OFAC Sanctions Screening API
Base URL: https://api.techcompass.com.au — Screen names against the US Treasury OFAC SDN list with fuzzy matching and immutable audit logging.
About this Dataset
The OFAC Sanctions Screening API screens names against the US Treasury’s Office of Foreign Assets Control (OFAC) Specially Designated Nationals and Blocked Persons (SDN) List — the primary US federal sanctions list and one of the most widely referenced sanctions lists globally.
The OFAC SDN List
The SDN List names individuals, entities, vessels, and aircraft whose assets are blocked and with whom US persons are generally prohibited from dealing. It is updated multiple times per week as OFAC designates new targets or removes previously sanctioned parties.
As of mid-2026 the SDN List contains approximately 19,152 entries. Each entry includes: primary name, all known aliases, entity type (individual / entity / vessel / aircraft), sanction programme codes (UKRAINE-EO13662, SDGT, IRAN, DPRK, and 50+ others), and — where available — nationality, date of birth, and physical addresses.
Tech Compass syncs the SDN List daily via the official US Treasury data feed. The sdn_list_date field on every response reflects the exact publication date of the list version used for the screen.
Fuzzy Name Matching
Sanctions screening is only effective if it identifies transliterated names, partial names, and common name variants. The Tech Compass screening engine uses a multi-stage fuzzy matching algorithm combining Jaro-Winkler similarity, token-set ratio matching, and alias expansion. Each match is assigned a confidence level: exact, high, medium, or low.
Regulatory Context
US persons — and non-US financial institutions with US nexus — are legally required to screen counterparties against the OFAC SDN List before entering transactions. Civil penalties reach up to the greater of $368,136 per transaction or twice the transaction value. FinCEN and OFAC guidance require institutions to document that screening was performed against a current list — the sdn_list_date and immutable screen_id in every API response provide this audit evidence.
Data Source
Source: US Treasury OFAC SDN List. US Government public domain — unrestricted commercial use.
Authentication
All endpoints except /v1/us/sanctions/ofac/list-version require an API key:
Authorization: ApiKey tc_live_<your_key>
The /list-version endpoint is public and requires no authentication — useful for health checks and verifying SDN list currency.
Tiers
| Tier | Calls/month | Price |
|---|---|---|
| Free | 10,000 | $0 |
| Professional | 500,000 | USD $1,500/mo or AUD $2,250/mo |
| Enterprise | Unlimited | Contact sales |
Confidence Score Reference
The screening engine uses normalised Levenshtein distance and alias expansion to assign a confidence score to each match. All four levels return matches; the score helps your workflow decide when to escalate for manual review.
| Score | Meaning | Recommended action |
|---|---|---|
| exact | Name matches an SDN entry or alias exactly (after normalisation) | Block / escalate immediately |
| high | Levenshtein distance ≤ 1 character or common misspelling detected | Escalate for manual review |
| medium | Partial name overlap or similarity ≥ 80% | Flag for enhanced due diligence |
| low | Weak similarity; returned for completeness | Log and monitor; low priority |
exact.
Immutable Audit Trail
Every call to /ofac/screen creates an immutable record in the ofac_screens table before the response is returned. The record captures:
- The exact name screened (
query_name) - Entity type filter applied
- Number of matches returned
- Highest confidence score found
- The SDN list date active at the time of screening
- The API key and user ID that made the request
- UTC timestamp
The meta.request_id in the response corresponds to the audit log entry. This provides a complete, tamper-evident record suitable for regulatory reporting under BSA/AML requirements.
SDN List Date
The sdn_list_date field indicates which version of the OFAC SDN list was active when a screen was performed. This matters for audit purposes: regulators may ask which list version was used at the time of onboarding.
data_lineage.sdn_list_date— the list date in the current responseofac_screens.sdn_list_date— the list date recorded in the audit log
sdn_list_date field provides this evidence. The OFAC pipeline runs daily and the list date updates automatically when a new list is published by the US Treasury.
Error Reference
| Status | Meaning |
|---|---|
| 400 | Invalid parameters (e.g. name too short) |
| 401 | Missing or invalid API key |
| 403 | API key does not have access to product us_sanctions |
| 404 | OFAC UID not found (entity detail endpoint) |
| 429 | Monthly quota exhausted |
Endpoints
GET /v1/us/sanctions/ofac/screen
Screen a name against the full OFAC SDN list using fuzzy matching. Returns all matches above the minimum similarity threshold, sorted by confidence descending. Creates an immutable audit record before returning.
