The risk you so clearly point out are valid and concerning. I suspect the real reason KYC was initially setup this was because of a practical one. They didn't have teams internally who either had already created that product (KYC/AML onboarding) or didn't have people that new how to do it. So, they sourced it out to someone else that specializes in it. Problem solved eh? In the moment sure, but now there is much more architectural surface area risk. Great perspective Varsha Ojha