Everything compliance teams and business owners need to know about sanctions screening, AML/KYC workflows, and regulatory requirements.
What is sanctions screening and why is it required?
Sanctions screening is the process of checking individuals, companies, and transactions against government-maintained sanctions lists to ensure compliance with international regulations. Organizations in financial services, trade, and other regulated sectors are legally required to screen customers and counterparties to prevent doing business with sanctioned entities. Failure to screen can result in severe fines, criminal liability, and reputational damage. Effective screening covers lists from OFAC, EU, UN, UK, and other global regulatory bodies — typically spanning 1,400+ lists across 200+ jurisdictions.
Who needs to perform sanctions screening?
Any organization that could facilitate transactions with sanctioned persons or entities must perform sanctions screening. This includes banks, payment processors, insurance companies, fintechs, cryptocurrency exchanges, law firms, accounting firms, real estate agencies, and import/export businesses. In the EU, the list of obligated entities continues to expand under successive Anti-Money Laundering Directives. Even small businesses can face significant penalties — sanctions obligations apply regardless of company size.
What sanctions lists should I screen against?
At minimum, you should screen against the lists mandated by your jurisdiction. For EU-based businesses, this includes the EU Consolidated Financial Sanctions List, plus UN Security Council lists. Many organizations also screen against OFAC (US), HM Treasury (UK), and additional national lists. ScreenVeritAI covers all major international sanctions lists, PEP databases, and adverse media sources in a single search — see our coverage page for the full list of sources.
How often should sanctions screening be performed?
Sanctions screening should be performed at customer onboarding, and then on an ongoing basis whenever sanctions lists are updated. Major lists like OFAC and EU sanctions are updated frequently — sometimes multiple times per week. Best practice is continuous or daily batch rescreening of your entire customer base, combined with real-time screening for new customers and transactions. ScreenVeritAI supports both real-time single searches and batch screening for ongoing monitoring.
What are the penalties for not screening against sanctions lists?
Penalties for sanctions violations are severe across all jurisdictions. In the EU, fines can reach EUR 5 million or 10% of annual turnover, whichever is higher. OFAC (US) penalties can exceed $20 million per violation, with criminal penalties including imprisonment. In 2025, OFAC enforced a $216 million penalty in a single case. Polish CRBR non-compliance fines can reach PLN 1 million. Beyond fines, violations can lead to loss of banking relationships, license revocation, and significant reputational damage.
What is the difference between KYC and AML?
KYC (Know Your Customer) is the process of verifying a customer's identity and assessing their risk profile. AML (Anti-Money Laundering) is the broader framework of laws, regulations, and procedures designed to prevent money laundering and terrorist financing. KYC is a component of AML — it's the customer-facing verification process, while AML encompasses the entire compliance program including transaction monitoring, suspicious activity reporting, and ongoing due diligence.
What is the difference between CDD and Enhanced Due Diligence?
Customer Due Diligence (CDD) is the standard level of identity verification and risk assessment applied to all customers. Enhanced Due Diligence (EDD) is a deeper investigation required for higher-risk customers — such as PEPs, customers from high-risk jurisdictions, or complex ownership structures. EDD involves more detailed source-of-funds verification, senior management approval, and more frequent ongoing monitoring. ScreenVeritAI automates both CDD and EDD workflows with explainable, citation-backed reports.
What is adverse media screening and why does it matter?
Adverse media screening (also called negative news screening) is the process of checking individuals and entities against news sources for involvement in financial crime, fraud, corruption, terrorism, or other regulatory concerns. It is increasingly required by regulators as part of customer due diligence. ScreenVeritAI performs multilingual adverse media screening across news sources in multiple languages, helping you detect risks that sanctions lists alone might miss.
What is ongoing monitoring in AML compliance?
Ongoing monitoring means continuously reviewing customer relationships and transactions to detect changes in risk profile. This includes rescreening customers when sanctions lists are updated, monitoring for adverse media, reviewing transaction patterns, and updating risk assessments when new information emerges. Regulators expect that monitoring is proportionate to risk — higher-risk customers require more frequent reviews. Automated screening tools make ongoing monitoring practical at scale.
