Ruka hadi maudhui makuu
Didit Yakusanya $7.5M Kujenga Miundombinu ya Utambulisho na Udanganyifu
Didit
Uthibitishaji wa Simu

Thibitisha simu yoyote.
Kwenye chaneli yoyote wanayojibu.

Tuma nambari ya mara moja kupitia SMS, WhatsApp, Telegram, RCS, au sauti, chaneli yoyote ambayo mtumiaji anajibu. Kurudi nyuma kiotomatiki kati ya chaneli, na alama ya hatari ya mtoa huduma kwenye kila simu. Kuanzia $0.03 pamoja na mtoa huduma.

Inaungwa mkono na
Y CombinatorRobinhood Ventures
Firecrawl
Slash
Crnogorski Telekom
UCSF Neuroscape
Bit2Me
Shiply

Inaaminika na mashirika 2,000+ duniani kote.

Didit Uthibitishaji wa Simu, SMS / WhatsApp / Telegram / RCS mtiririko wa nambari ya mara moja.

Chaneli tano

SMS. WhatsApp. Telegram.
RCS. Sauti.

Moduli moja, njia tano za utoaji. Tunajaribu tena kwenye chaneli mbalimbali hadi nambari ifike, tunapima hatari ya SIM-swap na mtoa huduma kwenye kila simu, na tunatoza kuanzia $0.03 pamoja na mtoa huduma, mtiririko wa kazi ni uleule.

Jinsi inavyofanya kazi

Kuanzia kujisajili hadi mtumiaji aliyethibitishwa kwa hatua nne.

  1. Hatua 01

    Unda mtiririko wa kazi

    Chagua ukaguzi unaotaka, ID, uhai, kulinganisha uso, vikwazo, anwani, umri, simu, barua pepe, maswali maalum. Ziburute kwenye mtiririko kwenye dashibodi, au tuma mtiririko huo huo kwenye API yetu. Gawanya kulingana na masharti, fanya majaribio ya A/B, hakuna code inayohitajika.

  2. Hatua 02

    Unganisha

    Pachika moja kwa moja na SDK yetu ya Web, iOS, Android, React Native, au Flutter. Elekeza kwenye ukurasa uliopangishwa. Au tuma tu mtumiaji wako kiungo, kwa barua pepe, SMS, WhatsApp, popote. Chagua kinachofaa stack yako.

  3. Hatua 03

    Mtumiaji anapitia mchakato

    Didit inasimamia kamera, ishara za mwanga, uhamishaji wa simu, na ufikiaji. Wakati mtumiaji yuko kwenye mtiririko, tunapima ishara 200+ za udanganyifu kwa wakati halisi na kuthibitisha kila sehemu dhidi ya vyanzo vya data vya kuaminika. Matokeo yanapatikana chini ya sekunde mbili.

  4. Hatua 04

    Unapokea matokeo

    Webhooks zilizosainiwa kwa wakati halisi huweka database yako sawa mara tu mtumiaji anapoidhinishwa, kukataliwa, au kutumwa kwa ukaguzi. Uliza API inapohitajika. Au fungua console kukagua kila session, kila ishara, na kudhibiti kesi zako mwenyewe.

Imejengwa kwa ajili ya waendelezaji · Imejengwa dhidi ya udanganyifu · Wazi kwa muundo

Uwezo sita. Feature flag moja. SIMU.

Kila uwezo ni swichi kwenye moduli moja. Hakuna viwango vya kuongeza mauzo, hakuna mipango tofauti, hakuna simu za nyongeza. Ziwashe kwa kila mtiririko wa kazi kwenye console au zipitishe moja kwa moja kwenye simu ya API.
01 · Chaneli

Chaneli tano za utoaji. Feature flag moja.

