TRW Law Firm – Global Header
Book Consultation

Sanctions & Export Controls

by Tahmidur Remura Wahid | Aug 29, 2025 | Uncategorized | 0 comments

Sanctions & Export Controls: A Field Guide for Boards, CFOs, and Trade Teams

Sanctions & Export Controls: A Field Guide for Boards, CFOs, and Trade Teams

By Tahmidur Remura Wahid (TRW) Law Firm — Cross-border trade, compliance, and disputes

Why this matters now

If your business sources, sells, ships, finances, insures, or supports cross-border goods or technology, sanctions and export controls are now a frontline enterprise risk. The rules are dynamic, penalties are severe, and counterparties (banks, carriers, platforms, insurers) increasingly de-risk by default. The winners are companies that can ship compliantly without delay—because they convert orders faster, get paid on time, and keep their counterparties (and regulators) comfortable.

This TRW guide is a practical playbook: how sanctions/export controls actually work, where companies in (and trading with) Bangladesh get stuck, and exactly how to build a right-sized compliance program in 90 days.

What are “sanctions” vs “export controls” (in one minute)

  • Sanctions are restrictions on parties, activities, sectors, and places (e.g., asset freezes, service bans, trade/finance prohibitions), issued by jurisdictions such as the U.S. (OFAC), EU, UK (OFSI), UN, and others. Breaches can trigger asset blocking, loss of banking, and civil/criminal penalties. A modern program hinges on screening, ownership/control analysis, and routing of payments, ships, and services. (EEAS)
  • Export controls govern which items, software, technology, and technical assistance you can export, re-export, or transfer (even in-country) and to whom/for what end-use. In practice, you classify the item (e.g., ECCN or EAR99 under the U.S. EAR), check destinations/end-users/end-uses, and license or prohibit accordingly. (Bureau of Industry and Security)
  • Compliance architecture universally converges on five pillars: management commitment, risk assessment, internal controls, testing/audit, and training. That’s the global blueprint regulators expect you to operationalise. (ofac.treasury.gov)

The moving parts (how risk actually shows up)

Tahmidur Remura Wahid 139
  1. Parties & ownership
  • Counterparty screening is table stakes; the real gap is ownership/control (e.g., blocked persons behind seemingly clean entities).
  • Different regimes apply different “aggregation” concepts; get your ownership attestation workflow right and renew it on change events.
  1. Places & routing
  • Routing through or touching a sanctioned territory, port, bank, insurer, or carrier can taint the transaction—even if your buyer is clean.
  • Watch freight substitutions, AIS gaps, STS transfers, “shadow fleet” tankers, and transshipments through sensitive hubs.
  1. Products & technology
  • Dual-use, high-tech, telecom, oil & gas, advanced materials, aviation parts, and semiconductor-adjacent items are higher-risk.
  • Non-listed goods can still be EAR99 or locally controlled; end-use/end-user prohibitions may still bite.
  1. Services
  • Beyond goods: brokering, financing, insurance, auditing, trust/company services, marketing, IT support, and logistics can themselves be restricted.
  1. Payments
  • Even a “clean” shipment can fail if intermediary banks reject wires due to list hits, weak documentation, or unclear narratives.

Global regimes at a glance (what you must align to)

  • United States (OFAC/BIS/DDTC)
  • OFAC: country- and list-based sanctions; the well-known “50 Percent Rule” for aggregation of blocked ownership; sectoral and activity prohibitions; extensive general/specific licensing.
  • BIS (EAR): classify your item (ECCN vs EAR99) and check destination, end-use, and end-user; license or stop. (Bureau of Industry and Security)
  • Compliance blueprint: commitment, risk assessment, controls, testing, training. (ofac.treasury.gov)
  • European Union
  • EU “restrictive measures” system: consolidated lists, sector measures, and a robust dual-use regime (Regulation (EU) 2021/821).
  • Tools: Sanctions Map, consolidated financial sanctions list, competent authorities directory. (EEAS)
  • United Kingdom (OFSI)
  • UK financial sanctions under the Sanctions & Anti-Money Laundering Act; detailed ownership and control guidance; monetary penalty regime and reporting duties for firms. (GOV.UK)
  • United Nations
  • UN listings implemented domestically; financial institutions and DNFBPs must screen and freeze promptly under national rules.
  • Bangladesh touchpoints
  • UN sanctions are implemented through local circulars and guidance; banks apply trade-based AML controls alongside sanctions screening; exporters/importers must keep clean documentary trails and end-use assurances ready for banks and customs.

