The compliance AI that can't explain its decisions is worse than no compliance AI. Here's how to build one that can.
There's a specific failure mode that kills fintech AI projects that traditional software projects don't have.
The system works. The accuracy is good. The false positive rate is acceptable. And then your compliance officer asks: "Why did this transaction get flagged?" And the answer is "the model gave it a score of 0.87", which is not an answer a regulator will accept.
Explainability in compliance AI isn't a nice-to-have. It's a regulatory requirement. FINRA, FCA, RBI, every major financial regulator has issued guidance making clear that automated compliance decisions require documented reasoning that a human auditor can review and challenge. "The AI said so" is not documented reasoning.
This tutorial covers how to build a compliance monitoring agent architecture that produces decisions an auditor can actually work with.
REGULATORY DATA FEEDS
(OFAC, FATF, FinCEN, local watchlists)
β
[INGESTION AGENT] β normalise, deduplicate, version
β
TRANSACTION STREAM (real-time)
β
[SCREENING AGENT] β rule-based + Claude analysis
β
βββ LOW RISK β auto-clear + audit log
βββ MEDIUM RISK β flag + evidence package β analyst queue
βββ HIGH RISK β block + SAR draft β senior review
β
[AUDIT TRAIL AGENT] β immutable decision log
β
[REPORTING AGENT] β SAR generation, regulatory reporting
Every stage produces a structured, human-readable decision record. This isn't a post-processing step, it's built into every agent's output schema from day one.
Regulatory watchlists change constantly. OFAC updates the SDN list multiple times a week. FATF grey/black lists update quarterly. Local regulators issue updates on irregular schedules.
from anthropic import Anthropic
from datetime import datetime
import hashlib
import json
client = Anthropic()
class RegulatoryIngestionAgent:
def __init__(self, db_connection, audit_logger):
self.db = db_connection
self.audit = audit_logger
async def ingest_watchlist_update(
self,
source: str,
raw_data: bytes,
update_metadata: dict
) -> dict:
"""
Ingests watchlist updates with full provenance tracking.
Every entry gets a source, version and effective date.
"""
response = client.messages.create(
model="claude-sonnet-4-5",
max_tokens=4000,
system="""Parse regulatory watchlist data into
structured entities. Handle variations in format
across different regulatory sources.
Extract for each entity:
- canonical_name (primary identifier)
- aliases (all alternative names)
- entity_type (individual/organisation/vessel/aircraft)
- identifiers (passport, tax ID, registration numbers)
- addresses (with country codes)
- listing_reason (sanctions program or crime category)
- effective_date
- source_reference (regulatory document ID)
Return JSON array of entities.
Flag any entries with ambiguous identity markers.""",
messages=[{
"role": "user",
"content": f"Source: {source}\n\n{raw_data.decode('utf-8', errors='replace')}"
}]
)
entities = json.loads(response.content[0].text)
for entity in entities:
entity['_provenance'] = {
'source': source,
'ingest_timestamp': datetime.utcnow().isoformat(),
'source_document_hash': hashlib.sha256(raw_data).hexdigest(),
'regulatory_effective_date': update_metadata.get('effective_date'),
'version_id': self.generate_version_id(entity, source)
}
await self.db.upsert_watchlist_entities(entities)
self.audit.log({
'event': 'watchlist_update_ingested',
'source': source,
'entities_added': len(entities),
'timestamp': datetime.utcnow().isoformat()
})
return {
'entities_processed': len(entities),
'flagged_for_review': [e for e in entities if e.get('ambiguous')]
}
The provenance tracking matters for audit purposes. When an auditor asks "was this entity on the watchlist at the time of this transaction?", you need to be able to answer precisely, not "yes, they're on the list now" but "this entity was added to the OFAC SDN list on [date] under [regulatory reference] and was active in our database from [timestamp]."
