Jump to document

AML COMPLIANCE NOTICE

Last updated on 01.07.2026

INTRODUCTION

Novawave, S.A. de C.V. (“Itez”, “Company”) maintains a strict stance against money laundering, financing of terrorism, and any other illicit activities. Itez is dedicated to implementing an internal control system that includes policies, procedures, and controls that adhere to the highest industry standards and the most effective anti-money laundering and counter-terrorist financing (“AML/CTF”) measures. Established standards apply to all Itez’s Users and all persons associated with Itez, including directors, staff members, contractors, and consultants, without any exceptions.

The objective of this Itez AML Compliance Notice is to offer the Company's partners, clients, vendors, contractors, employees, regulators, law enforcement authorities, and other relevant stakeholders a high-level overview of the Company's AML/CTF compliance framework and its associated procedures (jointly referred to as the “AML Compliance Notice”). It's important to note that this Itez AML Compliance Notice does not encompass the comprehensive set of policies, procedures, and controls established by the Company to prevent money laundering, the financing of terrorism, and other forms of illicit activities, and is provided for information purposes only.

Itez is operated by Novawave, S.A. de C.V., established and existing under the laws of the Republic of El Salvador, NIT (Tax ID): 0623-030624-109-2, a Digital Asset Service Provider (PSAD) registered with the National Commission of Digital Assets (CNAD) under Registration No. PSAD-0079 (20 April 2026), and a Bitcoin Service Provider (PSB) registered under the Bitcoin Law, Registration Code 6697f7c29c3ab49e3172b9f8 (29 July 2024), which maintains its principal place of business at Calle Cuscatlan, Casa #4312, Colonia Escalon, Distrito de San Salvador, San Salvador, El Salvador. The Register can be reached via this link: https://cnad.gob.sv/public-registry/digital-assets-service-provider

Being a regulated entity, Itez (i) is required to comply with the applicable anti-money laundering and terrorist financing legislation, including but not limited to the Special Law Against Asset Laundering (Legislative Decree No. 426/2025), the Instructions of the Financial Investigation Unit (UIF), and FATF/GAFILAT standards, and (ii) is obligated to establish effective internal procedures and mechanisms to counteract money laundering and terrorist financing (“ML/FT”).

Capitalised terms not defined in this Itez AML Compliance Notice shall have the meaning defined in Itez’s Terms of Service.

This Itez AML Compliance Notice outlines:

  • Tasks and obligations toward preventing money laundering and terrorist financing;
  • Internal controls and procedures;
  • User identity verification procedures;
  • The role of the Company’s Money Laundering Reporting Officer (“MLRO”);
  • Transactions monitoring and risk assessment;
  • Reporting and record-keeping;
  • Sanctions;
  • Politically Exposed Persons;
  • Restricted countries and territories.

TASKS AND OBLIGATIONS TOWARD PREVENTING MONEY LAUNDERING AND TERRORIST FINANCING

To detect and prevent money laundering and terrorist financing, Itez performs the following tasks when performing its activities:

  • Creates an assessment of the risk of money laundering and terrorist financing;
  • Establishes policies, controls, and procedures to effectively mitigate and manage the risks of money laundering and terrorist financing;
  • Implements measures to get to know the customer (customer review);
  • Communicates prescribed and required information and submits documentation to the Financial Investigation Unit (UIF);
  • Appoints the MLRO as well as his deputy and ensures the conditions for their work;
  • Takes care of regular professional training of employees and ensures regular internal control over the performance of tasks;
  • Prepares a list of indicators for identifying customers and transactions concerning which there are reasons to suspect money laundering or terrorist financing;
  • Ensures the protection and storage of data and manages the records prescribed by the law;
  • Performs other tasks and obligations based on the Special Law Against Asset Laundering (Legislative Decree No. 426/2025), the Instructions of the Financial Investigation Unit (UIF), and the regulations adopted on their basis.

ITEZ’S INTERNAL CONTROLS AND PROCEDURES

Itez has established and put into practice internal controls and procedures designed to efficiently address and handle risks associated with money laundering and terrorist financing. These risks are identified through a risk assessment aligned with Itez's risk-based approach.

