International Trade & Sanctions in Israel

Israel sits at the intersection of Western regulatory systems and a uniquely sensitive export environment. Companies operating through Israel face overlapping obligations: domestic export control law, extraterritorial reach of US and EU sanctions regimes, and anti-corruption statutes with cross-border application. Failure to map these layers before entering a transaction can expose a business to criminal liability, asset freezes, and debarment from public procurement. This article covers the legal framework, the most relevant compliance tools, common structural mistakes, and practical scenarios that illustrate how risk materialises in Israeli trade operations.

Israel's primary instrument for controlling the export of goods, technology, and services is the Defense Export Control Law (Chok Piqquach Yetzua Bitchoni), enacted in 2007 and substantially amended since. The law is administered by the Defense Export Controls Agency (DECA), which operates within the Ministry of Defense. DECA issues export licenses, maintains the Israeli Control List (ICL), and enforces compliance through audits and administrative sanctions.

The ICL mirrors, in large part, the structure of the Wassenaar Arrangement and the Missile Technology Control Regime. Dual-use goods - items with both civilian and military applications - require a license when exported to certain destinations or end-users. The threshold for triggering a license requirement is not always obvious: software embedded in commercial products, cybersecurity tools, and certain chemical precursors all fall within the ICL's scope even when marketed as purely civilian.

A separate layer applies to defense articles. Under the Defense Export Control Law, any transfer of a defense article - whether by sale, lease, loan, or technical assistance - requires prior DECA approval. The definition of 'transfer' is broad and includes intangible transfers such as sharing technical data by email or providing remote access to controlled software. This breadth catches many international technology companies that establish Israeli R&D subsidiaries without reviewing whether their standard data-sharing practices require a license.

The Ministry of Economy administers a parallel regime for civilian dual-use goods under the Free Import Order and associated regulations. Importers must classify goods against the Harmonized System (HS) codes and verify whether specific import licenses or end-user certificates are required. Customs clearance at the Israel Customs Authority (Rashut HaMekhes) is the enforcement point for import-side compliance, and classification errors are a frequent source of post-clearance audits.

In practice, it is important to consider that DECA and the Ministry of Economy do not always coordinate their licensing timelines. A transaction that requires approvals from both bodies can face delays of 60 to 120 days, which must be built into commercial contracts. A common mistake is to sign a binding purchase agreement before confirming that the necessary licenses can be obtained within the contractual delivery window.

Israel is not itself a sanctions-imposing jurisdiction in the Western sense, but Israeli companies and their foreign counterparties are routinely subject to US and EU sanctions by virtue of the nationalities of their shareholders, the currencies used in transactions, or the involvement of US-origin technology.

The US Office of Foreign Assets Control (OFAC) administers the primary US sanctions programs. Any transaction that involves a US person, US-dollar clearing, or US-origin goods or technology is subject to OFAC jurisdiction regardless of where the transaction is structured. Israeli companies with US investors, US-listed subsidiaries, or technology licensed from US entities must screen counterparties against the Specially Designated Nationals (SDN) list and applicable country-based programs before closing a deal.

The EU's sanctions regulations - principally Council Regulation (EC) No 2580/2001 and subsequent instruments - apply to EU persons and entities incorporated in EU member states. An Israeli company with a European parent, European financing, or European distribution partners must comply with EU asset-freeze and trade-restriction measures. The practical implication is that a single transaction can simultaneously engage OFAC rules, EU Council regulations, and Israeli domestic law, each with different definitions of prohibited conduct and different enforcement timelines.

A non-obvious risk arises from correspondent banking. Israeli banks clear US-dollar transactions through US correspondent banks, which are themselves subject to OFAC jurisdiction. A payment that appears clean from an Israeli regulatory perspective can be blocked or reported by the US correspondent bank if the underlying transaction touches a sanctioned party or jurisdiction. This creates a de facto compliance obligation for Israeli exporters even when they have no direct US nexus.

The EU's export control framework, including Council Regulation (EC) No 428/2009 on dual-use items, applies to EU-origin goods transiting through Israel or re-exported from Israel to third countries. Israeli trading companies that act as intermediaries for European goods must verify whether re-export licenses are required under the originating EU member state's national rules.

