Requirements to be followed in the risk rating of anti-money laundering customers:

(1) The principle of risk equivalence. Financial institutions should scientifically allocate anti-money laundering resources according to the risk assessment results, take strengthened anti-money laundering measures in areas with high money laundering risks, and take simplified anti-money laundering measures in areas with low money laundering risks.

(2) the principle of comprehensiveness. Except for the exceptions listed in these Guidelines, financial institutions should comprehensively assess the risk status of customers and regions, businesses, industries (occupations), and scientifically and reasonably determine the risk level for each customer.

(3) the principle of identity. Financial institutions should establish and improve the process of money laundering risk assessment and customer risk classification, giving the same customer a unique risk level in the financial institution, but the same customer can be given different risk levels by different financial institutions in the same group.

(4) the principle of dynamic management. Financial institutions should adjust their risk levels and corresponding risk control measures in a timely manner according to the changes of customers' risk status.

(5) the principle of independent management. A financial institution may decide not to follow these guidelines or one of their requirements if it determines that the implementation effect of the self-determined risk assessment standards or risk control measures is not lower than these guidelines or one of their requirements after evaluation and demonstration, but it shall record the methods, processes and conclusions of evaluation and demonstration in writing.

(6) the principle of confidentiality. Financial institutions shall not disclose customer risk level information to customers or other third parties unrelated to anti-money laundering work.