Complete List of Acceptable KYC Documents + Verification Solution

What if you had a cheat sheet for one of the most important processes in the digital world? We’re talking about Know Your Customer (KYC), the process of verifying identities to keep your platforms secure and compliant.

But figuring out which documents you need can feel like a confusing puzzle. There are different rules for different countries and special requirements for certain situations. It’s a lot to keep track of!

Well, today, we’re going to break down the complete list of acceptable KYC documents, from the standard IDs to the nitty-gritty of what’s needed for special cases like non-residents and high-risk individuals.

(Plus, we’ll show you a way to handle KYC document verification automatically across any market you enter.)

So stick around because this is the quick overview you’ve been searching for!

KYC Document Requirements: A Quick Overview

Know Your Customer (KYC) is the regulatory process of verifying a customer's identity, address, and (where applicable) financial profile before opening an account, issuing a product, or executing a transaction. It is mandated globally by the Financial Action Task Force (FATF) Recommendation 10, and enforced locally through the USA PATRIOT Act Section 326, FinCEN's Customer Due Diligence (CDD) Final Rule (effective May 11, 2018), the EU 6th Anti-Money Laundering Directive (6AMLD), the U.K. Money Laundering Regulations 2017, the Reserve Bank of India KYC Master Direction, the MAS Notice 626 (Singapore), and equivalent rules in over 200 jurisdictions.

KYC is structured in four pillars (per FinCEN and FATF guidance):

1. Customer Identification Program (CIP): collect and verify name, date of birth, address, and a national identifier (SSN/ITIN, passport, national ID).
2. Customer Due Diligence (CDD): assess customer risk, capture beneficial owners (25%+ for legal entities under FinCEN CDD), and document the source of funds where relevant.
3. Enhanced Due Diligence (EDD): apply heightened scrutiny to PEPs, high-risk jurisdictions (FATF grey/black list), and complex ownership structures.
4. Ongoing Monitoring: continuously screen for sanctions matches, adverse media, transaction anomalies, and beneficial-ownership changes.

Across all four pillars, the underlying document categories are the same. Every KYC programme must verify three things, supported by physical or digital documents:

1. Identity: who the person is.
2. Address: where the person lives.
3. Income or source of funds: how the person earns or holds money (required for lending, insurance, and high-value accounts).

Beyond individuals, KYC also extends to corporate entities, trusts, foundations, minors, non-residents, and high-risk customers, each with its own document set covered later in this guide.

Primary Identity Verification Documents

The first and most important step in any KYC check is verifying who the customer claims to be, using a government-issued document with strong anti-tamper features. Acceptable identity documents share four characteristics: issued by a government authority, photograph of the holder, machine-readable (MRZ, barcode, or chip), and unexpired on the date of verification.

Government-Issued Photo IDs

These are the four document types regulators recognise as primary identity proofs in nearly every jurisdiction:

• Passport. The international gold standard. Conforms to the ICAO 9303 machine-readable travel document standard, with a Machine Readable Zone (MRZ) and (for e-passports) an embedded NFC chip that stores the holder's biometric data and digitally signed personal information. Validity period is typically 10 years (5 years for minors). Accepted by every regulated institution worldwide.
• Driver's License. Photograph, name, date of birth, residential address, and signature in a single document. In the United States, REAL ID-compliant licenses (gold star, fully phased in May 7, 2025) are the recognised standard for federal-purpose verification. Note: a driver's license does not establish citizenship; it is an identity and address document, not an immigration document.
• National ID Card. Most countries outside the U.S. issue a mandatory national ID card to citizens and lawful residents. Examples include the German Personalausweis, the French Carte Nationale d'Identité, the UAE Emirates ID, the Indian Aadhaar Card, and the Singaporean NRIC. Many include an NFC chip for digital verification.
• Voter ID Card. Accepted as primary ID in jurisdictions where the voter card is issued by the central election authority and includes a photograph, most notably India's Election Commission Voter ID (EPIC), Mexico's INE Credencial, and Bangladesh's NID.

