Skip to main content
Didit Raih $7,5 Juta untuk Membangun Infrastruktur Identitas dan Fraud
Didit
Verifikasi UBO · Paket AML UE

Temukan setiap pemilik. Verifikasi setiap UBO.

Satu alur kerja menampilkan setiap Ultimate Beneficial Owner dari perusahaan yang di-onboard dan menjalankan KYC lengkap untuk masing-masing. $0.33 per UBO, 500 verifikasi gratis setiap bulan.

Mulai gratisBaca dokumen
Didukung oleh
Y CombinatorRobinhood Ventures
Firecrawl
Slash
Crnogorski Telekom
UCSF Neuroscape
Bit2Me
Shiply

Dipercaya oleh 2.000+ organisasi di seluruh dunia.

Ilustrasi kepatuhan abstrak gelap sinematik, empat panel kaca gelap transparan mengambang dalam perspektif 3D di kanvas hitam pekat, dihubungkan oleh garis vertikal Didit Blue yang bercahaya dan dibingkai oleh empat braket pemindai yang bersinar. Setiap panel membawa motif abstrak putih pucat kecil (pohon kepemilikan, ambang persentase, jaringan node, catatan registri) yang mewakili penemuan UBO.

Apa arti KYB sebenarnya

Perusahaan bukanlah pelanggan. UBO-nya lah yang pelanggan.

Regulator menginginkan individu di balik setiap perusahaan yang di-onboard, bukan hanya ekstrak registri. Didit menarik entitas, menelusuri rantai kepemilikan, menjalankan KYC $0.33 pada setiap UBO, dan menyaring perusahaan beserta setiap pemilik terhadap 1.300+ daftar AML. Satu alur kerja, satu faktur, satu paket audit. 500 verifikasi gratis setiap bulan.

Cara kerjanya

Dari pendaftaran hingga pengguna terverifikasi dalam empat langkah.

  1. Langkah 01

    Buat alur kerja

    Pilih pemeriksaan yang Anda inginkan, ID, liveness, face match, sanksi, alamat, usia, telepon, email, pertanyaan kustom. Seret ke dalam alur di dashboard, atau kirim alur yang sama ke API kami. Buat cabang berdasarkan kondisi, jalankan A/B test, tanpa perlu coding.

  2. Langkah 02

    Integrasikan

    Sematkan secara native dengan SDK Web, iOS, Android, React Native, atau Flutter kami. Redirect ke halaman yang di-host. Atau cukup kirim tautan kepada pengguna Anda, melalui email, SMS, WhatsApp, di mana saja. Pilih yang sesuai dengan stack Anda.

  3. Langkah 03

    Pengguna melalui alur

    Didit meng-host kamera, isyarat pencahayaan, hand-off seluler, dan aksesibilitas. Saat pengguna dalam alur, kami menilai 200+ sinyal penipuan secara real-time dan memverifikasi setiap bidang terhadap sumber data otoritatif. Hasil dalam waktu kurang dari dua detik.

  4. Langkah 04

    Anda menerima hasilnya

    Webhook yang ditandatangani secara real-time menjaga database Anda tetap sinkron saat pengguna disetujui, ditolak, atau dikirim untuk ditinjau. Lakukan polling API sesuai permintaan. Atau buka konsol untuk memeriksa setiap sesi, setiap sinyal, dan mengelola kasus sesuai keinginan Anda.

Dibangun untuk penemuan UBO · Harga seperti infrastruktur

Satu entitas. N UBO. Satu paket audit.

Pekerjaan UBO yang sebenarnya bukanlah satu pemeriksaan, ini adalah resep. Alihkan setiap modul per alur kerja. Catatan entitas terhubung ke setiap sesi UBO, setiap hit AML, dan setiap stempel waktu yang ditandatangani.
Baca dokumentasinyaDapatkan API key
01 · Tarik data registri

Tarik data entitasnya. Di mana pun terdaftarnya.

