Orca

An API for fraud detection and prevention.

Overview

1. Authentication

Custom Configuration

2. Identity Verification

Screening

Device Risk

Account Detail Risk

3. Transaction Monitoring

Screen transaction

Process graph

Model inference

4. Webhooks

Fraud Detection API

Orca Fraud Detection API

Production

Sandbox

<p class="slate-p" placeholder="Type / for widgets">Seamlessly integrate fraud detection into your applications and systems with the Orca API - for real-time identity verification, fraud and risk analysis.</p><p class="slate-p" placeholder="Type / for widgets"></p><div  data-type="success" style="background-color:#DEFBE6;color:#00cb38"><div ><svg width="18" height="18" viewBox="0 0 18 18" fill="none" xmlns="http://www.w3.org/2000/svg"><path d="M7.77116 10.8968L5.72949 8.8551C5.60449 8.7301 5.45171 8.6676 5.27116 8.6676C5.0906 8.6676 4.93088 8.73705 4.79199 8.87594C4.6531 9.01482 4.58366 9.17455 4.58366 9.3551C4.58366 9.53566 4.6531 9.68844 4.79199 9.81344L7.33366 12.3551C7.45866 12.4801 7.60449 12.5426 7.77116 12.5426C7.93783 12.5426 8.08366 12.4801 8.20866 12.3551L13.2087 7.3551C13.3337 7.2301 13.3927 7.07732 13.3857 6.89677C13.3788 6.71621 13.3128 6.56344 13.1878 6.43844C13.0628 6.29955 12.9066 6.2301 12.7191 6.2301C12.5316 6.2301 12.3684 6.29955 12.2295 6.43844L7.77116 10.8968ZM9.00033 17.3343C7.81977 17.3343 6.72255 17.1225 5.70866 16.6989C4.69477 16.2752 3.81283 15.6884 3.06283 14.9384C2.31283 14.1884 1.72602 13.3065 1.30241 12.2926C0.878798 11.2787 0.666992 10.1815 0.666992 9.00094C0.666992 7.83427 0.878798 6.74399 1.30241 5.7301C1.72602 4.71621 2.31283 3.83427 3.06283 3.08427C3.81283 2.33427 4.69477 1.74399 5.70866 1.31344C6.72255 0.88288 7.81977 0.667603 9.00033 0.667603C10.167 0.667603 11.2573 0.88288 12.2712 1.31344C13.285 1.74399 14.167 2.33427 14.917 3.08427C15.667 3.83427 16.2573 4.71621 16.6878 5.7301C17.1184 6.74399 17.3337 7.83427 17.3337 9.00094C17.3337 10.1815 17.1184 11.2787 16.6878 12.2926C16.2573 13.3065 15.667 14.1884 14.917 14.9384C14.167 15.6884 13.285 16.2752 12.2712 16.6989C11.2573 17.1225 10.167 17.3343 9.00033 17.3343ZM9.00033 16.0843C11.0142 16.0843 12.6982 15.4072 14.0524 14.053C15.4066 12.6989 16.0837 11.0148 16.0837 9.00094C16.0837 6.98705 15.4066 5.30302 14.0524 3.94885C12.6982 2.59469 11.0142 1.9176 9.00033 1.9176C6.98644 1.9176 5.30241 2.59469 3.94824 3.94885C2.59408 5.30302 1.91699 6.98705 1.91699 9.00094C1.91699 11.0148 2.59408 12.6989 3.94824 14.053C5.30241 15.4072 6.98644 16.0843 9.00033 16.0843Z" fill="#06837A"></path></svg></div><div ><p class="slate-p" placeholder="Type / for widgets">Please contact <code class="slate-code">support@orca-fraud.com</code> once you are ready to enable the production environment.</p></div></div><p class="slate-p" placeholder="Type / for widgets">We provide insights into the following types of fraud based on your data:</p><ul class="slate-ul"><li class="slate-li"><div style="position:relative">Account Take-over</div></li><li class="slate-li"><div style="position:relative">Identity Theft</div></li><li class="slate-li"><div style="position:relative">Investment Scams</div></li><li class="slate-li"><div style="position:relative">Money Muling</div></li><li class="slate-li"><div style="position:relative">Phishing</div></li><li class="slate-li"><div style="position:relative">Money Laundering</div></li></ul><h2 class="slate-h2">How it works</h2><div style="text-align:undefined"><img src="https://theneo-prod-public.s3.us-east-1.amazonaws.com/images-1707219100963.jpg" alt=""/></div><h2 class="slate-h2">API Reference</h2><div  data-type="warning" style="background-color:#FFF8E1;color:#f0b800"><div ><svg width="18" height="16" viewBox="0 0 18 16" fill="none" xmlns="http://www.w3.org/2000/svg"><path d="M0.916637 15.5009C0.791637 15.5009 0.683998 15.4732 0.59372 15.4176C0.503443 15.362 0.430526 15.2857 0.37497 15.1884C0.319415 15.0912 0.288165 14.9905 0.28122 14.8864C0.274276 14.7822 0.305526 