Global Sanctions Screening Platform for Financial Institutions and Government Agencies
1. General provisions
This Privacy Policy describes what data the ScanSanctions platform (the “Service”) collects and processes, as well as the purposes, methods, and conditions of such use.
By using the Service, you confirm that you have read and agree to this Privacy Policy.
2. Data we collect
Depending on how you use the Service, we may collect and process the following categories of data:
registration data (name, email address); technical data (IP address, browser type, device information, date and time of requests); API-related data (API key, request volume, request parameters); search queries submitted by the user for sanctions screening; cookies and similar technologies.
The Service does not require you to provide sensitive personal data unless such data is included in the functionality initiated by you.
3. Purposes of data processing
We use collected data only for the following purposes:
to provide and maintain the Service; to perform sanctions screening and display results; to ensure security and prevent abuse; to manage API access, limits, and licensing; to analyze performance and improve the Service; and to comply with legal and regulatory obligations.
The Service does not use user data to make automated decisions that produce legal or similarly significant effects.
4. Sources of sanctions data
ScanSanctions uses sanctions lists and data from official open sources, including but not limited to:
OFAC (United States), the European Union, the United Kingdom (OFSI), the United Nations Security Council, and national and international regulatory authorities.
Data from these sources is not owned by the Service and is published in the form provided by the relevant authorities.
5. Data storage and processing
User data may be stored and processed on servers located in various jurisdictions, including the United States of America.
We take reasonable technical and organizational measures to protect data from unauthorized access, loss, or disclosure.
Data retention periods depend on the purposes of processing, legal requirements, and the need to maintain the operation of the Service.
6. Data sharing with third parties
We do not sell or disclose users’ personal data to third parties except in the following cases:
when required by law or a request from governmental authorities; when necessary to operate the Service (hosting, infrastructure, security); or when the user has provided explicit consent.
7. Cookies
The Service uses cookies and similar technologies for:
proper website operation; saving user preferences; analyzing usage and improving the user experience; and protecting against abuse and automated attacks.
You may restrict or disable cookies in your browser settings; however, this may affect the proper functioning of the Service.
8. User rights
You have the right to:
request information about what data we process about you; request correction of inaccurate data; request deletion of data where not inconsistent with legal or regulatory requirements; and withdraw consent where processing is based on consent.
Requests related to privacy may be submitted using the contact details available on the ScanSanctions website.
9. Security
We apply reasonable measures to protect data; however, you acknowledge that no method of transmission over the Internet or electronic storage is completely secure.
10. Changes to this Policy
The ScanSanctions administration may update this Privacy Policy at any time.
Continued use of the Service after updates means you agree to the revised Policy.
11. Contact information
For questions related to privacy and data processing, you may contact the Service administration using the contact details available on the ScanSanctions website.
Additional provisions for California residents (CCPA)
CCPA rights for California residents
Under the California Consumer Privacy Act (CCPA), residents of the State of California have additional rights with respect to their personal data.
These rights include:
the right to request information about the categories of personal data collected and processed by the Service; the right to request information about the purposes for collecting and using personal data; the right to request deletion of personal data, except where retention is required to comply with law, ensure security, or fulfill contractual obligations; and the right not to be discriminated against for exercising rights under the CCPA.
Categories of data collected
For CCPA purposes, the Service may process the following categories of personal data:
identifiers (such as name, email address, IP address); Internet or other electronic network activity information (including information about use of the website and API); and technical and operational data related to access to the Service.
Sale of personal data
ScanSanctions does not sell users’ personal data as defined under the CCPA and does not share it with third parties for commercial purposes.
How to exercise your rights
California residents may submit requests to exercise their CCPA rights using the contact details available on the ScanSanctions website.
We may require reasonable verification of the requestor’s identity before processing such requests.