Companies House, Registro Mercantil, Handelsregister, Receita Federal, fallback OpenCorporates, 220+ yurisdiksi. Pejabat, modal saham, alamat terdaftar, status, dan kedudukan hukum semuanya dikembalikan dalam satu panggilan.
Modul Verifikasi Bisnis
02 · Pohon kepemilikan

Telusuri rantainya. Temukan setiap UBO.

Pemegang saham langsung, kepemilikan tidak langsung melalui holding, kontrol tanpa kepemilikan, deteksi nominee, fallback manajemen senior. Bagan ini langsung masuk ke paket supervisor.
Orkestrator Workflow
03 · KYC tertaut per UBO

Satu KYC $0.33 per pemilik.

Setiap UBO yang ditemukan mendapatkan /v3/session/ yang di-host, Verifikasi ID, Liveness Pasif, Pencocokan Wajah 1:1, Perangkat & IP, AML. Hasil verifikasi kurang dari dua detik di Android entry-level. 14.000+ dokumen, 220+ negara.
Modul Verifikasi Pengguna
04 · AML entitas + individu

Saring perusahaan dan setiap UBO.

1.300+ sanksi, Politically Exposed Persons (PEP), dan daftar media yang merugikan. Diperbarui setiap hari, dalam 14 bahasa. Entitas yang terdeteksi dan UBO yang terdeteksi otomatis membuka kasus.
Modul AML Screening
05 · Kebijakan kepemilikan

Aturan UBO yang mencerminkan yurisdiksi Anda.

Ambang batas 25% secara default; bisa diperketat menjadi 10% atau 5% per workflow untuk kategori klien berisiko tinggi. Deteksi nominee, kontrol hak suara, fallback manajemen senior semuanya dikodekan dalam Workflow Builder tanpa kode.
Orkestrator Workflow
06 · Paket bukti

Satu ZIP per entitas. Masukkan ke audit.

Ekstrak registri, bagan kepemilikan, setiap hasil KYC UBO, deteksi AML entitas + individu, stempel waktu HMAC yang ditandatangani. Disimpan di UE. Dapat diekspor dari Business Console atau API sesuai permintaan.
Gambaran umum kepatuhan
Integrasikan

Satu record KYB. N KYC yang sudah ditandatangani. Satu webhook.

Buka entitasnya. Jalankan sesi UBO. Baca hasil verifikasi yang sudah ditandatangani untuk setiap UBO. Agregasi. Selesai.
POST /v3/session/Per UBO
$ curl -X POST https://verification.didit.me/v3/session/ \
  -H "x-api-key: $DIDIT_API_KEY" \
  -H "Content-Type: application/json" \
  -d '{
    "workflow_id": "wf_ubo_kyc",
    "vendor_data": "acme-trading::ubo::1",
    "metadata": { "entity_id": "acme-trading", "ownership_pct": "36.0" }
  }'
201Dibuat{ "session_url": "verify.didit.me/..." }
Loop satu panggilan per UBO yang ditemukan. Agregasi di entity_id.docs →
GET /v3/session/{sessionId}/decision/Audit
$ curl https://verification.didit.me/v3/session/$SID/decision/ \
  -H "x-api-key: $DIDIT_API_KEY"

# Mengembalikan: bukti lengkap, dokumen,
# kemiripan biometrik, AML hits,
# risiko perangkat + IP, 200+ sinyal,
# Tanda tangan HMAC pada payload.
200Okestatus Disetujui · Ditolak · Dalam Peninjauan · Diajukan Ulang
Pemeriksaan ulang AML berkelanjutan untuk setiap orang yang disetujui setiap hari. Tidak perlu endpoint kedua.docs →
Integrasi siap agen

Kirim alur penemuan UBO + KYC dalam satu prompt.