SMS, WhatsApp, Telegram, RCS, na sauti, zote kwenye moduli na mtiririko wa kazi mmoja. Bainisha chaneli wakati sera inahitaji (SMS iliyoagizwa na mdhibiti, masoko yanayotumia WhatsApp kwanza kama Brazil na India), au tuache tuchague njia ya bei nafuu zaidi.
Feature flag moja · Njia tanofeature: PHONE
  • SMSChaguo-msingi
  • WhatsAppBR / IN / MX
  • TelegramEU
  • RCSAndroid
  • SautiMbadala
02 · Uelekezaji

Kurejea kiotomatiki kwa chaneli nyingine chaneli moja ikishindwa.

Vizuwizi vya SMS za carrier, nchi zenye viwango vya juu, na kushindwa kimya hupitishwa kiotomatiki. Tunajaribu tena kwenye chaneli inayofuata inayoweza kufikishwa bila code yako kugusa chochote, na tunakuambia ni chaneli gani iliyofikisha ujumbe.
Uelekezaji wa chaneli otomatikiPOST /v3/phone/send/
1SMSMtoa huduma amezuia
2WhatsAppImewasilishwa
verification_methodwhatsapp
03 · Ufikiaji

Ufikiaji wa telco duniani kote. Utoaji unaozingatia carrier.

Ujumuishaji wa carrier nyingi kwa kila nchi, na uelekezaji uliorekebishwa kulingana na tabia za ndani, WhatsApp inaongoza Brazil, India, na Mexico, Telegram na RCS zinaongoza kote EU, SMS inaongoza Marekani. Nchi, carrier, na aina ya nambari hugunduliwa kiotomatiki.
04 · Ishara za udanganyifu

Zaidi ya code ya mara moja. Hatari ya carrier kwenye kila simu.

Kila uthibitishaji unarudisha jina na aina ya carrier (simu ya mkononi, simu ya mezani, voice over IP), bendera za nambari za muda na za mtandaoni, na maonyo dhahiri kwa nambari zenye hatari kubwa, zilizorudiwa, au zilizoorodheshwa. Amua, kagua, au idhinisha kulingana na kategoria ya hatari.
05 · Ubadilishaji

SMS pekee huwapoteza watumiaji. Multi-channel inawaweka.

SMS inaposhindwa, kichujio cha carrier, roaming, eneo lisilo na mawasiliano, kupungua kwa ufikiaji, watoa huduma wa chaneli moja huacha watumiaji wakitazama code isiyofika. Tunawaokoa kwenye njia inayofuata, na tunaripoti ni chaneli gani iliyofikisha ili uweze kurekebisha uelekezaji kwa data halisi.
Kukamilika · Siku 30 zinazopitaJuu zaidi ni bora
SMS pekee58%
+ WhatsApp79%
+ Sauti mbadala93%
Kielelezo, kielekezi, si utafiti.
06 · Bei

Lipa kwa ujumbe. Kuanzia $0.03 pamoja na carrier.

$0.03 kwa kila uthibitishaji, pamoja na ada ya carrier ya nchi na chaneli inayopitishwa bila nyongeza. Unalipa tu ujumbe unapotumwa, kuacha kabla ya kufikishwa hakuna gharama.
Viwango vya kila ujumbeKuanzia $0.03
  • MarekaniSMS$0.03
  • BrazilWhatsApp$0.04
  • IndiaWhatsApp$0.05
Lipa tu ujumbe ukitumwa.
Unganisha

Endpoints mbili. JSON sawa. Bei sawa.

Chagua mtiririko uliopangishwa unapotaka sisi tushughulikie uingizaji wa nambari, UX ya msimbo, na kutuma tena. Chagua API inayojitegemea unaposimamia UX. Zote mbili zinarudisha ripoti sawa.
POST /v3/session/Hosted UI
$ curl -X POST https://verification.didit.me/v3/session/ \
  -H "x-api-key: $DIDIT_API_KEY" \
  -H "Content-Type: application/json" \
  -d '{
    "workflow_id": "wf_phone_otp",
    "vendor_data": "user-42"
  }'
201Imeundwa{ "session_url": "verify.didit.me/..." }
Tunashughulikia uingizaji wa namba ya simu, OTP UX, kutuma upya, na uelekezaji wa chaneli.nyaraka →
POST /v3/phone/send/Server kwa server
$ curl -X POST https://verification.didit.me/v3/phone/send/ \
  -H "x-api-key: $DIDIT_API_KEY" \
  -H "Content-Type: application/json" \
  -d '{
    "phone_number": "+14155552671"
  }'
200OK{ "status": "sent", "channel": "sms" }
Kisha POST /v3/phone/check/ ukitumia OTP ili kupata ripoti kamili.nyaraka →
Ujumuishaji tayari kwa agent

Tuma Uthibitishaji wa Simu kwa amri moja.

