Supergood | Sanctions.io API
Programmatically access Sanctions.io’s global sanctions and PEP screening data with a stable REST API. Supergood builds and operates production-grade, unofficial Sanctions.io integrations so your team can automate AML/KYC workflows without heavy custom engineering.
In plain English: Sanctions.io provides up-to-date global sanctions and politically exposed person (PEP) lists you can search via API to check whether people or companies appear on watchlists. An unofficial API from Supergood lets you trigger screenings, tune match logic, subscribe entities to ongoing monitoring, and export audit-ready reports with consistent, normalized responses.
If you’re a fintech, bank, payments processor, crypto exchange, or compliance platform looking to integrate Sanctions.io, you can pull hits (matches), source list metadata, and dataset versions; push subjects for screening and monitoring; and add features like real-time onboarding checks, batch remediation, case triage, deterministic/fuzzy matching, and evidence packets for auditors.
What is Sanctions.io?
Sanctions.io is a RegTech data provider focused on financial crime compliance. It aggregates and maintains global sanctions and PEP datasets—such as OFAC SDN, EU Consolidated, UN Security Council, UK HMT, and additional national lists—and exposes them through a developer-friendly API. Teams use Sanctions.io to run KYC/AML checks, screen counterparties and beneficiaries, enable continuous monitoring, and document compliance decisions.
Common data entities:
- Subjects (persons and organizations)
- Screening checks and results
- Watchlist hits (sanctions and PEP matches)
- Source lists and dataset versions
- Monitoring subscriptions and alerts
- Exported screening reports (PDF/JSON)
The Sanctions.io Integration Challenge
Sanctions.io offers powerful data and an API, but production-grade automation still poses challenges:
- Matching nuance: Fuzzy scores, transliteration, diacritics, and alias handling must be tuned per workflow to balance false positives and misses
- Monitoring at scale: Keeping subscriptions current, de-duplicating alerts, and aligning processing to rate limits and licensing is non-trivial
- Audit readiness: Consistently packaging evidence (subject input, list versions, hit rationales) for audits and retention is time-consuming
- Multi-provider orchestration: Many teams blend Sanctions.io with other vendors; normalizing schemas and scores across systems is tedious
- Operational reliability: Retries, backoff, and schema change detection are required to keep pipelines stable as datasets and portals evolve
How Supergood Creates Sanctions.io APIs
Supergood wraps authenticated API and portal workflows to deliver a resilient endpoint layer tailored to your entitlements.
- Secure credential handling: We operate with customer-managed credentials or API keys and rotate sessions automatically
- Session continuity and health checks: Built-in token refresh, request hedging, and adaptive backoff
- Normalized objects: Consistent subjects, checks, hits, and reports across Sanctions.io and other providers
- Entitlement alignment: Enforces your licensing, dataset coverage, and usage limits programmatically
- Monitoring orchestration: Subscription management, alert fan-out, dedupe, and idempotent processing
Use Cases
KYC/AML Screening Automation
- Trigger person or company screenings during onboarding
- Tune fuzzy thresholds and alias handling to your risk appetite
- Retrieve normalized hits with source list, program, and match rationale
Transaction and Counterparty Screening
- Screen beneficiaries, vendors, and counterparties pre- or post-transaction
- Enrich internal records with list identifiers and entity metadata
- Route outcomes to auto-approve, review, or block queues
Continuous Monitoring and Alerting
- Subscribe high-risk customers to ongoing list updates
- Receive alert payloads with deltas (new/removed hits, list version changes)
- Maintain suppression rules and escalation paths programmatically
Compliance Archival and Audit Trails
- Export complete screening packets with subject inputs, list versions, and evidence
- Timestamp and store artifacts for auditability and regulatory retention
- Prove coverage with machine-readable, consistent records
Available Endpoints
Authentication
POST /sessions: Establish a session using an API key or account credentials. Supergood securely stores secrets and maintains session continuity. Returns a short-lived auth token managed by the platform.
curl --request POST \
--url https://api.supergood.ai/integrations/<integration_id>/sessions \
--header 'Authorization: Basic <Base64 encoded token>' \
--header 'Content-Type: application/json' \
--data '{
"auth": {
"type": "apiKey",
"apiKey": "sanctionsio_live_abc123"
}
}'
Example response
{
"authToken": "eyJhbGciOi...",
"expiresIn": 3600,
"account": {
"id": "acct_71k39v",
"datasets": ["sanctions", "pep"],
"rateLimitPerMinute": 300
}
}
Screening
POST /checks: Create a new screening check for a person or company. Configure fuzzy match behavior, list filters, and optional monitoring.
