.
  • AMLC registration and issuance of PCORs or CORs are free.
  • Keep Compliance Officer details, official emails, SEC/DTI/PRC/regulator documents, and business information current.
  • DNFBPs should not wait until mayor’s permit renewal season before checking AMLC registration status.
  • False sworn statements or inaccurate registration information may create administrative and criminal exposure.

Disclaimer: This content is not legal advice and may involve AI assistance. Information may be inaccurate.

Privacy Policy

Terms of Use

Lawyer Login

 
 
Privacy Policy         Terms of Use         Lawyer Login