Verify sanctions, debarment, forced-labor records and ownership structure of any Brazilian supplier — in a single API call, against five official government sources.
The problem
CSRD (in force for large EU companies since 2024–2025) and the EU Deforestation Regulation oblige you to document the integrity of every supplier — including those in Latin America. Brazil is the hardest country to evidence: the data is public, but it lives in five different government portals.
And their Brazilian coverage is incomplete — they aggregate global watchlists, not the local registries that EU auditors actually ask for.
Five portals (Receita Federal, Portal da Transparência, MTE, OFAC, UN), five formats, five processes. A compliance officer spends 30–60 minutes per CNPJ.
Spreadsheets and screenshots don't satisfy CSRD assurance. You need timestamped, source-attributed records you can hand to a Big Four auditor.
What's included
A single POST /v1/compliance-br returns a normalized JSON with a low/medium/high risk level, plus the raw findings from every source for your audit trail.
Legal name, status, activity, registration date.
Receita Federal · OpenCNPJ
Cross-check against international watchlists.
OFAC SDN · UN Consolidated
Public-procurement bans and corruption-related penalties.
CEIS · CNEP (Portal da Transparência)
Slave-labor blacklist (Lista Suja) — required by EUDR Annex.
Ministério do Trabalho e Emprego
Partners, directors and legal representatives (QSA).
Receita Federal QSA
Each source carries its own data_as_of field — you ship audit-grade evidence, not a black-box score.
Sample response
A consolidated risk level for compliance officers, plus the raw findings from every source for auditors and procurement.
$ curl -X POST https://api.enrichlatam.com/v1/compliance-br \
-H "X-API-Key: sk_your_key" \
-d '{"cnpj": "11.222.333/0001-81"}'
# Response
{
"cnpj": "11.222.333/0001-81",
"company_name": "EMPRESA EXEMPLO LTDA",
"risk_level": "low",
"checks": {
"kyb": { "status": "active", "data_as_of": "2026-04-30" },
"sanctions": { "hits": 0, "sources": ["ofac_sdn", "un_consolidated"] },
"debarment": { "hits": 0, "sources": ["ceis", "cnep"] },
"labor": { "on_lista_suja": false, "data_as_of": "2026-04-15" },
"owners": { "partners": [ "..." ], "count": 3 }
},
"generated_at": "2026-05-02T14:32:11Z"
}Risk level is computed deterministically — any positive hit on sanctions, debarment or Lista Suja escalates to medium or high.
Pricing
Flat monthly subscription. Cancel anytime. Volume and SLA on request for enterprise.
For ongoing supplier monitoring under CSRD & EUDR.
data_as_of per checkNeed volume pricing, an SLA, or an MSA? Talk to us about Enterprise.
Sources & data governance
All data comes from official, publicly accessible registries. Every record carries the source identifier, the date the source was last refreshed, and the licensing terms.
CNPJ registry, partner structure (QSA). Public, unrestricted commercial use.
CEIS & CNEP — corporate debarment and corruption sanctions. Government open-data API.
Lista Suja — register of employers found using slave-analogous labor. Public registry by Portaria 671.
SDN (Specially Designated Nationals) list. Public domain, refreshed daily.
UN Consolidated Sanctions List. Public domain, refreshed daily.
Every response is timestamped and source-attributed. Pass it directly to your CSRD assurance provider.
EnrichLATAM acts as a data processor on behalf of the customer. We do not store search history beyond what is required for billing and audit. See our Terms and Privacy Policy for details.
Request access
We'll get back to you within one business day with an API key, sandbox credentials, and a sample report for one of your CNPJs.