The financial commentary world is having a collective meltdown over the Court of Justice of the European Union (CJEU) ruling that restricted public access to ultimate beneficial ownership (UBO) registers. Critics claim this decision drags Europe back into the dark ages of financial secrecy. They argue that shielding the identities of company owners is a massive victory for money launderers, tax evaders, and corrupt oligarchs.
They are entirely wrong.
The panic surrounding this ruling is built on a lazy, unchallenged consensus: the naive belief that total transparency is inherently virtuous and always effective. It is not. The blanket opening of UBO registers to the general public was a systemic failure masquerading as progress. By striking it down, the EU court did not kill financial transparency; it saved it from its own counterproductive excesses.
The Blind Spot of Total Transparency
Advocacy groups love a simple narrative. For years, the prevailing dogma insisted that if you have nothing to hide, you should have no objection to your private financial connections being searchable by anyone with an internet connection. This logic is fundamentally flawed.
When the EU implemented the Fifth Anti-Money Laundering Directive, forcing member states to make UBO registries accessible to the general public, it conflated public oversight with state surveillance. The CJEU correctly identified this as a severe infringement on the fundamental rights to privacy and personal data protection enshrined in Articles 7 and 8 of the EU Charter of Fundamental Rights.
Making data available to everyone means making it available to bad actors. In an era of rampant identity theft, corporate espionage, and targeted kidnappings, publishing a searchable directory of high-net-worth individuals, entrepreneurs, and family business owners is an operational hazard. I have advised mid-market business owners who faced genuine security threats simply because their home addresses and corporate holdings were public property.
Total transparency creates a weaponized data pool for extortionists and competitors. It does nothing to deter the actual criminals.
The Illusion of Crowdsourced Compliance
The core argument for public UBO access relies on a fantasy: that a distributed army of investigative journalists, NGOs, and curious citizens will police the financial system better than state authorities.
This is an admission of regulatory incompetence.
The state possesses the power of subpoena, law enforcement, and cross-border intelligence sharing. To suggest that a public register is necessary because NGOs need to do the heavy lifting is a dangerous abdication of duty.
Furthermore, public access does not lead to accurate auditing; it leads to noise. When anyone can browse data without context, the result is an influx of false positives, misinterpretations, and trial-by-media. A legitimate corporate structure designed for asset protection or cross-border inheritance is frequently mislabeled by amateur sleuths as a shell company meant for tax evasion.
The heavy hitters in financial crime do not register their illicit assets under their real names in public registries anyway. They use complex webs of nominees, offshore trusts, and jurisdictional blind spots that a basic public UBO registry fails to capture. Public access merely penalizes the compliant while giving a false sense of security to regulators.
Regulators Must Do Their Own Job
The CJEU ruling did not block law enforcement from accessing UBO data. Financial Intelligence Units (FIUs), tax authorities, banks, and obligated entities under anti-money laundering regulations still have full, unrestricted access to this information.
The ruling specified that access must be granted to those who can demonstrate a "legitimate interest." This is where the real work begins. Instead of crying foul, the financial industry needs to define what legitimate interest means in practice.
- Investigative Journalists: Media professionals investigating corruption or sanctions evasion clearly possess a legitimate interest. The mechanism for them to gain access must be streamlined, fast, and legally protected, rather than buried under bureaucratic red tape.
- NGOs and Civil Society: Organizations with a proven track record of financial research should have designated access credentials, subject to strict data misuse penalties.
- Financial Institutions: Compliance officers do not need public registries; they need interconnected, verified state databases that operate in real time.
The current system relies on self-certification. A company types a name into a form, and the state uploads it without verification. That is the vulnerability. If a registry contains garbage data, making it public just means the public is viewing verified garbage.
True financial transparency requires the state to invest in data verification at the point of entry. Verify the identities, track the source of funds, and empower law enforcement to act on the data they already possess.
The Cost of the Counter-Intuitive Approach
Adopting this perspective requires acknowledging an uncomfortable truth: privacy has a cost, and so does security. Limiting public access means some financial anomalies might take longer to uncover. It means investigative journalists will have to fill out paperwork or prove their credentials before accessing a database.
That is a trade-off worth making to preserve the rule of law.
If a society decides that fundamental privacy rights can be stripped away whenever a noble cause demands it, then those rights are not fundamental; they are conditional. The CJEU recognized that the fight against financial crime cannot be won by destroying the very legal protections that separate democracies from authoritarian regimes.
Stop asking how to make financial data available to everyone. Start demanding that regulators use the data they already have to prosecute the criminals who are hiding in plain sight.
