Skip to main content
Didit Raises $7.5M to Build the Infrastructure for Identity and Fraud
Didit
Asia-Pacific

Identity verification
built for Cambodia Flag of Cambodia

National ID and passport cross-checked against Cambodia's government registry via `khm_national_id`, biometric liveness, AML screening across NBC, SERC, and global lists. $0.33 full KYC, 500 free every month.

Start freeRead the docs
Backed by
Y CombinatorRobinhood Ventures
GBTC Finance
Bondex
Crnogorski Telekom
UCSF Neuroscape
Shiply
Adelantos

Trusted by 2,000+ organizations worldwide.

Country brief

How identity verification works in Cambodia.

The fraud surface and the frameworks an engineering or compliance lead needs before scoping an integration.
Fraud landscape
Three pressures shape Cambodian identity fraud: synthetic-ID attacks exploiting the relatively recent digitisation of the National ID Card system, document forgery across the older laminate ID cards and the newer biometric format, and cross-border fraud flows between Cambodia, Vietnam, and Thailand as regional remittance volumes expand. Didit scores 200+ real-time fraud signals on every session, face morph, replay, injection, document tampering, device intelligence, IP geolocation.
Compliance frameworks
  • Anti-Money Laundering Law 2007
  • Law on Counter-Terrorism Financing 2007
  • Personal Data Protection Law 2023 (Sub-Decree 56/2023)
  • Prakas B7-017-344 (NBC Payment Service Operator Licensing)
  • FATF 40 Recommendations
  • APG Mutual Evaluation Framework
Regulators

Who supervises identity verification in Cambodia.

These are the supervisors a Cambodia verification flow has to answer to. One Didit hosted flow + one audit log covers every one of them, no separate integration per agency.

  • NBC

    National Bank of Cambodia, central bank and prudential supervisor for banks, microfinance institutions, and payment service providers. Sets Customer Due Diligence requirements under the Anti-Money Laundering Law 2007 and Prakas B7-017-344.

  • FIU-Cambodia

    Financial Intelligence Unit, Cambodia's national FIU, operating under NBC. Receives Suspicious Transaction Reports from reporting entities under the Anti-Money Laundering Law 2007 and the Law on Counter-Terrorism Financing.

  • SERC

    Securities and Exchange Regulator of Cambodia, supervises capital-market participants, collective investment schemes, and securities dealers. Issues licensing and compliance requirements for KYC at onboarding.

  • GDT

    General Department of Taxation under the Ministry of Economy and Finance, operates the Tax Identification Number (TIN) registry used in KYB and corporate treasury onboarding.

  • Ministry of Interior

    Oversees the General Department of Identification and the population registry, the authoritative source for National ID Card data cross-checked by `khm_national_id`.

Verification flow · One API

Four modules. One verification.

ID, biometric, AML, and a Cambodia database cross-check, composed on one workflow, billed per success, returned in one report.
Read the docsGet an API key
01 · ID

Capture and read the ID.

Captured on any phone, auto-classified, OCR-parsed, and template-verified.

  • National Identity Card (both the older laminate and the newer biometric chip format), biometric passport (with the chip read on e-Passports), Voter ID, and Driving Licence.
  • Returns the name, date of birth, document number, gender, and expiry.
Read the docs
Stage 01Capture and read the ID
  • National Identity Card (laminate and biometric chip formats)
  • Biometric Passport, chip read on e-Passport
  • Voter ID · Driving Licence · Foreign National ID
02 · Biometric

Match the face. Prove it's a real person..

Selfie confirmed live and matched against the ID portrait.

  • Duplicate check: 1:N face search across existing users. Free.
  • Active liveness ($0.15) for elevated-risk flows, user turns or blinks.
Read the docs
Stage 02Match the face. Prove it's a real person.
  • Selfie on any phone or laptop camera
  • Mobile-handoff QR when the user starts on desktop
03 · AML

Screen for sanctions, PEPs, and adverse media.

1,300+ global sanctions, PEP, and adverse-media lists, plus Cambodian watchlists:

  • Minister of Economy and Finance, PEP Level 1 (heads of economic policy).
  • National Bank of Cambodia, PEP Level 2 (NBC senior officials).
  • Cambodia National Assembly, PEP Level 2 (lower-house members).
  • Cambodia Senate, PEP Level 2 (upper-house senators).
  • Cambodian People's Party, PEP Level 2 (ruling party senior figures).
  • Cambodia National Rescue Party, PEP Level 2 (opposition senior figures).
  • Kingdom of Cambodia Business Registration, SIE (state-invested entities).
  • Securities and Exchange Regulators of Cambodia, Warnings (regulatory enforcement notices).
  • UN Security Council Consolidated Sanctions List, global designations.
  • OFAC Specially Designated Nationals (SDN), US Treasury designations.
  • FATF 40 Recommendations, high-risk jurisdiction monitoring applicable to Cambodian cross-border flows.