How do I verify a business partner is not sanctioned?
To verify a business partner, you need to screen the entity name, any known aliases, and the names of key individuals (directors, shareholders, UBOs) against sanctions lists. A thorough check also includes adverse media screening and PEP verification. Manual checking against individual government websites is time-consuming and error-prone. ScreenVeritAI automates this entire process — enter a person or company name and receive a comprehensive compliance report within seconds.
What is a Politically Exposed Person (PEP)?
A Politically Exposed Person (PEP) is someone who holds or has held a prominent public function — such as heads of state, senior politicians, judges, military leaders, or executives of state-owned enterprises. PEPs present a higher risk for money laundering and corruption due to their position and influence. EU regulations require financial institutions to apply Enhanced Due Diligence to PEPs, their family members, and close associates. PEP status typically persists for at least 12 months after leaving office.
What is a UBO (Ultimate Beneficial Owner)?
An Ultimate Beneficial Owner (UBO) is the natural person who ultimately owns or controls a legal entity, typically defined as anyone holding 25% or more of shares or voting rights, or who otherwise exercises control. Identifying UBOs is essential for sanctions compliance because sanctioned persons may hide behind complex corporate structures. EU Anti-Money Laundering Directives require obligated entities to identify and verify UBOs for all business relationships.
Do I need to screen UBOs against sanctions lists?
Yes. Screening only the company name is insufficient — you must also screen the individuals who ultimately own or control the entity. Sanctioned persons frequently use shell companies and layered ownership structures to evade detection. EU regulations explicitly require identification and verification of UBOs as part of customer due diligence. ScreenVeritAI automatically discovers ownership structures and screens all identified beneficial owners against sanctions lists, PEP databases, and adverse media.
What is the CRBR beneficial ownership register in Poland?
The CRBR (Centralny Rejestr Beneficjentów Rzeczywistych) is Poland's Central Register of Beneficial Owners. Polish companies must register their UBOs within 14 days of KRS registration or any change in beneficial ownership. Non-compliance carries fines of up to PLN 1 million. The register is publicly accessible and serves as one data source for beneficial ownership verification. ScreenVeritAI incorporates data from multiple ownership registries to map complete beneficial ownership structures.
How does ScreenVeritAI discover beneficial ownership structures?
ScreenVeritAI uses AI-powered agents to trace ownership chains through corporate registries, public records, and regulatory filings. The system identifies direct and indirect ownership paths, calculates cumulative ownership percentages through layered structures, and visualizes the results as an interactive relationship graph. Each ownership link is backed by a citation to its source, giving you an explainable audit trail for regulatory review.
What is the EU Anti-Money Laundering Authority (AMLA)?
AMLA is the EU's new centralized Anti-Money Laundering Authority, headquartered in Frankfurt. It will directly supervise the highest-risk financial institutions across the EU and coordinate national supervisory authorities. AMLA becomes fully operational in 2026-2027, with direct supervision of the 40 largest cross-border financial institutions beginning January 2028. Its creation marks a shift from national-level to EU-wide AML supervision, meaning more consistent enforcement across member states.
What are the new EU AML regulations for 2026-2027?
The EU AML regulatory landscape is undergoing major changes. The new AML Regulation (AMLR) applies directly across all member states from July 10, 2027, harmonizing customer due diligence, UBO identification, and sanctions screening requirements. AMLD6 registry requirements take effect by July 10, 2026. New EBA sanctions compliance guidelines became effective December 30, 2025. These changes mean stricter, more uniform compliance obligations — organizations should begin preparing now.
Which sanctions lists are mandatory to screen in the EU?
EU-based organizations must screen against the EU Consolidated Financial Sanctions List, which implements UN Security Council sanctions and EU-specific restrictive measures. Many organizations also screen OFAC and UK lists due to business exposure to US and UK jurisdictions. The new EBA guidelines (effective December 2025) emphasize that screening scope should be commensurate with exposure — if you have US customers or dollar transactions, OFAC screening becomes effectively mandatory.
