VeriSanction

Due Diligence Questionnaire

Review the auto-populated data-quality metrics, edit anything your team needs to, and download a PDF or JSON artifact for your vendor-risk file. No account required. The figures are pulled from our live 12-hourly regulator-grade reporting pipeline and are reproducible from the dataset snapshot shown in the Audit Metadata.

Auto-populated

Source run: e96335e7…Dataset: 20260619181001-kpw

Generated 2026-06-20 01:23:03 UTC

1.Vendor Overview

Identifies the vendor entity and describes the service delivered to the requesting organization.

Legal Entity Name

Service Description

Primary Use Cases

Nature of Business Relationship

Primary Compliance Contact

2.Data Sources & Coverage

Lists the authoritative government publishers whose data is consumed, and the coverage scope the dataset provides.

Authoritative Publishers

Jurisdictions Covered

Number of CollectionsAuto-populated from latest report run.

Aggregate Entity CountAuto-populated from latest report run.

3.Data Quality Metrics

Auto-populated

Computed from the publisher's most recent bulk export and sampled during each report run. Values shown are editable but default to the latest measured figures.

Name Fill Rate (%)

Date-of-Birth Fill Rate (%)

Nationality Fill Rate (%)

Address Fill Rate (%)

Identifier Fill Rate (%)

Null Density (%)

Duplicate Rate (% of sample)

Per-Collection Metrics

Collection	Sampled Rows	Null Density Pct	Duplicate Rate Pct
OFAC SDN	19794	23.95	0.12
OFAC Consolidated	673	30.46	10.1
BIS Denied Persons	413	37.08	0.24
EU Financial Sanctions	5894	25.16	0.03
UN SC Sanctions	996	25.17	0.1
UK HMT Sanctions	8623	40.31	18.36
Canada SEMA	5604	31.12	0.07
Australia DFAT	3735	29.69	0.13
Japan MOF	2805	34.96	0.11
Switzerland SECO	6690	29.41	0.07

Quality Controls Narrative

4.Data Recency & Update Cadence

Auto-populated

Tracks both the publisher's pipeline freshness (last successful export) and content volatility (last material change). Regulator review typically asks for both signals.

Report Generated At (UTC)

Update Frequency

Per-Collection Recency

Collection	Last Export	Last Change	Cadence	Result
OFAC SDN	2026-06-19T18:10:01	2026-06-18T18:10:01	daily	success
OFAC Consolidated	2026-06-19T18:35:01	2026-01-26T16:35:01	daily	success
BIS Denied Persons	2026-06-19T16:57:01	2026-06-13T00:57:01	daily	success
EU Financial Sanctions	2026-06-19T18:57:01	2026-06-05T14:57:02	daily	success
UN SC Sanctions	2026-06-19T16:01:01	2026-06-10T00:01:01	daily	success
UK HMT Sanctions	2026-06-19T18:40:01	2026-06-17T09:29:52	daily	success
Canada SEMA	2026-06-19T18:43:01	2026-06-16T15:43:01	daily	success
Australia DFAT	2026-06-19T18:02:01	2026-06-08T08:33:47	daily	success
Japan MOF	2026-06-19T18:38:01	2026-06-05T08:10:28	daily	success
Switzerland SECO	2026-06-19T18:09:01	2026-06-17T16:09:01	daily	success

5.Matching Methodology

Explains how identity resolution is performed.

Matching Methodology

6.Regulatory Compliance Alignment

Frameworks the service supports.

Regulatory Alignment

7.Data Security & Controls

Controls that protect the vendor platform and data.

Security Controls

Penetration Test Cadence

SOC 2 Status

8.Business Continuity & Disaster Recovery

Resilience posture.

Business Continuity Narrative

Recovery Point Objective (hours)

Recovery Time Objective (hours)

9.Subprocessors & Supply Chain

Downstream processors that touch customer or subject data.

Subprocessors

Name	Purpose	Data Categories	Residency
Google Cloud Platform	Compute, storage, secrets	All service data	us-west1 (Oregon, USA)
Stripe, Inc.	Billing + card processing	Tenant billing contact, card tokens	United States
pCloud AG	Distribution of regulator-grade artifacts	Public sanctions-dataset summaries only	Europe / United States
BetterStack	Uptime, incident, log telemetry	Operational logs (no PII)	European Union
Authoritative government publishers	Source sanctions data	Public sanctions data	Per publisher (US, EU, UK, UN, CA, AU, JP, CH)

10.Privacy, Data Protection & Data Subject Rights

Posture under GDPR, CCPA, and similar frameworks.

Privacy Narrative

GDPR Role

Data Residency

11.Incident Response & Breach Notification

How incidents are detected, triaged, and communicated.

Incident Response Narrative

Breach Notification SLA (hours)

12.Change Log & Version History

Auto-populated

Recent artifact runs and deltas. Auto-populated.

Recent Runs (last 10)

Collection	Prior	Current
us_ofac_sdn	37459	37459
us_ofac_cons	1191	1191
us_bis_denied	428	428
eu_fsf	7811	7811
un_sc_sanctions	1395	1395
gb_fcdo_sanctions	6892	6892
ca_dfatd_sema_sanctions	5604	5604
au_dfat_sanctions	5163	5163
jp_mof_sanctions	3934	3934
ch_seco_sanctions	8920	8920

Current Dataset Version

Audit Metadata

Identifies the dataset snapshot and methodology behind this report. The downloaded PDF includes an equivalent block.

Report Version: 1.0
Content Version: 1.3
Dataset Version: 20260619181001-kpw
Dataset Hash (SHA-256): b0192ae88ea498494d355218c7543d6e0767b713cb2defdee57a956bb869ae57
Source Run ID: e96335e7-3ea1-481d-8fa8-3327c9ea1c2a
Generated (UTC): 2026-06-20 01:23:03 UTC
Report ID (this view): 7b7f41f3-d367-4622-bb06-febb0d9977e6
Generated By: VeriSanction Data

Auto-populated

Source run: e96335e7…Dataset: 20260619181001-kpw

Generated 2026-06-20 01:23:03 UTC