What Is the EU Conflict Minerals Regulation?

The EU Conflict Minerals Regulation was created to help break the link between mineral trade and conflict. In politically unstable regions, minerals can be used to finance armed groups, support forced labour, fuel human rights abuses, and contribute to corruption or money laundering. The European Commission explains that 3TG minerals are used in everyday products such as mobile phones, cars and jewellery, making supply chain due diligence relevant to many industries.

The Regulation applies to the responsible sourcing of:

The EU focuses on these four minerals because they are among the minerals most often linked to armed conflict and related human rights abuses.

Latest EU Conflict Minerals Regulation Updates

1. June 2026: New review process for Regulation (EU) 2017/821

The most recent official update listed by the European Commission is a 16 June 2026 call for tender for the Review of the Conflict Minerals Regulation (EU 2017/821). The Commission also listed a related 11 May 2026 Prior Information Notice for the review.

This matters because the Regulation is not static. The EU continues to assess how the system works in practice, including its effectiveness, impact, and implementation. Companies should therefore treat conflict minerals compliance as an ongoing due diligence process, not a one-time project.

2. December 2025: CAHRA list update work continued

On 1 December 2025, the European Commission listed an award notice related to the indicative, non-exhaustive list of conflict-affected and high-risk areas, commonly called the CAHRA list. The Commission notes that it has a legal obligation under Regulation (EU) 2017/821 to set up and regularly update this list.

The CAHRA list is useful, but companies should not treat it as the only risk source. The Commission explains that the list is indicative and non-exhaustive, which means companies may still need to perform due diligence for areas not listed if those areas present conflict or high-risk characteristics.

3. October 2025: First recognised due diligence scheme under the Regulation

On 16 October 2025, the European Commission adopted an Implementing Decision recognising the Responsible Minerals Assurance Process (RMAP), owned by the Responsible Minerals Initiative, as the first supply chain due diligence scheme recognised under the EU Conflict Minerals Regulation. The Commission stated that EU importers can rely on the recognised RMAP scheme to demonstrate that they meet their obligations under the Regulation.

This is an important development for importers because recognised schemes can support compliance and reduce duplication. However, recognition does not remove the need for importers to maintain their own internal due diligence systems, supplier evidence, risk assessments, audit records and annual reporting.

4. October 2025: ReMIS platform launched to improve mineral supply chain transparency

The Commission also announced ReMIS, a platform designed to enhance transparency in mineral and metal supply chains. ReMIS is voluntary and participation does not change legal obligations under EU due diligence legislation, including the Conflict Minerals Regulation. It is open to economic operators across mineral supply and value chains and can cover 3TG as well as other minerals and metals.

For compliance teams, ReMIS shows the broader EU direction: more transparency, more structured supply chain information, and stronger expectations around responsible sourcing.

5. September 2024: First formal review of the Regulation

The European Commission adopted its first review of the functioning and effectiveness of Regulation (EU) 2017/821 on 24 September 2024.

The review is relevant because it examined whether the Regulation is achieving its intended objectives and how it affects producing countries, EU economic operators, SMEs, accompanying measures, due diligence schemes, the CAHRA list, import thresholds and links with other EU legislation.

Who Must Comply with the EU Conflict Minerals Regulation?

The Regulation applies directly to EU-based importers of tin, tantalum, tungsten and gold, whether these are imported as mineral ores, concentrates or processed metals. The Commission states that the Regulation applies directly to between 600 and 1,000 EU importers and indirectly affects around 500 smelters and refiners worldwide.

A company may be directly in scope if it:

• Is a Union importer.
• Imports 3TG minerals or metals listed in Annex I of the Regulation.
• Meets or exceeds the relevant annual import volume thresholds.
• Imports minerals or metals that may originate from conflict-affected or high-risk areas.

The Regulation does not directly apply to every downstream company selling finished products. However, downstream companies are still commercially affected because customers, investors, ESG teams and business partners often request conflict minerals declarations, smelter/refiner information and responsible sourcing evidence.

Am I in Scope? Quick Decision Guide for Importers

You should assess your obligations under Regulation (EU) 2017/821 if your company answers “yes” to the following questions:

Even if your company is not directly in scope, you may still need to respond to customer requests, ESG reporting requirements, supplier questionnaires, CMRT-style data requests or responsible sourcing expectations.

Are Downstream Companies Affected?

Yes, but usually indirectly.

The European Commission explains that downstream companies operating beyond the metal stage do not have direct obligations under the Regulation. However, they are expected to use reporting and transparency tools to make due diligence more transparent, especially where broader non-financial reporting rules apply.

This matters for industries such as:

• Electronics.
• Automotive.
• Aerospace.
• Machinery.
• Batteries and energy equipment.
• Jewellery.
• Medical devices.
• Industrial manufacturing.

