Pillars|Safeguards|Evidence|Governance|FAQ

Product capabilities for audit-ready sanctions screening

Sanctions screening your auditor can follow.

MatchAudit helps SMB and non-bank teams screen counterparties, review risk, and export documented Evidence Packs without rebuilding daily workflows.

Screen

Upload KYC files, CSV batches, CRM records, counterparties, beneficiaries, and vendors.

Review

Work through sanctions and geo-risk context with clear match rationale.

Prove

Export PDF Evidence Packs with sources, timestamps, decisions, rationale, and audit trails.

Total records

105,102

Lists tracked

Outputs

CSV + PDF

Upload KYC / CSV

Validate the evidence workflow first. Use the pilot when banks, auditors, or partners need repeatable proof.

Audit controls ->Evidence Packs ->Solutions by industry ->

What auditors reject

- Spreadsheet checks with inconsistent thresholds.
- Screenshot "evidence" that cannot be reproduced.
- Tools that show "hit/no hit" without clear reasons.
- Manual write-ups every time auditors or banks ask.

One engine. Five workflows.

DashboardSalesforceSpreadsheet batchSAP GTSAPI + webhooks

Predictable outputs and consistent evidence, regardless of how you run the check.

One workflow for screen, review, and evidence.

MatchAudit combines a screening engine, review workspace, and an evidence system so compliance teams can make decisions quickly and still prove exactly what happened later.

Screen counterparties

Ops - Compliance - Risk

+Upload KYC and CSV files: Run checks through a consistent workflow whether you start in the dashboard, upload a batch, or integrate later.
+Check the lists reviewers expect: Screen against sanctions and geo-risk sources with coverage that can be explained.
+Clear visibility into what was checked: Every screening can capture selected sources, scanned sources, and unavailable sources.

Review risk

Non-banks - PSPs - SMEs

+Batch screening for onboarding waves: Upload spreadsheet exports for shipments, donors, merchants, beneficiaries, or vendors and process at scale.
+Salesforce workflow integration: Screen Contacts, Accounts, and Leads from Salesforce and return a structured outcome plus documented evidence links back to the record.
+SAP GTS and external workflow support: Bring SAP GTS outputs into MatchAudit by analyst upload or SAP CPI and middleware handoff when you need saved mappings, draft and final review, and controlled write-back before broader API integration.
+Human approval remains final: Reviewer decisions, notes, and rationales stay attached to the screening record for later inspection.

Export documented proof

Audit - Banks - Clients

+Full audit trail for every screening: Record what was searched, outcomes, and the underlying match reasoning for defensible records.
+PDF Evidence Packs: One-click exports help you respond faster to audits, banks, partners, and procurement reviews.
+Role-based visibility: Personal, team, and organization scope controls reduce internal data exposure by default.

Validate the audit trail before you scale.

Upload KYC or CSV files first. Add pilots, integrations, and governance once the evidence output is accepted.

Upload KYC / CSV

Audit controls

Controls that keep evidence dependable.

Compliance teams need predictable records, not loose screenshots. These safeguards protect audit trails, usage integrity, source traceability, and reviewer confidence.

No accidental double-counting

Duplicate clicks, retries, and repeated calls can be detected and deduplicated to keep usage records and billing trustworthy.

+Idempotency-style protection
+Deduplication within a short window
+Designed for UI + API retries

Built-in plan limits

Requests are validated against your entitlements so you stay within plan caps without manual policing.

+Names-per-request limits
+Monthly included allowance checks
+Daily caps where applicable

Usage metering you can trust

Screening activity is metered as decisioning usage and checked before execution, supporting predictable packaging.

+Real-time enforcement
+Tenant-wide allowance logic
+Fair usage aligned to names screened

Complete audit trail

Each screening can log sources selected, sources scanned, and diagnostic context so evidence is reproducible.

+Selected vs scanned sources
+Unavailable source capture
+Defensible due diligence records

Reliable under real conditions

Where appropriate, non-critical enforcement checks can fail open to prioritize availability while preserving core controls.

+Availability-first patterns
+Avoids unnecessary hard failures
+Predictable behavior across environments

Faster follow-up on higher tiers

When a screening needs action, higher tiers can automatically create cases so teams move from hit -> resolution quickly.

+Case workflow enablement
+Less operational overhead
+Supports formal review processes

Need API throughput or enterprise controls?