Bandika kizuizi kilicho hapa chini kwenye Claude Code, Cursor, Codex, Devin, Aider, au Replit Agent. Jaza stack yako. Agent itaweka Didit, kuunda workflow ya Uthibitishaji wa Simu, kuunganisha webhook, na kutuma.
didit-integration-prompt.md
# Didit Phone Verification — integrate in 5 minutes

You are integrating Didit's Phone Verification module into <my_stack>.
Follow these steps exactly. Every URL, header, and enum value below is
canonical — do not paraphrase or "improve" them.

## 1. Provision an account
- Sign up: https://business.didit.me (no credit card required).
- Or provision programmatically: POST https://apx.didit.me/auth/v2/programmatic/register/
  (returns an API key bound to the workspace + application).

## 2. Two integration paths — pick one

### Path A — Workflow Builder (hosted UI)
Best when you want Didit to handle phone collection, country prefix UX,
channel routing, OTP entry, resend buttons, mobile/desktop handoff, and
accessibility for you.

1. Create a workflow that contains the PHONE feature:
   POST https://verification.didit.me/v3/workflows/
   Authorization header:  x-api-key: <your-api-key>
   Body: workflow_label, features array with the single entry
         { feature: "PHONE" }   (UPPERCASE — strict enum)
   Optional config: preferred_channel ("SMS" | "WHATSAPP" | "TELEGRAM" |
   "RCS" | "VIBER" | "CALL"), code_validity_seconds, max_code_attempts
   (default 2), max_resend_requests_per_24h (default 2).

2. Create a verification session for an end user:
   POST https://verification.didit.me/v3/session/
   Body: workflow_id (from step 1), vendor_data (your own user id),
         optional contact_details.phone in E.164 format
         (e.g. "+14155552671") to pre-fill and lock the number.
   Response: session_url — redirect the user to it.

3. Listen for webhook callbacks (see "Webhooks" below).

### Path B — Standalone server-to-server API
Best when you already own the phone-entry UX (mobile SDK, native
onboarding app, reseller pipeline) and want Didit to handle OTP delivery
+ risk scoring only. Two endpoints, called in sequence:

Step 1 — Send the code:
POST https://verification.didit.me/v3/phone/send/
Content-Type: application/json
Body fields:
  - phone_number  (required, string, E.164 format e.g. "+14155552671")
  - channel       (optional — "SMS" | "WHATSAPP" | "TELEGRAM" | "RCS" |
                   "VIBER" | "CALL". Omit to let Didit pick the best
                   available channel for the destination country and
                   carrier — automatic fallback routing.)
  - vendor_data   (optional, your user id for cross-session linkage)

Step 2 — Check the code:
POST https://verification.didit.me/v3/phone/check/
Content-Type: application/json
Body fields:
  - phone_number  (required, same E.164 number)
  - code          (required, the OTP the user typed)
  - vendor_data   (optional, same user id used in Step 1)

Response: JSON report — status, verification_method (the channel that
actually delivered), carrier object, is_disposable, is_virtual, warnings
array.

## 3. Channel routing — how the automatic fallback works
When channel is omitted on /v3/phone/send/, Didit picks the cheapest
+ most-deliverable channel for the destination:
  - SMS where deliverable and lowest cost (most countries)
  - WhatsApp in BR / IN / MX and other WhatsApp-dense markets
  - Telegram / RCS / Viber where carrier-side SMS is blocked or premium
  - CALL (voice OTP) as last-resort fallback when text channels fail
Each retry attempt may switch channels — the final delivery channel is
returned as verification_method in the report.

