OFAC · UN · EU · UK sanctions screenedZero-retention AIGDPR · CCPA program

Products

Four compliance APIs for emerging-market commodity trade.

The infrastructure that caught a $50M Chevron-CEO impersonation in 30 minutes, productized for compliance teams at banks, trading houses, and insurers. Comparables: Refinitiv World-Check, Dow Jones Risk Center, Moody's BvD, ComplyAdvantage, Sumsub. Four APIs target Q3 2026 GA; early access pricing reflects beta status.

SKU 01

· BETA

Regulatory Matrix API

79-jurisdiction product-tradability rules as a clean JSON API.

The 79-jurisdiction matrix that gates counterparty intake on bank trade-finance desks, exposed as a paid REST API. Per-product status (allowed / restricted / blocked) plus contextual notes (which regulator, which monopoly, which license). Stripe-billed. Self-serve.

  • 79 jurisdictions, all product categories (crude, refined, LPG, LNG, bitumen)
  • Allowed / restricted / blocked status per country × product
  • Country-specific notes (Sonatrach monopoly, BPC oversight, BPH Migas license, etc.)
  • Tradability-check endpoint for bank compliance intake + counterparty pre-screen
  • Updated as regulators change rules; subscribers get changelogs + webhooks
  • Sandbox + production environments, OpenAPI spec, idiomatic SDKs Q3 2026

Customer

Trade-finance bank compliance teams · RegTech developers · trading-house compliance engineers

Pricing

  • Developer

    $99/mo

    1K calls/mo, sandbox + production keys, no SLA

  • Production

    $999/mo

    50K calls/mo, 99.0% uptime target, webhook events on rule changes

  • Enterprise

    $25-100K/yr

    Unlimited calls, custom feeds, dedicated SE, 99.9% uptime (multi-region active-passive)

Endpoints (beta)

  • GET

    /api/v1/regulatory/countries

    List 79 jurisdictions

  • GET

    /api/v1/regulatory/countries/:slug

    Country detail with all product rules

  • GET

    /api/v1/regulatory/check

    ?country=PK&product=crude → status + notes

  • GET

    /api/v1/regulatory/products

    List product categories

SKU 02

· BETA

Counterparty KYC-as-API

One API call runs 7 KYC steps across 79 jurisdictions. Returns a structured risk report.

The 7-step KYC pipeline that screens every OilFlow member, exposed as a B2B SaaS endpoint. Sanctions screening across 7 source lists (OFAC SDN, OFAC Consolidated, UN, EU, UK HMT, Canadian SEMA, Australian DFAT, Swiss SECO) via 2 live integrations: OpenSanctions aggregator (covering all 7 lists with weekly refresh) plus direct OFAC SDN/Consolidated XML for redundancy. PEP flagging (review-tier, non-blocking). Company registration check via OpenCorporates. Regulatory license check via 79-jurisdiction ruleset. Asset confirmation + digital footprint scoring + scam-pattern detection are analyst-assist LLM scores with cited evidence (data_source: 'analyst_assist_llm' in the response). Trade reference step runs a structured email questionnaire to references the customer supplies. Cluster-blocklist match with fuzzy match (pg_trgm). Beta — sanctions + blocklist + regulatory checks are production-grade live APIs; steps 4-6 are explicitly framed as analyst-assist in the API response shape so compliance officers can route accordingly. Beta customers get founding pricing + direct engineer access.

  • 7-step KYC across 79 jurisdictions
  • 7-list sanctions screening + PEP — auto-rescreen every 90 days
  • Three-document test (named principal + corporate email + corporate letterhead)
  • Scam-pattern detection (LOI/ICPO/DLC MT700 chain, mandate-layer cake, non-refundable PB)
  • Cross-reference to verified-fraudulent cluster blocklist (Simar, Adeel, Ahmad, Russia-Türkiye clusters)
  • Structured risk report: pass / review / fail + per-step reasoning + recommended action

Customer

Trade-finance banks · trading-house compliance desks · trade credit insurers · marine / cargo insurers

Pricing

  • Per-screen

    $25-50/counterparty

    Pay-as-you-go, structured risk report returned in <30s

  • Seat-based

    $25-100K/yr

    Unlimited screens, multi-seat, admin dashboard, custom alerts

  • Enterprise SLA

    Custom

    Dedicated infrastructure + custom KYC steps + audit log export

SKU 03

· EARLY ACCESS

Scam Cluster Intelligence Feed

Real-time feed of verified-fraudulent commodity-trade counterparty clusters.

The cluster intelligence library built from real commodity-trade fraud caught by OilFlow's scam-detection pipeline. Includes the Simar Chahal cluster (verifiable Chevron-CEO impersonation), the Adeel Russian-oil mandate chain, the Ahmad Pinnacle Petrol layer-cake, the Russia-Türkiye dark-fleet inbound pattern, and continuously-added new clusters. Cross-referenced to LinkedIn profile IDs, company aliases, broker chains, email patterns, and severity scores.

  • Verified-fraudulent cluster records with primary + suspected entities
  • Cross-references: LinkedIn IDs, company aliases, broker chains, email patterns
  • Severity scoring + classification by fraud pattern (mandate chain, impersonation, dark fleet, layer cake)
  • Real-time webhook delivery on new cluster additions or escalations
  • Weekly digest format for compliance team consumption
  • Historical cluster archive for investigative work

Customer

Banks · trade credit insurers · exchanges · trading-house compliance · law firms with commodity practices

Pricing

  • Read-only

    $10-25K/yr

    JSON feed, weekly digests, historical cluster archive

  • API + alerts

    $50-100K/yr

    Real-time webhooks, custom alert rules, severity-based routing

SKU 04

· ENTERPRISE

Trade-Compliance Workflow Suite

White-label trade-compliance workflow for bank trade-finance desks.

Counterparty intake → 7-step KYC screen → NCNDA dispatch via DocuSign → SPA draft generation → audit log. Embedded via API or hosted iframe app. Built on the same workflow infrastructure that runs OilFlow's own deal rooms. Customizable to a bank's existing compliance policy with custom risk thresholds + approval routing.

  • End-to-end counterparty-to-execution workflow for trade-finance desks
  • Pre-integrated with Regulatory Matrix API + KYC-as-API + Cluster Intelligence Feed
  • DocuSign JWT integration for NCNDA + SPA dispatch with HMAC webhook receipts
  • Audit log export (CSV, JSON, BigQuery sink) for compliance reporting
  • Custom risk thresholds + approval routing per the bank's policy
  • SSO via SAML or OIDC; bank-specific branding optional

Customer

Mashreq · HBL · Emirates NBD · KCB · Stanbic · Standard Chartered EM · HSBC EM (trade-finance compliance desks)

Pricing

  • Mid-market bank

    $200-500K/yr

    Single trade-finance desk, embedded via API, basic SSO

  • Multi-desk enterprise

    $500K-$1M/yr

    Multi-region, multi-desk, custom workflow rules, dedicated CSM

Q3 2026 LAUNCH

All four APIs GA Q3 2026.

Beta and early-access seats are limited. Talk to us about pilot pricing for compliance teams that want to move first.