Tell us your screening volume, evidence requirements, and workflow. We'll respond with the right plan for audit-ready rollout.

Upload KYC / CSV

Evidence Packs

Stop assembling evidence manually.

Many tools stop at "match/no match." MatchAudit focuses on defensible outcomes: inputs, sources used, timestamps, reviewer rationale, and PDF reports stakeholders can inspect.

What reviewers get

+List names + timestamps
+Matched fields + clear reasons
+Confidence band + matched name
+Reviewer notes (where applicable)

Where it helps

+Bank onboarding reviews
+Payment scheme assessments
+Audit & inspections
+Enterprise procurement checks

Upload KYC / CSV View sample Evidence Pack

If you're evaluating for a bank or enterprise review, request an example and we'll tailor it to your workflow.

Procurement-ready by design

Reduce back-and-forth by giving reviewers what they ask for: consistent logic, traceable sources, and a tamper-evident record.

+Audit logs with visibility scope controls

+Versioned dataset ledger (where enabled)

+Exportable Evidence Packs

+Match explanations reviewers can interpret

View sample Evidence Pack

No meeting required unless you want one.

Governance & privacy

Right people see the right data - by default.

Visibility is scoped to roles (personal / team / org) and teams can control sharing per feature. This reduces internal leakage risk while still enabling oversight.

Privacy-first visibility

Analytics and audit history are scoped by role so sensitive activity isn't exposed internally.

+Personal-only for standard users
+Team-only for Team Leads
+Org-wide for admins

Team oversight without cross-team leakage

Managers can oversee their team's workload without seeing unrelated teams unless explicitly authorized.

+Team-scoped views
+Tenant isolation by organization
+Predictable scopes across modules

Feature-level sharing controls

Teams can opt in/out of sharing per capability - so collaboration is intentional, not accidental.

+Audit sharing scope
+Analytics sharing scope
+Directory sharing scope (where enabled)

Need a security/procurement pack?

We can answer procurement questions and align on privacy, retention, access controls, and audit evidence expectations.

Upload KYC / CSV

Geo screening

Screen the corridor, not only the counterparty.

Some cases are risky because of where funds, shipments, or operations touch. MatchAudit adds geo screening so teams can evaluate jurisdiction and territorial exposure alongside name screening.

Flexible location inputs

Run geo triage by country, territory, city, region, or IP-derived location depending on what the workflow gives you.

+Country and territory checks
+City and region checks
+IP-based geo context when only network data is available

Risk signals that matter

Use jurisdiction and corridor signals to identify when a case needs deeper review before onboarding, payouts, or shipments proceed.

+FATF and high-risk jurisdiction inputs
+Territorial and sectoral restriction cues
+Corruption and rule-of-law risk overlays

Designed for real operations

Geo screening is useful when names alone are not enough to explain exposure in trade, payments, logistics, or donor-disbursement workflows.

+Shipment and trade corridor reviews
+Payout and beneficiary routing checks
+Escalation context for manual compliance review

Need both sanctions screening and geo screening in one workflow?

Start with dashboard KYC/CSV uploads, then add spreadsheet, SAP GTS, or API automation once the audit evidence workflow is proven.

Upload KYC / CSV

Data integrity

Know what you screened against, and when.

For audits and customer assurance, dataset transparency matters. Higher tiers can expose dataset versions, source URLs, and integrity hashes to prove freshness and prevent tampering concerns.

Dataset version ledger

See the most recent version of each dataset and when it was fetched.

+Version tags
+Fetch timestamps
+Clear 'current release' view

Integrity hashing

Verifiable hashes (e.g., SHA-256) help prove the dataset hasn't been altered.

+Tamper-evident posture
+Useful for audits/procurement
+Supports reviewer confidence

Source traceability

Dataset origin URLs can be surfaced so you can explain provenance with confidence.

+Traceability for stakeholders
+Clear provenance
+Supports defensible narratives

Fits into your workflow - no rebuild required.

Start with dashboard KYC/CSV uploads. Add Salesforce, SAP GTS, API, and webhooks when screening becomes recurring.

Tip: Prove the Evidence Pack first, then automate the workflow around accepted outputs.

01Manual review

Dashboard

Ad-hoc checks for people, companies and counterparties.
Good for SMBs, non-banks, PSPs, NGOs, and finance teams.
Ideal for initial partner, bank, or auditor reviews.

