Best KYB Onboarding Software for Fintech Companies in Europe 

There is a tension sitting at the heart of every fintech compliance team in Europe right now. Business clients want onboarding to feel like a modern digital experience, quick, clear, and low-friction. Regulators want documentation, audit trails, risk assessments, and ongoing monitoring that can withstand scrutiny. The platforms in this guide exist precisely to resolve that tension, and choosing the right one matters more in 2025 than it ever has.

This guide is here to help you cut through the noise. We will explain what KYB onboarding software actually does, what the EU regulatory environment now demands of you, what to look for in a platform, and a detailed breakdown of the best options available to fintech companies in Europe today.

What Is KYB Onboarding Software for Fintech?

Before comparing tools, it helps to be clear about what we mean.

KYB onboarding is the process of verifying that a business entity is legitimate, low-risk, and compliant before entering a financial relationship. It is the corporate equivalent of KYC (Know Your Customer) but with additional layers of complexity, such as uncovering ownership structures, validating business registration, and assessing risk based on industry, geography, and behaviour.

For fintechs, this is not optional. Any financial institution, merchant acquirer, payment company, or business that deals with money transfers is required to perform a KYC or KYB check. This includes fintech companies that provide financial services.

KYB onboarding software is the technology that automates this entire process. Instead of your compliance team manually collecting documents, cross-referencing registries, running sanctions checks, and building risk profiles, the software handles the bulk of it, leaving your team to focus on judgement calls and edge cases rather than administration.

Rather than building a team of analysts, compliance officers, and IT experts to manually verify every business partner, KYB onboarding solutions allow you to run the complete process within a platform, with different checklists, screeners, and customization options, paying subscription charges while the solution handles the heavy lifting.

The core data points that KYB software collects and verifies typically include company name and registration details, registered address, company structure, the identities of directors, and most critically, the Ultimate Beneficial Owners (UBOs). A UBO is a person who owns or controls more than a certain percentage of the business, usually 25%. Verification of UBOs involves checking whether the business or its stakeholders appear on sanctions lists, politically exposed persons (PEP) databases, or adverse media reports.

Businesses must also conduct ongoing monitoring to detect changes in ownership, legal status, or risk levels over time, as KYB is not a one-time check for organisations, corporations, and companies.

This is the fundamental difference between KYB onboarding software and a simple identity check tool. The best platforms do not just verify once at the point of onboarding; they maintain continuous compliance throughout the entire business relationship.

The EU Regulatory Landscape: What Fintech Companies Are Required to Do

Understanding the software options only makes sense in the context of what the law actually requires. The EU regulatory environment has tightened considerably, and fintechs operating in the bloc need to understand what is already in force and what is coming.

6AMLD and the EU AML Reform Package

The Sixth Anti-Money Laundering Directive (6AMLD) came into effect in 2020 and builds on the existing EU anti-money laundering framework. Fintech companies operating in the EU are required to comply with the provisions of the 6AMLD. This directive expanded the scope of criminal liability for money laundering, enhanced penalties, and required the establishment of beneficial ownership registers accessible to authorities.

More recently, the EU has gone further. In 2024, the EU adopted directive 2024/1624, known as the Anti-Money Laundering Regulation or "AMLR", the obligations for which are set to take effect on July 10, 2027. This is a significant shift because, unlike a directive, an EU regulation is directly applicable in all member states without the need for national legislation. It creates a single harmonised rulebook for AML compliance across the entire bloc.

Key changes introduced by the AMLR include stricter customer due diligence, with payments of €10,000 or more requiring greater CDD, CDD occasionally required for cash transactions of €3,000 or more, simplified due diligence for low-risk transactions, and enhanced due diligence for high-risk transactions, as well as greater transparency concerning beneficial ownership.