| Parameter | Required | Description |
|---|---|---|
name | Yes | Name to screen (min 2 characters) |
entity_type | No | Filter by entity type: individual | entity | vessel | aircraft. Omit for all types. |
Example: screening a known SDN name
curl "https://api.techcompass.com.au/v1/us/sanctions/ofac/screen?name=Ayman+al-Zawahiri&entity_type=individual" \
-H "Authorization: ApiKey tc_live_<your_key>"
{
"data": {
"screened_at": "2026-05-10T07:00:00Z",
"query_name": "Ayman al-Zawahiri",
"entity_type_filter": "individual",
"total_matches": 1,
"sdn_list_date": "2026-06-19",
"matches": [
{
"uid": "SDGT-1234",
"name": "AYMAN AL-ZAWAHIRI",
"matched_on": "primary_name",
"confidence": "exact",
"entity_type": "individual",
"programs": ["SDGT"],
"aliases": ["AYMAN MUHAMMAD RABI AL-ZAWAHIRI", "DR. AYMAN AL ZAWAHIRI"]
}
]
},
"meta": {
"request_id": "c3d4e5f6-...",
"cached": false
},
"data_lineage": {
"source": "US Treasury OFAC SDN List",
"source_url": "https://home.treasury.gov/policy-issues/financial-sanctions/specially-designated-nationals-and-blocked-persons-list-sdn-human-readable-lists",
"license": "US Government Public Domain",
"retrieved_at": "2026-05-10T07:00:00Z",
"sdn_list_date": "2026-06-19",
"request_id": "c3d4e5f6-..."
}
}
Example: screening a clean name
curl "https://api.techcompass.com.au/v1/us/sanctions/ofac/screen?name=Jane+Smith" \
-H "Authorization: ApiKey tc_live_<your_key>"
{
"data": {
"screened_at": "2026-05-10T07:00:00Z",
"query_name": "Jane Smith",
"entity_type_filter": null,
"total_matches": 0,
"sdn_list_date": "2026-06-19",
"matches": []
},
"meta": { "request_id": "d4e5f6a7-..." },
"data_lineage": { "sdn_list_date": "2026-06-19", ... }
}
total_matches = 0, a screen record is written. A zero-match result is itself evidence that a name was checked and cleared — important for regulatory audit purposes.Errors: 400, 401, 403, 429
GET /v1/us/sanctions/ofac/entity/{uid}
Return the full SDN record for a specific OFAC UID. Use this to retrieve complete entity data (all aliases, addresses, nationalities, dates of birth) after a screen returns a match.
| Parameter | Description |
|---|---|
uid | OFAC SDN unique identifier (from the uid field in a screen response) |
curl "https://api.techcompass.com.au/v1/us/sanctions/ofac/entity/SDGT-1234" \
-H "Authorization: ApiKey tc_live_<your_key>"
{
"data": {
"uid": "SDGT-1234",
"name": "AYMAN AL-ZAWAHIRI",
"aliases": ["AYMAN MUHAMMAD RABI AL-ZAWAHIRI", "DR. AYMAN AL ZAWAHIRI"],
"entity_type": "individual",
"programs": ["SDGT"],
"addresses": [{ "country": "Afghanistan" }],
"nationalities": ["Egyptian"],
"dates_of_birth": ["1951-06-19"],
"place_of_birth": "Giza, Egypt",
"remarks": "DOB 19 Jun 1951; POB Giza, Egypt...",
"sdn_list_date": "2026-06-19",
"date_added": "2001-10-12",
"last_updated": "2022-07-31",
"fetched_at": "2026-05-10T06:00:00Z"
},
"meta": { "request_id": "e5f6a7b8-..." },
"data_lineage": { ... }
}
Errors: 401, 403, 404, 429
GET /v1/us/sanctions/ofac/list-version
Returns the current SDN list date and total record count. No authentication required. Use this endpoint to verify SDN list currency before relying on screening results.
curl "https://api.techcompass.com.au/v1/us/sanctions/ofac/list-version"
{
"sdn_list_date": "2026-06-19",
"record_count": 19152,
"source": "US Treasury OFAC",
"license": "US Government Public Domain"
}
Common Use Cases
1. Customer onboarding screening
Who uses this: Banks, fintechs, and payment providers screening new customers at account opening.
curl "https://api.techcompass.com.au/v1/us/sanctions/ofac/screen?name=First+Last+Name&entity_type=individual" \
-H "Authorization: ApiKey YOUR_API_KEY"
data.total_matches. If > 0 and data.matches[0].confidence is exact or high, trigger manual review before proceeding. Use meta.request_id as the audit reference in your onboarding record.2. Counterparty due diligence
Who uses this: Trade finance teams, correspondent banking compliance, and payment processors screening entities before transactions.
curl "https://api.techcompass.com.au/v1/us/sanctions/ofac/screen?name=Acme+Trading+LLC&entity_type=entity" \
-H "Authorization: ApiKey YOUR_API_KEY"
entity_type=entity to restrict results to corporate entries and reduce false positives from individuals with similar names.3. Ongoing monitoring
Who uses this: Compliance teams re-screening existing customers when the SDN list is updated.