Upload KYC / CSV

02Batch upload

Spreadsheet batch

Upload operational spreadsheet exports for shipments, donors, merchants, or beneficiaries.
Async processing for onboarding waves and periodic checks.
Consolidated outputs that are easy to share internally.

Upload KYC / CSV

03CRM handoff

Salesforce

Screen Contacts, Accounts, and Leads from the workflow your team already uses.
Return review statuses plus documented evidence links to the CRM record.
Lean enough to ship fast without an AppExchange program.

Review CRM workflow

04Trade review

SAP GTS

Connect SAP GTS through SAP CPI or existing middleware and auto-apply saved mapping profiles by source system.
Review SAP and MatchAudit side by side, use AI suggestions, then finalize only the decisions that should write back.
Use Open in SAP, deep links, and optional SSO to keep reviewers anchored in the SAP worklist.

Review SAP workflow

05Automation

API & webhooks

Trigger screenings from onboarding, payouts or KYC flows.
Audit trail metadata for debugging, monitoring, and evidence review.
Rate controls for predictable scaling.

Pick the interface that matches your workflow

Most teams begin with dashboard uploads, add Salesforce when onboarding or approvals already live in the CRM, use spreadsheets for bulk onboarding, use SAP GTS when trade operations need defensible review with draft and final states, and move to API automation when the evidence workflow becomes recurring.

Dashboard

+Best for ad-hoc checks
+Fast adoption
+Great for reviews

Salesforce

+CRM-triggered checks
+Record-level evidence
+Fast setup without heavy middleware

Spreadsheet

+Bulk onboarding
+Async processing
+Consolidated outputs

SAP GTS

+SAP CPI or middleware bridge
+Draft and finalize workflow
+Open in SAP + controlled write-back

API

+Automated checks
+Audit trail metadata
+Rate controls

Questions reviewers ask (and how MatchAudit answers them)

How do you reduce false positives without missing true matches?v

You get explainable matching and confidence bands so reviewers can understand why a hit occurred and avoid noise-driven escalations.

How do we know what was checked and what couldn't be checked?v

Screenings can record selected sources, scanned sources, and unavailable sources alongside results, so the evidence is reproducible and reviewable.

Which data sources and regimes do you cover?v

Coverage spans UN, EU FSF, OFAC SDN and Non-SDN, US CSL, BIS, DDTC, State non-proliferation programs, the UK Sanctions List and UK proscribed organisations, SECO, Canada, Australia, and selected national lists such as France, the Netherlands, Belgium, Poland, Latvia, Lithuania, Estonia, and Czech Republic, plus geo-risk datasets used for corridor review.

Can we screen Salesforce records without building a heavyweight CRM integration?v

Yes. MatchAudit supports a lightweight Salesforce connector for Contacts, Accounts, and Leads so teams can trigger screening from the CRM workflow and store the audit reference back on the record.

Can we use spreadsheet or SAP GTS imports before API integration?v

Yes. Teams can start in the dashboard, use batch spreadsheet uploads, and connect SAP GTS through SAP CPI or existing middleware when trade exports need saved mappings, draft and final review, and finalized-decision write-back before or alongside broader API automation.

How do you prevent double-charging or double-counting usage?v

Duplicate clicks, retries, and repeated calls can be detected and deduplicated so your usage records and billing remain accurate.

What controls protect privacy inside the organization?v

Visibility is role-scoped and team-level oversight is available without exposing unrelated teams' activity unless explicitly authorized.

When should we start a paid pilot?v

Start pilot once free validation is complete and your workflow is recurring: multiple reviewers, repeated evidence requests, and clear rollout timelines.

What evidence do we get for bank, procurement, or audit reviews?v

You get a searchable audit log and exportable Evidence Packs capturing inputs, sources, timestamps, and match rationale, reducing manual documentation.

Validate the evidence workflow before you integrate.

Upload KYC/CSV first. Add CRM, SAP, API, or webhooks when the workflow is recurring.

Upload KYC / CSV

Build trust with every screening - without slowing down operations.

Upload KYC or CSV files to validate match quality, reviewer decisions, and Evidence Pack exports. Contact us when you need throughput, governance, or procurement support.

Upload KYC / CSV

Tip: For security reviews, select "Security review" in the contact form.

Upload KYC / CSV