To receive a checklist on sanctions screening and export license requirements for transactions involving Israel, send a request to info@vlo.com.

The Foreign Corrupt Practices Act (FCPA) is a US federal statute that prohibits US persons and issuers - and foreign companies with a US nexus - from bribing foreign government officials to obtain or retain business. Israeli companies listed on US exchanges, or those with US shareholders above certain thresholds, fall within the FCPA's issuer provisions. The US Department of Justice (DOJ) and the Securities and Exchange Commission (SEC) jointly enforce the FCPA, and enforcement actions have involved Israeli technology and defense companies.

Israel's domestic anti-corruption framework rests on the Penal Law (Chok HaOnshin), 1977, which criminalises bribery of Israeli public officials under Sections 290-297. The Prevention of Money Laundering Law, 2000, adds a parallel track: proceeds of bribery constitute a predicate offense for money laundering, and financial institutions are required to file suspicious transaction reports with the Israel Money Laundering and Terror Financing Prohibition Authority (IMPA).

The OECD Anti-Bribery Convention, to which Israel acceded in 2009, requires Israel to criminalise the bribery of foreign public officials. The relevant implementing provision is Section 291A of the Penal Law, which extends criminal liability to Israeli persons and companies that bribe officials of foreign governments or international organisations. Enforcement of Section 291A has been limited compared to US or UK practice, but the legal exposure is real and growing.

Many underappreciate the interaction between FCPA books-and-records provisions and Israeli accounting standards. An Israeli subsidiary of a US issuer must maintain records that accurately reflect all transactions. Payments characterised as 'commissions' or 'consulting fees' to local agents in third-country markets can trigger FCPA liability if they are not supported by genuine services and if the agent has a known relationship with government decision-makers. The DOJ has taken the position that a parent company's failure to implement adequate internal controls at an Israeli subsidiary constitutes a violation even absent direct knowledge of a specific bribe.

A common mistake made by international clients is to treat Israeli intermediaries as outside the FCPA's reach simply because the intermediary is incorporated in Israel and the end-market is a third country. The FCPA's third-party liability provisions apply whenever a US-nexus company uses an agent knowing that some portion of the payment will be passed to a foreign official. Conducting pre-engagement due diligence on Israeli agents - including reviewing their government relationships, compensation structure, and prior enforcement history - is a baseline requirement, not an optional enhancement.

Israel Customs Authority (Rashut HaMekhes) administers import duties, value-added tax on imports, and trade facilitation programs. Israel is a party to free trade agreements with the United States, the European Union, the European Free Trade Association (EFTA), and several other jurisdictions. Preferential tariff treatment under these agreements requires proof of origin, and origin documentation errors are a leading cause of post-clearance assessments and penalties.

The US-Israel Free Trade Agreement, in force since 1985, eliminates duties on most goods of Israeli origin entering the United States and vice versa. To qualify, goods must meet the agreement's rules of origin, which generally require substantial transformation in Israel. Israeli manufacturers that source components from third countries must verify that their production process meets the transformation test before claiming preferential treatment. Incorrect origin declarations can result in retroactive duty assessments, interest, and civil penalties under the US Customs and Border Protection (CBP) enforcement framework.

The EU-Israel Association Agreement provides preferential access for Israeli goods to EU markets, subject to rules of origin set out in Protocol 4 of the agreement. A recurring compliance issue involves goods produced in areas outside Israel's pre-1967 borders: EU customs authorities have consistently held that such goods do not qualify for preferential treatment under the Association Agreement, and importers who claim preferences on such goods face duty recovery demands.

Israel's Authorised Economic Operator (AEO) program, administered by Israel Customs, allows companies that meet security and compliance standards to benefit from expedited customs procedures and reduced examination rates. Obtaining AEO status requires demonstrating internal compliance systems, financial solvency, and a track record of customs compliance. The application process typically takes six to twelve months, and the ongoing maintenance of AEO status requires periodic self-assessments and cooperation with customs audits.

