EU Sanctions DD PROG.4: Sanctions Compliance Training
What This Control Requires
Have relevant staff received sanctions compliance training?
In Plain Language
EU sanctions compliance ultimately depends on front-line staff recognising red flags. The most sophisticated screening tools and policies are useless if the people handling transactions do not know what to look for.
The EU Sanctions Compliance Helpdesk lists training as one of six essential components of a sanctions compliance programme. Training should cover not just what EU sanctions are, but specifically what front-line staff should watch for in their daily work and how to escalate concerns.
Since Directive 2024/1226, sanctions violations carry criminal penalties including imprisonment. Staff need to understand that this is not an abstract compliance exercise - their personal liability is at stake.
How to Implement
Provide sanctions awareness training to all customer-facing, operations, finance, and procurement staff. The training should cover:
1. What EU sanctions are and why they matter - not abstract legal theory, but concrete consequences: criminal penalties under Directive 2024/1226 (imprisonment up to 5 years for serious violations), company fines (up to 5% of worldwide turnover or EUR 40 million), and personal liability.
2. The WHO/WHAT/WHERE/WHY red flag framework from the EU Sanctions Compliance Helpdesk - practical indicators that staff can recognise in their daily work: - WHO: unknown counterparties, complex ownership, reluctant to provide information - WHAT: controlled goods, vague descriptions, pricing anomalies - WHERE: sanctioned territories, circumvention hubs, indirect routing - WHY: no business rationale, refused end-use disclosure, geographic mismatches
3. Your internal escalation process - exactly who to contact, how, and what information to provide.
4. Practical scenarios relevant to your specific business - not generic case studies but situations your staff actually encounter.
Training frequency: - At onboarding for all new staff in relevant roles - Annual refresher for all staff - Ad hoc updates whenever major sanctions changes occur (new designations, new regulations)
For compliance staff, provide deeper training on: list screening techniques, UBO analysis, authority reporting procedures, and circumvention typologies.
Keep detailed attendance records. Consider knowledge assessments (quizzes) to verify understanding.
Evidence Your Auditor Will Request
- Training programme documentation covering content, frequency, and target audience
- Attendance records for all training sessions
- Training materials showing coverage of WHO/WHAT/WHERE/WHY framework and escalation process
- Knowledge assessment results (quizzes, tests) where applicable
- Evidence of ad hoc training sessions following major sanctions changes
Common Mistakes
- No formal sanctions training programme - relying on on-the-job learning
- Training limited to compliance staff while ignoring front-line sales, operations, and finance
- Generic training materials not tailored to the company's specific business and risk profile
- Training conducted once at onboarding with no annual refresher
- No attendance records or knowledge assessment to verify training effectiveness
Related Controls Across Frameworks
| Framework | Control ID | Relationship |
|---|---|---|
| EU Sanctions DD | EU Sanctions DD PROG.1 (related mapping) | Related |
| EU Sanctions DD | EU Sanctions DD RPT.2 (related mapping) | Related |
| EU Sanctions DD | EU Sanctions DD PROG.2 (related mapping) | Related |
Frequently Asked Questions
Who needs sanctions training?
Can we use e-learning for sanctions training?
How do we measure training effectiveness?
Track EU Sanctions DD compliance in one place
AuditFront helps you manage every EU Sanctions DD control, collect evidence, and stay audit-ready.
Start Free Assessment