This is the core compliance agent. It needs to be fast, blocking a payment for 30 seconds to run compliance checks is not acceptable in most contexts and it needs to produce explainable decisions.
class TransactionScreeningAgent:
RISK_THRESHOLDS = {
'auto_clear': 0.25,
'analyst_review': 0.6,
'block_and_escalate': 0.85
}
async def screen_transaction(
self,
transaction: dict
) -> dict:
"""
Screens transaction against watchlists and risk models.
Returns decision with full reasoning chain for audit trail.
"""
rule_matches = await self.run_rule_engine(transaction)
if rule_matches['exact_match']:
return self.build_decision(
transaction,
risk_score=0.95,
decision='BLOCK',
reasoning_type='exact_watchlist_match',
evidence=rule_matches
)
entity_context = await self.get_entity_context(
transaction['counterparty']
)
response = client.messages.create(
model="claude-sonnet-4-5",
max_tokens=1500,
system="""You are a compliance analyst screening
financial transactions. Analyse the transaction
against the provided entity context and risk factors.
Provide a structured risk assessment with:
1. Risk score (0.0-1.0)
2. Primary risk factors (list each with evidence)
3. Mitigating factors (if any)
4. Decision rationale (2-3 sentences, auditor-readable)
5. Recommended action: AUTO_CLEAR / ANALYST_REVIEW / BLOCK
6. Confidence level: HIGH / MEDIUM / LOW
Be specific. Cite the exact data points that
influenced the score. Vague rationale fails audits.
Return as JSON with schema:
{
"risk_score": float,
"risk_factors": [{"factor": str, "evidence": str, "weight": str}],
"mitigating_factors": [str],
"decision_rationale": str,
"recommended_action": str,
"confidence": str,
"additional_checks_required": [str]
}""",
messages=[{
"role": "user",
"content": f"""Transaction details:
Amount: {transaction['amount']} {transaction['currency']}
Counterparty: {transaction['counterparty_name']}
Counterparty country: {transaction['counterparty_country']}
Transaction type: {transaction['type']}
Reference: {transaction.get('reference', 'None')}
Originating account risk tier: {transaction['account_risk_tier']}
Entity context from watchlist database:
{json.dumps(entity_context, indent=2)}
Fuzzy name match results:
{json.dumps(rule_matches['fuzzy_matches'], indent=2)}"""
}]
)
analysis = json.loads(response.content[0].text)
return self.build_decision(
transaction,
risk_score=analysis['risk_score'],
decision=analysis['recommended_action'],
reasoning_type='claude_analysis',
evidence=analysis
)
def build_decision(
self,
transaction: dict,
risk_score: float,
decision: str,
reasoning_type: str,
evidence: dict
) -> dict:
"""
Builds the decision record that goes to audit trail.
Every field that an auditor might ask about is explicit.
"""
return {
'transaction_id': transaction['id'],
'screening_timestamp': datetime.utcnow().isoformat(),
'decision': decision,
'risk_score': risk_score,
'reasoning_type': reasoning_type,
'evidence': evidence,
'agent_version': AGENT_VERSION,
'watchlist_versions_consulted': self.get_active_watchlist_versions(),
'regulatory_basis': self.get_applicable_regulations(transaction),
'human_review_required': risk_score >= self.RISK_THRESHOLDS['analyst_review']
}
The watchlist_versions_consulted
field is one of the most important for audit purposes. When a regulator asks "was this screened against the current OFAC list?", you can provide the exact version ID of the list that was active at screening time.
The audit trail is not a log. It's an immutable, queryable record of every compliance decision with enough context to reconstruct the reasoning from scratch.
class AuditTrailAgent:
def __init__(self, immutable_store):
self.store = immutable_store
async def record_decision(self, decision_record: dict) -> str:
"""
Records a compliance decision with full provenance.
Returns the immutable record ID for reference.
"""
response = client.messages.create(
model="claude-sonnet-4-5",
max_tokens=800,
system="""Generate a plain-language explanation of
this compliance decision suitable for regulator review.
