Compliance Engine - AlgoVoi Platform

The AlgoVoi compliance engine is a synchronous, multi-layered control system that runs on every payment processed by the platform before any webhook fires or settlement is confirmed. It is not an optional add-on and cannot be bypassed. Every payment across all seven supported chains and five supported protocols passes through the same compliance stack in the same order. Three pillars form the engine:

Wallet-level sanctions screening against three sovereign lists
URL and IP threat intelligence screening at four enforcement points
KYC and KYB identity gating controlling mainnet access

The engine is designed to be SAMLA 2018 s.20 tipping-off compliant throughout. Verdicts returned to callers are generic. The name of the list that produced a match is never disclosed to the payer or to any unauthenticated party.

Sanctions Screening

Sanctions screening runs at every payment submission, every mandate activation, and every Tier 2 standing-authority pull. The payer wallet address is matched against three sovereign lists maintained as in-process data structures with daily feed refresh.

Screening Sources

List	Authority	Coverage
OFSI Consolidated List	UK HM Treasury	UK domestic designations plus UN Security Council programs cascaded through UK statutory instruments
OFAC SDN	US Treasury, Office of Foreign Assets Control	US domestic designations plus UN programs cascaded through OFAC general licences
EU Consolidated Financial Sanctions List	European Commission, DG FISMA	EU designations plus UN Security Council programs cascaded through EU implementing regulations

UN designations are screened transitively through the EU and UK cascades. No separate UN feed is required. A wallet that appears on a UN Security Council consolidated list is captured by the EU and UK lists at the point of each implementing regulation.

Match Handling

Wallet addresses are normalised to a canonical form per chain before comparison. The match logic distinguishes three outcomes:

Outcome	Handling
Exact match	Payment blocked immediately. screening_hits audit chain row written. Tenant webhook event screening.hit emitted. If the tenant’s own registered withdrawal wallet matches, mainnet is suspended pending MLRO review.
Fuzzy or alias match	Payment flagged. Held for MLRO review queue. Webhook event screening.flagged emitted.
No match	Payment proceeds to next compliance stage.

The daily reaper runs as an in-process scheduled job. It downloads the three list feeds, parses them into normalised canonical form, and hot-swaps the in-memory screening set without a service restart. The last successful refresh timestamp is visible on GET /compliance/attestation.

Name-Level and PEP Screening

The framework for name-level screening and Politically Exposed Person (PEP) classification is defined and wired into the risk-tier model. Wallet-level sanctions screening incorporates a PEP flag where the list source provides one. Full name-level PEP screening per FCA FG17/6 risk-based methodology is in preparation, pending integration of a commercial data feed. The field name pep_flag is present in the risk model and is settable by MLRO override today.

Pre-Payment Screen Endpoint

Any party — merchant, agent, wallet application, or x402 facilitator — can call the pre-payment screen endpoint before submitting a payment. This endpoint is unauthenticated and rate-limited. Endpoint: POST /compliance/screen Request fields:

Field	Type	Required	Description
wallet_address	string	Yes	The payer wallet address in its canonical on-chain form
chain	enum	Yes	One of: algorand, voi, hedera, stellar, base, solana, tempo

Response fields:

Field	Type	Description
verdict	enum	clear, flagged, or blocked
risk_tier	string	The risk classification of the wallet address where determinable
reasons	array of string	Generic human-readable reasons. List names are never disclosed.
screened_at	timestamp	ISO 8601 UTC timestamp of this screening result
request_id	string	Idempotency token for this screen call, for MLRO audit trail

The reasons array uses generic phrasing only, in compliance with SAMLA 2018 s.20. Examples of valid reason strings: “wallet address matches a sanctions designation”, “wallet address is associated with a flagged entity”. The list or program name is never included. This endpoint is called automatically by the AlgoVoi MCP tool screen_recipient, by x402 facilitators before issuing a payment challenge, and by the control plane before activating any mandate.

URL and IP Threat Intelligence Screening

The URL and IP screening layer operates at four distinct enforcement points. Each point is synchronous and blocking. A failed check at any point returns an error response and records the event in the compliance_events audit chain. Seven threat-intelligence feeds are maintained in-process. All seven are refreshed hourly without a service restart.

The Seven Feeds

Feed	Coverage
Tor Exit Node List (Tor Project)	Known Tor exit relays
SpamHaus DROP	Hijacked IP blocks
SpamHaus EDROP	Extended hijacked IP blocks
URLhaus (abuse.ch)	Active malware distribution URLs
ThreatFox (abuse.ch)	Indicators of compromise
OpenPhish	Phishing URLs
PhishTank	Community-verified phishing URLs

MaxMind GeoLite2 GeoIP database is also maintained in-process for jurisdiction classification. It is updated on the MaxMind release schedule (typically weekly). Applied at: POST /cloud-signup/create (tenant account creation) Checks performed synchronously, in order:

Check	Action on match
Tor exit node	Registration blocked
SpamHaus DROP / EDROP	Registration blocked
MaxMind GeoIP: sanctioned jurisdiction	Registration hard-blocked. Covered jurisdictions: Democratic People’s Republic of Korea (DPRK), Iran, Syria, Cuba
MaxMind GeoIP: FATF grey-list jurisdiction	Registration permitted; MLRO escalation ticket raised automatically

The lawful basis for IP processing is UK GDPR Article 6(1)(f) legitimate interests, with a documented Legitimate Interests Assessment (LIA) on file. Article 22 automated-decision mitigation is documented: MLRO review is available to any applicant who believes their IP address has been misclassified.

