NGO Compliance in the USA: Donor Due Diligence and FinCEN Reporting
Complete guide to US NGO compliance: FinCEN requirements, BSA obligations, donor due diligence for 501(c)(3) organizations, OFAC screening and IRS Form 990 reporting.
Summarize this article with
ChatGPT
Claude
Perplexity
Gemini
GrokNonprofit organizations in the United States face a complex compliance landscape shaped by federal statutes, IRS requirements, state attorney general oversight, and international standards. The Financial Crimes Enforcement Network (FinCEN), operating under the Department of the Treasury, leads federal AML enforcement for financial institutions and plays a key role in how nonprofits interact with the banking system. The Bank Secrecy Act (BSA, 31 USC ยง5311) and the USA PATRIOT Act (Title III) set the foundational framework for preventing the use of nonprofit structures in money laundering and terrorist financing.
This article is provided for informational purposes only and does not constitute legal, financial or regulatory advice. Regulatory references are accurate as of the date of publication. Consult a qualified professional for guidance specific to your situation.
This guide covers the specific compliance obligations that apply to US-based NGOs and 501(c)(3) organizations, the documents required for donor due diligence, and automated verification solutions for managing these requirements efficiently.
US Regulatory Framework for NGOs and Nonprofits
The Bank Secrecy Act (31 USC ยง5311 et seq.) requires financial institutions โ including banks used by nonprofits โ to maintain AML programs and file Suspicious Activity Reports (SARs) on transactions that may involve money laundering or terrorist financing (FinCEN, BSA requirements). Nonprofits themselves are not directly subject to BSA filing obligations, but their banks are, meaning unusual donation patterns can trigger bank-level scrutiny and account terminations.
The USA PATRIOT Act (Public Law 107-56, 2001) expanded BSA coverage and specifically added provisions addressing the misuse of nonprofits in terrorist financing. Section 311 of the PATRIOT Act authorizes FinCEN to designate foreign financial institutions or jurisdictions as "primary money laundering concerns," affecting how US nonprofits can receive funds from abroad.
The IRS administers the tax-exempt status of 501(c)(3) organizations. All 501(c)(3) organizations with annual gross receipts above $200,000 or total assets above $500,000 must file Form 990 annually, which publicly discloses major donors contributing $5,000 or more, compensation of key employees, and program expenses (IRS, Form 990 instructions). This public disclosure requirement creates strong transparency incentives for donor verification.
OFAC (Office of Foreign Assets Control) at the US Treasury administers and enforces economic and trade sanctions programs. Any US nonprofit transacting with a person or entity on OFAC's Specially Designated Nationals (SDN) list โ or with entities in sanctioned countries โ violates federal law regardless of charitable intent. OFAC penalties can reach millions of dollars per violation.
Donor Due Diligence: Required Documents by Donor Type
A risk-based due diligence program for a US nonprofit should map donor categories to verification requirements, with enhanced procedures triggered by high-risk indicators such as foreign origin, political exposure, or unusual transaction patterns.
| Donor Type | Threshold | Required Documents | Due Diligence Level |
|---|---|---|---|
| Individual (one-off) | Under $1,000 | None required | Simplified |
| Individual (regular) | $1,000โ$5,000/year | Government-issued photo ID, SSN for Gift Aid purposes | Standard |
| Individual (major donor) | Over $5,000/year | Photo ID, source of funds documentation | Enhanced |
| Corporate donor | Any amount | Secretary of State certificate, EIN, director IDs, beneficial ownership under CTA | Enhanced |
| Foreign foundation | Any amount | Foreign registry extract, governing documents, OFAC screening | Enhanced + OFAC |
| Anonymous donor | Over $2,500 | Refusal recommended or full verification | Maximum |
OFAC strongly advises nonprofits operating internationally to screen all donors, partners, and counterparties against the SDN list and country-specific sanctions programs before accepting funds (OFAC, sanctions compliance guidance for NGOs). A transaction with a sanctioned party โ even an unintentional one โ triggers strict liability with limited safe harbor provisions.
The Corporate Transparency Act (CTA), effective January 1, 2024, requires most US companies to report their beneficial owners to FinCEN. While many nonprofits are exempt from CTA reporting, corporate donors must comply, and this creates a new data source for nonprofit due diligence on corporate giving.
A common question in r/compliance forums and nonprofit management discussions is whether smaller nonprofits need a formal AML program. The practical answer: any nonprofit receiving substantial international donations or operating in high-risk sectors should have a written policy that addresses donor identification, OFAC screening, and SAR escalation to its banking partner.
Reporting Obligations for US Nonprofits
Form 990 and IRS Disclosure
IRS Form 990 is the annual information return filed by tax-exempt organizations. It requires disclosure of all donors contributing $5,000 or more during the tax year (Schedule B), executive compensation, governance policies, and program accomplishments. Form 990 is publicly available through GuideStar/Candid and serves as the primary transparency mechanism for US nonprofits.
Organizations failing to file Form 990 for three consecutive years automatically lose their tax-exempt status under IRC ยง6033(j). Knowingly providing false information on Form 990 is a federal crime under 26 USC ยง7206.
