Back to Blog

What a DMCC Compliance Auditor Asks About Freight Procurement

Published: February 8, 2026·11 min read·Relevant for: Freight Directors | Compliance | CFOs·Bench Energy

Key Takeaways

  • Auditors ask whether the tender was genuinely competitive — evidence must be reconstructable.
  • BCC email lists do not prove symmetric information; platforms provide timestamped invitation logs.
  • Award rationale must cite criteria from the original tender, not invented after the fact.
  • Sanctions screening must be tied per tender, not only in a standalone spreadsheet.
  • Five document types form the minimum defensible freight procurement file.
Compliance review of freight procurement: documents, audit trail, and competitive process.

Most commodity trading companies operating in Dubai understand that DMCC membership requires demonstrable compliance with procurement standards. Fewer have mapped what "demonstrable" means in practice — specifically, what documentation a compliance review will request and in what form.

This is not a summary of DMCC rules. It is an operational description of what auditors look for when they examine freight procurement specifically, based on the pattern of questions that have emerged in compliance reviews across commodity trading desks.

5Documents auditors requestper freight procurement file
30 daysMaximum broker screening windowbefore per-tender re-screen required
2024DMCC guidance updated"genuine competitive bidding" standard

The threshold question: was the process competitive?

The first question in any procurement compliance review is not about documentation. It is about structure: was the freight procurement process genuinely competitive, or was it directed?

A directed process — inviting one broker, awarding to a predetermined counterparty, or running a tender where the outcome was effectively decided before bids were received — fails the first test regardless of how well it is documented. Documentation of a non-competitive process is evidence of a non-competitive process.

The structural test: could any of the invited brokers have won the tender based on their submitted offer alone? If the answer is no — because one broker was always going to be selected for relationship reasons, or because the evaluation criteria were applied selectively — then the process is directed, and subsequent documentation does not cure that.

This matters for DMCC compliance specifically because the authority's 2024 guidance on procurement practices references the expectation of "genuine competitive bidding" as a baseline requirement. The word "genuine" is doing significant work in that sentence.

Document 1: The invitation record

Auditors will ask for evidence that multiple brokers were invited. The minimum standard is a contemporaneous record — created at the time of invitation, not reconstructed afterward — showing:

  • The identity of each invited broker
  • The timestamp of each invitation
  • The cargo specifications provided to each broker
  • Evidence that all invited brokers received identical information

An email BCC to five brokers technically satisfies the last criterion but fails on auditability: BCC lists are not verifiable after the fact, email timestamps can be manipulated, and there is no mechanism to confirm that the information sent was identical across recipients.

A platform-generated invitation log — timestamped, immutable, with cargo specifications captured at the point of sending — satisfies the evidentiary standard in a way that email does not.

The auditability gap
An email BCC to five brokers technically satisfies the information symmetry requirement — but BCC lists are not verifiable after the fact. An auditor cannot confirm that all recipients received identical information, or that the list was not modified before sending.
DocumentEmail processPlatform audit trail
Invitation recordBCC list — unverifiableTimestamped, immutable log
Bid isolation proofNone — structurally impossiblePlatform-enforced separation
Offer recordInbox — deletableStructured, immutable entries
Award rationaleInformal — reconstructedDocumented at decision point
Sanctions screeningSeparate spreadsheetIntegrated per-tender record

Document 2: The offer record

For each tender, auditors expect a record of every offer received, showing:

  • The submitting broker's identity
  • The submission timestamp
  • The complete offer terms (rate, vessel, ETA, laycan, technical compliance)
  • Evidence that offers were submitted independently — i.e., that brokers did not have visibility into each other's bids

The last point is where email tendering is structurally indefensible. Email processes have no mechanism for demonstrating bid isolation. If a broker was copied on the original tender email and can see who else was invited, the independence of their offer cannot be demonstrated — only asserted.

In a compliance review where the auditor is specifically looking for evidence of broker collusion or directed procurement, the absence of a bid isolation mechanism is not a minor gap. It is the gap.

Document 3: The award rationale

The award decision — why this broker, at this rate, for this cargo — must be documented at the time of the decision, not reconstructed when questioned. The rationale should be:

  • Specific: "Lowest all-in rate with compliant vessel and ETA within laycan" is a rationale. "Best offer" is not.
  • Consistent with the evaluation criteria stated in the tender: if the tender specified that total cost including port fees would be evaluated, the rationale should reference that calculation.
  • Signed or attributed: who made the decision, and when.

Auditors pay particular attention to awards that did not go to the lowest-rate offer. This is entirely legitimate — vessel compliance, ETA certainty, and counterparty reliability are valid award criteria. But the rationale for overriding the lowest rate must be documented contemporaneously and must reference the criteria that were stated in the original tender.

An award to a higher-rate broker because of a longstanding relationship, without documented non-price criteria, is the scenario most likely to generate follow-up questions in a compliance review.

Highest-risk scenario
An award to a higher-rate broker without documented non-price criteria is the scenario most likely to generate follow-up questions. The rationale must reference criteria stated in the original tender — not criteria invented after the fact.

Document 4: The sanctions and AML screening record

DMCC's AML and sanctions compliance framework requires commodity trading companies to screen counterparties — including freight brokers — against relevant sanctions lists before transacting. For freight procurement, this means:

  • Screening each invited broker against OFAC, EU, UN, and UAE sanctions lists at the time of invitation
  • Retaining a record of the screening result and the list version used
  • Re-screening on any material change in counterparty circumstances

In practice, most trading desks screen their broker panels periodically rather than per-tender. This is operationally reasonable but creates a documentation gap: if a broker was added to a sanctions list between your last panel review and a specific tender, the periodic screening record does not cover that transaction.

The defensible standard is per-tender screening for any broker not screened within the previous 30 days, with the screening result documented in the tender file.

Document 5: The audit trail itself

The four documents above constitute the content of a compliant freight procurement file. The fifth requirement is that the file is auditable — meaning it can be produced on request, in its original form, without reconstruction.

Email-based procurement files fail this standard in a specific way: they can be reconstructed. An auditor who understands email systems knows that email threads can be edited, that deleted emails can be recovered, and that the version of a thread produced for review may not be the original version. The absence of an immutable record creates doubt about the reliability of the documentation even when the underlying procurement was conducted properly.

An immutable audit log — where every action is timestamped and cannot be modified after the fact — is not just operationally convenient. It is the difference between documentation that satisfies an auditor and documentation that invites further inquiry.

The conversation you do not want to have

The highest-risk scenario in a DMCC compliance review is not a finding of deliberate misconduct. It is a finding that your procurement process was conducted in a way that makes compliance impossible to demonstrate — not because you did anything wrong, but because the process you used does not produce the documentation standard that regulators now expect.

Rebuilding your procurement documentation after a compliance inquiry is expensive, disruptive, and reputationally sensitive. Building a process that produces compliant documentation as a byproduct of normal operations costs a two-week implementation and a platform subscription.

The math is not complicated.

FreightTender produces a DMCC-compliant audit trail automatically — invitation records, bid isolation evidence, offer records, and award rationale — on every tender. Request a demo →

Related articles

Pass procurement audits with immutable tender records

Invitation logs, bid isolation, offer records, and award rationale on every tender. Request a demo.

Request a DemoCalculate Your Savings

Build your trading vocabulary

Commodity & Freight Trader's Lexicon

200+ Anki flashcards covering coal, metals, and oil trading — charter party clauses, laytime mechanics, FOB/CIF structures, price indices, and market terminology used by professional traders.

Coal — $29Metals — $29Oil — $29All three — $59 →

Related Articles