Enforcement Point 2: Checkout redirect_url

Applied at: POST /v1/payment-links (every checkout link creation)

Check	Action on match
URLhaus / PhishTank / OpenPhish / ThreatFox URL match	Link creation blocked
UK bank-brand homograph detection	Link creation blocked
RDAP newly-registered domain (less than 30 days old)	Link creation blocked
Redirect-chain following (up to 5 hops)	Each hop in the redirect chain is evaluated against all URL feed checks
Sanctioned-jurisdiction TLD	Link creation blocked

Redirect-chain following is capped at five hops to prevent infinite-loop abuse. If a redirect chain exceeds five hops, the link creation is blocked.

Enforcement Point 3: Webhook Destination Registration

Applied at: POST /v1/webhooks (every webhook endpoint registration)

Check	Action on match
RFC 1918 private IP ranges (10.x, 172.16–31.x, 192.168.x)	Registration blocked
Link-local range 169.254.x.x	Registration blocked
Cloud metadata endpoint 169.254.169.254	Registration blocked
RFC 6761 reserved suffixes (.local, .localhost, .invalid)	Registration blocked
Non-HTTPS scheme	Registration blocked
URLhaus / PhishTank / OpenPhish / ThreatFox URL match	Registration blocked

This enforces the SSRF defence layer. An attacker cannot register a webhook that would cause the AlgoVoi delivery system to make requests to internal network addresses or cloud metadata services.

Enforcement Point 4: Webhook Delivery DNS-Rebinding Guard

Applied at: Every webhook delivery attempt (before each HTTP POST is sent) The registered destination hostname is re-resolved immediately before each delivery attempt. The resolved IP is re-checked against the private-IP deny list and the link-local deny list. If the hostname now resolves to a blocked address — for example because of a TTL-0 DNS rebinding attack where the hostname passed registration but was subsequently pointed at an internal address — the delivery attempt is aborted and the event is queued for retry against the original destination. This guard runs on every delivery, including retries, not only on first delivery.

KYC and KYB Identity Gating

Mainnet payment acceptance is blocked for any tenant whose kyc_status is not approved or whose mainnet_active flag is not true. These two conditions are set independently and both must be true for a tenant to accept live payments.

KYC Auto-Approval (Individuals and Sole Traders)

Individual and sole_trader applicants who submit a recognised identity document plus a liveness selfie are automatically approved provided:

Document type is passport, national identity card, or driving licence from a non-sanctioned jurisdiction
Liveness check passes (anti-spoofing, face-match against document)
No sanctions match on name (where list source provides name data)
Signup IP did not generate a hard-block at enforcement point 1

Auto-approval is not available for:

Applicants from FATF grey-list jurisdictions (MLRO manual review required)
Applicants whose document jurisdiction is sanctioned
Company and company_director KYB applications (always require MLRO review)

KYB (Company Onboarding)

Company KYB always requires MLRO manual review. The following data is collected:

Field	Description
company_name	Registered legal name
registered_number	Company registration number in the jurisdiction of incorporation
jurisdiction	Country of incorporation
registered_address	Full registered office address
business_description	Nature of business and sector
anticipated_volume	Expected monthly payment volume in GBP equivalent
beneficial_owners	Array of UBOs with ownership percentage exceeding 25%
source_of_funds	Declaration of business source of funds
kyb_documents	Certificate of incorporation, latest filed accounts, proof of trading address

All KYB documents are encrypted at rest using the platform’s document encryption key family. Key material is held outside the codebase. Loss of the key renders encrypted files unrecoverable.

Risk-Based Onboarding

Every onboarding is assigned a risk_tier. The tier is computed from a combination of:

Geographic risk (signup jurisdiction, business jurisdiction, UBO jurisdictions)
Sector risk (regulated sector, high-risk sector as per FATF sector guidance)
Ownership complexity (number of UBO layers, nominee directors, bearer shares)
Product mix (high-velocity micropayments vs low-volume B2B)
Anticipated volume (low, medium, high, very high)

Higher-risk tiers trigger Enhanced Due Diligence (EDD). EDD items include source of funds evidence, business plan, reference checks, and periodic re-screening schedule.

Risk Tier Model

Tier	Label	Mainnet Access	Description
standard	Standard	Full	Default for approved low-risk tenants. Standard monitoring cadence.
elevated	Elevated	Full	Enhanced monitoring. EDD triggers are active. Periodic re-screening on a shorter schedule.
high	High Risk	Full (restricted features)	Active MLRO monitoring. Periodic re-screening on the shortest schedule. Certain high-volume features may be restricted pending MLRO confirmation.
blocked	Blocked	None	Sanctions hit confirmed, court order received, or operator decision. No payment activity possible. Mainnet_active set to false.