The explanation must:
1. State the decision and its risk basis clearly
2. Identify the specific factors that drove the decision
3. Note any watchlist matches with regulatory references
4. Explain what additional review was triggered, if any
5. Be written so a non-technical compliance officer
can understand and defend it
Maximum 200 words. No jargon. No model internals.
The reader is an auditor, not a data scientist.""",
messages=[{
"role": "user",
"content": json.dumps(decision_record, indent=2)
}]
)
human_readable_explanation = response.content[0].text
audit_record = {
**decision_record,
'human_readable_explanation': human_readable_explanation,
'record_created_at': datetime.utcnow().isoformat(),
'record_id': self.generate_record_id(decision_record)
}
record_id = await self.store.append(audit_record)
return record_id
async def generate_examination_report(
self,
date_range: tuple,
transaction_ids: list = None,
include_auto_cleared: bool = False
) -> dict:
"""
Generates examination-ready compliance report.
Format designed for regulatory examination.
"""
records = await self.store.query(
date_range=date_range,
transaction_ids=transaction_ids,
include_auto_cleared=include_auto_cleared
)
response = client.messages.create(
model="claude-sonnet-4-5",
max_tokens=3000,
system="""Compile a compliance examination report
from transaction screening records.
Structure the report as regulators expect:
1. Executive summary (screening volume, decision distribution)
2. High-risk transaction summary (blocked and escalated)
3. Watchlist match analysis (by source, match type)
4. False positive analysis (analyst overrides)
5. System performance metrics
6. Notable patterns or anomalies
Be factual. Cite specific transaction IDs for examples.
Format for readability β this goes to regulators.""",
messages=[{
"role": "user",
"content": f"Records for period {date_range}:\n{json.dumps(records, indent=2)}"
}]
)
return {
'report': response.content[0].text,
'record_count': len(records),
'period': date_range,
'generated_at': datetime.utcnow().isoformat()
}
The human-readable explanation generation is the piece that compliance teams consistently cite as the most valuable. Not the risk score, the explanation.
When an analyst reviews a flagged transaction, they need to understand not just that the system flagged it but why, in terms they can defend to a regulator. "Risk score: 0.73" tells them nothing they can act on. "Transaction flagged: counterparty name 'Al-Rashid Trading LLC' returns 0.87 similarity to sanctioned entity 'Al-Rasheed Trading' on OFAC SDN list (added 2024-03-15, Program: SDGT). Transaction amount ($47,000) above standard trade threshold for counterparty country. Pattern consistent with structuring indicators from FinCEN Advisory FIN-2023-A001" tells them exactly what to investigate.
The ** AI agents for compliance monitoring in finance** article covers the full regulatory framework mapping, which specific regulations require which types of documentation, in detail.
Three things that compliance AI architectures consistently fail on during examination:
Decision immutability: Auditors check that compliance records can't be modified after the fact. Your audit trail store must be append-only. If your logging goes to a database where records can be updated, you'll fail this check.
Watchlist version traceability: "We screened against the watchlist" is not sufficient. "We screened against OFAC SDN List version 20260415-1423, which was active from 2026-04-15 14:23 UTC" is sufficient.
Override documentation: When analysts override an automated decision, clearing a flagged transaction or escalating an auto-cleared one, the rationale must be documented in the compliance record. Systems that allow override without documentation create audit exposure.
The architecture above handles transaction screening and AML monitoring. It's one component of a full agentic AI banking stack. For the complete architecture covering KYC automation, fraud detection, lending decisioning and portfolio risk management, the ** agentic AI in banking** guide covers the full system design that compliance monitoring plugs into.
Compliance is just one banking use case. For the complete architecture guide covering lending, KYC, fraud detection and portfolio management, we published the complete agentic AI in banking guide. The compliance layer described here is designed to integrate cleanly with each of those use cases.
Published by Dextra Labs | AI Consulting & Enterprise Agent Development