We cross-match designated entities against reference datasets to add corporate hierarchies, personal networks, and authoritative identifiers.
Keep updated
Get in touch
We cross-match designated entities against reference datasets to add corporate hierarchies, personal networks, and authoritative identifiers.
Sanctions lists and PEP registers tell you who or what is designated. They rarely tell you what companies they own, who sits on their boards, or which subsidiaries they control. That context lives in company registries, financial databases, and public knowledge bases — none of which are risk-focused datasets.
We bridge that gap by cross-matching entities in our database against reference datasets and pulling in the relevant fragments: directors, shareholders, subsidiaries, family members, financial identifiers, and corporate relationships. The result is a more connected entity graph that supports compliance workflows beyond simple name screening.
A screening system limited to published lists can only match names and identifiers authorities have chosen to include. Enrichment surfaces the rest.
The enrichment pipeline, using nomenklatura, matches entities in our database against reference datasets. When it finds a match, it imports the matched entity and its immediate network into an enrichment dataset.
Risk-focused datasets — sanctions lists, debarment registers, PEP databases — contain only entities that a government or authority has explicitly flagged. We ingest these in full.
Reference datasets are general-purpose databases with no inherent risk focus. A national company registry can contain millions of entities, with the vast majority having no sanctions relevance.
We use reference datasets selectively, matching entities already in our database against a reference dataset, and importing only the fragments connected to an entity with a risk topic. A national registry becomes relevant when a designated entity appears as a shareholder. At that point, we pull in the company, its other directors, and its subsidiaries.
For each entity in the input — a sanctions list, a PEP register, or a prior enrichment result — the system searches for it in the reference dataset. For full-registry sources like company registers, this uses an entity resolution algorithm that compares names, dates of birth, registration numbers, and other identifying features. For API-based sources like Wikidata, a direct name search is used.
Confident matches are imported immediately. Uncertain candidates — multiple "John Smith" results, for example — enter a review queue where a human analyst or an automated matching algorithm verifies them before inclusion.
For confirmed matches, the system traverses the reference dataset to pull in related entities, representing relationships as interstitial entities (Ownership, Directorship, etc). If a sanctioned person is confirmed as a director of a company in a national registry, the system imports that company's other directors, its shareholders, and its subsidiaries.
Results are stored in dedicated enrichment datasets (often named ext_<source>, e.g. ext_ru_egrul). These contain only the subset of the reference dataset for which a link to an entity in our database has been confirmed.
Every property value in the database carries full provenance. Each entity record includes a datasets array, listing every data source that contributed to it — an entity appearing in both us_ofac_sdn and ext_ru_egrul, for example, would list both. At the statement level, individual property values carry the data source, timestamps, and the raw value before normalization.
Enrichment on its own finds entities already in the database within reference datasets. Risk propagation extends this by annotating newly discovered entities with risk topics so they become eligible for further enrichment.
In practice:
sanction).sanction.linked.sanction.linked, and the cycle continues.Each iteration adds roughly a week of processing time. Registry enrichers are computationally expensive and run weekly. Plan for three to four weeks for a three-tier corporate hierarchy to fully materialize.
Risk propagation also powers the identification of relatives and close associates (RCAs). When a Wikidata enrichment run discovers that a politically exposed person (PEP) has a spouse, the analysis step tags the spouse as role.rca. That person then becomes eligible for enrichment, surfacing any companies they direct or other public roles they hold.
Not every entity in the database is enriched. Enrichers filter by risk topic to focus on entities that warrant deeper investigation:
sanction, sanction.linked, asset.frozen, export.control, export.control.linked, export.riskrole.pep, role.rcadebarment, reg.action, reg.warnpoi (persons of interest), gov.soe (state-owned enterprises)This filtering keeps the system tractable. Enriching every entity against every reference dataset would be computationally prohibitive and produce more noise than signal.
Several major sanctions frameworks impose obligations that extend beyond the published lists. The most prominent is the OFAC 50 Percent Rule: any entity owned 50% or more, directly or indirectly, by one or more designated persons must be treated as blocked — even if it doesn't appear on the SDN list. The EU and UK apply similar beneficial ownership tests.
These rules can't be met by screening against watchlists alone. They require ownership graph data: knowing who owns what, through which intermediaries, and at what percentages.
Our enrichment pipeline contributes to this, but doesn't solve it. Where we have company registry coverage — currently about a dozen jurisdictions, mostly in Europe and the post-Soviet space — we can trace structural ownership links between designated persons and companies, and expand those through multiple tiers of corporate hierarchy. We also surface offshore connections through the ICIJ Offshore Leaks database (Panama Papers, Pandora Papers, and others), beneficial ownership disclosures via Open Ownership, and financial identifiers through GLEIF.
That said, the coverage is partial and the gaps are significant:
Enrichment gives you a meaningful head start on ownership-linked sanctions compliance, but it doesn't produce an exhaustive global database of entities affected by the 50 Percent and similar rules. No single data source does.
It's also worth naming the structural problem: gathering intelligence on the opaque networks associated with designated persons and companies is a task for which governments — equipped with investigative bodies, intelligence agencies, and access to beneficial ownership registers, as well as suspicious activity reports filed by financial institutions — are far better equipped than the private sector and civil society. The 50 Percent Rule, while well-intended, must also be considered a failure of government to properly perform its own role in the design and implementation of effective sanctions regimes.
All reference datasets are listed in the enrichers collection. The categories below describe how each group contributes to the entity graph.
Company registries are the core of ownership enrichment. We cross-match against full national company registries to build out corporate hierarchies: directors, shareholders, subsidiaries, and beneficial owners.
Currently integrated: Russia (EGRUL), Ukraine (EDR), UK (Companies House PSC), Cyprus, Czech Republic, Estonia, Georgia, Kazakhstan, Latvia, Moldova, and Bosnia and Herzegovina.
Financial and corporate identifiers attach authoritative reference numbers to entities already in the database. These don't expand the graph — they make existing entities easier to match and integrate in downstream systems.
Sources: GLEIF (Legal Entity Identifiers), SWIFT BIC (bank identifiers), ESMA FIRDS and FCA FIRDS (financial instruments), LSEG PermID, OpenFIGI, OpenCorporates, and the US IRS FATCA FFI List.
Biographical and investigative databases surface personal networks, public roles, and investigative findings that add context to listed persons.
Sources: Wikidata (family members, associates, and public roles — persons only) and ICIJ Offshore Leaks (Panama Papers, Pandora Papers, and other leak investigations).
Shipping and transport records link vessels to owning and operating companies, useful for mapping networks around sanctions-linked shipping entities.
Sources: Abuja MoU (West and Central Africa) and Tokyo MoU (Asia-Pacific).
Enforcement documentation links official enforcement records to designated entities, providing a dated record of the underlying action.
Sources: OFAC press releases.