Risk tier can be changed by MLRO action at any time. Every change is recorded as a compliance_events audit chain row with state_from, state_to, reason, and actor.

Regulatory Alignment

The compliance engine is designed and operated with reference to the following regulatory frameworks. Alignment status is assessed against each framework’s requirements as they apply to the platform’s operating model.

Framework	Status	Notes
UK Money Laundering Regulations 2017 (MLRs 2017)	Voluntary alignment	Self-assessment; legal opinion in preparation
Sanctions and Anti-Money Laundering Act 2018 (SAMLA), s.20	Compliant by design	Tipping-off controls built into every verdict path
UK General Data Protection Regulation (UK GDPR) / Data Protection Act 2018	Aligned	LIA documented for IP processing; Article 22 mitigation in place
Payment Services Regulations 2017 (PSD2, as retained in UK law) Art. 89 (refund obligations)	Addressed by receipt format suite	Refund receipt format per draft-hopley-x402-refund-receipt; cancellation receipt per draft-hopley-x402-cancellation-receipt
Markets in Crypto-Assets Regulation (MiCA) Art. 80 / AMLR Art. 56	Addressed by settlement attestation	Settlement attestation format covers transaction record-keeping obligations
FATF Recommendations 12 / 15 / 16	Travel Rule: out of scope	Platform is wallet-to-wallet non-custodial; no funds transmitter or custodian role
FCA MLR Schedule 6A (crypto asset business registration)	Out of scope per PS19/22 self-assessment	Legal opinion in preparation; non-custodial model is the basis of the assessment
EMR 2011 Regulations 20–21 (safeguarding)	Live	PayPal fiat-rail mandate balances safeguarded under EMR 2011; £100/mandate, £300/account caps enforced

Public Attestation Surface

The compliance attestation endpoint is a public, unauthenticated endpoint that provides a machine-readable snapshot of the current compliance posture. Endpoint: GET /compliance/attestation Response fields:

Field	Type	Description
active_frameworks	array	List of regulatory frameworks and their alignment status
sanctions_sources	array	The three live sanctions lists with last_refreshed_at per list
threat_intel_feeds	array	The seven threat-intelligence feeds with last_refreshed_at per feed
audit_chain_heads	object	For each of the five audit chains: current chain_position and content_hash
object_lock_status	enum	active or degraded
object_lock_retention_expiry	string	ISO 8601 date (currently 2033)
attestation_generated_at	timestamp	When this response was generated

This endpoint is used by:

Buyers conducting technical due diligence
Downstream agents verifying platform compliance posture before submitting a payment
The AlgoVoi MCP tool get_compliance_attestation
The standalone audit verifier at verify.algovoi.co.uk when checking live chain heads against B2 Object Lock anchors

The response does not require authentication. It is intended to be publicly inspectable.

Compliance Events and Audit Integration

Every significant compliance decision is recorded as an immutable row in the compliance_events audit chain. The chain is hash-chained (SHA-256 over RFC 8785 JCS canonical JSON), shipped to Backblaze B2 in COMPLIANCE-mode Object Lock with retention to 2033. See the Audit Chain specification for full chain mechanics. Key event types recorded in compliance_events:

Event Type	Trigger
kyc_submitted	Applicant submits KYC documents
kyc_approved	Auto-approval or MLRO manual approval
kyc_rejected	Auto-rejection or MLRO manual rejection
kyc_resubmission_requested	MLRO requests additional documents
kyb_submitted	Company submits KYB pack
kyb_approved	MLRO approves company onboarding
kyb_rejected	MLRO rejects company onboarding
risk_tier_change	MLRO changes risk tier; records state_from, state_to, reason, actor
mainnet_activated	mainnet_active set to true for the first time
mainnet_suspended	mainnet_active set to false; records reason
edd_triggered	Enhanced due diligence initiated
edd_cleared	EDD resolved; risk tier confirmed or adjusted
screening_scheduled	Periodic re-screening task created
screening_complete	Periodic re-screening completed; outcome recorded

Every compliance_events row participates in the same hash chain and B2 Object Lock retention as all other audit chains. The compliance history of every tenant is therefore immutable from the moment it is written.

Documentation Index

​Sanctions Screening

​Screening Sources

​Match Handling

​Name-Level and PEP Screening

​Pre-Payment Screen Endpoint

​URL and IP Threat Intelligence Screening

​The Seven Feeds

​Enforcement Point 1: Signup IP

​Enforcement Point 2: Checkout redirect_url

​Enforcement Point 3: Webhook Destination Registration

​Enforcement Point 4: Webhook Delivery DNS-Rebinding Guard

​KYC and KYB Identity Gating

​KYC Auto-Approval (Individuals and Sole Traders)

​KYB (Company Onboarding)

​Risk-Based Onboarding

​Risk Tier Model

​Regulatory Alignment

​Public Attestation Surface

​Compliance Events and Audit Integration