## 4. Webhooks (Path A only — Path B returns synchronously)
- Register a webhook destination once via
  POST https://verification.didit.me/v3/webhook/destinations/
  Body: url, subscribed_events: ["session.verified", "session.review_started",
                                  "session.declined"]
- Response includes secret_shared_key — store it.
- Every webhook delivery carries an X-Signature-V2 header you MUST verify
  before trusting the payload.  HMAC-SHA256 verification MUST run against the raw body bytes (the raw payload as Didit sent it) BEFORE any JSON parsing — re-serialising the parsed body changes whitespace and key order, which invalidates the signature.Algorithm:
    1. sortKeys(payload) recursively
    2. shortenFloats (truncate trailing zeros after the decimal point)
    3. JSON.stringify the result
    4. HMAC-SHA256 with the secret_shared_key
    5. Hex-encode, compare to the X-Signature-V2 header.

## 5. Reading the report (both paths return the same phone object)
- status: "Approved" | "Declined" | "In Review" | "Not Finished"
- phone_number_prefix: country prefix in international format ("+34")
- phone_number: subscriber number without the prefix
- full_number: full E.164 string ("+34600600600")
- country_code: ISO 3166-1 alpha-2 ("ES")
- country_name: full country name
- carrier: { name, type: "mobile" | "landline" | "voip" | "unknown" }
- is_disposable: boolean — temporary or throwaway number
- is_virtual: boolean — VoIP or virtual provider
- verification_method: the channel that actually delivered the code
  ("sms" | "whatsapp" | "viber" | "telegram" | "call")
- verification_attempts: number of code-entry tries
- verified_at: ISO 8601 timestamp
- warnings: Array<{ risk, log_type, short_description, long_description }>

Auto-decline risks (always enforced by Didit, not configurable):
- VERIFICATION_CODE_ATTEMPTS_EXCEEDED
- HIGH_RISK_PHONE_NUMBER
- PHONE_NUMBER_IN_BLOCKLIST

Configurable risks (action per workflow — Decline, Review, or Approve):
- DISPOSABLE_NUMBER_DETECTED
- VOIP_NUMBER_DETECTED
- DUPLICATED_PHONE_NUMBER

## 6. Attempt limits (defaults — overridable per workflow)
- Max code-entry attempts: 2 per session
- Max resend requests: 2 per phone number per 24 hours
- Code validity: 5 minutes from send
Hitting either limit fires VERIFICATION_CODE_ATTEMPTS_EXCEEDED and
auto-declines the session.

## 7. Hard rules — do not change
- Base URL for /v3/* endpoints is verification.didit.me (NOT apx.didit.me).
- Feature enum is UPPERCASE: PHONE, ID_VERIFICATION, LIVENESS, FACE_MATCH,
  AML, IP_ANALYSIS.
- Channel enum is UPPERCASE on input ("SMS", "WHATSAPP", "TELEGRAM",
  "RCS", "VIBER", "CALL") and lowercase on output ("sms", "whatsapp",
  "telegram", "rcs", "viber", "call").
- All phone numbers go in and come out as E.164 strings — including
  the leading "+" and country prefix.
- Auth header is x-api-key (lowercase, hyphenated).
- Webhook signature header is X-Signature-V2 (NOT X-Signature).
- Always verify webhook signatures before trusting payload data.
- Status casing matches exactly: "Approved", "Declined", "In Review",
  "Not Finished" (title-cased, space-separated).

## 8. Pricing reference (public)
- Didit fee: $0.03 per verification (the cheapest channel; some
  channels and countries cost more — see didit.me/pricing for the
  per-country, per-channel table).
- Carrier fee: variable by country and channel, billed as a
  pass-through with no Didit markup.
- You only pay when a message is SENT. If the user abandons before
  delivery, you are not charged.

## 9. Verify your integration
- Sandbox starts on signup at https://business.didit.me — no separate flag.
- Sandbox numbers: deterministic E.164 numbers return Approved by default;
  trigger Declined with the canonical "high-risk" sandbox number.
- Switch to live: flip the application's environment toggle in console.