Tempel ke Claude Code, Cursor, Codex, Devin, Aider, atau Replit Agent. Isi stack Anda. Agent akan membangun alur kerja, mengulang sesi UBO, menyambungkan webhook, dan membuka paket bukti.
didit-integration-prompt.md
You are integrating Didit into an Ultimate Beneficial Owner (UBO) verification flow for an obliged entity (fintech, bank, EMI, payments PI, crypto exchange, marketplace, gaming operator). Three obligations on every onboarded company:

  1. Pull the legal entity from the registry — name, officers, share capital, registered address, status.
  2. Walk the ownership chain — surface every natural-person UBO above the 25% threshold (or whoever exercises control without ownership).
  3. Know Your Customer (KYC) each UBO + screen the entity AND each UBO against 1,300+ sanctions, Politically Exposed Persons (PEP), and adverse-media lists.

Bundle pricing (live, verified 2026-05-16):
  - User Verification (KYC) bundle: $0.33 per person (Sessions API call — ID + Liveness + Face Match + Device & IP + AML)
  - AML Screening standalone: $0.20 per check on the entity, or bundled into each UBO KYC
  - Ongoing AML Monitoring: $0.07 per person per year (automatic — no extra endpoint)
  - First 500 verifications free every month, forever

PRE-REQUISITES
  - Production API key from https://business.didit.me (sandbox key in 60 seconds, no credit card).
  - Webhook endpoint with HMAC SHA-256 verification of the X-Signature-V2 header.
  - A workflow_id from the no-code Workflow Builder that bundles ID Verification + Passive Liveness + Face Match 1:1 + Device & IP Analysis + AML Screening.
  - Business Verification (Know Your Business (KYB)) module enabled in the Business Console. KYB is the entry point — it returns the entity record + the discovered UBOs that drive the rest of the flow.

STEP 1 — Open the KYB record on the legal entity

  Business Verification spawns the entity check, pulls officers + share capital + registered address from the local registry (220+ jurisdictions supported), runs entity AML on 1,300+ lists, and surfaces every natural-person UBO above your configured threshold (default 25%).

  When the KYB completes, the response contains an array of discovered UBOs — name, date of birth, nationality, ownership percentage, role (direct shareholder, indirect via holding, control without ownership, nominee, senior-management fallback).

STEP 2 — Loop: open one KYC session per discovered UBO

  POST https://verification.didit.me/v3/session/
  Headers:
    x-api-key: <your api key>
    Content-Type: application/json
  Body:
    {
      "workflow_id": "<wf id with KYC + AML modules>",
      "vendor_data": "<your entity-id>::ubo::<ubo-index>",
      "callback": "https://<your-app>/kyb/ubo/callback",
      "metadata": {
        "purpose": "ubo_verification",
        "entity_id": "<your internal entity id>",
        "ubo_name": "<full name as discovered>",
        "ownership_pct": "<percent rounded to one decimal>"
      }
    }

  Response: 201 Created with the hosted session URL. Send the UBO an email or text with the URL — they complete the verification on their phone, hosted by Didit, no app install. Sub-2-second median verdict.

STEP 3 — Read the signed webhook on each UBO KYC completion

  Didit POSTs to your callback. Session statuses are Title Case With Spaces:

  Body (excerpted):
    {
      "session_id": "<uuid>",
      "vendor_data": "<entity-id>::ubo::<ubo-index>",
      "status": "Approved",
      "id_verification": { "status": "Approved" },
      "liveness": { "status": "Approved" },
      "face": { "status": "Approved", "similarity_score": 0.94 },
      "ip_analysis": { "status": "Approved" },
      "aml": { "status": "Approved", "hits": [] }
    }

  Status enum (exact case): Approved | Declined | In Review | Resubmitted | Expired | Not Finished | Kyc Expired | Abandoned.

  Verify the X-Signature-V2 header BEFORE reading the body — HMAC SHA-256 of the raw bytes with your webhook secret.

  Aggregate at the entity level: the entity is onboarded only when EVERY UBO returns Approved AND the entity AML returns no blocking hit.

