73. My company provides money remittance and account services via the Internet. Does OFAC have any compliance guidance for this type of business?
Complying with United States sanctions policy presents unique challenges to institutions that operate exclusively on the Internet. The Internet has often been thought of as an "anonymous venue" in that e-commerce transactions can be conducted in relative privacy with little or no face-to-face contact among the parties in a transaction. This anonymity creates a significant challenge for Internet businesses that wish to satisfy their due diligence requirements.
In order to be compliant with OFAC-governed sanctions regulations, US jurisdiction entities must ensure that they are not:
A. Engaging in trade or transaction activities that violate the regulations behind OFAC’s country-based sanctions programs, and;
B. Engaging in trade or transaction activities with sanctions targets named on OFAC's list of Specially Designated Nationals and Blocked Persons (SDN's).
A...
1) This FAQ, along with FAQ 445, appears to be OFAC’s only public guidance concerning diligence expectations for the e-commerce sector.
Apart from e-commerce websites, OFAC considers the anonymous downloading of software to be "export" of a "good," and the accessing of certain websites, such as online learning platforms like Coursera, to be the "export" of a "service" when accessed by people in embargoed destinations. Every download of software or access to a website considered not exempt from regulations or otherwise unauthorized would constitute a violation.
Unlike OFAC, BIS has issued an advisory opinion [1] to the effect that companies using IP blocking and not seeing any other red flags will not be considered to have violated the BIS embargoes in the event of otherwise unauthorized downloads. Given that...