When in doubt: https://docs.didit.me/core-technology/phone-verification/overview
Inatii kwa muundo

Fungua nchi mpya kwa kubofya mara moja. Tunafanya kazi ngumu.

Tunafungua kampuni tanzu za ndani, tunapata leseni, tunafanya majaribio ya kupenya, tunapata vyeti, na tunalingana na kila kanuni mpya. Ili kusafirisha uthibitishaji katika nchi mpya, geuza swichi. Nchi 220+ ziko hewani, zinakaguliwa na kupimwa kila robo mwaka, mtoa huduma pekee wa utambulisho ambaye serikali ya nchi mwanachama wa EU imemwita rasmi kuwa salama zaidi kuliko uthibitishaji wa ana kwa ana.
Soma faili ya usalama na utiifu
EU financial sandbox
Tesoro · SEPBLAC · BdE
Jugendschutz geprüft
FSM · JMStV §4(2) · 2026
ISO/IEC 27001
Usalama wa habari · 2026
SOC 2 · Type I
AICPA · 2026
iBeta Level 1 PAD
NIST / NIAP · 2026
GDPR
EU 2016/679
DORA
EU 2022/2554
MiCA
EU 2023/1114
AMLD6 · eIDAS 2.0
EU-aligned kwa muundo

Namba za uthibitisho

Namba za uthibitisho
  • 0
    Njia za utumaji, SMS, WhatsApp, Telegram, RCS, sauti.
  • Otomatiki
    Uelekezaji wa chaneli, tunachagua njia rahisi zaidi ya kufikisha.
  • Kuanzia $0.03
    Kwa kila uthibitishaji, pamoja na gharama za mtoa huduma, hakuna nyongeza.
Ngazi tatu, orodha moja ya bei

Anza bure. Lipa kulingana na matumizi. Panua hadi Enterprise.

Uthibitishaji 500 bila malipo kila mwezi, milele. Lipa kadri unavyotumia kwa uzalishaji. Mikataba maalum, uhifadhi wa data, na SLA (Service Level Agreements) kwenye Enterprise.
Bure

Bure

$0 / mwezi. Hakuna kadi ya mkopo inayohitajika.

  • Kifurushi cha bure cha KYC (Uthibitishaji wa Kitambulisho + Passive Liveness + Face Match + Uchambuzi wa Kifaa & IP), 500 / mwezi, kila mwezi
  • Watumiaji Waliozuiwa
  • Utambuzi wa Marudio
  • Ishara 200+ za udanganyifu kwenye kila session
  • KYC inayoweza kutumika tena kwenye mtandao wa Didit
  • Jukwaa la Usimamizi wa Kesi
  • Workflow Builder
  • Nyaraka za umma, sandbox, SDKs, server ya MCP (Model Context Protocol)
  • Usaidizi wa jamii
Maarufu zaidi
Lipa kulingana na matumizi

Kulingana na Matumizi

Lipa tu kwa unachotumia. Moduli 25+. Bei za umma kwa kila moduli, hakuna ada ya chini ya kila mwezi.

  • KYC kamili kwa $0.33 (Kitambulisho + Biometric + IP / Kifaa)
  • Data za AML 10,000+, vikwazo, PEPs, habari hasi
  • Vyanzo vya data vya serikali 1,000+ kwa Uthibitishaji wa Database
  • Ufuatiliaji wa Miamala kwa $0.02 kwa kila muamala
  • KYB ya moja kwa moja kwa $2.00 kwa kila biashara
  • Uchunguzi wa Wallet kwa $0.15 kwa kila ukaguzi
  • Mtiririko wa uthibitishaji wa Whitelabel, brand yako, miundombinu yetu
Biashara Kubwa

Biashara Kubwa

MSA & SLA maalum. Kwa idadi kubwa na programu zilizodhibitiwa.