STEP 4 — Retrieve the full decision later

  GET https://verification.didit.me/v3/session/{sessionId}/decision/
  Headers:
    x-api-key: <your api key>

  Returns the full decision payload: document scan + extracted Machine-Readable Zone (MRZ), biometric similarity, AML hit list with source-watchlist references, device + IP risk signals, 200+ fraud signals, HMAC signature on the entire payload.

  Use this to assemble the per-entity evidence pack a supervisor expects to see: registry extract + ownership chart + per-UBO decision + entity AML + signed timestamps.

STEP 5 — Ongoing AML monitoring is automatic

  Every approved person (entity officer, UBO) is re-screened DAILY against the same 1,300+ lists. There is NO separate endpoint to call.

  When a previously-approved UBO crosses an AML threshold:
    - The session status changes to "In Review" or "Declined" automatically.
    - A signed webhook fires with the new hits + a link back to the original onboarding evidence.
    - A case opens in the Business Console for your compliance team.
    - File a Suspicious Activity Report (SAR) directly from the case if your jurisdiction requires it.

  Cost: $0.07 per person per year on heavy-volume accounts (single-digit dollars on a million-UBO base — orders of magnitude cheaper than a manual review queue).

WEBHOOK EVENT NAMES
  - Sessions: status changes flow through the standard session webhook (verify X-Signature-V2).
  - The KYB entity check fires the same webhook on completion.

CONSTRAINTS
  - Session statuses use Title Case With Spaces (Approved, In Review). Never UPPER_SNAKE_CASE on a session.
  - The 25% UBO threshold is a default; configure your own per workflow (some jurisdictions require 10% or 5% for high-risk client categories).
  - When no person meets the threshold, the AML package allows you to fall back to a senior-management UBO — surface that explicitly in the metadata.
  - Default record retention is 5 years post-relationship per the EU AML package (extensible up to 10 years per member-state guidance).
  - 200+ fraud signals are evaluated on every KYC session at no extra cost — surface the score via the session decision payload, do not re-query.

Read the docs:
  - https://docs.didit.me/sessions-api/create-session
  - https://docs.didit.me/sessions-api/retrieve-session
  - https://docs.didit.me/core-technology/aml-screening/overview
  - https://docs.didit.me/core-technology/aml-screening/continuous-monitoring-aml-screening
  - https://docs.didit.me/integration/webhooks

Start free at https://business.didit.me — sandbox key in 60 seconds, 500 verifications free every month, no credit card.
Dirancang untuk kepatuhan

Buka negara baru dengan satu klik. Kami yang mengerjakan bagian sulitnya.

Kami membuka anak perusahaan lokal, mengamankan lisensi, menjalankan pengujian penetrasi, mendapatkan sertifikasi, dan menyelaraskan dengan setiap regulasi baru. Untuk meluncurkan verifikasi di negara baru, cukup aktifkan tombol. 220+ negara sudah aktif, diaudit dan diuji penetrasi setiap kuartal, satu-satunya penyedia identitas yang secara formal disebut oleh pemerintah negara anggota Uni Eropa lebih aman daripada verifikasi langsung.
Baca dossier keamanan & kepatuhan
Sandbox keuangan UE
Tesoro · SEPBLAC · BdE
ISO/IEC 27001
Keamanan informasi · 2026
SOC 2 · Type I
AICPA · 2026
iBeta Level 1 PAD
NIST / NIAP · 2026
GDPR
EU 2016/679
DORA
EU 2022/2554
MiCA
EU 2023/1114
AMLD6 · eIDAS 2.0
Selaras dengan UE secara desain

Angka bukti

Angka bukti
  • $0.00
    Per UBO KYC, ID, Liveness, Face Match, Device & IP, AML.
  • 0+
    Sanksi, Politically Exposed Persons (PEP), dan daftar media negatif disaring pada entitas dan setiap UBO.
  • 0+
    Registri perusahaan yang dapat diakses melalui Verifikasi Bisnis, registri lokal ditambah fallback OpenCorporates.
  • 0
    Verifikasi gratis setiap bulan, di setiap akun.
Tiga tingkatan, satu daftar harga

Mulai gratis. Bayar sesuai penggunaan. Skala ke Enterprise.