The New AMLA Supervisory Authority

Regulation (EU) 2024/1620 establishes the Anti-Money Laundering Authority (AMLA), a new EU-level supervisor based in Frankfurt. AMLA will directly oversee high-risk financial institutions and coordinate with national supervisors, particularly in cross-border cases. AMLA commenced operations on 1 July 2025, with full supervisory powers to be phased in by 2028.

For fintechs, this means a shift toward centralised supervision, especially for those operating in multiple EU countries. Even smaller companies will feel the effects of more consistent, rigorous supervision standards across the bloc. If a national supervisor is too lax, AMLA can step in.

The Cost of Non-Compliance

The penalties are not trivial. Since 2025, the minimum fine for violating AML in the EU is €1 million or 10% of the company's annual turnover, depending on which amount is higher. For repeat violations, executives may face criminal liability.

Real-world enforcement is already happening. Revolut was fined €3.5 million in 2024 by the Lithuanian regulator for AML control failures. This is not a hypothetical risk.

Firms are also mandated to disclose information about customers and transactions to authorities and to be able to provide audit trails when required. This last point is crucial for choosing software: audit-readiness is not a nice-to-have, it is a regulatory requirement.

Requirements for KYB Onboarding Software for Fintech in Europe

Given this regulatory context, here is what a KYB onboarding platform for a European fintech actually needs to do well.

Business Identity and Registry Verification. The platform must be able to verify that a business is legitimately registered by connecting to company registries. In Europe, this means being able to access registries across multiple jurisdictions, since your business clients will not all be registered in the same country.

UBO Identification and Verification. Given the tightened beneficial ownership rules under the AMLR, the platform must be able to map ownership structures, including multi-layer ownership through holding companies, and identify the individuals who ultimately own or control the entity. Under AMLD6, beneficial ownership thresholds have been tightened, obliging fintechs to verify entity owners even at lower shareholding levels than previously required.

PEP and Sanctions Screening. The platform should screen business owners, directors, and the entity itself against global sanctions lists (including OFAC, UN, EU, and others) and Politically Exposed Persons (PEP) databases, with real-time updates rather than static databases.

Adverse Media Screening. Checking for negative news about a business or its stakeholders is increasingly part of expected due diligence, particularly for enhanced due diligence cases.

Risk Scoring and Customisation. European regulators require a risk-based approach, meaning your platform should allow you to configure risk scoring logic that reflects your own risk appetite and the specific regulatory requirements in your jurisdiction. Different client types, industries, and geographies should be weighted accordingly.

Document Collection and Management. The platform should automate the collection of supporting documents such as certificates of incorporation, ownership charts, and director ID documentation, with automated reminders so nothing falls through the cracks.

Ongoing Monitoring. Just because a user is cleared through the initial KYB or KYB verification at onboarding, this does not mean that the process is complete. Ongoing monitoring will need to verify that the businesses and individuals are still compliant within your KYB protocols.

Audit-Ready Record Keeping. Businesses must generally retain KYC and KYB documentation for at least five years after the business relationship ends, with records readily available for regulatory inspections and audits.

GDPR Compliance. Because you are collecting and processing personal data on individuals within business entities, your platform must handle that data in accordance with GDPR requirements.

Integration Capabilities. The platform should integrate with your existing tech stack through well-documented APIs or SDKs, rather than forcing your team to work entirely in a separate environment.

Best Practices for KYB Onboarding Software for Fintech

Choosing the right software is only half the battle. How you implement and use it matters just as much.

Adopt a genuinely risk-based approach. The regulatory requirement is not to apply maximum scrutiny to every business. It is to apply proportionate scrutiny based on assessed risk. This means using your platform's risk scoring tools thoughtfully, fast-tracking low-risk clients while directing your team's attention to genuinely high-risk cases. This both satisfies regulators and improves conversion rates.

Do not treat onboarding as a one-time event. A business that was clean at onboarding may not be clean twelve months later. Ownership can change, sanctions can be applied, and companies can become insolvent. Your platform should be running continuous monitoring in the background, not just ticking a box at the point of entry.