Severity-scored. Ongoing monitoring ($0.07/user/yr) re-checks daily and fires a webhook on new hits.

Read the docs
Stage 03Screen for sanctions, PEPs, and adverse media

Screen for sanctions, PEPs, and adverse media , see the docs for the full module surface.

04 · Registry

Cross-check against Cambodia's government registry.

Cross-checked against the authoritative civil registry.

  • The `khm_national_id` check ($0.16 per successful query, ~80% coverage, consent required) hits the government agency database of citizen records directly, first_name, last_name, date_of_birth, voter_id in, normalised match results out (identification_number, date_of_birth, full_name, name_match_score, address).
  • The voter_id field must match the pattern (?:\d{8,9}|\d{2}-\d{3}-\d{3}), Didit validates the format before the lookup runs.
  • Pair with Identity Document Verification + Passive Liveness + AML for the full NBC Customer Due Diligence workflow on one POST /v3/session/ call.
Read the docs
Stage 04Cross-check against Cambodia's government registry

Cross-check against Cambodia's government registry , see the docs for the full module surface.

Documents covered

Every Cambodia document Didit accepts.

One row per accepted credential, flag, document name, document type. Live from the Didit Business Console.
Authoritative datasets

Civil-registry and AML coverage for Cambodia.

One card per dataset Didit cross-checks against, civil registries on the Database Validation API plus the global AML watchlist pool. Each card links to the technical docs.
khm_national_id

Cambodia National ID

Source: Government agency database of Cambodia citizen records. $0.16 per successful query. End-user consent required. Coverage ~80% of citizens.

Read the API docs
aml-screening

AML lists screened in Cambodia

1,300+ sanctions, Politically Exposed Persons (PEP), and adverse-media lists, plus the country's regulatory watchlists and PEP registries.

Read the AML coverage docs
Compliant by design

Open a new country in one click. We do the hard work.

We open the local subsidiaries, secure the licenses, run the penetration tests, earn the certifications, and align with every new regulation. To ship verifications in a new country, flip a toggle. 220+ countries live, audited and pen-tested every quarter, the only identity provider an EU member-state government has formally called safer than in-person verification.
Read the security & compliance dossier
EU financial sandbox
Tesoro · SEPBLAC · BdE
ISO/IEC 27001
Information security · 2026
SOC 2 · Type I
AICPA · 2026
iBeta Level 1 PAD
NIST / NIAP · 2026
GDPR
EU 2016/679
DORA
EU 2022/2554
MiCA
EU 2023/1114
AMLD6 · eIDAS 2.0
EU-aligned by design
FAQ

Common questions about Cambodia.

What does Didit ship?

Didit is the infrastructure layer for identity and fraud. One Application Programming Interface (API), 25+ composable modules across four product lines:

  • User Verification (KYC, know your customer), Identity Document Verification, liveness, face match, Anti-Money Laundering (AML) screening, Internet Protocol (IP) analysis. $0.33 per full bundle.
  • Business Verification (KYB, know your business), registry, Ultimate Beneficial Owner (UBO), officers, entity AML, plus a linked KYC session per UBO.
  • Transaction Monitoring, real-time rule engine, case management, Suspicious Activity Report (SAR) workflow.
  • Wallet Screening (KYT, know your transaction), on-chain wallet risk at $0.15 per check, or bring your own screening provider and run it inside Didit.

Compose any module into a workflow with the visual no-code builder, ship in 5 minutes, 500 verifications free every month, forever.

How is Didit different from a single-product Know Your Customer (KYC) vendor?

Most identity vendors sell one slice, a KYC check, an Anti-Money Laundering (AML) list, a wallet screen. Didit ships the infrastructure underneath all of them, and the gap shows up on six axes:

  • Pricing. Public price on every module, $0.33 for a full KYC, 500 verifications free every month, no minimums, no contracts. Single-product vendors hide six-figure minimums behind a sales call.
  • Access. Sandbox in one click, self-serve from day one, production keys on signup. Single-product vendors gate the sandbox behind a contract, months to evaluate.
  • Developer experience. Public docs, a Model Context Protocol (MCP) server for Claude Code and Cursor, and native Software Development Kits (SDKs) for Web, iOS, Android, React Native, and Flutter. Integrate in 5 minutes with an AI agent or in a working afternoon by hand.
  • User experience. Highest pass rates in the market, sub-2-second end-to-end inference, country-specialised capture flows, 48+ languages out of the box.
  • Flexibility. One /v3/ Application Programming Interface (API) composes 25+ modules across KYC, Know Your Business (KYB), Transaction Monitoring, and Wallet Screening (KYT, know your transaction). A KYB session spawns a linked KYC for every Ultimate Beneficial Owner (UBO); a flagged transaction spawns a step-up KYC remediation, same session, same webhook contract, same audit trail. Single-product vendors sell one shape of KYC and stop there.
  • AI-era fraud. 200+ real-time fraud signals scored on every session, deepfake, injection, synthetic-ID, document forgery, face-morph, device intelligence, replay. Single-product vendors treat deepfake and injection detection as roadmap items, not defaults.