  • Mikataba ya kila mwaka
  • MSA, DPA, na SLA maalum
  • Kituo maalum cha Slack na WhatsApp
  • Wakaguzi wa mikono wanapohitajika
  • Masharti ya muuzaji na white-label
  • Vipengele vya kipekee na ushirikiano wa washirika
  • CSM aliyetajwa, ukaguzi wa usalama, usaidizi wa kufuata

Anza bure → lipa tu wakati ukaguzi unafanyika → fungua Enterprise kwa mkataba maalum, SLA, au uhifadhi wa data.

FAQ

Maswali ya kawaida

Didit ni nini?

Didit ni miundombinu ya utambulisho na udanganyifu, jukwaa ambalo tulitamani lingekuwepo tulipokuwa tukijenga bidhaa zetu wenyewe: wazi, rahisi kubadilika, na rafiki kwa wasanidi programu, ili lifanye kazi kama sehemu halisi ya stack yako badala ya sanduku jeusi unalounganisha.

API moja inashughulikia kuthibitisha watu (KYC, mjue mteja wako), kuthibitisha biashara (KYB, mjue biashara yako), kuchunguza pochi za crypto (KYT, mjue muamala wako), na kufuatilia miamala kwa wakati halisi, kwenye stack iliyojengwa kuwa:

  • Haraka, p99 chini ya sekunde 2 kwenye kila kipindi
  • Inaaminika, inatumika na kampuni 1,500+ katika nchi 220+
  • Salama, SOC 2 Aina ya 1, ISO 27001, GDPR-native, na kuthibitishwa rasmi na mdhibiti wa kifedha wa Uhispania kuwa salama zaidi kuliko kumthibitisha mtu ana kwa ana

Nyayo chini: aina 14,000+ za hati katika lugha 48+, vyanzo vya data 1,000+, na ishara za udanganyifu 200+ kwenye kila kipindi. Miundombinu ya Didit hujifunza kwa nguvu kutoka kwa kila kipindi na inaboresha kila siku.

Didit inasaidia chaneli gani za utoaji?
Chaneli tano, zote kwenye PHONE feature flag ileile. SMS kama chaneli chaguomsingi na yenye gharama nafuu zaidi kwa nchi nyingi. WhatsApp katika masoko yenye WhatsApp nyingi kama Brazil, India, na Mexico. Telegram na Rich Communication Services (RCS) ambapo SMS za upande wa mtoa huduma zimezuiwa au zina bei ya juu. Sauti (simu) kama njia ya mwisho ya kurudi nyuma wakati chaneli za maandishi zinaposhindwa. Weka chaneli kwa kila mtiririko wa kazi wakati sera inahitaji, au acha channel kwenye POST /v3/phone/send/ ili Didit ichague njia ya bei nafuu zaidi inayoweza kutolewa. Chaneli iliyotoa huduma inarudishwa kama verification_method kwenye ripoti. Upatikanaji kamili kwa kila nchi unapatikana docs.didit.me/core-technology/phone-verification/overview.
Muundo wa jibu ni upi?
Kitu kimoja cha JSON cha phone kwenye sehemu ya mwisho ya uamuzi wa kipindi, au kinarudishwa moja kwa moja kutoka POST /v3/phone/check/. status ya kiwango cha juu ni mojawapo ya Approved, Declined, In Review, au Not Finished. Kitu hicho pia kinajumuisha phone_number_prefix, phone_number, full_number (E.164), country_code (ISO 3166-1 alpha-2), country_name, block ya carrier (name, type ni mobile au landline au voip au unknown), bendera ya is_disposable kwa nambari za muda au za kutupa, bendera ya is_virtual kwa VoIP na watoa huduma pepe, verification_method (chaneli iliyotoa huduma, sms, whatsapp, telegram, rcs, viber, call), verification_attempts, verified_at kama timestamp ya ISO 8601, na array ya warnings. Marejeleo kamili yanapatikana docs.didit.me/core-technology/phone-verification/report-phone-verification.
Uthibitishaji ni wa haraka kiasi gani kwa mtumiaji wangu wa mwisho?