14.6745 0.37497 14.5634L8.4583 0.605103C8.52775 0.493991 8.60761 0.41413 8.69789 0.365519C8.78816 0.316908 8.88886 0.292603 8.99997 0.292603C9.11108 0.292603 9.21178 0.316908 9.30205 0.365519C9.39233 0.41413 9.47219 0.493991 9.54164 0.605103L17.625 14.5634C17.6944 14.6745 17.7257 14.7822 17.7187 14.8864C17.7118 14.9905 17.6805 15.0912 17.625 15.1884C17.5694 15.2857 17.4965 15.362 17.4062 15.4176C17.3159 15.4732 17.2083 15.5009 17.0833 15.5009H0.916637ZM1.99997 14.2509H16L8.99997 2.1676L1.99997 14.2509ZM9.0833 13.0634C9.26386 13.0634 9.41316 13.0044 9.53122 12.8864C9.64928 12.7683 9.7083 12.619 9.7083 12.4384C9.7083 12.2579 9.64928 12.1086 9.53122 11.9905C9.41316 11.8725 9.26386 11.8134 9.0833 11.8134C8.90275 11.8134 8.75344 11.8725 8.63539 11.9905C8.51733 12.1086 8.4583 12.2579 8.4583 12.4384C8.4583 12.619 8.51733 12.7683 8.63539 12.8864C8.75344 13.0044 8.90275 13.0634 9.0833 13.0634ZM9.0833 10.7509C9.26386 10.7509 9.41316 10.6919 9.53122 10.5739C9.64928 10.4558 9.7083 10.3065 9.7083 10.1259V6.70927C9.7083 6.52871 9.64928 6.37941 9.53122 6.26135C9.41316 6.1433 9.26386 6.08427 9.0833 6.08427C8.90275 6.08427 8.75344 6.1433 8.63539 6.26135C8.51733 6.37941 8.4583 6.52871 8.4583 6.70927V10.1259C8.4583 10.3065 8.51733 10.4558 8.63539 10.5739C8.75344 10.6919 8.90275 10.7509 9.0833 10.7509Z" fill="#F1C21B"></path></svg></div><div ><p class="slate-p" placeholder="Type / for widgets">These docs are actively in development and are subject to change</p></div></div><p class="slate-p" placeholder="Type / for widgets">This API provides the following core functionality:</p><ul class="slate-ul"><li class="slate-li"><div style="position:relative"><strong class="slate-bold">Authentication</strong></div><ul class="slate-ul"><li class="slate-li"><div style="position:relative">Authenticate using your API key. </div></li><li class="slate-li"><div style="position:relative">☎️ Contact <code class="slate-code">support@orca-fraud.com</code> to receive an API key and activate your account.</div></li></ul></li><li class="slate-li"><div style="position:relative"><strong class="slate-bold">Identity Verification</strong></div><ul class="slate-ul"><li class="slate-li"><div style="position:relative">Provide indepth user screening and verification, customizable to your </div></li></ul></li><li class="slate-li"><div style="position:relative"><strong class="slate-bold">User Monitoring</strong></div><ul class="slate-ul"><li class="slate-li"><div style="position:relative">Track a user&apos;s behaviour across the lifecycle of a transaction and for the full lifespan of their account. Historical data is used to determine anomalies and deviations for each user and risk associated. </div></li><li class="slate-li"><div style="position:relative">Create account, KYC, account verification, login, logout etc</div></li></ul></li><li class="slate-li"><div style="position:relative"><strong class="slate-bold">Transaction Monitoring</strong></div><ul class="slate-ul"><li class="slate-li"><div style="position:relative">Transaction verification, monitoring</div></li><li class="slate-li"><div style="position:relative">Risk assessment - based on transaction and user data</div></li></ul></li><li class="slate-li"><div style="position:relative"><strong class="slate-bold">Suspicion Webhooks</strong></div><ul class="slate-ul"><li class="slate-li"><div style="position:relative">Receive notifications when suspicious behaviour is detected so your system can react appropriately.</div></li></ul></li></ul><h2 class="slate-h2">🚧 Coming soon!</h2><ul class="slate-ul"><li class="slate-li"><div style="position:relative">Case management endpoints</div></li><li class="slate-li"><div style="position:relative">Reporting and analytics endpoints</div></li><li class="slate-li"><div style="position:relative">Retraining endpoints - provide data to retrain your business&apos;s custom model</div></li></ul><p class="slate-p" placeholder="Type / for widgets"></p>