Even if a finished product manufacturer is not the legal “Union importer” under Regulation (EU) 2017/821, customers may still ask for conflict minerals data to support their own compliance programs.

What Does EU Conflict Minerals Due Diligence Require?

EU importers must carry out due diligence based on the OECDDue Diligence Guidance for Responsible Supply Chains of Minerals from Conflict-Affected and High-Risk Areas. The OECD guidance provides step-by-step management recommendations to help companies respect human rights and avoid contributing to conflict through mineral or metal sourcing decisions.

The EU system follows the OECD five-step due diligence framework:

1. Establish strong company management systems

Companies need a clear responsible sourcing policy, internal responsibilities, supplier expectations, grievance mechanisms, documentation controls and management oversight.

2. Identify and assess risk in the supply chain

Importers must identify whether minerals or metals may come from conflict-affected or high-risk areas and assess risks linked to suppliers, origin, smelters, refiners, transport routes and supporting documents.

3. Design and implement a strategy to respond to risks

Risk assessment must lead to action. Companies may need to continue trade with measurable risk mitigation, temporarily suspend trade, or disengage from suppliers where risk mitigation fails.

4. Carry out independent third-party audits

Importers must carry out independent third-party audits of supply chain due diligence. Recognised industry schemes, such as RMAP, can help companies meet these requirements, including through third-party audits.

5. Report annually on supply chain due diligence

Companies must report annually on their supply chain due diligence. This requires accurate supplier data, documented risk decisions, audit evidence and a clear reporting process.

What Documents and Supplier Data Do You Need?

For many companies, the hardest part of conflict minerals compliance is not understanding the law. It is collecting, validating and maintaining the right evidence.

The European Commission explains that EU importers must put internal systems and processes in place and provide supporting documents. For minerals, importers should indicate the country of origin, the quantities imported and when they were mined. For both minerals and metals, importers should list the minerals by trade name and type and provide supplier names and addresses. Where minerals come from conflict-affected and high-risk areas, importers must provide extra information on the mine, consolidation, trading and processing locations, and taxes, fees and royalties paid.

A practical evidence pack should include:

This is where many companies struggle. If supplier responses, smelter data, audit evidence and risk decisions are spread across spreadsheets, emails and shared folders, it becomes difficult to prove compliance during an audit or customer escalation.

What Happens If an Importer Does Not Comply?

Each EU Member State must check whether EU importers comply with the Regulation. National authorities can examine documents and audit reports, and where needed, carry out on-the-spot inspections at an importer’s premises. If an importer is found not to comply, the Member State authority can order the company to address the problem within a given deadline and follow up to make sure the issue is corrected.

This means companies should be ready to show:

• How they determined whether they are in scope.
• Which suppliers, minerals and metals are covered.
• How origin and smelter/refiner data were collected.
• How CAHRA and red-flag risks were assessed.
• Which risks were identified.
• What mitigation actions were taken.
• Which audits or recognised schemes support the due diligence process.
• How annual reporting was prepared.

A weak or undocumented process creates risk even if the company believes its suppliers are responsible.

Common EU Conflict Minerals Compliance Challenges

Companies often face the same recurring problems:

Supplier responses are incomplete

Suppliers may not know where minerals originated, may provide outdated declarations, or may fail to identify smelters and refiners.

Data is scattered

Compliance teams often rely on spreadsheets, email attachments, PDFs and disconnected supplier portals, making it difficult to maintain a reliable audit trail.

Scope is unclear

Companies may not have a structured process for mapping Annex I materials, CN codes, annual import volumes and threshold status.

CAHRA screening is inconsistent

The CAHRA list is helpful but non-exhaustive. Companies still need a risk-based process to identify high-risk sourcing beyond the list.

Reporting is difficult

Annual reporting becomes time-consuming if supplier evidence, risk decisions and audit records are not already organised.

Compliance is treated as a one-time survey

Conflict minerals due diligence is ongoing. Importers must continuously identify, manage and report supply chain risks.

EU Conflict Minerals Compliance Checklist

Use this checklist to assess whether your company is ready:

Does RMAP Recognition Mean Importers Are Automatically Compliant?

No.

The Commission’s recognition of RMAP is helpful because EU importers can rely on the scheme to demonstrate that they meet obligations under the Regulation. But importers still need to understand their own supply chains, collect relevant supplier and origin data, identify risks, manage mitigation actions, keep records and report annually.

In other words, RMAP can support the due diligence process, but it does not replace the importer’s responsibility to maintain a complete and auditable compliance system.

Why Manual Conflict Minerals Compliance Is Risky

Manual conflict minerals compliance may work for a small number of suppliers, but it becomes difficult as supply chains grow.