Mchakato mzima kwa kawaida huchukua chini ya sekunde 30 kuanzia mwanzo hadi mwisho, chukua kitambulisho, piga picha ya hati, piga selfie, umemaliza. Huu ndio mchakato wa haraka zaidi sokoni. Watoa huduma wa zamani wa KYC kwa kawaida huchukua zaidi ya sekunde 90 kwa mchakato huohuo.

Kwa upande wa back end, Didit inarudisha matokeo kwa chini ya sekunde mbili kwa p99, ikipimwa kuanzia wakati mtumiaji anamaliza selfie hadi wakati webhook yako inapoanza kufanya kazi. Upigaji picha wa simu umeboreshwa kwa simu za polepole na mitandao ya polepole: ukandamizaji wa picha unaoendelea, upakiaji wa polepole wa software development kit, na uhamishaji wa mara moja kutoka desktop kwenda simu kupitia QR code ikiwa mtumiaji anaanza kwenye web.

Didit inazuiaje udanganyifu wa simu?
Tabaka tatu, kila tabaka limewezeshwa kwa chaguo-msingi. (1) Muda wa uhalali wa OTP + mipaka ya majaribio, codes huisha baada ya dakika 5, majaribio ya kuingiza code yana kikomo cha 2 kwa kila session, maombi ya kutuma tena yana kikomo cha 2 kwa kila namba ya simu kwa saa 24. Kuzidisha mojawapo husababisha VERIFICATION_CODE_ATTEMPTS_EXCEEDED na kukataa kiotomatiki. (2) Ishara za hatari za namba ya simu, HIGH_RISK_PHONE_NUMBER kwa sifa mbaya inayojulikana, PHONE_NUMBER_IN_BLOCKLIST kwa blocklist yako mwenyewe, DISPOSABLE_NUMBER_DETECTED kwa watoa huduma wa namba za muda mfupi, VOIP_NUMBER_DETECTED kwa namba za Voice over Internet Protocol, DUPLICATED_PHONE_NUMBER kwa namba moja kwenye watumiaji tofauti wa vendor_data. (3) Mechi za sessions tofauti, namba ya simu ileile kwenye watumiaji tofauti huonekana kwenye matches array ili uweze kugundua udanganyifu wa pete na vitambulisho bandia. Katalogi kamili inapatikana docs.didit.me/core-technology/phone-verification/warnings-phone-verification.
Nini hutokea ikiwa mtumiaji atashindwa, ataacha, au muda wake utaisha?

Kila session huishia kwenye mojawapo ya statuses saba zilizo wazi, hivyo code yako inajua nini cha kufanya kila wakati:

  • Approved, kila ukaguzi umefaulu. Mpeleke mtumiaji mbele.
  • Declined, ukaguzi mmoja au zaidi umeshindwa. Unaweza kumruhusu mtumiaji kutuma tena hatua maalum iliyoshindwa (kwa mfano, kupiga tena selfie) bila kurudia mchakato mzima.
  • In Review, imewekewa alama kwa ukaguzi wa kufuata sheria. Fungua kesi kwenye console, angalia kila ishara, amua kuidhinisha au kukataa.
  • In Progress, mtumiaji yuko katikati ya mchakato.
  • Not Started, link imetumwa, mtumiaji bado hajaifungua. Tuma ukumbusho ikiwa itakaa muda mrefu sana.
  • Abandoned, mtumiaji alifungua link lakini hakumaliza kwa wakati. Mshirikishe tena au muda wake uishe.
  • Expired, link ya session imepitwa na wakati. Unda session mpya.

Webhook iliyosainiwa huwashwa kwenye kila mabadiliko ya status, hivyo database yako inabaki sawa kila wakati. Sessions zilizoachwa na zilizokataliwa ni bure.

Data ya mteja wangu inakaa wapi na inalindwaje?

Data ya uzalishaji inachakatwa na kuhifadhiwa katika Umoja wa Ulaya kwa chaguo-msingi, kwenye Amazon Web Services. Mikataba ya biashara inaweza kuomba maeneo mbadala kwa mamlaka ambazo wasimamizi wake wanahitaji.