USER IDENTITY VERIFICATION

According to the Special Law Against Asset Laundering (Legislative Decree No. 426/2025) and the Instructions of the Financial Investigation Unit (UIF), Itez is obliged to verify the identity of its Users prior to performing any transactions. User identification is performed in the following cases:

  • Establishing a business relationship with a User;
  • In the case of any transaction, irrelevant to its value;
  • In case of any occasional (without previous business relations) transaction, regardless of its value;
  • Where there are doubts as to the authenticity and relevance of information previously obtained about the User or the beneficial owner of the User;
  • Whenever there are grounds for suspecting money laundering or terrorist financing in relation to the transaction, the User, the funds, or the assets, irrespective of the value of the transaction;
  • In other cases, subject to Itez’s absolute discretion.

During the identification and verification process, Itez may require the Users to provide supporting documents proving the information provided during the identification and verification process.

Itez needs to unequivocally establish the User's true identity as a legitimate natural or legal entity. While Itez may occasionally utilise third-party sources for fact- checking during User onboarding, Itez holds full legal responsibility for ensuring the checks meet the required standards.

In some cases, for example, when the transaction amount exceeds Itez’s internal limits, the User’s actions are suspicious or their purpose is unclear, or the User’s risk level has increased, Itez may, at its own discretion, ask the User to pass additional verification procedures and provide additional details or documents.

All User identification information will be collected, stored, shared, and safeguarded confidentially and in strict compliance with Itez's Privacy Notice and the associated regulations in alignment with the El Salvador Personal Data Protection Law (Legislative Decree No. 144).

ANTI-MONEY LAUNDERING COMPLIANCE OFFICER

The MLRO is an appointed person responsible for implementing and performing the anti-money laundering and ‘Know Your Client’ (“AML/KYC”) procedures, transaction monitoring, mitigating ML/FT risks, and performing AML/CFT duties and obligations of Itez. MLRO is also responsible for staff training, reporting suspicious transactions to the authorities, and ensuring Itez’s overall compliance with applicable AML/CFT law.

Please do not hesitate to contact the AMLCO in case of any ML/TF concerns connected with Itez via: [email protected].

TRANSACTION MONITORING

Itez constantly monitors the Users’ accounts and transactions for suspicious activity, illegal transactions, or other issues. Itez may employ higher or lower levels of scrutiny when monitoring the Users’ transactions based on its risk assessment and risk appetite arrangements.

Based on the transaction monitoring, Itez may perform additional checks, require additional information from the Users, and, in some cases, suspend any transactions and the provision of Services.

RISK ASSESSMENT

Itez applies a risk-based approach when performing the AML/KYC procedures to assess particular risks and attribute them to each of Itez’s Users. The risk-based approach uses several criteria, such as:

  • Customer risk;
  • Geographical risk;
  • Product risk; and
  • Delivery channel risk.

Risks are assessed and revised periodically. Based on the risk assessment results, Itez may request further information or documents from the User, deny the provision of the Services, suspend access to the Platform, and take further actions according to the applicable law.

REPORTING AND RECORD-KEEPING

Under applicable law, Itez may be required to and will report all suspicious transactions and other reportable issues to the Financial Investigation Unit (UIF).

Under applicable law, Itez is required to retain and provide to the responsible authorities certain documents and information about its Users and their transactions for a period of not less than 15 years (Art. 26, D.L. 426/2025) after the termination of the business relationship with the User. Such information will not be deleted at the Users' request.

SANCTIONS

Itez is prohibited from transacting with persons, entities and bodies under international sanctions. Itez screens all its Users against the lists of applicable sanctions as well as analyses the subject matter of transactions to ensure compliance with international sanctions. Any sanction screening match is escalated to the MLRO for further action. Itez will not perform any transaction if it assumes or suspects that a risk of breaching applicable sanctions is associated with it.

POLITICALLY EXPOSED PERSONS (PEPs)

Itez realises that, due to the possibility of abusing their public office for private gain, PEPs are required to be subject to enhanced scrutiny. Therefore, Itez screens all its Users against the PEPs lists and considers the possibility of establishing business relationships with such persons by assessing the associated risks and determining appropriate due diligence measures. In some cases, Itez may be prohibited from providing the Services to PEPs.

RESTRICTED JURISDICTIONS

Itez does not offer or provide its Services to individuals residing in or entities registered in countries and territories that:

  • Have been identified by international organisations as having a high risk of money laundering;
  • Have been sanctioned by the UN, the EU, the UK (OFSI), OFAC, the government of El Salvador, or another body;
  • Consider Itez's services unlawful and have officially prohibited them;
  • Other countries or territories Itez deems high-risk or is not ready to provide services in for other reasons.

You may find a full list of restricted jurisdictions on our website.