What fines can EU regulators impose for AML violations?
Under current and incoming EU regulations, AML fines can reach EUR 5 million or 10% of total annual turnover for legal entities, whichever is higher. For natural persons (individual compliance officers or directors), fines can reach EUR 5 million. National regulators may impose additional penalties. In severe cases, violations can lead to criminal prosecution, license revocation, and public censure. The trend across all EU member states is toward significantly higher penalties and more aggressive enforcement.
How does AI reduce false positives in sanctions screening?
Traditional sanctions screening produces false positive rates of 90-95%, overwhelming compliance teams with irrelevant matches. AI-powered screening uses contextual analysis, entity resolution, and machine learning to distinguish genuine matches from coincidental name similarities. The system considers factors like date of birth, nationality, known associates, and contextual information — not just string matching. ScreenVeritAI's AI agents significantly reduce false positives while maintaining regulatory-grade recall, cutting compliance costs by up to 60%.
What is the difference between real-time and batch screening?
Real-time screening checks a single entity immediately — typically during customer onboarding or before a transaction. Results are returned within seconds. Batch screening processes large volumes of entities at once, typically for ongoing monitoring of existing customer bases. Both are essential: real-time for onboarding decisions, batch for detecting when existing customers become sanctioned. ScreenVeritAI supports both modes — single searches via the web interface and batch uploads of CSV files.
How can I integrate sanctions screening via API?
ScreenVeritAI provides a RESTful API for programmatic sanctions screening. You can integrate screening into your existing onboarding flows, CRM, or compliance systems using simple API calls. The API supports both synchronous (immediate response) and asynchronous (webhook callback) modes. Authentication uses API keys, and responses include structured screening results with match details and confidence scores. See our developer API documentation for endpoints, examples, and rate limits.
How does fuzzy matching work in name screening?
Fuzzy matching algorithms detect name matches even when there are variations in spelling, transliteration, word order, or formatting. This is critical for sanctions screening because names may be recorded differently across documents and jurisdictions — for example, transliterations from Arabic or Cyrillic scripts. ScreenVeritAI uses advanced fuzzy matching that accounts for phonetic similarity, character transposition, abbreviation, and cultural naming conventions to minimize missed matches without generating excessive false positives.
What does ScreenVeritAI mean?
The name combines three ideas: Screen (sanctions and watchlist screening), Verit (verification, from the Latin veritas meaning truth), and AI (artificial intelligence). It reflects our mission of using AI to screen and verify entities against global compliance data sources.
Can I try ScreenVeritAI before purchasing?
Yes. You can start with a free search to evaluate the quality of our screening results before committing to a paid plan. The free search provides the same comprehensive output as paid searches — sanctions hits, adverse media, PEP flags, and ownership data — so you can assess the platform's value for your compliance workflow. No credit card is required to try your first search.
How much does sanctions screening cost?
ScreenVeritAI offers flexible pricing based on screening volume. Plans start at an affordable entry point for small businesses, with volume discounts for larger compliance teams. Each search provides a comprehensive compliance report covering sanctions, PEPs, adverse media, and beneficial ownership — significantly more data per search than most competitors. Visit our pricing page for current plans and pricing details.
How long does it take to get started with ScreenVeritAI?
You can start screening within minutes. Sign up, run your first search, and receive a full compliance report immediately — no integration work required. For API integration, the RESTful API uses standard authentication and returns structured JSON responses, allowing most development teams to integrate within a day. There is no lengthy onboarding process, no mandatory training, and no minimum contract period.
What support does ScreenVeritAI offer?
We provide technical support via email for all plans. Enterprise customers receive priority support with dedicated response times. Our documentation covers the web interface, API integration, and compliance workflow best practices. We also offer onboarding assistance for teams transitioning from manual screening processes to automated compliance workflows.