curl --request POST \
--url https://api.supergood.ai/integrations/<integration_id>/checks \
--header 'Authorization: Bearer <authToken>' \
--header 'Content-Type: application/json' \
--data '{
"subjectType": "person",
"subject": {
"givenName": "Leila",
"familyName": "Karimov",
"dateOfBirth": "1984-03-22",
"nationalities": ["AZ"],
"addresses": [{
"line1": "12 Riverside Ave",
"city": "Baku",
"region": null,
"postalCode": null,
"country": "AZ"
}],
"identifiers": {
"passportNumber": "P2938442"
},
"aliases": ["Leyla Karimova"]
},
"sources": {
"sanctions": true,
"pep": true,
"includeLists": ["OFAC_SDN", "EU_CONSOLIDATED", "UN_SC", "HMT_UK"],
"excludeLists": []
},
"matchOptions": {
"algorithm": "fuzzy",
"threshold": 80,
"transliteration": true,
"ignoreDiacritics": true
},
"monitoring": { "enabled": true, "frequency": "daily" },
"referenceId": "kyc-app-49201"
}'
Example response
{
"checkId": "chk_7c2f91",
"status": "running",
"createdAt": "2026-01-23T14:11:02Z",
"referenceId": "kyc-app-49201"
}
GET /checks: List checks with filters and summary results.
Query parameters
- status: running | complete | failed
- subjectType: person | organization
- createdFrom, createdTo: ISO 8601 timestamps
- monitoring: true | false
- referenceId: exact match
Example response
{
"items": [
{
"checkId": "chk_7c2f91",
"subjectType": "person",
"subjectName": "Leila Karimov",
"status": "complete",
"score": 72,
"hits": {
"sanctions": 0,
"pep": 1
},
"topHit": {
"category": "pep",
"source": "EU_PEP",
"name": "Leyla Karimova",
"matchScore": 89
},
"monitoring": {
"enabled": true,
"lastRunAt": "2026-01-23T14:33:58Z"
},
"createdAt": "2026-01-23T14:11:02Z"
}
],
"page": 1,
"pageSize": 50,
"total": 1
}
Reports
GET /reports/{reportId}: Retrieve an audit-ready report for a screening (inputs, list versions, matches, and rationales). Returns metadata and a time-limited signed URL.
Example response
{
"reportId": "rep_c41e09",
"checkId": "chk_7c2f91",
"format": "pdf",
"generatedAt": "2026-01-23T14:35:29Z",
"signedUrl": "https://download.sanctionsio.example/signed/abc123...",
"expiresAt": "2026-01-23T15:35:29Z",
"datasetVersions": {
"OFAC_SDN": "2026-01-22",
"EU_CONSOLIDATED": "2026-01-22",
"UN_SC": "2026-01-21",
"HMT_UK": "2026-01-22",
"PEP": "2026-01-23"
},
"checksum": "sha256:7fa1..."
}
Technical Specifications
- Authentication: API key or customer-managed credentials; optional SSO/portal flows supported where applicable
- Response format: JSON with consistent resource schemas and pagination
- Rate limits: Tuned for enterprise throughput while honoring licensing and usage controls
- Session management: Automatic token refresh, retries with backoff, and health checks
- Data freshness: Near real-time retrieval of checks, hits, and report artifacts
- Security: Encrypted transport, scoped tokens, field-level redaction, and audit logging; respects Sanctions.io entitlements
- Webhooks: Optional asynchronous delivery for monitoring alerts and long-running report generation
Performance Characteristics
- Latency: Sub-second responses for list and detail queries under normal load
- Throughput: Designed for high-volume onboarding and batch screening pipelines
- Reliability: Idempotency keys, retry logic, and circuit breaking minimize duplicate actions and timeouts
- Adaptation: Continuous monitoring for UI and schema changes with rapid adapter updates
Getting Started
- Schedule Integration Assessment
Book a 30-minute session to confirm your dataset coverage, licensing, and authentication model.
- Supergood Builds and Validates Your API
We deliver a hardened Sanctions.io adapter tailored to your workflows and entitlements.
- Deploy with Monitoring
Go live with continuous monitoring and automatic adjustments as Sanctions.io evolves.
Frequently Asked Questions
Q: Which datasets can this integration cover?
Subject to your licensing, we can screen against major global sanctions lists (e.g., OFAC SDN, EU Consolidated, UN SC, UK HMT) and PEP data. We confirm coverage during integration assessment.
Q: How do you handle fuzzy matching and aliases?
You can configure match thresholds, transliteration, and diacritic handling per request. We return detailed scores and rationales and can maintain provider-specific tuning profiles per workflow.
Q: Can I enable continuous monitoring for screened subjects?
Yes. Enable monitoring at creation or later. Receive alerts via webhooks or polling endpoints, with deduplication, suppression lists, and escalation routing.
Related Integrations
Refinitiv World-Check API - Programmatically access World-Check risk intelligence with Supergood
Ready to automate your Sanctions.io workflows?
Supergood can have your Sanctions.io integration live in days with no ongoing engineering maintenance.