Suspicious Activity Reports via Banking Partners
US nonprofits cannot directly file SARs with FinCEN โ that obligation rests with their financial institution. However, nonprofits should maintain close communication with their banking partners and establish internal escalation procedures for unusual transactions. If a bank files a SAR on a nonprofit's account activity, the bank cannot disclose this to the nonprofit (tipping-off prohibition under 31 USC ยง5318(g)(2)).
FBAR for Foreign Financial Accounts
Any US nonprofit with a financial interest in or signature authority over a foreign bank account with an aggregate value exceeding $10,000 at any point during the calendar year must file an FBAR (FinCEN Form 114) by April 15 of the following year. Willful failure to file can result in civil penalties up to $100,000 per violation and criminal prosecution.
Ready to automate your checks?
Free pilot with your own documents. Results in 48h.
Request a free pilotInternational Donors and OFAC Compliance
OFAC's sanctions programs create strict liability for US nonprofits that receive funds from or transact with sanctioned individuals, entities, or countries, even absent knowledge or intent to violate sanctions (OFAC, Framework for OFAC Compliance Commitments). The absence of an OFAC compliance program is treated as an aggravating factor in penalty calculations.
Nonprofits receiving international donations should implement the following controls:
- Screen all donors against OFAC's SDN list and relevant country-based sanctions lists before accepting funds, using a current screening solution
- Verify that international donors are not located in countries subject to comprehensive OFAC sanctions (currently Iran, North Korea, Cuba, Syria, and the Crimea/Donetsk/Luhansk regions of Ukraine)
- Obtain documentation showing that funds flow from a regulated financial institution in a non-sanctioned jurisdiction
- Document the due diligence steps taken and retain records for five years
Automating Donor Document Verification for US Nonprofits
Manual due diligence processing is resource-intensive for nonprofit teams operating with limited budgets. A mid-sized US nonprofit handling 200 enhanced due diligence cases per year spends approximately 600 hours on document review at a manual rate of three hours per file.
Our platform processes over 180,000 documents per month with a fraud detection rate of 94.8%, including NGO donor verification files across US nonprofit sectors. Forged US passports, altered state ID cards, falsified corporate filings, and manipulated bank statements are detected within seconds.
CheckFile.ai supports US nonprofit compliance teams with:
- Automated identity document verification (US passport, driver's license, state ID) for individual donors
- Secretary of State and EIN validation for corporate donors
- OFAC SDN list and PEP screening integration
- Secure document storage with full audit trail for IRS and banking compliance
Explore document verification solutions for the nonprofit sector or review pricing for NGOs and nonprofits on our dedicated pages. For organizations also managing employee I-9 verification and right-to-work compliance, CheckFile provides integrated workflows.
For a broader view of AML compliance requirements, see our industry verification guide and AML compliance guide.
Frequently Asked Questions
Are US nonprofits required to have a formal AML program?
Most 501(c)(3) organizations are not directly required by law to have a formal AML program, as the BSA's AML requirements apply to financial institutions. However, nonprofits receiving substantial international donations, operating in high-risk geographies, or with complex financial structures are strongly advised to implement written donor due diligence policies and OFAC screening procedures. FinCEN has issued guidance specifically addressing the risk of nonprofit misuse in terrorist financing.
What is Form 990 Schedule B and who sees it?
Schedule B of Form 990 lists all donors who contributed $5,000 or more during the tax year. This information is disclosed to the IRS but is not part of the public version of Form 990. The public version redacts Schedule B donor information. However, the IRS can share Schedule B with state attorneys general as part of oversight activities. Organizations that fail to file Schedule B or provide false information face significant penalties.
How should a US nonprofit screen donors for OFAC compliance?
OFAC compliance requires screening donors against the Specially Designated Nationals (SDN) list and any relevant country-based sanctions programs before accepting funds. Screening should be conducted at onboarding, when donations are received, and periodically for ongoing donor relationships. Documentation of screening results should be retained for at least five years. Automated screening tools integrated into the donation acceptance workflow significantly reduce compliance risk.
What are the penalties for OFAC violations by nonprofits?
OFAC civil penalties for sanctions violations can reach up to $356,579 per transaction (adjusted annually for inflation) or twice the value of the transaction, whichever is greater. Criminal penalties for willful violations can include fines up to $1 million and imprisonment up to 20 years. OFAC's Enforcement Guidelines provide for mitigation based on self-disclosure, cooperation, and the existence of a compliance program, making proactive controls critical.
Does the Corporate Transparency Act affect nonprofit donor verification?
The CTA requires most US companies to file beneficial ownership information (BOI) with FinCEN, creating a new database that can supplement nonprofit due diligence on corporate donors. However, many nonprofits themselves are exempt from CTA filing as tax-exempt organizations. The CTA database is not publicly accessible โ only authorized government agencies can access it โ so nonprofits must continue to collect beneficial ownership information directly from corporate donors rather than relying on FinCEN's BOI database.
Stay informed
Get our compliance insights and practical guides delivered to your inbox.