The four together cover >95% of customers in any global onboarding flow, which is why Signzy's Document OCR and Biometric Verification APIs benchmark accuracy specifically against these document types.

Country-Specific Identity Documents

Beyond passports and driver's licenses, regulated businesses that operate across borders must also accept the national identifiers unique to each jurisdiction. The table below maps the primary national ID for 22 major economies, including the document format, useful for both KYC document-checklist policies and OCR/validation rules.

For passport-specific verification, Signzy's Passport Verification API reads the MRZ, validates against the ICAO checksum algorithm, and (for e-passports) authenticates the chip's digital signature.

Proof of Address Documents

Identity tells you who; proof of address tells you where. Most regulators (FATF Recommendation 10, FinCEN CIP, EU 6AMLD) require an independent address document dated within the last 3 months for individual customers, and most jurisdictions accept three broad source categories.

The 3-month rule has two practical exceptions: bank and credit-card statements are typically accepted up to 6 months old, and annual government documents (council tax, property tax, voter-registration confirmation) are typically accepted for 12 months.

1. Utility and Service Bills

Utility and service bills are the most widely accepted proof-of-address document in retail KYC because they tie a person to a physical delivery point that the utility provider has independently verified. The bill must show the full legal name, full residential address, issue date, and provider letterhead. Partial extracts and online screenshots without provider branding are typically rejected.

Globally accepted utility documents (most providers issue digitally):

• Electricity bill: accepted in every jurisdiction.
• Water bill: accepted in every jurisdiction; especially weighty in countries where water is municipally provided.
• Gas / piped gas bill: accepted in every jurisdiction with piped-gas distribution.
• Internet, broadband, and landline phone bills: universally accepted.
• Mobile / cellular phone bill: accepted in most jurisdictions, with the caveat that prepaid mobile statements may be rejected (post-paid statements only).
• Cable / satellite TV bill: accepted in most jurisdictions when issued by a regulated provider.

2. Financial Institution Documents

Documents issued by a regulated financial institution carry strong evidentiary weight because the issuer is itself subject to KYC and AML rules. The most commonly accepted documents:

• Bank account statement: typically accepted up to 6 months old. Must show the holder's full name and address, and the bank's name and branch.
• Credit-card statement: accepted up to 3–6 months old depending on jurisdiction.
• Mortgage statement: accepted up to 3 months old.
• Investment / brokerage account statement: accepted up to 3 months old.
• Insurance policy document: typically accepted if issued within the last 12 months and showing policyholder address.

These documents are particularly useful for customers who do not pay typical utility bills, such as students, military personnel on overseas assignment, and people in shared housing.

3. Government and Legal Documents

Documents issued by a government agency or under a legal contract are the strongest single proof of address available:

• Tax notice or tax assessment: IRS Notice CP-2000 in the U.S., HMRC Tax Coding Notice in the U.K., Income Tax assessment in India, all carry full evidentiary weight.
• Local-authority correspondence: council tax bill (U.K.), property tax assessment (U.S.), municipal tax notice (most other countries).
• Voter registration card or polling-card confirmation: accepted in jurisdictions where voter registration is tied to residential address.
• Driver's licence or vehicle registration: accepted where it shows a current address (note: as primary proof of address only, not as both ID and address from the same document).
• Signed and dated rental or lease agreement: accepted in nearly every jurisdiction; some regulators require notarisation for high-risk customers.

For more depth on what qualifies, see Signzy's full Proof of Address guide.

Proof of Income Documents

For lending products, mortgages, credit cards, insurance, and any account where affordability or risk capacity matters, KYC extends into a third document layer: proof of income. The goal is two-fold: confirm that the customer can afford the product, and confirm that the funds being deposited or paid are legitimate (a key Bank Secrecy Act and FATF Recommendation 22 obligation).

