Didit Closes $7.5M Seed to Build the Infrastructure for Identity and Fraud

Six months ago we wrote that we'd joined Y Combinator.

A lot has happened since.

Today we're announcing that we've raised $6 million, bringing our total raised to $7.5 million. We're profitable. We're growing more than 30% month over month. And we now serve more than 2,000 companies across every region in the world.

But the funding isn't the point. The point is this: in six months, what we're building got bigger and clearer at the same time. We didn't set out to be an identity verification company. We set out to build the infrastructure for identity and fraud, and now we finally have the proof, the customers, and the capital to go do it.

We rarely write these posts, everyone who knows us knows we're obsessed builders, not talkers. But this one is worth pausing on. So here's what we're building, why it's so big, and where we're going.

Identity and fraud today feel like online payments did fifteen years ago: opaque pricing hidden behind sales calls, painful onboarding, tools that don't talk to each other, a market that treats verification like a tax on building instead of a superpower. We're obsessed with flipping that, making it transparent, instant, and so good to use that a whole new wave of companies gets built on top of it.

The thing we kept noticing

We started with KYC because it's the hardest piece, if you can't verify a person securely, cheaply, and instantly, you can't build anything on top of it. Everyone told us not to. "The market is saturated." "You can't beat the incumbents." We went all in anyway.

Then, talking to hundreds of customers, we kept noticing the same thing.

Verifying who someone is on day one was never the whole problem. The fraud showed up later, in the transactions, in the wallets, in the second account, in the AI-generated face that slipped past a weak liveness check. Companies were buying one tool to verify identity and a totally separate stack to fight fraud, and the two never talked to each other. Fraud lives in the gap between them.

And AI is widening that gap fast. Deepfakes, synthetic identities, and injection attacks are now cheap to produce at scale. The same wave of AI that's creating millions of new apps is also creating millions of new fraudsters. Every product being built right now will need to answer two questions, constantly: is this real, and is this safe?

Identity and fraud aren't two markets. They're one surface. And nobody was building infrastructure for it.

So that's what we built

Didit is now one API for identity and fraud. The same platform covers KYC, KYB, transaction monitoring, and wallet screening, authenticate a user, verify a person or a company, and keep watching the transactions and wallets afterward, without gluing five vendors together.

And over the last six months we've doubled down on the three things we think actually matter:

We doubled down on developers and AI agents. An AI agent can now integrate Didit end to end, without ever opening the dashboard. In five minutes, from a single prompt, an agent like Claude Code, Codex, or Cursor can wire up a state-of-the-art identity and fraud flow: pick the modules, build the workflow, generate the keys, ship it. The fastest integration in the market is no longer for humans only.

We doubled down on flexibility. We opened up all of our APIs. You can blocklist faces, query any local database, run case management, build conditional workflows, A/B test flows, and turn any module on with one click. If you can imagine the check, you can compose it.

We doubled down on interoperability. Bring your own keys. Call your own webhooks from inside a Didit workflow. Plug Didit into the systems you already run. This is the flexibility teams actually need to go global, and today we serve everyone from a solo developer building the next AI app, to global financial institutions whose product has to work on every device, every region, every internet connection, and stay compliant everywhere it operates. That flexibility is the thing we're most excited about.

We're doing the hard, unglamorous work

The reason this is hard to copy isn't the API. It's everything underneath it.

We're getting the licenses. Opening subsidiaries. Connecting, country by country and region by region, every local data source that's actually valuable to our customers, biometric databases, credit bureaus, government registries, telco and address data. We build our own AI models in-house, with no third-party dependencies, tuned across face types, skin tones, document formats, and lighting conditions, for every country.

It's slow, expensive, deeply unglamorous work. It's also exactly the moat. We're quietly becoming the connective tissue for identity and fraud everywhere, so our customers get one API and never see the mess.

And we don't ask anyone to take it on faith. We're the first and only identity verification provider whose technology a government, Spain's Treasury, the CNMV, and SEPBLAC, its Financial Intelligence Unit, has assessed as equivalent to or more secure than in-person verification.

This plugs into everything

Once identity and fraud become one programmable layer, the use cases stop looking like "KYC" and start looking like the internet itself. Digital democracies run privacy-preserving voting where you prove you're a unique, eligible human without exposing who you are. AI data collection proves the human behind the data is real, once, without harvesting their identity. Payments get authenticated with a face scan instead of a card. Event ticketing confirms a buyer is over 18 and binds each ticket to a real person, killing bots and scalpers. Chargeback protection makes sure the buyer actually owns the payment method. AI agents get checked, their credentials and the human operator behind them, before they're allowed to act. And underneath it all, one-click onboarding, verify-once-reuse-everywhere, and fraud signals on device fingerprint, email, and face.

Every one of these is the same primitive: is this real, and is this safe? Answer that well enough, cheaply enough, fast enough, and you don't grow the market 2x. You grow it 1,000x. The clearest sign we're early to the right thing: 80% of our customers had never used an identity verification provider before us. We're not fighting over existing budgets, we're creating demand that didn't exist.

Where we stand today

Six months ago we were close to profitable. Today we are profitable, while growing more than 30% month over month, with retention and NRR we're genuinely proud of, and a team that's still intentionally small and absurdly effective. Growth, efficiency, and discipline at the same time. That's the combination we care about most, and we're not letting go of it.

More than 2,000 companies now run on Didit, fintechs, crypto exchanges, marketplaces, iGaming, mobility, governments, healthcare, AI labs, music labels, accounting firms, lending, insurance, dating apps, gaming studios, real estate, telcos… you name it. What started as "verify a person" is already much more, and every single week we find a new use case we never thought of.

Our investors

Just like last time, people believed before it was obvious. This round was backed by Y Combinator, Pioneer Fund, Orange Collective, SaaSholic, Founders Future, Phosphor Capital, Rebel Fund, Lobster Capital, alongside angels like Tomer London (co-founder of Gusto) and Taro Fukuyama (founder of Fond), and other amazing VCs and angels who joined the round, operators who've built and verified at real scale. We heard plenty of no's; the yeses came with conviction, and those people are partners and friends now.

We're hiring

We're scaling the team across our two headquarters, San Francisco and Barcelona.

If you're a cracked operator with extreme ownership who wants to grow fast and build something that matters, ping us. We're hiring in GTM, sales, customer success, AI, and compliance.

What we believe

We believe that in a few years, Didit will be remembered for creating a new category, identity and fraud on the internet, and that nearly every application will be plugged into Didit in one way or another. To check whether a device fingerprint, an email, or a face is fraudulent. To verify once and send your data, in one click, to any service in the digital or physical world. To vote privately in an election. To verify an AI agent's credentials and its operator before it acts. You name it.

Identity and fraud will be needed in every app. And we intend to be the company that builds it.

To our customers: thank you for trusting us. To our team: thank you, you make all of this possible. To our investors: thank you for believing.

We're more motivated than ever. Optimism is good.

"We choose to go to the Moon in this decade and do the other things, not because they are easy, but because they are hard.", John F. Kennedy

We do hard things because they're hard. That's the whole point.

Didit is the best way to integrate identity and fraud checks into your app.

Get started · Read the docs · Get a demo