Skip to main content
Didit Raises $2M and Joins Y Combinator (W26)
Didit
Middle East & Africa

Identity verification
built for Malawi Flag of Malawi

Malawi National ID and Passport on one session, screened against Reserve Bank of Malawi, Financial Intelligence Authority, and global AML watchlists — $0.33 full KYC, 500 free every month.

Start freeRead the docs
Backed by
Y Combinator
GBTC Finance
Bondex
Crnogorski Telekom
UCSF Neuroscape
Shiply
Adelantos

Trusted by 2,000+ organizations worldwide.

Country brief

How identity verification works in Malawi.

The fraud surface and the frameworks an engineering or compliance lead needs before scoping an integration.
Fraud landscape
Three pressures shape Malawian identity fraud: deepfake and synthetic-ID attacks on mobile-money platforms and digital-banking growth, National ID Card forgery, and cross-border AML risk on the Zambia, Tanzania, and Mozambique corridors. Didit scores 200+ real-time fraud signals on every session — face morph, replay, injection, document tampering, device intelligence, IP geolocation.
Compliance frameworks
  • Financial Crimes Act 2022
  • National Registration Act 2009
  • Electronic Transactions and Cyber Security Act 2016
  • Reserve Bank of Malawi Act (Chapter 44:02)
  • ESAAMLG Mutual Evaluation recommendations
  • FATF 40 recommendations
Regulators

Who supervises identity verification in Malawi.

These are the supervisors a Malawi verification flow has to answer to. One Didit hosted flow + one audit log covers every one of them — no separate integration per agency.

  • RBM

    Reserve Bank of Malawi — central bank and prudential supervisor for commercial banks, microfinance institutions, and payment service providers. Issues AML/CFT directives for supervised entities.

  • FIA

    Financial Intelligence Authority — Malawi's Financial Intelligence Unit. Administers the Financial Crimes Act 2022 and receives Suspicious Transaction Reports (STRs) from regulated entities.

  • MERA

    Malawi Energy Regulatory Authority — parallel regulator that reinforces financial-crime reporting standards in the energy and utilities sector intersecting with financial services.

  • MACRA

    Malawi Communications Regulatory Authority — enforces electronic-communications and data-protection obligations applicable to digital identity services operating in Malawi.

  • ACC

    Anti-Corruption Bureau Malawi — investigates and prosecutes corruption and economic-crime offences. Lists arrested persons under relevant financial-crime statutes.

Verification flow · One API

Four modules. One verification.

ID, biometric, AML, and a Malawi database cross-check — composed on one workflow, billed per success, returned in one report.
Read the docsGet an API key
01 · ID

Capture and read the ID.

Captured on any phone — auto-classified, OCR-parsed, and template-verified.

  • National ID Card, Passport (MRZ parsed), driving licence, and residence permit for foreign residents.
  • Returns: full name, date of birth, NID number, document number, expiry.
Read the docs
Stage 01Capture and read the ID
  • National ID Card (NID)
  • Passport — MRZ parsed
  • Driving Licence · Residence Permit
02 · Biometric

Match the face. Prove it's a real person..

Selfie confirmed live and matched against the ID portrait.

  • Duplicate check: 1:N face search across existing users. Free.
  • Active liveness ($0.15) for elevated-risk flows — user turns or blinks.
Read the docs
Stage 02Match the face. Prove it's a real person.
  • Selfie on any phone or laptop camera
  • Mobile-handoff QR when the user starts on desktop
03 · AML

Screen for sanctions, PEPs, and adverse media.

1,300+ global sanctions, PEP, and adverse-media lists — plus Malawian watchlists:

  • National Assembly of Malawi — Members of Parliament (PEP Level 1) and senior executive-branch officials.
  • Anti-Corruption Bureau Malawi — persons arrested or charged under financial-crime and corruption statutes.
  • Reserve Bank of Malawi — supervisory enforcement actions and warning notices issued to regulated entities.
  • Financial Intelligence Authority Malawi — enforcement notices under the Financial Crimes Act 2022.
  • UN Security Council Consolidated Sanctions — active multilateral designations covering Malawi-linked entities.
  • OFAC SDN List — US Treasury Specially Designated Nationals with Malawi nexus.
  • ESAAMLG — Eastern and Southern Africa Anti-Money Laundering Group regional risk signals.
  • Interpol Southern Africa — wanted-persons and fugitive notices relevant to Southern Africa.
  • Basel AML Index — country risk score and associated risk signals.

Severity-scored. Ongoing monitoring ($0.07/user/yr) re-checks daily and fires a webhook on new hits.

Read the docs
Stage 03Screen for sanctions, PEPs, and adverse media

Screen for sanctions, PEPs, and adverse media — see the docs for the full module surface.

04 · Registry

Database validation.

  • There is no public government database validation API for Malawi currently exposed as a standalone Didit service — the National Registration Bureau does not currently offer a public consumer API open to third-party integrators.
Read the docs
Stage 04Database validation

Database validation — see the docs for the full module surface.

Documents covered

Every Malawi document Didit accepts.

One row per accepted credential — flag, document name, document type. Live from the Didit Business Console.
Authoritative datasets

Civil-registry and AML coverage for Malawi.

One card per dataset Didit cross-checks against — civil registries on the Database Validation API plus the global AML watchlist pool. Each card links to the technical docs.
aml-screening

AML lists screened in Malawi

1,300+ sanctions, Politically Exposed Persons (PEP), and adverse-media lists, plus the country's regulatory watchlists and PEP registries.

Read the AML coverage docs
Compliant by design

Open a new country in one click. We do the hard work.

We open the local subsidiaries, secure the licenses, run the penetration tests, earn the certifications, and align with every new regulation. To ship verifications in a new country, flip a toggle. 220+ countries live, audited and pen-tested every quarter — the only identity provider an EU member-state government has formally called safer than in-person verification.
Read the security & compliance dossier
EU financial sandbox
Tesoro · SEPBLAC · BdE
ISO/IEC 27001
Information security · 2026
SOC 2 · Type I
AICPA · 2026
iBeta Level 1 PAD
NIST / NIAP · 2026
GDPR
EU 2016/679
DORA
EU 2022/2554
MiCA
EU 2023/1114
AMLD6 · eIDAS 2.0
EU-aligned by design
FAQ

Common questions about Malawi.

Related

Related coverage

Infrastructure for identity and fraud.

One API for KYC, KYB, Transaction Monitoring, and Wallet Screening. Integrate in 5 minutes.

Start freeTalk to us
Ask an AI to summarise this page