Related Resources: OCR API · Identity Verification · Passport Verification

1. Employment-Related Documents

For salaried customers, the cleanest proof of income comes directly from the employer:

• Recent payslips (typically last 3 months). Must show employer name, employee name, gross and net pay, statutory deductions, and pay date.
• Formal employment contract. Must clearly state base salary, allowances, and start date.
• Employer salary letter (HR letter). Issued on company letterhead, signed by an authorised HR officer, stating the employee's role, salary, and tenure. Especially common where digital payslips are not standard.
• Form W-2 (U.S.) / P60 (U.K.) / Form 16 (India) / payment summary (Australia). Annual employer-issued income summaries.
• Direct-deposit history (last 3–6 months of bank statements). Used as supporting evidence.

2. Tax and Financial Documents

For self-employed customers, business owners, and high-net-worth individuals, regulators expect a multi-source view of income that includes tax filings:

• Annual tax return. Form 1040 (U.S.), Self-Assessment SA100 (U.K.), ITR-1 to ITR-7 (India), TFN return (Australia). Most regulators require the most recent two years for self-employed applicants.
• Bank statements showing regular salary deposits or business income, typically last 6 months.
• Audited financial statements (for incorporated businesses).
• Capital-gains statements, dividend slips, rental-income receipts, used to evidence non-employment income.
• Pension statement, government-benefit statement, scholarship letter, used where the customer's income is from a recurring non-employment source.

For high-risk customers and EDD cases, additional source-of-wealth documentation is required (covered in the High-risk Customers section below).

Special Category Requirements

Standard KYC document lists assume the customer is an adult resident with employment income. Real-world onboarding regularly involves customers who don't fit that profile. Regulators provide specific guidance for each category, and the document requirements differ.

1. Minors

Verifying a minor's identity requires documents for both the child and a parent or legal guardian. Globally accepted document set:

• Child's birth certificate: establishes age, parentage, and citizenship. Long-form birth certificates listing both parents are preferred.
• Child's passport (where issued) or government-issued school ID (where the school is recognised by the education authority).
• Parent or guardian's government-issued photo ID (passport or driver's licence).
• Parent or guardian's proof of address (any of the documents in the previous section).
• Court-issued guardianship order if the responsible adult is not a biological parent.

Age thresholds for “minor” vary: the U.S. Bank Secrecy Act, the U.K. Money Laundering Regulations, and FATF guidance generally treat customers under 18 as minors. Some jurisdictions (e.g., India for Aadhaar-linked accounts) have intermediate categories at 10 and 18 years.

2. Non-residents

For customers who are not residents of the country in which the account is opened, KYC must establish legal entry status in addition to identity and address. Required documents typically include:

• Foreign passport with an unexpired visa stamp.
• Form I-94 Arrival/Departure Record (U.S.), printable from i94.cbp.dhs.gov.
• Visa, residence permit, or work permit: H-1B, L-1, F-1, J-1 (U.S.); BRP (U.K.); UAE residence visa; Singapore Employment Pass; etc.
• Address proof in the country of residence: utility bill or bank statement at the local address.
• Embassy or notary attestation: required by some jurisdictions for non-residents from FATF-monitored jurisdictions.
• Foreign tax-identifier self-certification under FATCA (Form W-8BEN) and the OECD Common Reporting Standard.