Board-level risks we see most often (and how they happen)

  1. Hidden ownership/control
  • A clean distributor masks a blocked owner via layered SPVs. Red flag: evasive KYC, frequent ownership changes, and reluctance to provide UBO docs.
  1. Benign goods, prohibited end-use
  • “EAR99” items shipped to an end-use the regulator bars (e.g., energy exploration in a sanctioned zone) → violation without any listed party.
  1. Services traps
  • Non-U.S. company pays for shipping insurance or IT support that a U.S. person provides to a sanctioned trade → OFAC nexus created.
  1. Payment chain contamination
  • Clean seller and buyer; but an intermediary bank is restricted or flags the narrative; funds are frozen mid-chain.
  1. Re-exports and transshipments
  • Goods lawfully sold to Country A get re-exported—by your buyer—to Country B under controls; enforcement follows the audit trail.

A 90-day implementation plan (right-sized for growing companies)

Days 1–15 — Risk map & governance

  • Appoint a Sanctions/Export Controls Officer (can be part-time at first).
  • Map jurisdictional reach (U.S., EU, UK, UN, others), product portfolio, counterparty geographies, payment corridors, and shipping routes.
  • Approve a short, public Policy Statement (board-signed) committing to compliance and cooperation with authorities. (ofac.treasury.gov)

Days 16–45 — Controls you can actually run

  • Screening: Deploy list screening for customers, suppliers, owners (to the natural person), vessels, ports, and banks.
  • Ownership & control: Standardise UBO declarations + documentary proof; refresh on change events; maintain a 360° register.
  • Classification: For each SKU/software, determine ECCN vs EAR99 (and any local control) and record the rationale. (Bureau of Industry and Security)
  • End-use/end-user diligence: Add End-User & End-Use Statements for sensitive goods, with red-flag triggers for escalation.
  • Licensing workflow: Build a one-page “license/no-license” playbook with contacts at relevant authorities.
  • Shipping/payment narrative: Standardise invoice, packing list, and bank narrative language to anticipate bank screening.

Days 46–90 — Prove it works

  • Testing/Audit: Sample 10 recent shipments and 10 payments; evidence screening, UBO checks, classification, and red-flag handling.
  • Training: 60–90 minutes for sales, logistics, finance, and procurement.
  • Metrics & reporting: Monthly KPIs (hits cleared, escalations, licenses, blocks, training completion) to management; board report quarterly. (ofac.treasury.gov)

How to classify goods/software (the 5-step shortcut)

  1. Describe the item (function, specs, performance, encryption, power, precision, materials).
  2. Search control lists (U.S. CCL/EAR, EU Dual-Use, local lists) and map likely ECCN(s).
  3. Run the “order of review” (is it ITAR? CCL? EAR99?)—document the decision. (Bureau of Industry and Security)
  4. Check destination/end-user/end-use: a license may be required even for EAR99.
  5. Recordkeeping: keep the classification memo and the evidence you relied on (datasheets, emails, vendor statements).

Contract tools you should adopt today (copy & adapt)

  • Sanctions & export-controls warranty
  • Counterparty warrants it is not listed, not owned/controlled by a listed person, will not divert to sanctioned parties/places, and will notify of changes.
  • End-use undertakings
  • Explicit statements on no military/dual-use proliferation, no oil exploration in restricted regions, no incorporation into prohibited platforms.
  • Audit & termination
  • Right to audit documents, suspend deliveries, and terminate if screening/ownership/end-use concerns arise or licenses are denied.
  • Routing & shipping
  • Agreed ports, carriers, and vessels; no transshipment via listed jurisdictions; AIS must be on; no STS with restricted fleets.
  • Payment narratives
  • Prescribe clean, specific narratives and permitted banks; require buyer cooperation on bank KYC.

Documentation pack your banks and carriers love

  • KYC file: corporate registries, UBO chart, IDs, proof of address, tax certs.
  • Screening evidence: date-stamped results for counterparties, owners, vessels.
  • Classification & end-use: ECCN/EAR99 memo + End-User Statement.
  • Shipping: bookings, B/L or AWB, certificates of origin, insurance, AIS logs (for maritime).
  • Licenses: copies + conditions matrix; diary for expiries.
  • Narratives: scripts for invoices and payment messages (MT103 fields).

Red-flag playbook (when to escalate or stop)

  • Unwillingness to share UBO; complex structures without commercial rationale.
  • Requests to change consignee/port late in the process.
  • Cash equivalents, unusual pre-payments, or third-country payments unrelated to trade flow.
  • Vessels with AIS gaps, multiple flags of convenience, or recent name changes.
  • Buyers that resell into known risk destinations but deny it in writing.

If two or more red flags appear, pause and route to counsel for license/derogation analysis—or decline the transaction.

