Skip to main content
Didit Raises $2M and Joins Y Combinator (W26)
Didit
Europe

Identity verification
built for Bosnia & Herzegovina Flag of Bosnia & Herzegovina

Bosnia and Herzegovina's Financial Intelligence Department and Central Bank enforce AML/CFT across an EU-candidate economy — Didit delivers ID, liveness, AML, and the $0.33 bundle at 500 free checks per month.

Start freeRead the docs
Backed by
Y Combinator
GBTC Finance
Bondex
Crnogorski Telekom
UCSF Neuroscape
Shiply
Adelantos

Trusted by 2,000+ organizations worldwide.

Country brief

How identity verification works in Bosnia & Herzegovina.

The fraud surface and the frameworks an engineering or compliance lead needs before scoping an integration.
Fraud landscape
BiH faces document-forgery and organized-crime-linked identity fraud, amplified by complex multi-jurisdictional governance and EU-accession-driven digital onboarding growth. Didit scores 200+ real-time fraud signals on every session — face morph, replay, injection, document tampering, device intelligence, IP geolocation.
Compliance frameworks
  • Law on Prevention of Money Laundering and Financing of Terrorist Activities 2014 (as amended 2022)
  • Law on Protection of Personal Data (GDPR-aligned)
  • FATF 40 Recommendations
  • MONEYVAL evaluation framework
  • EU AMLD5/6 alignment (pre-accession)
Regulators

Who supervises identity verification in Bosnia & Herzegovina.

These are the supervisors a Bosnia & Herzegovina verification flow has to answer to. One Didit hosted flow + one audit log covers every one of them — no separate integration per agency.

  • FID/SIPA

    Financial Intelligence Department within the State Investigation and Protection Agency — Bosnia and Herzegovina's national FIU. Receives Suspicious Activity Reports from obligated entities under the Law on Prevention of Money Laundering 2014.

  • CBBH

    Centralna banka Bosne i Hercegovine (Central Bank of Bosnia and Herzegovina) — maintains monetary stability and coordinates financial sector regulation between the FBiH and RS entities.

  • FBA

    Federalna agencija za bankarstvo (Federation Banking Agency) — supervises banks in the FBiH entity. Sets CDD requirements for FBiH-licensed institutions.

  • BARS

    Agencija za bankarstvo Republike Srpske (RS Banking Agency) — supervises banks in the Republika Srpska entity. Sets CDD requirements for RS-licensed institutions.

  • AZLP

    Agencija za zaštitu ličnih podataka u Bosni i Hercegovini (Agency for Personal Data Protection) — BiH's national DPA. Governs every identity verification on Bosnian residents under the Law on Protection of Personal Data.

  • BAPO

    Prosecutor's Office of Bosnia and Herzegovina — SIP-classified institution; senior prosecutors designated in the Didit AML screening layer under BiH's PEP framework.

Verification flow · One API

Four modules. One verification.

ID, biometric, AML, and a Bosnia & Herzegovina database cross-check — composed on one workflow, billed per success, returned in one report.
Read the docsGet an API key
01 · ID

Capture and read the Bosnian ID.

Captured on any phone — auto-classified, OCR-parsed, and template-verified.

  • Lična karta (biometric national ID with chip), Pasoš (ICAO 9303 biometric passport), Vozačka dozvola, and Boravišna dozvola for non-BiH residents.
  • Returns: full name, date of birth, document number, expiry, MRZ.
Read the docs
Stage 01Capture and read the Bosnian ID
  • Lična karta (biometric national ID card)
  • Pasoš (biometric passport) — NFC chip read
  • Vozačka dozvola (driving licence)
02 · Biometric

Match the face. Prove it's a real person..

Selfie confirmed live and matched against the ID portrait.

  • Duplicate check: 1:N face search across existing users. Free.
  • Active liveness ($0.15) for elevated-risk flows — user turns or blinks.
Read the docs
Stage 02Match the face. Prove it's a real person.
  • Selfie on any phone or laptop camera
  • Mobile-handoff QR when the user starts on desktop
03 · AML

Screen for sanctions, PEPs, and adverse media.

1,300+ global sanctions, PEP, and adverse-media lists — plus Bosnia and Herzegovina watchlists:

  • Border Police of Bosnia and Herzegovina — PEP Level 1 (senior border officials).
  • Ministry of Defense (Bosnia and Herzegovina) — PEP Level 2 (senior ministry officials).
  • Office of the Prime Minister — PEP Level 2 (senior executive officials).
  • Ministry of Foreign Affairs — PEP Level 2.
  • Digitalni arhiv — Infobiro — SIE (state-invested entity database).
  • BAPO — Prosecutor's Office of Bosnia and Herzegovina — SIP (special-interest persons).
  • SAFF Portal — regulatory warnings and enforcement notices.
  • FID/SIPA — Financial Intelligence Department SAR-derived designations.
  • MONEYVAL — Council of Europe AML evaluation findings.
  • FATF 40 Recommendations — risk-jurisdiction monitoring.
  • UN Security Council Consolidated Sanctions List — global designations.
  • OFAC Specially Designated Nationals (SDN) — US Treasury designations.
  • EU Consolidated Financial Sanctions List — pre-accession applicable enforcement.
  • Interpol Notices — international law enforcement designations.

Severity-scored. Ongoing monitoring ($0.07/user/yr) re-checks daily and fires a webhook on new hits.

Read the docs
Stage 03Screen for sanctions, PEPs, and adverse media

Screen for sanctions, PEPs, and adverse media — see the docs for the full module surface.

04 · Registry

Document validation — no public registry API in Bosnia and Herzegovina.

There is no public government database validation API for Bosnia and Herzegovina currently exposed as a standalone Didit service — the Agencija za identifikacijska dokumenta, evidenciju i razmjenu podataka (IDDEEA) does not currently offer a public consumer API open to third-party integrators.
Read the docs
Stage 04Document validation — no public registry API in Bosnia and Herzegovina

Document validation — no public registry API in Bosnia and Herzegovina — see the docs for the full module surface.

Documents covered

Every Bosnia & Herzegovina document Didit accepts.

One row per accepted credential — flag, document name, document type. Live from the Didit Business Console.
Authoritative datasets

Civil-registry and AML coverage for Bosnia & Herzegovina.

One card per dataset Didit cross-checks against — civil registries on the Database Validation API plus the global AML watchlist pool. Each card links to the technical docs.
aml-screening

AML lists screened in Bosnia & Herzegovina

1,300+ sanctions, Politically Exposed Persons (PEP), and adverse-media lists, plus the country's regulatory watchlists and PEP registries.

Read the AML coverage docs
Compliant by design

Open a new country in one click. We do the hard work.

We open the local subsidiaries, secure the licenses, run the penetration tests, earn the certifications, and align with every new regulation. To ship verifications in a new country, flip a toggle. 220+ countries live, audited and pen-tested every quarter — the only identity provider an EU member-state government has formally called safer than in-person verification.
Read the security & compliance dossier
EU financial sandbox
Tesoro · SEPBLAC · BdE
ISO/IEC 27001
Information security · 2026
SOC 2 · Type I
AICPA · 2026
iBeta Level 1 PAD
NIST / NIAP · 2026
GDPR
EU 2016/679
DORA
EU 2022/2554
MiCA
EU 2023/1114
AMLD6 · eIDAS 2.0
EU-aligned by design
FAQ

Common questions about Bosnia & Herzegovina.

Related

Related coverage

Infrastructure for identity and fraud.

One API for KYC, KYB, Transaction Monitoring, and Wallet Screening. Integrate in 5 minutes.

Start freeTalk to us
Ask an AI to summarise this page