In late March 2026, AUSTRAC filed Federal Court civil penalty proceedings against Mount Pritchard and District Community Club Ltd — better known as Mounties, the NSW pokies giant operating 10 venues and around 1,400 electronic gaming machines. (AUSTRAC media release)
It's the first time AUSTRAC has taken civil action against a licensed club group in Australian history.
The penalty exposure is significant. The legal fees will be significant. The reputational damage is already significant. But for everyone outside the gaming sector — and especially for the 90,000-odd lawyers, accountants, conveyancers, real estate agents and dealers about to come under AUSTRAC's regime on 1 July 2026 — the most important detail isn't the size of the case.
It's the defence Mounties allegedly relied on, and why it didn't work.
The Numbers That Should Get Your Attention
Between July 2019 and June 2023, according to AUSTRAC's filings:
- Mounties' EGM revenue was $459.16 million (excluding GST)
- Customer EGM deposits totalled $4.17 billion
- AUSTRAC sampled 10 high-risk customers with combined turnover of $139 million and payouts of $10.4 million
- For those 10 customers, no source of funds or source of wealth inquiries were conducted
- Five independent reviews between 2019 and 2023 allegedly failed the formal requirements of the Rules
That last figure is the one to sit with. Ten customers. $139 million through the machines. No questions asked about where the money came from.
This isn't an obscure technical breach. This is the regulator alleging that the most basic question in AML/CTF — where did this money come from? — was not being asked of the people most likely to be using the venue to launder.
The Outsourcing Defence That Wasn't a Defence
Here is where the case stops being about pokies and starts being about every Tranche 2 firm reading this.
Mounties had outsourced significant parts of its AML/CTF program to an external provider. The thinking is one we hear constantly from accountants and law firms preparing for July: "We don't need to be experts. We pay a specialist consultancy. They handle it."
AUSTRAC's response, through CEO Brendan Thomas, was direct:
"Relying on third-party providers doesn't absolve a business of its obligations. All reporting entities — regardless of size or industry — must stay actively involved in how their AML/CTF program is designed, implemented and monitored."
Senior compliance counsel Fiona Halsey put it more bluntly in commentary on the case:
"The thing that can't be outsourced is the responsibility. The ultimate liability sits with the governing body."
If you are a partner at a 6-person accounting firm, this is the sentence to print and stick on the wall.
Why "Set and Forget" AML Programs Fail
The pattern AUSTRAC alleges in Mounties is one consultants have been describing for years:
- A program exists on paper, but not in operation. The AML/CTF Program document is well-drafted, often by a third party. But the staff who actually onboard customers haven't read it, can't summarise it, and don't apply it consistently.
- Risk assessments are generic. They describe "risks the gaming industry faces" rather than the risks this venue faces, with these customer demographics, in this geography.
- Transaction monitoring is vague. Triggers exist in writing but no one is named as accountable. No practical guidance on what to do when a flag fires. (What good transaction monitoring looks like)
- Independent reviews are superficial. Limited interviews. No senior management engagement. The reviewer doesn't actually examine how the service is delivered — just that documents exist.
- The board and the compliance officer can't speak to the program. When AUSTRAC sends a notice to produce, the entity is dependent on the external provider for the answers — because no one inside the business has the operational knowledge.
In each of these patterns, the entity is paying for compliance without exercising compliance. The Mounties filings allege every one of them.
What This Means If You're a Tranche 2 Firm
From 1 July 2026, the same regime applies to your accounting practice, your law firm, your real estate agency, your conveyancing business, your jewellery store. (Tranche 2 explained)
Many Tranche 2 firms are about to make the same bet Mounties allegedly made: hire an external consultancy to draft an AML/CTF program, file it, and assume the obligation has been discharged.
It hasn't.