3. Corporate Entities

KYC for a company is layered: the legal entity itself must be verified, and the natural persons who ultimately own or control it must be verified. This dual-layer process is called KYB (Know Your Business). The standard corporate document set:

• Certificate of Incorporation: issued by the Secretary of State (U.S.), Companies House (U.K.), MCA (India), or equivalent registrar.
• Articles of Association / Bylaws / Operating Agreement.
• Memorandum of Association (where applicable).
• List of current directors and officers, with each director's individual KYC.
• Authorised-signatory list and specimen signatures, naming the individuals authorised to act on behalf of the entity.
• Beneficial Ownership Information (BOI): under FinCEN's BOI rule (effective Jan 1, 2024) and the EU 4th and 6th AMLD, regulated firms must collect and verify the identity of all individuals owning or controlling 25% or more of a legal entity.
• Proof of registered business address: utility bill, lease, or government correspondence at the registered office.
• Tax ID / EIN registration: EIN (U.S.), VAT registration (EU/U.K.), GSTIN (India), TRN (UAE).

4. Trusts/Foundations

Trusts and foundations require even deeper verification because the legal entity, the trustees, and the beneficiaries are distinct parties. Required documents:

• Trust deed: the founding legal document setting out the trust's purpose, parties, and terms.
• Identity proof for each trustee: full KYC document set per trustee.
• Identity proof for the settlor (the person who created and funded the trust).
• Identity proof for each named beneficiary holding 25% or more of the beneficial interest.
• Letter of wishes (where applicable): guidance the settlor has given trustees.
• Source-of-funds documentation: evidence of how the trust was funded.
• Tax registration: trust tax ID where the trust is required to file separately.

5. High-risk Customers

If a customer is identified as high-risk, such as a Politically Exposed Person (PEP), a customer in a FATF-listed high-risk jurisdiction, an unusually complex ownership structure, or a customer in a high-risk industry (gambling, crypto, precious metals), the standard KYC document list is insufficient. Regulators require Enhanced Due Diligence (EDD) under FATF Recommendation 12, the FinCEN CDD Rule, and EU 6AMLD.

EDD requires both standard KYC documents and the following additional evidence:

• Source of Wealth (SoW) declaration: evidence of how the customer accumulated their overall wealth. Acceptable evidence includes sale-of-business documentation, inheritance documents, audited employment income over multiple years, investment portfolio statements, or property-sale documentation.
• Source of Funds (SoF) declaration: evidence of where the specific funds being deposited or invested are coming from. Typically a recent bank statement showing the originating credit, or a sale agreement for the underlying asset.
• PEP screening report: automated screening against global PEP databases (Dow Jones, World-Check, ComplyAdvantage).
• Sanctions screening: screening against OFAC SDN, UN Consolidated, EU Consolidated, U.K. HMT, and HKMA sanctions lists.
• Adverse-media screening: searches for negative news linking the customer to financial crime, corruption, or terrorism financing.
• Senior-management approval: most regulators require explicit sign-off by senior management before onboarding a PEP or other high-risk customer.

Solution to Verify KYC Documents Across Major Economies

Building this verification capability in-house is operationally untenable. A typical international onboarding flow can present documents in 180+ formats, dozens of languages, with different MRZ rules, NFC standards, security features, and validity windows. The document set itself changes every few years as countries roll out new ID generations (the EU's eIDAS-2.0 transition, the U.S. REAL ID rollout, India's recent Aadhaar masking rules, the UAE's Emirates ID v2).

Signzy's Identity Verification platform automates document KYC end-to-end. Specifically:

• Document OCR, MRZ extraction, NFC chip read, hologram detection, and tamper analysis, all run automatically per submission.
• Biometric liveness and face-match: passive and active liveness with deepfake detection through the liveness check API.
• Address, sanctions, PEP, and adverse-media screening, bundled into the same flow via the AML Screening API.
• UBO and KYB verification, via the Know Your Business API and UBO Check.
• Single-API onboarding: all of the above orchestrated through Signzy's One Touch KYC workflow.

Signzy is rated 4.7 on G2 and is used by 200+ U.S., EU, MENA, and APAC financial institutions, fintechs, and B2B platforms. Customers running A/B tests typically place document KYC immediately after the identity capture step and report up to a 40% reduction in manual review queues post-integration, with average onboarding latency under 90 seconds end-to-end.

To see the platform in action, book your demo here.