OFAC settles with digital asset company over multiple sanctions violations
On December 30, the U.S. Treasury Department’s Office of Foreign Assets Control (OFAC) announced a nearly $100,000 settlement with a California-based digital asset security company for 183 apparent violations of multiple sanctions programs. According to OFAC, between March 2015 and December 2019, the company processed 183 digital currency transactions, totaling over $9,000, on behalf of individuals who were located in sanctioned jurisdictions, such as the Crimea region of Ukraine, Cuba, Iran, Sudan, and Syria. OFAC notes that, prior to April 2018, the company allowed users to open accounts by providing only a name and email address, and while it then amended its policies to require all new accountholders to verify the country in which they were located, it did not perform additional verification or diligence on their actual location.
In arriving at the settlement amount, OFAC considered various aggravating factors, including that the company (i) failed to implement appropriate, risk-based sanctions compliance controls; and (ii) had reason to know that some of its users were located in sanctioned jurisdictions based on users’ IP address data.
OFAC also considered various mitigating factors, such as (i) the company not having received a penalty notice from OFAC in the proceeding five years; (ii) the company cooperating with the investigation; and (iii) the company having undertaken remedial measures, including hiring a Chief Compliance Officer and implementing a new OFAC policy.