Typical manual-process risks include:

• Missing supplier responses.
• Outdated smelter/refiner information.
• Duplicate or conflicting spreadsheets.
• No clear owner for risk mitigation.
• Weak audit trail.
• No automated reminder process.
• Difficulty preparing annual reports.
• Slow response to customer requests.
• Limited visibility across product, supplier and material data.

For companies managing multiple compliance obligations, conflict minerals data should not sit separately from product compliance, ESG, supplier management and regulatory reporting. It should be part of a controlled compliance management system.

How ComplyMarket Product Compliance Software Helps with EU Conflict Minerals Requirements

ComplyMarket helps companies move from manual supplier chasing and spreadsheet-based compliance to a structured, audit-ready conflict minerals workflow.

ComplyMarket describes its product compliance management software as a centralised platform for manufacturers, importers and product managers to manage regulatory obligations. Its platform supports regulatory libraries, compliance evidence management, marketability checks, early warnings, supplier collaboration and integration with other compliance tools.

For EU Conflict Minerals Regulation compliance specifically, ComplyMarket’s dedicated EU 2017/821 compliance service supports scope control, management systems, traceability, risk workflows, audit readiness and annual reporting.

1. Scope control for Annex I materials and thresholds

ComplyMarket can help companies track CN-code materials, import volumes, thresholds and annual scope decisions. This helps importers determine whether their 3TG imports fall within Regulation (EU) 2017/821.

2. Supplier and smelter/refiner data collection

Instead of collecting supplier evidence manually through emails and spreadsheets, companies can use ComplyMarket to structure supplier requests, capture origin data, link evidence and improve response completeness.

3. Article 4 management system support

The Regulation requires strong management systems. ComplyMarket supports policy publishing, role-based governance, grievance intake, supplier commitments and record retention for EU 2017/821 workflows.

4. Risk assessment and mitigation workflows

ComplyMarket helps teams manage risk registers, CAHRA and red-flag screening support, mitigation plans, KPIs, approvals and audit trails. This helps companies move beyond data collection and show how risks are identified, escalated and resolved.

5. Audit-ready evidence packs

When authorities, auditors or customers ask for evidence, companies need fast access to complete documentation. ComplyMarket supports audit-readiness by helping teams create evidence packs aligned with Articles 4, 5 and 7, and audit-exemption substantiation where applicable.

6. Faster annual reporting

Because supplier evidence, risk assessments and mitigation records are stored in a structured system, ComplyMarket can help companies prepare more consistent annual conflict minerals reports for customers and authorities.

7. Reduced supplier chasing and version confusion

One of the biggest compliance pain points is version control. ComplyMarket helps reduce confusion by centralising supplier evidence, documentation, responsible sourcing records and reporting workflows in one platform.

Why Companies Should Act Now

The latest updates show that responsible minerals sourcing remains an active EU priority. The 2024 Regulation review, the 2025 RMAP recognition, the 2025 ReMIS transparency platform, CAHRA list update activity and the 2026 review process all point toward stronger expectations for traceable, documented and risk-based supply chain due diligence.

Companies that act early can reduce compliance risk, improve supplier transparency, respond faster to customer requests and prepare better for audits or authority checks.

FAQ: EU Conflict Minerals Regulation

What is the EU Conflict Minerals Regulation?

The EU Conflict Minerals Regulation is Regulation (EU) 2017/821. It requires certain EU importers of tin, tantalum, tungsten and gold to carry out supply chain due diligence to help ensure that these minerals and metals are sourced responsibly and do not contribute to conflict or human rights abuses.

When did the EU Conflict Minerals Regulation apply?

The key requirements for EU importers began applying on 1 January 2021.

Which minerals are covered?

The Regulation covers tin,tantalum,tungstenand gold, known as 3TG.

Who must comply?

The Regulation directly applies to EU-based importers of covered 3TG minerals and metals that meet the relevant scope and annual threshold conditions.

Are finished products covered?

The Regulation mainly targets Union importers of 3TG minerals and metals, not all finished product manufacturers. However, downstream companies are often indirectly affected because customers and business partners may request conflict minerals data.

What is the CAHRA list?

The CAHRA list is the EU’s indicative, non-exhaustive list of conflict-affected and high-risk areas. It helps companies identify risk areas, but companies remain responsible for due diligence even where a risk area is not listed.

What is RMAP recognition?

RMAP recognition means the European Commission has recognised the Responsible Minerals Assurance Process as aligned with the requirements of the Regulation. EU importers can rely on the scheme to demonstrate compliance, but they still need internal due diligence systems and records.

What happens if an importer does not comply?

Member State authorities can examine documents and audit reports, conduct on-site inspections where needed, require the importer to correct the issue within a deadline, and follow up to confirm corrective action.

How can ComplyMarket help?

ComplyMarket helps companies centralise supplier evidence, track Annex I scope and thresholds, manage risk workflows, prepare audit-ready evidence packs and support annual reporting for EU Conflict Minerals Regulation compliance.