Usimbaji fiche kila mahali. AES-256 ikiwa imetulia kwenye kila database, object store, na backup. Transport Layer Security 1.3 ikiwa inasafiri kwenye kila API call, webhook, na session ya Business Console. Data ya kibayometriki imesimbwa kwa kutumia Customer Master Key tofauti.

Uhifadhi ni wako kudhibiti. Uhifadhi wa chaguo-msingi ni usio na kikomo (unlimited) isipokuwa ukisanidi muda mfupi zaidi, kati ya siku 30 na miaka 10 kwa kila application, na unaweza kufuta session yoyote binafsi wakati wowote kutoka kwenye dashboard au API.

Vyeti: SOC 2 Type 1 (ukaguzi wa Type 2 unaendelea), ISO/IEC 27001:2022, iBeta Level 1 PAD, na uthibitisho wa umma kutoka Tesoro / SEPBLAC / CNMV ya Hispania kwamba uthibitishaji wa utambulisho wa mbali wa Didit ni salama zaidi kuliko kumthibitisha mtu ana kwa ana. Ripoti kamili inapatikana /security-compliance.

Je, Didit inatii sheria kwa tasnia yangu?

Didit inatii sheria kwa chaguo-msingi kwa wasimamizi muhimu kwa miundombinu ya utambulisho:

  • GDPR + UK GDPR, mgawanyo wa controller / processor, Mkataba kamili wa Uchakataji Data ulichapishwa, mamlaka kuu ya usimamizi imetajwa (AEPD ya Hispania).
  • AMLD6 + EU AML Single Rulebook, vikwazo 1,300+, mtu aliye wazi kisiasa, na orodha za habari mbaya zikichunguzwa kwa wakati halisi.
  • eIDAS 2.0, inalingana na EU Digital Identity Wallet; tayari kwa utambulisho unaoweza kutumika tena.
  • MiCA (Markets in Crypto-Assets), tayari kwa crypto on-ramps, exchanges, na custodians.
  • DORA, Digital Operational Resilience Act, uthabiti wa uendeshaji wa huduma za kifedha za EU.
  • BIPA, CUBI, Washington HB 1493, CCPA / CPRA, faragha ya kibayometriki ya Marekani (Illinois, Texas, Washington) na faragha ya watumiaji ya California.
  • UK Online Safety Act, vizuizi vya umri na majukumu ya usalama wa watoto.
  • FATF Travel Rule, data ya mwanzilishi na mpokeaji kwenye uhamishaji wa crypto, IVMS-101 inayoendana.

Memo ya kina, kila cheti, kila barua ya mdhibiti: /security-compliance.

Ninaweza kuunganisha na kuanza kuthibitisha watumiaji haraka kiasi gani?
  • Sekunde 60 kwa akaunti ya sandbox kwenye business.didit.me, bila kadi ya mkopo.
  • Dakika 5 kwa uthibitishaji unaofanya kazi kupitia Claude Code, Cursor, au wakala wowote wa kuandika code kupitia server yetu ya Model Context Protocol (MCP).
  • Wikiendi moja kwa muunganisho tayari kwa uzalishaji na uthibitishaji wa webhook iliyosainiwa, majaribio tena, na mchakato wa kurekebisha wakati mtumiaji anakataliwa.

Njia tatu za kuunganisha, chagua inayofaa stack yako:

  • Pachika asili na Web, iOS, Android, React Native, au Flutter SDK yetu.
  • Elekeza upya mtumiaji kwenye ukurasa wa uthibitishaji uliopangishwa, zero SDK.
  • Tuma link kwa barua pepe, SMS, WhatsApp, au chaneli yoyote, zero front-end work.

Dashboard ileile, bili ileile, bei ileile ya kulipa kwa mafanikio kwa zote tatu. Mwongozo wa hatua kwa hatua unapatikana docs.didit.me/integration/integration-prompt.

Miundombinu ya utambulisho na udanganyifu.

API moja kwa KYC, KYB, Ufuatiliaji wa Miamala, na Uchunguzi wa Wallet. Unganisha ndani ya dakika 5.

Uliza AI ifupishe ukurasa huu