Case snapshots (anonymised)

  • Anwar Textiles → EU Buyer (dual-use sensors)
  • Risk: sensors potentially within EU/U.S. control thresholds; onward sale to a sensitive industry.
  • Fix: ECCN classification confirmed; End-User Statement obtained; routing locked via approved carrier; license not required—shipment cleared.
  • Vijay Components → Middle East Distributor (oilfield spares)
  • Risk: service to a restricted project; bank queried payment narrative.
  • Fix: Contracted sanctions warranty + end-use attestation; switched to permitted insurer; narrative revised; bank cleared; shipment proceeded.
  • Meera Logistics → Central Asia (re-export risk)
  • Risk: buyer in Country A likely to re-export to Country B under controls.
  • Fix: No-re-export clause, periodic customer certifications, and post-delivery audits; one order blocked after mismatch found.

(Names are generic.)

Bangladesh-facing realities (and how TRW solves them)

  • Trade finance scrutiny: Banks in Bangladesh apply UN-aligned sanctions + TBML lenses; incomplete files stall LCs/TTs.
  • TRW fix: Build bank-grade packs (KYC, screening, end-use, routing, narratives) and align the LC/contract language to reduce discrepancy risk.
  • Ownership opacity: SME distributors often lack clean corporate records.
  • TRW fix: Simple UBO declaration + doc checklist; refuse “letter-only” assurances.
  • Transshipment hubs: Regional routing through sensitive ports.
  • TRW fix: Route sheets approved at contracting; vessel/port screening with re-confirmation pre-sailing.
  • Documentation gaps: Missing End-User Statements or poor classification notes.
  • TRW fix: Turnkey classification memos and end-use forms for your SKUs; training for sales/logistics.

Governance & culture: make it stick

  • Tone from the top: Board sign-off and visible support for blocking questionable deals—even when it hurts quarterly numbers. (ofac.treasury.gov)
  • One policy, many playbooks: A short global policy plus country/team playbooks (sales, logistics, finance).
  • Learning loops: Record near-misses; update red-flag lists quarterly.
  • Supplier onboarding: Extend screening and end-use obligations downstream.

TRW’s end-to-end support

  1. Risk assessment & policy aligned to U.S./EU/UK standards.
  2. Item classification (ECCN/EAR99) and dual-use mapping for your catalogue. (Bureau of Industry and Security)
  3. Contract kit: sanctions & export clauses, end-use undertakings, audit/termination, routing/payment scripts.
  4. Screening stack: party/UBO/vessel/port/bank workflows; evidence logging.
  5. Licensing & advisory: prepare applications and handle authority engagement.
  6. Training & drills: live sessions for sales, logistics, finance, procurement.
  7. Audit & incident response: internal reviews, remediation, and—where helpful—voluntary self-disclosures to reduce penalty exposure. (ofac.treasury.gov)

Explore related cross-border insights on our International Trade hub to connect compliance with contract drafting, shipping, and payments.

Summary table — Sanctions & Export Controls at a glance

TopicWhat it isWhat you must doTRW deliverableBusiness benefit
Sanctions scopeParties, places, sectors, servicesScreen parties & owners, control routing, manage servicesPolicy + screening + UBO workflowFewer blocked payments/shipments
Export controlsItem + destination + end-useClassify (ECCN/EAR99), check end-use/users, license or stopClassification memos + end-use formsConfident order acceptance
Ownership/controlListed owners behind clean shellsUBO docs; aggregation tests; attestationsUBO pack + contract warrantiesAvoid “hidden sanctions”
Routing & vesselsPorts, flags, “shadow fleet”, AISPreset routes; vessel/port screening; AIS onRouting clauses + pre-sailing checksLower seizure/rejection risk
PaymentsBanks screen narratives & chainsClean narratives; permitted corridors; bank liaisonNarrative templates + bank packFaster clearing, fewer holds
LicensingExceptions/derogationsDecide early; apply with evidenceLicense decision trees + filingsShip legally, avoid penalties
Program pillarsCommit, assess, control, test, trainRun a 90-day rollout; report KPIsPolicy + KPIs + board reportingCulture + regulator comfort

Contact TRW Law Firm

Tahmidur Remura Wahid (TRW) Law Firm
Contact Numbers: +8801708000660 · +8801847220062 · +8801708080817
Emails: [email protected] · [email protected] · [email protected]

Global Law Firm Locations:

  • Dhaka: House 410, Road 29, Mohakhali DOHS
  • Dubai: Rolex Building, L-12 Sheikh Zayed Road.

References

  1. U.S. Treasury (OFAC) — A Framework for OFAC Compliance Commitments. (ofac.treasury.gov)
  2. U.S. BIS — Licensing & Classification (ECCN vs EAR99). (Bureau of Industry and Security)
  3. European External Action Service — European Union sanctions overview & tools. (EEAS)

This publication is for general guidance only and is not legal advice. For transaction-specific questions or license determinations, please contact TRW’s sanctions & trade team.

Loading…

Loading… | 5 MIN READ | BY TAHMIDUR REMURA WAHID