AML/CTF Policy

DEFINITIONS

AML / Compliance Department – The unit has primary responsibility for the initiation and delivery aspects of the AML program within an Organisation.

Business relationship – Business or commercial relationship between a Customer and the Organisation and which is expected, at the time when the contact is established, to have an element of duration for a certain period (e.g. conclusion of an agreement between the Customer and the Organisation, continuous performance of gambling/betting and monetary operations and transactions).

Close Associate – A natural person who, together with the Politically Exposed Person, is a member of the same legal entity or of a body without legal personality or maintains other business relationship.

Close family member – The spouse, the person with whom partnership has been registered (i.e. the cohabitant), parents, brothers, sisters, children and children's spouses, children's cohabitants.

Customer due diligence (CDD) – Identification of the Customer and verification the Customer's identity on the basis of documents, data or information obtained from a reliable and independent source; assessment and, as appropriate, obtainment of information on the purpose and intended nature of the Business Relationship; the conducting of ongoing monitoring of the Business Relationship including scrutiny of transactions undertaken throughout the course of that relationship to ensure that the transactions being conducted are consistent with the Organisations' knowledge of the Customer.

Customer/Client/Player – a person that uses online gambling and betting services provided by the Organisation.

FATF – The Financial Action Task Force.

FIU – Financial Investigation Unit.

High-risk third countries – countries identified as having strategic deficiencies in their AML/CFT regime, which pose a significant threat to the Union's financial system (Article 9 of Directive (EU) 2015/849).

Identification – A part of Customer Due Diligence, allowing to ascertain the identity of a person on the basis of the personalised unique information directly related to that person.

Law – Law on the Prevention of Money Laundering and Terrorist Financing.

Money laundering (ML) – the doing of any act which constitutes an offence of money laundering and is defined in the Law on the Prevention of Money Laundering and Terrorist Financing of Anjouan. The criminal acts cover all procedures that seek to change the identity of illegally obtained funds, arising from drug dealing, terrorist activities or any other crime in order to give impression that such money originated from legitimate or legal sources. Money laundering is the participation in any transaction that seeks to conceal or disguise the nature or origin of funds derived from illegal activities such as, for example, fraud, corruption, organized crime, or terrorism etc.

Organisation – Innovista Limitada, the company established under the laws of Costa Rica, with its registered address Province 06 Puntarenas, Canton 11 Garabito, Jaco — Pastor Diaz Ave, 61101, Costa Rica and company number: 3-102-911099, an online gambling institution established and authorized under the laws of Costa Rica (license number ALSI-202409026-FI2) and, therefore, falling within the definition of an institution that falls under the Law on the Prevention of Money Laundering and Terrorist Financing. The term "Company / Organisation" when used in these Policies also refers to the management bodies of the Organisation and the members of such bodies as well as the employees of the Organisation.

Policy – AML/CFT and Sanctions Compliance Policy.

Politically Exposed Person (PEP) – Natural persons who are or have been entrusted with Prominent Public Functions and Close Family Members or Close Associates of such persons.

Prominent Public Functions:

• The head of the state, the head of the government, a minister, a vice minister or a deputy minister, a secretary of the state, a chancellor of the parliament, government or a ministry;
• A member of the parliament;
• A member of the Supreme Court, the Constitutional Court or any other supreme judicial authorities whose decisions are not subject to appeal;
• A mayor of the municipality, a head of the municipal administration;
• A member of the management body of the supreme institution of state audit or control, or a chair, deputy chair or a member of the board of the central bank;
• Ambassadors of foreign states, a charge d'affaires ad interim, the head of Anjouan armed forces, commander of the armed forces and units, chief of defence staff or senior officer of foreign armed forces;
• A member of the management or supervisory body of a public undertaking, a public limited company or a private limited company, whose shares or part of shares, carrying more than 1/2 of the total votes at the general meeting of shareholders of such companies, are owned by the state;
• A member of the management or supervisory body of a municipal undertaking, a public limited company or a private limited company whose shares or part of shares, carrying more than 1/2 of the total votes at the general meeting of shareholders of such companies, that are owned by the state, and which are considered as large enterprises
• A director, a deputy director or a member of the management or supervisory body of an international intergovernmental organisation;
• A leader, a deputy leader or a member of the management body of a political party.

Source of funds – means the origin of the funds involved in a business relationship or occasional transaction. It includes both the activity that generated the funds used in the business relationship, for example the customer's salary, as well as the means through which the customer's funds were transferred.

Source of wealth – refers to funds that the customer has acquired during a prolonged period of time and that make up the customer's entire body of wealth (total funds). When determining the source of wealth, the main focus is the acquisition of information on customer's activities that indicate how the customer acquired the wealth.

Terrorist financing (TF) – the solicitation, collection or provision of funds with the intention that they may be used to support terrorist acts or organizations. Funds may stem from both legal and illicit sources. More precisely, according to the International Convention for the Suppression of the Financing of Terrorism, a person commits the crime of financing of terrorism "if that person by any means, directly or indirectly, unlawfully and willfully, provides or collects funds with the intention that they should be used or in the knowledge that they are to be used, in full or in part, in order to carry out" an offense.

