Back to Glossary

Sanctions Screening

Sanctions screening is the process of verifying that a merchant, business owner, or beneficial owner does not appear on government-issued sanctions lists maintained by regulatory authorities such as the U.S. Office of Foreign Assets Control (OFAC), the European Union, the United Nations, and the UK HM Treasury. These lists identify individuals, entities, and countries subject to trade restrictions or financial prohibitions.

Why Sanctions Screening Matters

Sanctions screening is a mandatory compliance control. Failure to screen adequately, or onboarding a sanctioned party, exposes financial institutions, payment service providers (PSPs), and merchants to significant regulatory risk.

Key Challenges

  • Dynamic List Updates: Sanctions lists are updated continuously. A merchant who was compliant at onboarding may be designated later, requiring real-time or periodic rescreening.

  • Name Variation and False Positives: Individuals and entities may appear under multiple name spellings, transliterations, or aliases. Screening systems must use fuzzy-matching algorithms to identify potential matches, but this often generates false positives that require manual review.

  • Associated Parties: Screening must extend beyond the primary business entity to include ultimate beneficial owners, directors, key management personnel (KMP), and controlling shareholders. An entity may be compliant, but a UBO may be sanctioned.

  • Cross-Border Complexity: Different jurisdictions impose distinct sanctions regimes. A party sanctioned by OFAC may not appear on EU or UN lists, and vice versa. Compliance teams must screen against all relevant lists based on where they operate or transact.

How to Build an Effective Sanctions Screening Program

We recommend the following approach for implementing a robust screening process:

1. Screen at Onboarding and Continuously

Sanctions screening must occur at the point of merchant onboarding as part of Know Your Business (KYB) and Know Your Customer (KYC) procedures. However, onboarding is not sufficient. Lists change frequently, and previously compliant parties may be designated.

We advise implementing continuous screening, with rescreening triggered by:

  • Scheduled intervals (e.g., quarterly or monthly)
  • Real-time alerts when sanctions lists are updated
  • Transaction monitoring events or adverse media triggers

2. Screen All Relevant Parties

Do not limit screening to the registered business entity.

We see compliance failures occur when teams neglect to screen:

  • All beneficial owners (typically defined as those with 25% or more ownership)
  • Directors and officers
  • Key management personnel
  • Related entities or parent companies

If a UBO is sanctioned, the merchant relationship should be escalated or declined, even if the business itself does not appear on any list.

3. Use Fuzzy Matching and Structured Data Quality

Exact name matching is insufficient. Sanctions list entries may include:

  • Alternate spellings and transliterations (e.g., Arabic or Cyrillic to Latin)
  • Aliases or known pseudonyms
  • Partial identifiers (date of birth, passport number, address fragments)

Use a screening provider or internal system that supports fuzzy-matching logic. However, this will increase false positives. We recommend establishing clear escalation workflows and training review teams to distinguish true matches from name collisions.

4. Maintain an Audit Trail

Regulators expect evidence that screening was performed, when it was performed, and how match decisions were resolved.

We advise maintaining logs that include:

  • Timestamp of each screening event
  • Lists screened (e.g., OFAC SDN, EU Consolidated List, UN Security Council)
  • Match results (hit or no hit)
  • Manual review notes for any flagged matches
  • Final decision (cleared, escalated, declined)

Audit trails must be retained for at least five years, and in some jurisdictions longer.

5. Establish Clear Escalation and Decision Protocols

When a potential match is identified, the case should be escalated to a compliance officer or senior risk reviewer.

We recommend defining:

  • Match scoring thresholds: What score triggers automatic escalation?
  • Review SLAs: How quickly must a flagged case be reviewed?
  • Decline criteria: Under what conditions is the merchant automatically declined (e.g., confirmed true positive on OFAC SDN list)?
  • Documentation requirements: What evidence must be gathered to clear a false positive?

If a true match is confirmed, the relationship must be terminated or blocked immediately, and a report filed with the appropriate regulatory authority (e.g., a Suspicious Activity Report in the U.S.).

Real-World Example

An acquiring bank onboards a European e-commerce merchant. During initial KYB screening, the business entity itself returns no sanctions hits. However, deeper UBO screening reveals that one of the three beneficial owners shares a name with an individual on the OFAC Specially Designated Nationals (SDN) list.

