OFAC Network Control Requirements
In response to Russia invasion of Ukraine, the U.S. The Department of the Treasury’s Office of Foreign Assets Control (OFAC) imposed expansive economic measures, in partnership with allies and partners, that target the core infrastructure of the Russian financial system and further bars Russia from the global financial system. All major card brands also implemented similar restrictions to suspend their respective Russia operations.
While Payrix has firewall-based controls in place to block traffic from sanctioned and high risk countries, Partners must also implement controls to block any traffic from sanctioned and high risk countries across applicable payment-related technology sets. We strongly encourage Partners to implement similar controls for other technology sets, such as blocking email communications from sanctioned and high risk countries, given the elevated threat levels associated with these locations.
If you are using your own PayFrame and/or PayField or our API, we advise you to evaluate your organization's ability to block traffic from sanctioned and high-risk companies and implement immediate controls to block this type of traffic related to payment technologies and email communications if deficiencies exist. Please reference the materials linked below for additional information.
Check out here for US Department of Treasury Russian/Ukraine Related Sanctions
Check out here for Mastercard Statement on Suspension of Russian Operations
Check out here for VISA statements relating to Russia Operations
Check out here for Payrix Web Application Firewall Considerations
Check out here for Payrix PCI Compliance & Information Security, including OFAC Compliance