Common in fintech and crypto, the same architecture fits marketplaces, iGaming, mobility, and any vertical where you need to know who someone is and what they are doing.

What does it cost? Is anything actually free?

500 verifications free every month, forever, on every account. No credit card. No sales call. No expiry.

Above the free tier, every module has a public per-success price on didit.me/pricing, $0.33 per full KYC bundle, $0.15 per Identity Document Verification, $0.15 per Wallet Screening, $0.20 per Anti-Money Laundering (AML) Screening, $0.10 per liveness, $0.05 per face match, $0.03 per Internet Protocol (IP) analysis.

Pay-as-you-go, no minimums, no overage surprises. Volume discounts kick in automatically as you grow.

Which Cambodian regulator covers identity verification on a digital onboarding?

Three regulators sit on top of every Cambodian identity-verification flow:

  • National Bank of Cambodia (NBC), central bank and prudential supervisor for banks, microfinance institutions, and payment service providers. Sets Customer Due Diligence requirements under the Anti-Money Laundering Law 2007 and Prakas B7-017-344.
  • Financial Intelligence Unit (FIU-Cambodia), operating under NBC, receives Suspicious Transaction Reports from obligated entities under the Anti-Money Laundering Law 2007 and the Law on Counter-Terrorism Financing 2007.
  • Securities and Exchange Regulator of Cambodia (SERC), supervises capital-market participants and issues KYC requirements at onboarding for securities dealers and collective investment schemes.

Didit ships the hosted flow + the audit log + the watchlist coverage to satisfy all three at the same time, same POST /v3/session/ workflow, same JSON report, same SOC 2 Type 1 + ISO/IEC 27001 evidence pack.

Does Didit cross-check Cambodian identities against the government registry?

Yes, via the `khm_national_id` Database Validation service on POST /v3/database-validation/.

  • Source: Government agency database of Cambodia citizen records.
  • Price: $0.16 per successful query.
  • Coverage: ~80% of citizens.
  • Required inputs: first_name, last_name, date_of_birth, voter_id.
  • Returns: identification_number, date_of_birth, full_name, name_match_score, address, city, street.
  • Consent: Required.

The voter_id field must match the pattern (?:\d{8,9}|\d{2}-\d{3}-\d{3}).

Is Didit ready for NBC-supervised payment service provider onboarding in Cambodia?

Yes. Cambodia's National Bank of Cambodia (NBC) supervises every payment service provider and bank under the Anti-Money Laundering Law 2007 and Prakas B7-017-344, every entity must run full Customer Due Diligence at onboarding.

Didit covers the full stack on one workflow:

  • Identity Document Verification + Passive Liveness + Face Match 1:1 for the tier-1 onboarding check.
  • `khm_national_id` Database Validation ($0.16 per query) against Cambodia's government registry, the authoritative source NBC expects for CDD.
  • AML Screening ($0.20 per check) against the global pool plus Cambodian regulatory watchlists (NBC, SERC, Cambodia National Assembly and Senate PEP registers, UN/OFAC sanctions).
  • Ongoing AML monitoring ($0.07 per user / year) for periodic-review obligations under the Anti-Money Laundering Law 2007.
How long does it take to integrate Didit in Cambodia?

5 minutes to a working sandbox, a weekend to a production flow.

  • Sign up at business.didit.me, grab an API key, call POST /v3/session/ with a workflow_id that wires ID Verification + Passive Liveness + Face Match + AML + khm_national_id database, done.
  • AI-agent path: paste the integration prompt at docs.didit.me/integration/integration-prompt into Claude Code, Cursor, Codex, Devin, Aider, or Replit Agent. The agent provisions the application, builds the workflow, wires the webhook, and runs a smoke test.
  • Five SDKs share the same session model: Web, iOS, Android, React Native, Flutter.

The first 500 verifications every month are free, forever, pilot the full Cambodia stack at zero cost before flipping production traffic.

What does the Cambodia verification cost end-to-end?

Per-module public pricing, pay only for what runs on the session:

  • ID Verification, $0.15 per document check.
  • Passive Liveness, $0.10. Active Liveness, $0.15.
  • Face Match 1:1, $0.05. Face Search 1:N, free.
  • AML Screening, $0.20 per check. Ongoing AML, $0.07 per user / year.
  • `khm_national_id` (Cambodia government registry, ~80% coverage), $0.16 per successful query.

The full KYC bundle (Identity + Passive Liveness + Face Match + IP Analysis) is `$0.33`, same anchor price worldwide. 500 verifications free every month, no credit card. Volume discounts auto-apply above the free tier; Enterprise adds a custom Master Services Agreement (MSA) and data-residency choice.

Related

Related coverage

Infrastructure for identity and fraud.

One API for KYC, KYB, Transaction Monitoring, and Wallet Screening. Integrate in 5 minutes.

Start freeTalk to us
Ask an AI to summarise this page