Skip to content
AuditFront
EU Sanctions DD xlsx

EU Sanctions Due Diligence Checklist (2026 Edition)

A comprehensive sanctions due diligence checklist built on the WHO-WHAT-WHERE-WHY framework from EU official guidance. Covers the full lifecycle of sanctions compliance - from counterparty screening and beneficial ownership verification through restricted goods checks, geographic routing analysis, end-use verification, mandatory reporting obligations, and compliance programme evaluation.

Every question maps directly to current EU regulation. The template references the EU Consolidated Sanctions List, Regulation 833/2014 (restrictive measures on Russia), Regulation 269/2014 (asset freezing), the Dual-Use Regulation 2021/821, Directive 2024/1226 (criminal sanctions for violations), updated EU Best Practices (July 2024), and the latest EBA Guidelines on restrictive measures (November 2024). Each question includes direct links to the relevant regulation so you can verify the legal basis yourself.

Designed for companies conducting M&A due diligence, onboarding new counterparties, or performing periodic self-assessments against EU sanctions requirements. The checklist uses a risk-weighted scoring system with gate questions (automatic fail on critical findings) and qualifying questions (weighted by severity) to produce a clear pass/fail assessment with a detailed risk breakdown.

Download Free Template Free XLSX download -- no account needed
XLSX

EU Sanctions Due Diligence Checklist (2026 Edition)

Free template

What's Inside

25 risk-weighted due diligence questions across 6 sections with direct regulation links
WHO section - counterparty screening against EU Consolidated List, UBO verification, 50% ownership test, shell company detection, SOE exposure analysis
WHAT section - restricted goods and dual-use technology checks against Annexes to Regulation 833/2014 and Regulation 2021/821
WHERE section - sanctioned territory exposure, circumvention hub analysis (UAE, Turkey, Central Asia), trade routing red flags
WHY section - end-use verification, no-re-export clauses, geographic mismatch detection, business rationale assessment
Reporting obligations - mandatory 2-week reporting under Regulation 269/2014, internal escalation procedures, non-EU subsidiary compliance
Compliance programme evaluation - designated officer, risk assessment, ongoing screening, staff training requirements
Gate questions that flag critical blockers requiring immediate escalation
Risk-weighted scoring with automatic calculation of overall sanctions exposure

Who It's For

Compliance officers conducting counterparty sanctions screening and periodic reviews M&A teams performing sanctions due diligence on acquisition targets Financial institutions assessing client and transaction sanctions risk Export control managers verifying goods and technology against EU restricted lists Legal teams advising on EU restrictive measures compliance Private equity firms evaluating portfolio company sanctions exposure

How It Works

1

Download free

Get your free XLSX template instantly. No account required.

2

Fill in assessment

Work through each section using the built-in guidance and examples.

3

Import to AuditFront

Upload your completed template to AuditFront for tracking, collaboration, and audit preparation.

Frequently Asked Questions

How often should we run this due diligence checklist?
At minimum: once during counterparty onboarding, then again whenever the EU Consolidated List is updated (which happens frequently - sometimes multiple times per month). For ongoing business relationships, a full reassessment at least quarterly is considered best practice per the EBA Guidelines. High-risk counterparties (those in or near sanctioned jurisdictions, or in sensitive sectors) should be reassessed more frequently.
Does this cover US (OFAC) sanctions as well?
This checklist is specifically designed for EU sanctions regulations. While there is significant overlap between EU and US sanctions programmes (particularly regarding Russia), OFAC has its own designation lists, secondary sanctions provisions, and enforcement approach. If your company has US nexus (US persons, US-origin goods, USD transactions), you need a separate OFAC compliance process in addition to this EU-focused checklist.
What happens if a gate question fails?
Gate questions represent critical compliance requirements. If a gate question fails - for example, a counterparty appears on the EU Consolidated List - the assessment should stop immediately and be escalated to your compliance officer and legal team. Depending on the finding, you may be legally required to file a report with your national competent authority within two weeks under Regulation 269/2014, Article 8. Since Directive 2024/1226, failure to report is a criminal offense in all EU member states.
Is this template suitable for non-EU companies?
Yes, if your company does business with EU counterparties, handles EU-origin goods, or has EU subsidiaries. EU sanctions have extraterritorial reach - the anti-circumvention provisions specifically target arrangements designed to route transactions around EU restrictions. Non-EU subsidiaries of EU parent companies are also subject to a 'best efforts' obligation to comply, as detailed in the EU Best Practices guidance (July 2024).

Ready to go beyond spreadsheets?

Import your completed template into AuditFront for real-time tracking, team collaboration, and automated audit preparation.

Start Free on AuditFront