500 verifikasi gratis setiap bulan, selamanya. Pay-as-you-go untuk produksi. Kontrak kustom, data residency, dan SLA (Service Level Agreements) untuk Enterprise.
Gratis

Gratis

$0 / bulan. Tidak perlu kartu kredit.

  • Paket KYC gratis (Verifikasi ID + Passive Liveness + Face Match + Analisis Perangkat & IP), 500 / bulan, setiap bulan
  • User yang masuk daftar hitam
  • Deteksi Duplikat
  • 200+ sinyal fraud di setiap sesi
  • KYC yang dapat digunakan kembali di seluruh jaringan Didit
  • Platform Manajemen Kasus
  • Workflow Builder
  • Dokumentasi publik, sandbox, SDK, server MCP (Model Context Protocol)
  • Dukungan komunitas
Mulai gratis
Paling populer
Bayar sesuai pemakaian

Berbasis Pemakaian

Bayar hanya untuk yang kamu pakai. 25+ modul. Harga per modul transparan, tanpa biaya minimum bulanan.

  • Full KYC seharga $0.33 (ID + Biometrik + IP / Perangkat)
  • 10.000+ dataset AML, sanksi, PEP, media yang merugikan
  • 1.000+ sumber data pemerintah untuk Database Validation
  • Transaction Monitoring seharga $0.02 per transaksi
  • Live KYB seharga $2.00 per bisnis
  • Wallet Screening seharga $0.15 per pemeriksaan
  • Alur verifikasi whitelabel, brand kamu, infrastruktur kami
Lihat daftar harga lengkapMulai gratis
Enterprise

Enterprise

MSA & SLA kustom. Untuk volume besar dan program yang diatur.

  • Kontrak tahunan
  • MSA, DPA, dan SLA kustom
  • Saluran Slack dan WhatsApp khusus
  • Peninjau manual sesuai permintaan
  • Ketentuan reseller dan white-label
  • Fitur eksklusif dan integrasi partner
  • CSM khusus, tinjauan keamanan, dukungan kepatuhan
Hubungi kami

Mulai gratis → bayar hanya saat pemeriksaan berjalan → buka Enterprise untuk kontrak kustom, SLA, atau data residency.

FAQ

Pertanyaan umum

What is Didit?

Didit is infrastructure for identity and fraud, the platform we wished existed when we were building products ourselves: open, flexible, and developer-friendly, so it works as a real part of your stack instead of a black box you integrate around.

One API covers verifying people (KYC, know your customer), verifying businesses (KYB, know your business), screening crypto wallets (KYT, know your transaction), and monitoring transactions in real time, on a stack built to be:

  • Fast, sub-2-second p99 on every session
  • Reliable, in production with 1,500+ companies across 220+ countries
  • Secure, SOC 2 Type 1, ISO 27001, GDPR-native, and formally attested by Spain's financial regulator as safer than verifying someone in person

The footprint underneath: 14,000+ document types in 48+ languages, 1,000+ data sources, and 200+ fraud signals on every session. The Didit infrastructure dynamically learns from every session and gets better every day.

What is an Ultimate Beneficial Owner, in plain English?

An Ultimate Beneficial Owner (UBO) is the natural person who ultimately owns or controls a company, not the company on the registry, not a holding entity in the middle of the chain, the actual human at the top.

The standard threshold in most jurisdictions is 25% direct or indirect ownership, or anyone who exercises control without ownership (board control, voting rights, signing authority). When no one clears the threshold, regulators expect you to fall back to a senior management UBO, typically the CEO or managing director.

The point of UBO discovery is to stop bad actors from hiding behind layers of holding companies. Your obliged entity owes a verified human for every company you onboard.

Which rules ask for UBO checks?

