Compliance Lab is a sanctions intelligence and risk platform for banks, compliance teams, and traders in Kazakhstan and the CIS. We build the product we would want to use ourselves.
| Principle | What it means in practice |
|---|---|
| Official sources only | We ingest from OFAC, EU Council, UK OFSI, UN SC directly — not from resellers or aggregators for primary sanctions data |
| Explainable risk | Every risk score shows its inputs, weights, and sources. Every match explains why. No black box — you can explain any decision to a regulator |
| Audit-first | Every check is logged with timestamp, query, result, and user. Full audit trail exportable to CSV for compliance reporting |
| ICA-aligned methodology | Screening follows ICA Module 3 Unit 10 principles: threshold governance, 50% rule, sectoral context, adjudication path |
| CIS context | НБК, АРРФР, SWIFT secondary risk flags, anti-circumvention signals for KZ/CIS — coverage that western products lack |
| No legal advice | We provide operational intelligence and signals. Final decisions require an authorized compliance officer. We are explicit about this in every response |
| Layer | Technology | Purpose |
|---|---|---|
| API | FastAPI · Python 3.14 · uvicorn | 98 endpoints · Railway production |
| Database | PostgreSQL · pg_trgm | Local + Railway sync · fuzzy search |
| Frontend | Vanilla JS · Cloudflare Pages | Mini App · no framework dependencies |
| Mobile | React Native · Expo | In development |
| Graph | NetworkX · recursive CTE | Ownership traversal · shortest path · centrality |
| AI | Gemini 2.5 Flash | News summarization · channel posts · Ollama fallback |
| Scheduler | launchd · Railway Cron | 7 background jobs · monitoring · feeds · alerts |
| Infrastructure | Railway · Cloudflare | Auto-deploy on git push |