Suspicious Transaction Reporting in Japan: Obligations, Workflow, and the Case for Automation

STR filing inconsistency at mid-market institutions was a specific FATF 2021 finding. This guide covers the Article 9 obligation, the compliant five-stage workflow, and why automation is now a compliance necessity.

Compliance  ·  June 2026  ·  RegTech

Article 9 of the APTCP requires specified business operators to file a suspicious transaction report with the Japan Financial Intelligence Centre (JAFIC) when there are reasonable grounds to suspect that property involved in a transaction constitutes criminal proceeds, or that the transaction is connected to terrorism financing.

What Constitutes Suspicious Activity

The FSA Guidelines and JAFIC guidance identify the following as indicators that should trigger STR consideration. This is illustrative, not exhaustive — the STR obligation applies to any reasonable suspicion of criminal proceeds or terrorism financing:

  • Transaction patterns inconsistent with the customer’s stated business activity, financial profile, or historic behaviour.
  • Unusual cash transactions, structuring activity (multiple transactions just below reporting thresholds), or round-sum transactions without clear commercial rationale.
  • Transactions involving jurisdictions identified by FATF as high-risk or subject to increased monitoring, or involving counterparties from those jurisdictions.
  • Counterparties appearing on sanctions lists, adverse media sources, or law enforcement intelligence databases.
  • Customer reluctance to provide requested information, provision of inconsistent information, or implausible explanations for transaction purpose.
  • Sudden, unexplained changes in transaction behaviour that are inconsistent with the established customer profile.
  • Transactions that appear to be designed to avoid reporting or monitoring thresholds.

The Five-Stage Compliant STR Process

A compliant STR workflow has five discrete stages. Each stage must be documented in the compliance case management system, with system-generated timestamps that cannot be manually altered:

  • a monitoring alert is generated through automated transaction monitoring or through a staff-identified concern. The alert is created in the case management system with timestamp, transaction details, counterparty information, and the specific rule or observation that triggered it. Stage 1 — Detection:
  • the alert is assigned to a compliance analyst for initial assessment. The analyst reviews available customer CDD information, transaction context, and any related previous alerts. The review findings and the analyst’s initial assessment are documented in the case record. Stage 2 — Initial review:
  • where the initial review does not resolve the concern, a more detailed investigation is conducted. This may include reviewing the customer’s full transaction history, consulting additional data sources, reviewing related customers or counterparties, and — where appropriate and where doing so would not constitute tipping off — seeking additional information from the customer. Stage 3 — Investigation:
  • the compliance officer makes a documented decision to file or not file an STR. Where the decision is to file, the STR is prepared using the prescribed JAFIC format. Where the decision is not to file, the rationale must be documented explicitly in the case record — a blank disposition field is not acceptable to FSA examiners. Stage 4 — Filing decision:
  • the STR is filed through JAFIC’s prescribed reporting channel. The filing timestamp, case reference number, and JAFIC acknowledgement are recorded in the case management system. No customer-facing action is taken that would constitute tipping off the subject of the report. Stage 5 — JAFIC submission:

Why Manual STR Processes Cannot Meet the FSA’s Current Standard

Manual STR workflows — spreadsheet-based alert tracking, email escalation chains, individually compiled JAFIC submissions — fail to meet the FSA’s effectiveness standard for three structural reasons that cannot be addressed by adding compliance staff:

  • Volume management: as transaction volumes grow, the number of alerts that require review grows proportionally. Manual review capacity does not scale in the same way. As alert queues accumulate and review backlogs build, the time from detection to filing decision extends — and genuine risks are delayed or missed. The FSA’s effectiveness assessment specifically examines alert resolution times.
  • Documentation completeness: manually maintained case records are structurally prone to inconsistency. Incomplete disposition notes, missing investigation records, unrecorded filing decisions, and absent rationale for not-filing decisions are routine findings in FSA examinations at institutions relying on manual processes.
  • Evidence credibility: a manually compiled evidence pack — a spreadsheet of alerts, a folder of email chains, individually saved JAFIC submission confirmations — does not carry the same credibility as system-generated records with immutable timestamps. The FSA increasingly treats automated, system-generated evidence as the expected baseline for effective compliance.

The Case for Automation

An automated STR workflow — integrated within a comprehensive transaction monitoring and case management platform — addresses each of these structural failures. Alert generation, case creation, investigation management, filing decision documentation, and JAFIC submission are all managed within a single platform, generating a complete, system-timestamped audit trail at every stage.

The operational ROI of automation is direct for mid-market institutions: the cost of maintaining an adequate manual compliance team grows with transaction volume; the cost of an automated platform does not. And the compliance risk cost of manual processes — adverse FSA examination findings, inconsistent STR filing, and evidence trail gaps — grows with the intensity of regulatory scrutiny.


Frequently Asked Questions

Under Article 9 of the APTCP, an STR must be filed with JAFIC when there are reasonable grounds to suspect criminal proceeds or terrorism financing. There is no minimum transaction value threshold. Indicators include transaction patterns inconsistent with the customer’s profile, structuring activity, sanctioned counterparties, and unusual cross-border transfers.
STRs are filed with JAFIC through the prescribed electronic reporting system. The report must include details of the transaction, the customer, the basis for suspicion, and investigation findings. The filing timestamp and case reference are recorded in the compliance case management system.
There is no prescribed minimum. The FSA and FATF assess whether an institution’s filing rate is consistent with its assessed risk exposure. The 2021 FATF evaluation specifically identified inconsistent mid-tier institution filing rates as a significant effectiveness gap.
Manual STR workflows cannot scale with transaction volume, produce inconsistent documentation, and generate evidence packs lacking the credibility of system-generated records. Automated platforms manage the entire workflow from alert to JAFIC submission within a single system, producing complete audit trails at every stage.
The rationale for not filing must be explicitly documented in the case management system. A blank disposition record is not acceptable to FSA examiners. The documentation should include what was reviewed, what was found, and why reasonable grounds for suspicion were not established.

Suspicious Transaction Reporting Japan: STR Automation | Nexiant

Japan’s Article 9 APTCP STR obligations, the five-stage compliant workflow, why manual processes fail the FSA’s evidence standard, and the case for automation.

Speak to our team

This article was accurate at the time of publication in June 2026 and is intended for general informational purposes only. It does not constitute legal, regulatory or compliance advice. Organisations should seek qualified professional guidance in relation to their specific obligations.