The case is escalated to the compliance team, who perform manual review. They compare:

  • Date of birth (the sanctioned individual was born in 1965; the UBO in question was born in 1982)
  • Address and nationality (the sanctioned individual is located in a high-risk jurisdiction; the UBO resides in Germany)
  • Passport or national ID number (no match)

After review, the compliance officer determines this is a false positive due to name collision. The merchant is cleared for onboarding, and the decision is documented with supporting evidence.

Had the dates of birth, address, or other identifiers matched, the merchant would have been declined, and the bank would have filed a report with OFAC and their local regulator.

Strategic Context: The Business Impact of Sanctions Screening Failures

Sanctions violations carry severe consequences. Regulatory enforcement actions in recent years have resulted in fines ranging from hundreds of thousands to hundreds of millions of dollars.

Beyond financial penalties, violations can lead to:

  • Loss of banking relationships (correspondent banks may sever ties)
  • License revocation or restrictions
  • Reputational damage and loss of customer trust
  • Criminal liability for individuals involved

For payment facilitators, independent sales organizations (ISOs), and marketplaces, sanctions screening failures also create downstream risk. If you onboard a merchant who is later found to be sanctioned, you may be held responsible for facilitating their transactions, even if you were unaware. This is why we emphasize continuous monitoring, not just point-in-time checks.

From an operational perspective, effective sanctions screening also reduces friction. Teams that implement automated screening with well-tuned fuzzy-matching parameters can reduce false positive rates, accelerate onboarding timelines, and minimize manual review overhead.

How Ballerine Supports Sanctions Screening

Ballerine's risk orchestration platform integrates real-time sanctions screening into merchant underwriting and ongoing monitoring workflows. Our system screens merchants and all associated UBOs against global sanctions lists, including OFAC, EU, UN, and UK HM Treasury, with support for fuzzy matching and automated case escalation. Screening results are logged and auditable, and continuous monitoring ensures that any list updates trigger immediate rescreening. This reduces compliance risk, accelerates decision-making, and minimizes false positive review burden.

Trusted by

Related Articles

Merchant Underwriting Handbook for Compliance Teams
Compliance
Merchants
Risk Management
Nicole Horne
Feb 15, 2026
Merchant Underwriting Handbook for Compliance Teams

Essential Merchant Underwriting Strategies and Compliance Frameworks for Risk-Savvy Teams

Merchant Underwriting Automation: What to Automate and What Not To
Compliance
Merchants
MMSP
Nicole Horne
Feb 15, 2026
Merchant Underwriting Automation: What to Automate and What Not To

A Practical Guide to Automating Routine Underwriting Tasks Without Sacrificing Risk Quality

Merchant Underwriting Handbook for Compliance Teams
Compliance
Merchants
Risk Management
Nicole Horne
Feb 15, 2026
Merchant Underwriting Handbook for Compliance Teams

Essential Merchant Underwriting Strategies and Compliance Frameworks for Risk-Savvy Teams

Merchant Underwriting Automation: What to Automate and What Not To
Compliance
Merchants
MMSP
Nicole Horne
Feb 15, 2026
Merchant Underwriting Automation: What to Automate and What Not To

A Practical Guide to Automating Routine Underwriting Tasks Without Sacrificing Risk Quality

Trusted by Leaders in the Payments Ecosystem

70%

Reduced manual efforts

49%

Improved review resolution time

30%

Increase in 
detected fraud

“We were able to downsize our compliance staff’s workload significantly, which allowed us to allocate the savings and workforce into more improvement projects.”

Shmulik Davar

VP Product at Fido

67%

Reduced Hiring Time

“Proactively navigating fintech regulations requires faster technology adoption. Next-gen compliance infrastructures should seamlessly integrate with existing and new systems and data sources.”

Ran Nachman

VP Regulation Solutions 
at eToro

67%

Reduced Hiring Time

“Proactively navigating fintech regulations requires faster technology adoption. Next-gen compliance infrastructures should seamlessly integrate with existing and new systems and data sources.”

Vicente Mederos

Head of Risk 

at Access Group

98%

Local Compliance

“User-friendly, reliable, and fast. It’s exactly what we needed to scale without adding complexity.”

Emily Rivera

Co-Founder

4.8 rating from 1.5k reviews

Author ImageAuthor ImageAuthor ImageAuthor Image

10+

Download from app store

Download for iOS

Ready to transform how your bank onboards, underwrites, and manages merchant risk?

Schedule Demo

Try it for free