SCOPE OF THE POLICY

1.1 As part of the commitment to maintaining the highest standards and following all relevant regulations, it is the Organizations' policy to prohibit and prevent any cases of money laundering and terrorist financing.

Whereas the Organisation is Innovista Limitada, the company established under the laws of Costa Rica, with its registered address Province 06 Puntarenas, Canton 11 Garabito, Jaco — Pastor Diaz Ave, 61101, Costa Rica and company number: 3-102-911099, an online gambling institution established and authorized under the laws of Costa Rica (license number ALSI-202409026-FI2) and, Money Laundering is the participation in any transaction that seeks to conceal or disguise the nature, or the origin of funds derived from the illegal activities. Money laundering involves not only the proceeds of drugs trafficking, but funds related to other illegal activities, including fraud, corruption, organized crime, terrorism, and many other crimes. Generally, the money laundering consists of three stages:

Placement: introduction of cash originating from illegal / criminal activities into financial or non-financial institutions.

Layering: separating the proceeds of criminal activities form their source through the use of layers of complex financial transactions. These layers are designed to hamper the audit trail, disguise the origin of funds and provide anonymity.

Integration: placing the laundered proceeds back into the economy in such a way that they re-enter the financial system as legitimate funds.

1.2 Terrorist financing encompasses the means and methods used by terrorist organizations to finance their activities. This money can come from legitimate sources, for example from profits from businesses and charitable organizations. But terrorist groups can also get their financing from illegal activities such as trafficking in weapons, drugs or people, or kidnapping for ransom.

This Policy is developed and periodically updated by the Anti-Money Laundering Officer of Innovista Limitada (the Organization) based on the general principles set up by the Board of Directors of the Organization in relation to the prevention of money laundering and terrorist financing.

The Policy applies to all employees of the Organization and aims to setup key roles and responsibilities for the staff members as well as to ensure compliance with the following legislation:

• European Directive 2005/60/EC and European Directive 2018/843 on the prevention of the use of the Financial System for the purpose of money laundering and terrorist financing as transposed into National Law (L188(I)/2007-2018
• Anjouan Money Laundering (Prevention) Act 008 of 2005.
• All amendments and/or changes of the current version of the Policy must be approved by the Company's Board of Directors.

1.3 Responsibilities and Recipients of the Document:

Owner of the process: AML Officer

Responsibilities:

This document is binding to all employees of the Organisation whose job responsibilities are related to establishment and review of the business relationships.

In cases of violations of the Procedure, the detector of the violation immediately informs the head of his structural unit. If differences are found between the processes carried out in the Organisation and those determined in the procedure, the Owner of the process should be informed about this.

Recipients of the Document:

• Customer support department
• Fraud Prevention department
• Payments department
• AML department

BOARD OF DIRECTORS

2.1 The Board of Directors is responsible for ensuring that the Organisation complies with its obligations under the Law. The Board shall assess and periodically review the effectiveness of the policies, arrangements and procedures put in place to comply with the obligations under the Law, and to take appropriate measures to address any deficiencies.

2.2 The main duties and responsibilities of the Board of Directors in relation to the prevention of money laundering and terrorist financing mainly include:

• Determining, recording and approving the general policy principles of the Organisation in relation to the prevention of money laundering and terrorist financing and inform the Anti-Money Laundering Officer accordingly
• Appointment of an Anti-Money Laundering Officer and determining his/her main duties and responsibilities and where is necessary, assistant compliance officers
• Approval of the AML policy and procedures
• Communication of the AML policy to all employees of the Organisation
• Ensuring that the requirements of the Law and the AML Directive are applied, and that the Organisation maintains appropriate, effective and sufficient systems and controls for the prevention of money laundering and terrorist financing
• Ensuring that the Anti-Money Laundering Officer has full access to all documents and information necessary for the execution of his/her duties and responsibilities
• Ensuring that all employees of the Organisation know the Anti-Money Laundering Officer and report to him/her all suspicious transactions in accordance with the requirements of the AML Laws and the Directive
• Establishing a clear and quick reporting chain of suspicious transaction to the Anti-Money Laundering Officer
• Ensuring that the Anti-Money Laundering Officer has sufficient resources, staff and technology, for the effective execution of his/her duties and responsibilities
• Assessing and approving the Annual Report
• Reviewing the report submitted to the Board by the Anti-Money Laundering Officer

Since the overall responsibility for the prevention of money laundering and terrorist financing lies with the Board of Directors, they are also responsible for the assessment and approval of the Annual Report prepared by the Anti-Money Laundering Officer and for taking any necessary actions as deemed appropriate under the circumstances to remedy any weaknesses and/or deficiencies identified in the Report.

INTERNAL AUDIT

3.1 The Organisation has assigned an Internal Auditor in order to continuously test current practices and inform the Organisation in case there are any suggestions for improvements. The Audit is performed at least on an annual basis.

