In February 2026, the Isle of Man Gambling Supervision Commission (GSC) imposed a £200,000 civil penalty on Shelgeyr Limited following a comprehensive regulatory investigation that uncovered widespread anti-money laundering and counter-terrorism financing deficiencies.

The Enforcement Action

Shelgeyr Limited, which held an online gambling licence from November 2018 until its surrender in July 2024, failed to maintain adequate systems and controls to prevent financial crime. The GSC’s investigation revealed a pattern of contraventions spanning customer due diligence, enhanced due diligence procedures, and governance oversight.

The penalty, reduced from a higher amount due to cooperation and early admission, reflects the serious nature of the compliance failures and sends a clear message about regulatory expectations in the Isle of Man’s gambling sector.

Key Compliance Failures

The investigation identified multiple areas where Shelgeyr fell short of mandatory requirements under the Gambling (Anti-Money Laundering and Countering the Financing of Terrorism) Code 2019:

Customer Due Diligence Breakdowns

• Allowed accounts to continue operating without sufficient enhanced due diligence
• Permitted accounts with internal disclosures to be reopened
• Failed to close suspended accounts where necessary
• Could not demonstrate obtaining complete customer identification information

Enhanced Due Diligence Shortcomings

• Could not evidence establishing source of wealth for customers
• Failed to conduct proper screening on potential Politically Exposed Person (PEP) matches
• Did not follow documented procedures for enhanced due diligence triggers
• Allowed anonymous accounts to transact without full personal information

Risk Assessment Deficiencies

• Business Risk Assessment lacked sufficient consideration of the company’s actual business model
• Failed to adequately assess risks from the Isle of Man National Risk Assessment
• Did not consider risks from jurisdictions where the business predominantly operated
• Technology Risk Assessment incomplete regarding cryptocurrency payment risks
• Customer Risk Assessments didn’t demonstrate face-to-face meetings during relationships

Governance and Oversight Failures

• Money Laundering Reporting Officer (MLRO) lacked sufficient expertise and authority
• AML/CFT Compliance Officer could not demonstrate adequate expertise or authority to resolve conflicts
• Ongoing monitoring procedures not properly documented or regularly conducted
• Staff training inadequate and not refreshed within required timeframes
• Documentation and transaction analysis records not properly retained

What This Means for Your Screening Operations

This enforcement action reinforces critical compliance expectations that directly impact screening processes across all regulated sectors:

1. Screening Requires Evidence, Not Just Alerts

The repeated phrase “could not evidence” throughout the GSC’s findings highlights a fundamental truth: running PEP and sanctions screens isn’t enough. Shelgeyr couldn’t evidence undertaking EDD on potential PEP matches or verifying customer positions.

2. Screening Quality Depends on Data Quality

Shelgeyr couldn’t evidence obtaining complete customer information for screening. Without accurate customer data – names, dates of birth, addresses, nationalities – screening systems can’t deliver reliable results. False positives multiply and true matches get missed when foundational data is incomplete.

3. Anonymous or Incomplete Profiles Cannot Be Screened Effectively

The regulator noted that Shelgeyr allowed accounts to transact without full personal information. This is a critical screening failure – bt not conducting meaningful sanctions, PEP, or adverse media screening without knowing who the customer actually is.

4. Ongoing Screening Must Be Documented and Regular

Shelgeyr couldn’t demonstrate regular ongoing monitoring or that practices were formally documented. One-time onboarding screening is insufficient – customers’ risk profiles change as sanctions lists update, PEP status changes, and adverse media emerges. Screening must be continuous and the reviews documented.

5. Match Resolution Requires Expertise and Process

The enforcement noted that personnel lacked sufficient expertise to verify screening matches. Effective screening requires analysts who can distinguish true positives from false positives, understand jurisdictional risks, and make documented decisions about proceeding with customer relationships.

The Broader Regulatory Context

The Isle of Man issued a National Risk Appetite Statement emphasizing its zero-tolerance approach to financial crime in the gaming sector. This Shelgeyr enforcement action aligns with that heightened regulatory stance and suggests increased scrutiny across all Isle of Man-regulated entities.

The GSC’s statement emphasizes that “holding a licence issued by the GSC imposes upon that licence-holder a requirement and expectation that it seeks to achieve the highest standards of regulatory compliance, governance and risk management” (GSC).

How Truth Technologies’ Sentinel™ Helps Address These Requirements

Truth Technologies’ Sentinel™ is specifically designed to help address the gaps identified in this enforcement action:

Documented Match Resolution Workflow

Every screening match triggers a documented review process. Sentinel™ captures the analyst’s decision-making rationale, supporting evidence, and final determination – creating the audit trail regulators expect to see.

Automated Ongoing Screening

Entities are automatically rescreened as sanctions lists update, PEP databases refresh, and adverse media emerges. Every screening event is logged with date, time, results, and any actions taken – proving continuous monitoring to regulators.

Global PEP & Sanctions Coverage

Sentinel™ screens against global sanctions lists (OFAC, UN, EU, UK, and 200+ country-specific lists), comprehensive PEP databases covering current and former officials, and adverse media from 100+ countries in multiple languages.

Risk-Based Screening Intensity

Sentinel™ adjusts screening depth based on customer risk profiles – higher-risk customers receive more intensive screening and more frequent ongoing monitoring, ensuring resources are allocated appropriately.

Evidence Retention Outside Core Systems

Sentinel™ maintains independent evidence repositories – screening results, match analysis, and decisions are retained separately for regulatory access.

Real-Time Regulatory Reporting

Generate evidence of your screening in Sentinel™ instantly – prove to regulators that you’re conducting proper PEP verification, documenting match resolution, and maintaining ongoing screening with our pre-built compliance reports.

The Bottom Line

The £200,000 penalty against Shelgeyr Limited demonstrates that inadequate screening processes carry significant financial and reputational consequences.

Whether you operate in gaming, financial services, payments, or any other regulated sector, your screening program must deliver accurate results, documented decisions, and audit-ready evidence.

Don’t wait for a regulatory inspection to discover gaps in your screening processes.

Contact us today for a demonstration of how Truth Technologies’ Sentinel can help strengthen your AML/CFT program.

Note: Article based on publicly available reports from the Isle of Man and other financial news services covering Shelgeyr Limited investigation. This article is for informational purposes only and does not constitute legal or financial advice.