Transfer pricing in cross-border transactions is a separate but related customs risk. Israel's Tax Authority (Rashut HaMisim) applies OECD transfer pricing guidelines under Section 85A of the Income Tax Ordinance. Customs value and transfer pricing value are determined under different legal frameworks, but inconsistencies between the two can trigger simultaneous audits by both Israel Customs and the Tax Authority. Companies that use related-party transactions for importing goods into Israel should maintain contemporaneous transfer pricing documentation that is consistent with customs valuation declarations.

To receive a checklist on customs compliance and free trade agreement utilisation in Israel, send a request to info@vlo.com.

Scenario one: technology transfer by an Israeli R&D subsidiary

A European software company establishes an R&D centre in Israel and grants its Israeli subsidiary a license to access source code repositories hosted in the EU. The subsidiary employs engineers who are nationals of countries on DECA's restricted list. The company has not applied for a DECA license because it regards the arrangement as an internal corporate matter rather than an export. Under the Defense Export Control Law, the provision of access to controlled technology to non-Israeli nationals - even within a corporate group - constitutes a transfer requiring prior DECA approval. The company faces potential criminal liability under Section 24 of the Defense Export Control Law, which provides for imprisonment of up to ten years for unlicensed transfers of defense-related technology.

Scenario two: an Israeli trading company acting as intermediary

An Israeli trading company contracts to supply industrial equipment of US origin to a buyer in a third country. The equipment is classified under the Export Administration Regulations (EAR) as EAR99, meaning it does not require a US export license for most destinations. However, the end-buyer is a state-owned enterprise whose ultimate beneficial owner appears on the OFAC SDN list. The Israeli company, which has a US-dollar bank account and clears payments through a US correspondent bank, proceeds with the transaction without conducting SDN screening. The US correspondent bank flags the payment, OFAC opens an investigation, and the Israeli company faces a civil penalty under the International Emergency Economic Powers Act (IEEPA). The penalty can reach the greater of USD 250,000 per violation or twice the value of the transaction.

Scenario three: an Israeli defense contractor seeking export approval

An Israeli defense contractor has developed an unmanned aerial system (UAS) and wishes to sell it to a government customer in Southeast Asia. The UAS falls within the ICL's Category 9 (aerospace and propulsion) and requires a DECA license. The contractor submits a license application but has not obtained a government-to-government end-use assurance from the purchasing country. DECA's standard processing time for defense article licenses is 90 to 180 days, and the absence of an end-use assurance is a ground for refusal. The contractor has already signed a letter of intent with a delivery date that cannot be met within the licensing timeline. The resulting contract dispute with the foreign buyer could have been avoided by making the contract conditional on license approval and building a realistic timeline into the commercial terms.

These scenarios share a common thread: the risk arises not from deliberate non-compliance but from a failure to integrate legal review into the commercial process at the earliest stage. The cost of remediation - legal fees, penalties, reputational damage, and lost business - consistently exceeds the cost of pre-transaction compliance review by a significant margin.

An effective trade compliance program in Israel requires a governance structure that addresses the three overlapping regulatory layers: Israeli domestic law, US extraterritorial reach, and EU regulatory requirements. The program must be proportionate to the company's risk profile, which is determined by the nature of its products, the markets it serves, and the structure of its corporate group.

The core elements of a defensible compliance program include a written export control and sanctions policy, a product classification matrix aligned with the ICL and the EAR, a counterparty screening process against OFAC, EU, and UN consolidated lists, and a training program for employees involved in sales, procurement, and logistics. DECA's published compliance guidance recommends that companies appoint a designated export control officer (DECO) with direct reporting lines to senior management.

Internal audit is a critical but often underfunded component. Companies that discover a compliance violation through their own internal audit and voluntarily disclose it to DECA or OFAC receive materially more favourable treatment than those whose violations are discovered through external enforcement. OFAC's Voluntary Self-Disclosure (VSD) program can reduce penalties by up to 50% for non-egregious violations. DECA has a parallel administrative process for voluntary disclosure, though its terms are less formally codified than OFAC's.