Almost every anti-money-laundering regime in the world. The current heavy-hitters:

  • The EU AML package, the new Anti-Money-Laundering Regulation, the AML Directive 6 update, and the AMLA Regulation that creates the new EU-level supervisor. Customer due diligence on legal entities is the core of it.
  • FATF Recommendation 24, the global UBO standard every G20 country signs onto. Mutual evaluations now grade countries on how well their UBO registries work.
  • United States, FinCEN's Customer Due Diligence Rule plus the Corporate Transparency Act's Beneficial Ownership Information report.
  • United Kingdom, the People with Significant Control register on Companies House plus FCA rules for regulated firms.

The shape of the obligation is the same everywhere: identify the natural person behind the company, run identity and AML checks on each, refresh on a risk-based cadence.

How fast is the verification for my end user?

The full flow normally takes under 30 seconds end-to-end, pick up the ID, snap the document, snap the selfie, done. That is the fastest in the market. Legacy KYC providers usually take more than 90 seconds for the same flow.

On the back end, Didit returns the result in under two seconds at p99, measured from the moment the user finishes the selfie to the moment your webhook fires. Mobile capture is tuned for slow phones and slow networks: progressive image compression, lazy software development kit load, and a one-tap hand-off from desktop to phone via QR code if the user starts on web.

Why bother with the ownership tree, isn't the registry enough?

The registry tells you the company exists, who the officers are, and what the share capital says, it does not tell you who actually controls the business.

Three gaps the registry won't close:

  • Nested holdings, Acme Trading SL is owned 60% by Acme Holdings BV, which is owned 80% by a Cayman company, which is owned by a trust. The registry shows the first layer; you owe the human at the end of the chain.
  • Control without ownership, voting agreements, golden shares, nominee arrangements all transfer control without showing on the cap table.
  • Stale data, registries lag months behind real ownership changes. A shareholder agreement signed yesterday will not appear for weeks.

A proper UBO process walks the chain, surfaces every person above the threshold, and verifies each one. The registry is the entry point, not the answer.

What happens if a user fails, abandons, or expires?

Every session lands on one of seven clear statuses, so your code always knows what to do:

  • Approved, every check passed. Move the user forward.
  • Declined, one or more checks failed. You can allow the user to resubmit the specific failed step (for example, re-take the selfie) without re-running the whole flow.
  • In Review, flagged for compliance review. Open the case in the console, see every signal, decide approve or decline.
  • In Progress, user is mid-flow.
  • Not Started, link sent, user has not opened it yet. Send a reminder if it sits too long.
  • Abandoned, user opened the link but did not finish in time. Re-engage or expire.
  • Expired, the session link aged out. Create a new session.

A signed webhook fires on every status change, so your database always stays in sync. Abandoned and declined sessions are free.

Where does my customer data live and how is it protected?

Production data is processed and stored in the European Union by default, on Amazon Web Services. Enterprise contracts can request alternative regions for jurisdictions whose regulators require it.

Encryption everywhere. AES-256 at rest across every database, object store, and backup. Transport Layer Security 1.3 in transit on every API call, webhook, and Business Console session. Biometric data is encrypted under a separate Customer Master Key.

Retention is yours to control. Default retention is indefinite (unlimited) unless you configure shorter, between 30 days and 10 years per application, and you can delete any individual session at any time from the dashboard or the API.

Certifications: SOC 2 Type 1 (Type 2 audit in progress), ISO/IEC 27001:2022, iBeta Level 1 PAD, and a public attestation from Spain''s Tesoro / SEPBLAC / CNMV that Didit''s remote identity verification is safer than verifying someone in person. Full report at /security-compliance.

Is Didit compliant for my industry?

