Investigations that close, with the human still signing.

A multi-agent investigator that drafts the memo. The compliance officer still owns the decision.

Proven pattern

A multi-agent investigator ingests onboarding documents, sanctions hits, transaction-monitoring alerts, adverse-media findings, and CRM context, drafts a structured investigation memo with citations, and presents it to a human investigator for sign-off. McKinsey reports 50%+ KYC cost reduction with multi-agent architectures versus traditional ML; productivity gains in the 200–2,000% range have been claimed by the consultancies, with the high end heavily caveated.

Hard KPIs · operator-disclosed where possible

30–60%

false-positive reduction at fixed recall

40–70%

median alert-clearance-time reduction

<72h / <14d

onboarding cycle target, retail / commercial

Buyer · Chief Compliance Officer + Head of Financial Crime + Operations COO. CIO co-signs the platform decision.

Operator references

Provenance tiered explicitly. Audited > Operator-disclosed > Vendor-published. Treat all vendor-tier figures as directional.

JPMorgan Chase (US)

AML false-positive reduction reported at ~95%; COiN reclaims ~360,000 lawyer-hours/year on commercial-loan review.

Vendor-published

Banorte (México)

First Mexican bank authorized by CNBV (May 2024) to run AI in the cloud. LexisNexis Bridger Insight XG for AML; Red Hat OpenShift; SAS-built liquidity-risk AI since 2023.

Operator-disclosed

Bancolombia (Colombia)

Trust-centered AI principle. Appian + RPA + AI document automation built in 13–14 weeks; ~80,000 docs/month; ~70% manual-time reduction.

Operator-disclosed

TD Bank (US, cautionary)

$1.3B FinCEN penalty + $1.8B DOJ resolution after AML failures. The public reference point on what under-investment in AML controls actually costs.

Audited

Why this beats RPA or traditional ML

Multi-step reasoning across narrative document evidence; tool use across sanctions, CRM, transaction-monitoring, and document stores; explicit reasoning trace for audit; adaptive to new red-flag patterns without retraining a classifier. RPA breaks the moment a document is renamed; classical ML cannot synthesize narrative evidence into a memo.

Why this is hard

Explainability mandates from BCB, CNBV, SFC, OCC; evidence-retention requirements; vendor-management scrutiny under interagency model-risk guidance; integration into legacy CLM, sanctions-screening (Bridger, Refinitiv, Dow Jones), TM (Actimize, Mantas), and case-management tools (Pega, Appian).

Mexico · LATAM specifics

CNBV Circular Única de Bancos plus the May 2024 Banorte cloud-AI precedent. SPEI fraud patterns are an obvious extension. Cross-border NAFTA-era correspondent flows raise additional scrutiny. Banorte, Santander México, Banamex, and BBVA México are the natural anchor candidates.

Reference architecture

Each node maps to a regulatory anchor.

01
Document ingestion (onboarding pack, KYC refresh, alert)
02
Entity resolution + sanctions / adverse-media / PEP cross-check
03
Evidence retrieval: RAG over policy + CRM + transaction history
04
Reasoning agent drafts structured investigation memo
05
Critic-validator agent challenges weak inferences
06
Human investigator approves, escalates, or rejects
07
Immutable audit log: every node mapped to a CNBV / BCB / OCC control

Anti-positioning

Not A robot lawyer. A chat surface. An agent that decides.

But A drafting partner and evidence-assembly layer. The investigator still signs, on record.

What didn't work initially

Early deployments fail when the agent is pointed at clean training data and lands in a real backlog of 90-day-old, noisy, multi-jurisdiction alerts. The fix is to align the evaluation set to the alert mix the bank actually runs, not the one it wishes it ran.

A working session, not a sales call.

Two hours with a partner. Your incumbent stack, your data posture, and the regulatory surface against a sovereign reference architecture for banking.

Request a working session →

A working session, not a sales call.

Two hours with a partner. We map your AI spend, data exposure, and governance posture against a sovereign reference architecture. You leave with a memo. We leave with a decision.