Here is the test AUSTRAC will apply, drawn directly from the Mounties allegations:
| AUSTRAC will ask | And expect to be able to verify |
|---|---|
| Has the governing body approved this program? | Minutes, sign-off, evidence the partners actually read it |
| Who is the AML/CTF Compliance Officer? | A named person — inside the firm, not the consultant |
| Can your CDD process identify a high-risk customer? | Walk-through of an actual onboarding, with documentation |
| Have you escalated source of funds or source of wealth questions? | Records, not just policy text |
| Has an independent review been completed? | A review that examined operations — not just the document |
| Are staff trained? | Attendance records, content covered, dates |
If your answer to any of those is "the consultant is meant to handle that", Mounties is the case study explaining why that won't work.
The Compliance Officer Question
The reformed AML/CTF Act requires every reporting entity to nominate a named AML/CTF Compliance Officer to AUSTRAC, and that person must be appropriately senior. (Full breakdown of the Compliance Officer role)
You cannot nominate your external consultant. The Compliance Officer must be an officer or employee of the reporting entity — typically the practice principal, the managing partner, or another senior staff member with operational authority.
That person carries the personal exposure. Under the reformed Act, individual penalties for officers can reach $6.26 million per contravention. The AUSTRAC notice to produce, when it arrives, lands on their desk.
This is why "we outsource AML" is a category error. You can outsource drafting. You can outsource templating. You can outsource training delivery. You cannot outsource the legal accountability — the Act locates it inside your business by design.
What the Mounties Case Tells Us About AUSTRAC's 2026 Posture
Three signals worth reading:
1. AUSTRAC will look through the outsourcing arrangement. They will not stop at "we engaged a third-party provider". They will examine your governance, your records, your staff knowledge, your independent review quality. The provider isn't a shield.
2. Independent reviews are going to get scrutinised. Five reviews allegedly didn't meet formal requirements. AUSTRAC reads independent reviews. If your reviewer interviewed three people and ticked boxes, that's now a known weakness.
3. The first action signals more to come. AUSTRAC has invested years in pokies-sector data analysis (the NSW Crime Commission's Project Islington estimated billions of the ~$95 billion wagered on NSW pokies in 2021–22 likely involved illicit funds). The same analytical capability is being turned on Tranche 2 sectors right now. Real estate, in particular, is publicly flagged as high-risk. (Why real estate is in the spotlight)
What to Do This Week
If you're preparing for 1 July, treat the Mounties filings as a free pre-audit. Run this short test against your in-progress program:
- Name your Compliance Officer. Not your consultant. A real person inside the firm. Notify AUSTRAC. (Registration walk-through)
- Read your own AML/CTF program. Cover to cover. If you can't summarise Part C (CDD) and Part D (Transaction Monitoring) without checking the document, your governance is exposed. (Parts A–F walkthrough)
- Check your risk assessment is yours. Generic templates copied from a consultancy will not survive scrutiny. The risk assessment must reference your client base, your services, your geographies. (How to build a defensible risk assessment)
- Pre-book your independent review. And brief the reviewer that you want them to examine operations, not just documents. The Mounties case is now the benchmark for what a deficient review looks like.
- Train your staff and document it. Attendance, content, date, refresher schedule. Mounties is alleged to have failed on training records. (Training requirements explained)
The One-Sentence Summary
If you take nothing else from the Mounties filings, take this:
AUSTRAC's regime is built around a named, accountable, internal compliance function. Anything you outsource is a tool that function uses — not a substitute for that function.
Tranche 2 firms that internalise this point in May 2026 will be in a different position from those who only learn it in front of a Federal Court judge in 2028.
Run a free compliance check — no signup, two minutes, see exactly where your firm sits on the same test AUSTRAC applied to Mounties. Or start a 14-day free trial and have a Compliance Officer-ready program drafted in the same afternoon.
Sources: AUSTRAC media release on Mounties civil penalty proceedings; Senet Group analysis; Accounting Times — lessons for accountants; The AML Company — 12 years consulting view. Allegations are as filed by AUSTRAC; the proceedings have not been determined by a court.