# Check current list version first
curl "https://api.techcompass.com.au/v1/us/sanctions/ofac/list-version"
# If sdn_list_date changed since last check, re-run screens for active customers
list-version endpoint requires no auth and is free to call. Poll it daily and only trigger full re-screening when sdn_list_date changes — this minimises calls against your monthly quota.4. Filtering by entity type
Who uses this: Maritime compliance teams screening vessels, aviation compliance screening aircraft.
curl "https://api.techcompass.com.au/v1/us/sanctions/ofac/screen?name=Vessel+Name&entity_type=vessel" \
-H "Authorization: ApiKey YOUR_API_KEY"
entity_type filtering, a vessel name could match an individual with the same name — use type filtering for cleaner results.5. Audit log review and regulatory reporting
Who uses this: Compliance officers producing evidence for regulatory examiners that sanctions screening was performed.
/screen call writes an immutable record to the ofac_screens table before the response is returned. The meta.request_id in your response matches this record. Contact [email protected] for bulk audit log exports for regulatory examination purposes.Data Source
| Source | Licence | Refresh |
|---|---|---|
| US Treasury OFAC Specially Designated Nationals (SDN) List | US Government Public Domain | Daily at 08:00 UTC via direct Treasury download (19,152 records as of June 2026) |
About this API
What this API does
The Tech Compass OFAC Sanctions Screening API provides programmatic, audit-ready access to the US Treasury Office of Foreign Assets Control (OFAC) Specially Designated Nationals and Blocked Persons (SDN) list. It applies fuzzy name matching with confidence scoring across approximately 19,152 SDN entries and their aliases, creates an immutable audit record for every screen call, and returns the SDN list date active at screening time — enabling financial institutions to meet OFAC compliance, BSA/AML, and FinCEN due diligence requirements.
Who uses this API
- Compliance officers at banks, credit unions, and payment providers
- AML/KYC teams integrating sanctions screening into onboarding flows
- Trade finance teams screening counterparties before transactions
- Fintech engineers building automated compliance infrastructure
- Correspondent banking compliance teams
- RegTech platforms offering sanctions screening as a service
- Maritime and aviation compliance teams screening vessels and aircraft
Key use cases
- Customer onboarding screening — screen new customers at account opening against the full SDN list
- Counterparty due diligence — screen corporate entities before entering transactions or business relationships
- Ongoing monitoring — re-screen existing customers when the SDN list is updated
- Transaction screening — screen payment beneficiaries in real-time before settlement
- Beneficial ownership screening — screen UBOs and key control persons during CDD
- Regulatory audit evidence — produce tamper-evident screening records for regulatory examination
Applicable compliance frameworks
- US Bank Secrecy Act (BSA) — AML program requirements
- OFAC regulations — 31 CFR Parts 500-599
- FinCEN CDD Rule (31 CFR 1010.230) — customer due diligence
- AU AML/CTF Act 2006 — AUSTRAC reporting entity obligations
- FATF Recommendations 6 and 7 — targeted financial sanctions
- EU sanctions regulations (for cross-jurisdictional screening workflows)
Data sources
- US Treasury OFAC SDN List — home.treasury.gov OFAC SDN — US Government Public Domain
Frequently asked questions
- How current is the SDN list?
- The OFAC pipeline fetches the full SDN list daily at 08:00 UTC. The
sdn_list_datefield shows exactly which list version was used for any given screen. OFAC typically publishes list updates several times per month; the pipeline picks these up within 24 hours. - Is every screen call permanently recorded?
- Yes. An immutable audit record is written to the
ofac_screenstable before the screen response is returned. This cannot be deleted or modified. Themeta.request_idin the response uniquely identifies this record. - Does the API return false positives?
- All name-based fuzzy matching systems have some false positive rate. Use the
confidencefield to calibrate your escalation threshold. Onlyexactandhighconfidence results typically warrant blocking or manual review. Useentity_typefiltering to reduce false positives when you know the entity type of the subject being screened. - Does the API cover non-SDN OFAC programs?
- The current version screens against the SDN list. The
programsfield on each match shows which OFAC sanctions program applies (e.g.SDGT,IRAN,CUBA). Coverage of additional OFAC consolidated lists is planned for future releases. - What SLA is available?
- Professional and Enterprise tier subscribers receive SLA documentation on request. Contact [email protected].
Related APIs
- US Enforcement & Disciplinary API — FINRA BrokerCheck and SEC enforcement actions (complements OFAC screening in full AML/KYC workflows)
- AU Entity Intelligence API — ASIC and ABR entity verification for Australian KYC
- AU Financial Advisers API — ASIC Financial Advisers Register for AU financial professional screening
- US Compliance API — SEC EDGAR company facts and Federal Reserve economic data