Didit ships compliant by default for the regulators that matter to identity infrastructure:

  • GDPR + UK GDPR, controller / processor split, full Data Processing Agreement published, lead supervisory authority named (Spain''s AEPD).
  • AMLD6 + EU AML Single Rulebook, 1,300+ sanctions, politically exposed person, and adverse-media lists screened in real time.
  • eIDAS 2.0, EU Digital Identity Wallet aligned; reusable-identity ready.
  • MiCA (Markets in Crypto-Assets), ready for crypto on-ramps, exchanges, and custodians.
  • DORA, Digital Operational Resilience Act, EU financial-services operational resilience.
  • BIPA, CUBI, Washington HB 1493, CCPA / CPRA, US biometric privacy (Illinois, Texas, Washington) and California consumer privacy.
  • UK Online Safety Act, age-gating and child-safety obligations.
  • FATF Travel Rule, originator and beneficiary data on crypto transfers, IVMS-101 interoperable.

Detailed memo, every certificate, every regulator letter: /security-compliance.

How fast can I integrate and start verifying users?
  • 60 seconds to a sandbox account at business.didit.me, no credit card.
  • 5 minutes to a working verification through Claude Code, Cursor, or any coding agent via our Model Context Protocol (MCP) server.
  • A weekend to a production-ready integration with signed-webhook verification, retries, and a remediation flow when a user is declined.

Three integration paths, pick whichever fits your stack:

  • Embed natively with our Web, iOS, Android, React Native, or Flutter SDK.
  • Redirect the user to the hosted verification page, zero SDK.
  • Send a link by email, SMS, WhatsApp, or any channel, zero front-end work.

Same dashboard, same billing, same pay-per-success price for all three. Step-by-step guide at docs.didit.me/integration/integration-prompt.

How is each UBO actually verified?

Each UBO completes the same hosted KYC flow your consumer customers run, opened from a link Didit returns when you create the session. No app install, no extra software for the UBO to deal with.

The flow runs on the UBO's phone:

  • ID Verification, 14,000+ document types across 220+ countries
  • Passive Liveness, iBeta Level 1 anti-spoof certified, defeats deepfakes, masks, screen replays
  • Face Match 1:1, selfie matched to the document portrait
  • Device & IP Analysis, 200+ real-time fraud signals on the session
  • AML Screening, sanctions, PEP, and adverse-media on the UBO's name + date of birth

Sub-two-second median verdict on entry-level Android. The signed result lands on your webhook with the same vendor_data reference you sent in, so wiring each UBO back to its parent entity is a one-line join.

How does ongoing monitoring work, and what does it cost?

Every approved UBO is re-screened daily against the same 1,300+ AML lists used at onboarding. There is no separate endpoint to call, it runs automatically on any session with AML enabled.

When a previously-approved UBO crosses an AML threshold:

  • The session status changes to In Review or Declined automatically
  • A signed webhook fires to your back-end with the new hits and a link back to the original onboarding evidence
  • A case opens in the Business Console for your compliance team to triage
  • File a Suspicious Activity Report (SAR) directly from the case if your jurisdiction requires it

Cost on heavy-volume accounts is $0.07 per person per year, single-digit dollars for a base of tens of thousands of UBOs, orders of magnitude cheaper than the manual review queue most teams build around it.

What evidence does an AML examiner actually see?

One ZIP per onboarded entity, exportable from the Business Console or via the API. Each pack carries:

  • The registry extract for the legal entity, officers, share capital, registered address, status
  • The ownership chart, the chain Didit walked to surface each UBO
  • A per-UBO decision, document scan, biometric similarity, AML hits, device + IP risk signals, 200+ fraud signals, signed timestamps
  • The entity AML result with source-watchlist references
  • The HMAC SHA-256 signature on every payload, so chain-of-custody is provable
  • Reviewer notes from the Case Management surface, who triaged what, when, with what decision

All evidence is stored in the European Union (EU data centres) and retained indefinitely while your subscription is active. Default record retention is 5 years post-relationship per the EU AML package, extensible up to 10 years if your supervisor asks for it.

Related

Modul + alur kerja terkait

Infrastruktur untuk identitas dan fraud.

Satu API untuk KYC, KYB, Transaction Monitoring, dan Wallet Screening. Integrasi dalam 5 menit.

Mulai gratisHubungi kami
Minta AI untuk merangkum halaman ini