SinoInsight
Request consulting
All reports
Macro2026-06-14 · 8 min read

Sanctions & Export-Control Exposure in China Supply Chains

Executive summary

Restricted-party and export-control risk is now a first-order issue for anyone sourcing from or selling to China — not a legal afterthought. What the US, EU, UN and UK lists actually cover, how exposure hides one tier down in your supply chain, and a practical screening routine for non-specialists.

Why this moved from legal to operational

For most of the last decade, sanctions screening was something the legal team did once at onboarding. That is no longer safe. The US Entity List and the Chinese Military-Industrial Complex (CMIC) list have expanded materially, the EU and UK have added China-linked entries, and enforcement now reaches *downstream* — your exposure can come from a sub-supplier you have never spoken to.

If you source from, sell to, or invest in Chinese entities, restricted-party screening belongs in procurement and sales workflows, not just in compliance.

What the four jurisdictions actually cover

The lists are not interchangeable — each carries different obligations:

  • US — OFAC SDN: full blocking. US persons generally cannot transact at all; assets are frozen. The most severe.
  • US — BIS Entity List & Denied Persons: export-control. You need a licence (often denied) to ship US-origin or US-content items to listed parties. This catches non-US companies via re-export rules.
  • US — CMIC (Chinese Military-Industrial Complex): investment restrictions on listed Chinese companies — relevant to anyone holding or advising on Chinese securities.
  • EU / UN / UK consolidated lists: asset freezes and dealing prohibitions for entities under their respective regimes.

A counterparty can be clean under one regime and restricted under another. If you touch US-origin technology, the BIS Entity List matters even if you are a European company selling to a Chinese buyer.

The trap: exposure one tier down

The expensive failures are almost never the direct counterparty — those get screened. They are:

  • Parents and affiliates. A clean trading company that is majority-owned by a listed parent inherits the parent's status. Screen the ownership chain, not just the signatory.
  • Sub-suppliers. Your contract manufacturer is fine; the component vendor they switched to last quarter is on the Entity List. You inherit the problem.
  • Name variants. Chinese names transliterate many ways, and entities restructure and rename. Screening only the exact English name on the invoice misses a large share of true matches.

A practical screening routine (for non-specialists)

You do not need a compliance department to run a competent first pass:

1. Screen at onboarding *and* re-screen periodically. Lists change monthly; a clean check last year is not a clean check today.

2. Screen the name and the USCC. The Unified Social Credit Code is the most reliable matcher — names are noisy, the 18-character code is not.

3. Screen the parent and key affiliates, not just the contracting entity.

4. Treat any hit as "stop and verify," not "block automatically." A name match needs a human to confirm identity against the official record — but it must happen *before* you commit, not after.

5. Keep the record. Save what you screened and when. If a question ever arises, "we screened against US/EU/UN/UK lists on [date]" is the difference between diligence and negligence.

SinoInsight's Screening tool runs all four jurisdictions (~38,000 entries) in a single query, matches on name or USCC, and shows the exact list, programme and source for every hit — and it auto-flags matches on company profiles so the check happens where you are already looking.

What screening does *not* settle

Screening tells you whether an entity is *listed*. It does not tell you:

  • Whether an unlisted entity is a front for a listed one (ownership tracing).
  • Whether the end-use of your product triggers controls regardless of the buyer (e.g. dual-use items).
  • Your obligations under your own jurisdiction's rules.

Those require judgement and, for a real transaction, specialist review. Screening is the necessary first filter, not the whole answer.

Bottom line

Restricted-party risk in China supply chains is now an operational discipline, not a one-off legal check. Build screening into onboarding and re-screening, go one tier deep into ownership, match on USCC not just names, and document it. The cost of a competent first-pass screen is minutes; the cost of shipping to an Entity-List party is the deal, the banking relationship, and sometimes the company.

For transactions where the stakes justify it, we extend this into a full restricted-party and ownership-tracing review across US, EU, UN and UK regimes, with a documented compliance memo, under NDA.

Sources
US Consolidated Screening List (OFAC SDN/CMIC, BIS Entity List/Denied Persons)EU Consolidated Financial Sanctions ListUN Security Council Consolidated ListUK Sanctions List (OFSI)