Reporting entity status is not decided by job title alone. It follows the service being provided. Under the AML/CTF Act, a business becomes an AUSTRAC reporting entity when it provides a designated service with the required Australian connection.

That distinction matters for Tranche 2. A law firm, accounting practice, conveyancer or real estate business may not be in scope for every piece of work. Same client, different matter, different answer.

Start with service, not sector

AML/CTF Act uses designated services to define regulated activity. Section 6 sets out tables of services. If a business provides one of those services, and the service has the required link to Australia, the business may be a reporting entity for that activity.

Tranche 2 extends the regime to new professional and property-related services from 1 July 2026. Relevant businesses can include lawyers, accountants, conveyancers, real estate professionals, dealers in precious metals, stones and products, and trust and company service providers.

Useful first question is not, "is this an accounting firm?" Better question is, "what service is being provided on this matter?" Scope often turns on whether the firm is helping with a transaction, company structure, trust arrangement, real estate dealing, movement of money, or control of assets.

Some work will sit outside scope. General advice may not be the same as carrying out a designated service. Certain court or tribunal order scenarios are carved out in the professional services table. Legal professional privilege also has specific treatment. These details do not remove the need for triage. They make triage more important.

What changed under Tranche 2

From 1 July 2026, newly regulated entities that provide relevant designated services must comply with AML/CTF Act and Rules. Enrolment is due within 28 days of first providing a designated service, which usually points to 29 July 2026 for firms that begin providing those services on commencement.

Core obligations include AML/CTF programme, customer due diligence, ongoing due diligence, reporting, staff training, record keeping, and compliance officer arrangements. Civil penalty exposure is material. AUSTRAC says Federal Court civil penalties can reach 100,000 penalty units for a body corporate and 20,000 penalty units for other persons. Current Commonwealth penalty unit is $330 for contraventions on or after 7 November 2024.

Scope review should answer practical questions before policy wording is finalised:

• Which services does the firm provide, not only what sector does the firm belong to.
• Which services have Australian geographical link.
• Who is the customer receiving the designated service.
• Which matters require customer due diligence before work starts.
• Which exceptions need partner, MLRO or senior compliance review.

Scope work is usually where firms discover the awkward truth: client onboarding was already a risk decision, it just was not written down that way.

Why this becomes an operating-model problem

In-scope status changes how firms need to manage records. Engagement letter and ID check are not enough. Firm needs a client record that explains service type, customer, beneficial owners, risk rating, screening result, reviewer, exception path, and reason work proceeded.

Hard cases will be mixed matters. A client may first instruct on property transaction, then ask for company restructuring, then later require trust-related work. Static intake form will struggle because scope can change as matter changes. Compliance team needs to see when new work creates new AML/CTF questions.

Better operating model treats onboarding as start of customer lifecycle, not a one-off gate. Client record should absorb new matters, new evidence, changed ownership, fresh screening outcomes, and periodic review. That is where Tranche 2 becomes less about panic before deadline and more about building memory into regulated work. For operating model view, see workflow-led onboarding