Seamlessly integrate fraud detection into your applications and systems with the Orca API - for real-time identity verification, fraud and risk analysis.

We provide insights into the following types of fraud based on your data:

This API provides the following core functionality:

<p>Orca Authentication uses an API key per client, per environment.</p><p>☎️ Please contact <code>support@orca-fraud.com</code> to register for an API key for the Orca Sandbox environment.</p><p>⚠️ Please do NOT commit or expose your API key to any public repository.</p><p>In order to</p>

Orca Authentication uses an API key per client, per environment.

 to register for an API key for the Orca Sandbox environment.

⚠️ Please do NOT commit or expose your API key to any public repository.

In order to test whether your API key is configured, please use the 

 described below. If you are authenticated you will receive a 

<p>This endpoint allows you to consider risk vectors including:</p><ul><li><div>Risk of onboarding a malicious user.</div></li><li><div>Likelihood that a friendly user has been exposed.</div></li><li><div>Risk that a friendly user's account may be exploited in the future.</div></li></ul>

This endpoint allows you to consider risk vectors including:

This endpoint should be called during user onboarding, but can be called during transaction flow for sensitive transactions, at the discretion of the client.

Additionally a confidence score between 0 and 1 is returned. A score of 1 indicates 

 that the returned content is a match, while 0 is no confidence.

 These features must be enabled on the client custom configuration to access.

For ease of implementation, a single core endpoint is available. All features enabled in the custom configuration will be applicable upon requesting.

Additionally, specific endpoints are also available for the individual Identity Verification features, but calls to these endpoints are NOT required if the primary 

📝 Please not that in order to use the specific endpoints, custom configuration must still be enabled for these features.

Check provided user data against a set of sanctions lists and databases. If a match is found, the details of the match and the data source of the match will be returned.

The feature specific endpoint for screening is:

This feature screens provided user data against a set of sanctions lists and databases. If a match is found, the details of the match and the data source of the match will be returned.

The feature specific endpoint for device risk is:

This endpoint allows you to consider risk vectors that could expose a user's account to exploitation. This endpoint should be called during onboarding, but can be called during transaction flow for sensitive transactions, at the discretion of the client.

This endpoint assesses whether the email, cellphone number or password used has been exposed during a databreach.

The feature specific endpoint for account detail risk is:

<p>This endpoint allows you to validate incoming transactions for potential fraud and AML behaviours.</p><p>Based on your custom config, this endpoint will:</p><ul><li><div>Screen a transaction against known fraudulent accounts and behaviours within the Orca system.</div></li><li><div>Process a tra</div></li></ul>

This endpoint allows you to validate incoming transactions for potential fraud and AML behaviours.

Based on your custom config, this endpoint will:

<p class="slate-p" placeholder="Type / for widgets">Subscribe to the following webhooks for updates on particular users and transactions.</p><p class="slate-p" placeholder="Type / for widgets">Webhooks are required for the model inference components of transaction monitoring.</p><p class="slate-p" placeholder="Type / for widgets"></p><p class="slate-p" placeholder="Type / for widgets"></p><p class="slate-p" placeholder="Type / for widgets"></p><p class="slate-p" placeholder="Type / for widgets"></p><p class="slate-p" placeholder="Type / for widgets"></p>

Subscribe to the following webhooks for updates on particular users and transactions.

Webhooks are required for the model inference components of transaction monitoring.