Any findings are being submitted to the Board of Directors which decides the necessary measures that need to be taken to ensure the rectification of any weaknesses and/or deficiencies, which have been detected.

ROLE AND RESPONSIBILITIES OF AML OFFICER

4.1 The AML Officer has the necessary authority, resources and expertise to carry out his/her relevant duties and responsibilities and also has access to all relevant information. The employees of the Organization are informed of the person carrying out AML role and on ways of contacting him/her.

Currently, 1 employee has been assigned the role of AML Officer: Volodymyr Bakotskyi.

In case of any changes in the structure of AML Department – this will be communicated to the Computer Gaming Licensing Board accordingly.

4.2 Responsibilities of AML Officer:

• To draft the Organisations' procedures and controls for the Prevention of the Money Laundering and Terrorism Financing
• To develop and improve Customer Acceptance Policy and submit it for approval of the Board of Directors
• To monitor and evaluate the sound and effective implementation of the Organization's general policy principles and to manage the associated risks in relation to the Prevention of Money Laundering and Terrorist Financing
• To ensure that KYC and EDD procedures are adhered to
• To ensure Sanctions Compliance procedures are adhered to
• To advise employees on issues arising as part of implementation of anti-money laundering program within the Organisation
• To provide necessary materials and trainings on AML/CTF and Sanctions Compliance to the employees of the Organisation
• To immediately inform the Board of Directors of any cases of non- compliance with laws, regulations and directives issued by the Governor
• To recommend to the Board of Directors any amendments necessary to the AML Policy
• To receive and evaluate information from all personnel regarding suspicious client transactions and activities
• If considered necessary – to report such transactions and activities to the Governor
• To ensure the preparation, maintenance and updating of lists of clients categorization following a risk-based approach.
• To screen existing clients and transactions to ensure that the AML policies are followed
• To detect, record and evaluate, at least on an annual basis, the risks arising from existing and new clients, new financial instruments and services and make any necessary amendments to the systems and procedures of the Organisation.
• To prepare and submit to the Computer Gaming Licensing Board the monthly prevention statement in a timely manner
• To Report to Senior Management, at least annually, on compliance issues indicating in particular whether appropriate remedial measures have been taken in the event of any deficiencies identified
• To prepare the Annual AML Report and submit it to the Board of the Directors

AML ANNUAL REPORT

5.1 The Annual Report, prepared by the AML Officer is a significant tool for assessing the Organisations level of compliance with its obligations as these are laid down in the Law and the Anti-Money Laundering Directive.

5.2 The Annual Report will be prepared and submitted for approval to the Board of Directors, within two months from the end of each calendar year (the latest by the end of February) and to the Governor, if requested, together with the minutes of the meeting, during which the Annual Report has been discussed and approved. It is provided that the said minutes will include the measures decided for the correction of any weaknesses and/or deficiencies identified in the Annual Report and the implementation timeframe of these measures.

5.3 The Annual Report should deal with money laundering and terrorist financing preventive issues pertaining to the year under review and, as a minimum, should cover the following:

• Information for measures taken and/or procedures introduced for compliance with any amendments and/or new provisions of the Law and the AML Directive which took place during the year under review
• Information on the inspections and reviews performed by the AML Compliance Officer, reporting the material deficiencies and weaknesses identified in the policy, practices, measures, procedures and controls that the Organisation applies for the prevention of money laundering and terrorist financing. In this regard, the report outlines the seriousness of the deficiencies and weaknesses, the risk implications and the actions taken and/or recommendations made for rectifying the situation
• The number of internal suspicion reports submitted by employees of the Organisation to the AML Compliance Officer, and possible comments/observations thereon.
• The number of reports submitted by the AML Compliance Officer to the Governor, with information/details on the main reasons for suspicion and highlights of any particular trends
• Information, details or observations regarding the communication with the employees on money laundering and terrorist financing preventive issues
• Information on the policy, measures, practices, procedures and controls applied by the Organisation in relation to high-risk clients as well as the number and country of origin of high-risk clients with whom a business relationship is established.
• Information on the procedures applied by the Organisation for the ongoing monitoring of client accounts and transactions
• Information on the training courses/seminars attended by the AML Compliance Officer and any other educational material received
• Information on training/education and any educational material provided to staff during the year, reporting, the number of courses/seminars organized, their duration, the number and the position of the employees attending, the names and qualifications of the instructors, and specifying whether the course/seminars were developed in-house or by an external organisation or consultants
• Results of the assessment of the adequacy and effectiveness of staff training
• Information on the recommended next year's training program.
• Information on the structure and staffing of the department of the Compliance Officer as well as recommendations and timeframe for their implementation, for any additional staff and technical resources which may be needed for reinforcing the measures and procedures against money laundering and terrorist financing.

This document continues with additional sections covering risk procedures, sanctions compliance, client acceptance policies, due diligence procedures, enhanced identification measures, ongoing monitoring processes, record-keeping procedures, employee obligations, and training requirements. Due to length constraints, the full content is available in the complete policy document.