The cost of building and maintaining a compliance program varies with company size and complexity. For a mid-sized Israeli technology exporter, annual compliance costs - including legal counsel, screening software, training, and audit - typically start from the low tens of thousands of USD. This compares favourably with the cost of a single enforcement action, which can reach the mid-to-high hundreds of thousands of USD in legal fees alone, before penalties.

A non-obvious risk in the Israeli context is the interaction between DECA licensing conditions and post-sale obligations. DECA licenses for defense articles typically include end-use monitoring requirements: the exporter must obtain periodic end-use certificates from the foreign buyer confirming that the article remains in the possession of the approved end-user and has not been re-transferred. Failure to obtain and retain these certificates is an independent violation of the Defense Export Control Law, separate from any issue with the original export.

Many international companies that acquire Israeli businesses through M&A transactions underestimate the compliance due diligence required. An acquired Israeli company may hold DECA licenses that are not transferable without DECA's prior approval. It may also have outstanding compliance obligations - pending end-use certificates, unresolved classification questions, or undisclosed prior violations - that become the acquirer's liability upon closing. Pre-acquisition compliance due diligence in Israel should include a review of all DECA licenses, export records for the preceding five years, and any correspondence with DECA or foreign regulatory authorities.

We can help build a strategy for structuring your compliance program or managing a regulatory inquiry in Israel. Contact info@vlo.com for an initial assessment.

To receive a checklist on M&A compliance due diligence for Israeli defense and technology companies, send a request to info@vlo.com.

What is the most significant practical risk for a foreign company entering the Israeli market without prior legal review?

The most significant risk is inadvertent violation of the Defense Export Control Law through intangible technology transfers. Foreign companies frequently share technical data, provide remote system access, or conduct joint development with Israeli counterparts without recognising that these activities constitute 'transfers' under Israeli law. DECA does not distinguish between physical and intangible transfers, and the absence of a license is a strict liability matter. The consequences include criminal prosecution of responsible individuals, administrative revocation of existing licenses, and reputational damage that can affect future license applications. Pre-entry legal review typically takes two to four weeks and costs a fraction of the remediation expense.

How long does it take to obtain a DECA export license, and what happens if a commercial deadline cannot be met?

Standard DECA processing times range from 30 days for straightforward civilian dual-use items to 180 days or more for complex defense articles requiring interagency consultation. If a commercial deadline cannot be met within the licensing timeline, the exporter has two options: negotiate a contract extension with the buyer, or apply for a temporary license covering preliminary activities while the full license is processed. Neither option is guaranteed, and buyers in government procurement contexts may not accept extensions. The correct approach is to make commercial contracts conditional on license approval and to specify a realistic license-contingent delivery schedule from the outset.

When should a company choose to voluntarily disclose a compliance violation rather than wait for enforcement?

Voluntary disclosure is generally preferable when the violation is isolated, the company has remediated the root cause, and the facts are likely to be discoverable through routine enforcement activity. Both OFAC and DECA treat voluntary disclosure as a significant mitigating factor. The decision requires a careful legal assessment of the violation's severity, the likelihood of independent discovery, and the company's overall compliance history. Voluntary disclosure should not be made without legal counsel, because the disclosure itself creates a formal record and must be accurate and complete. Partial or misleading disclosures are treated as aggravating factors and can result in harsher penalties than non-disclosure.

Israel's trade compliance environment is technically demanding and operationally consequential. Domestic export controls, US and EU sanctions exposure, anti-corruption obligations, and customs rules each operate on different legal bases and enforcement timelines, but they converge on the same transactions. Companies that treat compliance as a post-deal formality consistently face higher costs and greater legal exposure than those that integrate it into commercial decision-making from the start. The investment in a structured compliance program is measurable and proportionate; the cost of enforcement is not.

Our law firm Vetrov & Partners has experience supporting clients in Israel on trade compliance, export control, sanctions, and anti-corruption matters. We can assist with compliance program design, DECA license applications, OFAC voluntary disclosure, customs classification disputes, and M&A compliance due diligence. To receive a consultation, contact: info@vlo.com.