Document your decision logic. Regulators want to understand not just what decisions you made, but why. Your platform should produce clear, auditable records of the data reviewed, the risk score assigned, and the human decisions made at each step. If you are ever asked to demonstrate compliance, the documentation needs to tell a coherent story.

Configure your workflows to your actual risk appetite. Out-of-the-box workflows are a starting point, not the end state. Every fintech has a different client base, operates in different jurisdictions, and has different regulatory obligations. Invest the time to customise the platform to reflect your specific situation.

Train your compliance team on the tools. Technology does not replace human judgement, it amplifies it. Your team needs to understand how the system works, when to escalate, and how to use the data surfaced by the platform to make better decisions.

Plan for the 2027 AMLR now. Even though the AMLR does not fully apply until July 2027, the gap between current practices and what will be required is significant for many organisations. Choosing a platform now that is already building toward those standards puts you ahead of the regulatory curve rather than scrambling to catch up.

The Best KYB Onboarding Software for Fintech Companies in Europe

Here is a detailed breakdown of the five leading platforms, evaluated specifically for European fintech use cases.

1. SpeedyDD — Best for Centralised KYB Onboarding, Compliance Management and Audit-readiness Built-in

SpeedyDD is a cloud-based compliance and onboarding platform built specifically for regulated businesses that need to centralise every aspect of their KYB onboarding process in one place. It is our top pick for fintech companies in Europe not because it does one thing exceptionally well, but because it brings together the full range of what compliant business onboarding actually requires: regulatory compliance, risk-based onboarding workflows, document management, audit trails, compliance screening, and ongoing monitoring, all within a single, operationally coherent platform.

For fintech compliance teams that are currently managing these elements across multiple tools, spreadsheets, and email threads, that centralisation alone is transformative. It eliminates the gaps between systems that regulators tend to find, and it gives your team a single source of truth for every client relationship.

SpeedyDD provides state-of-the-art tools to streamline client screening and Anti-Money Laundering (AML) compliance processes. The platform helps businesses stay ahead of regulatory requirements and protect against financial crimes. It offers automated document collection, real-time global PEPs and Sanctions lists, and comprehensive risk assessment tools, making compliance easy and efficient. 

Here is what the platform covers in depth:

Automated Document Collection and Management. One of the most time-consuming parts of any KYB workflow is chasing clients for the right documents, tracking what has been received, what is outstanding, and what has expired. SpeedyDD automates KYB and KYC tasks to make them swift, seamless, and comprehensive while maintaining the highest standards of security. The platform allows you to effortlessly gather necessary documents from business partners through automated requests and reminders. Your compliance team stops being a chasing service and starts being a decision-making function.

Real-Time PEP and Sanctions Screening. The platform provides access to real-time PEPs and Sanctions lists worldwide, utilising hundreds of reliable independent sources, including government ID databases and credit bureaus. For a European fintech, this means screening against EU, UN, OFAC, and other relevant lists with confidence that the data is current rather than cached. In a regulatory environment where sanctions lists are updated with little notice, real-time data is not a luxury, it is a compliance necessity.

Risk-Based Onboarding with Dynamic Risk Profiling. The EU's AML framework is built on a risk-based approach, which means your compliance process needs to be proportionate to the risk each client actually presents, not a one-size-fits-all checklist. SpeedyDD offers tailored risk profiling, allowing businesses to customise risk profile questionnaires to match their specific requirements, assigning weights to questions and defining scoring criteria for precise client categorisation. This means you can fast-track genuinely low-risk clients while directing your team's attention and enhanced due diligence resources where they are actually needed.

Centralised CDD Management and Audit Trails. Audit-readiness is not something you can retrofit after a regulator asks for it. It has to be built into how you work every day. The unified control centre keeps track of all Customer Due Diligence (CDD) data, entities, requirements, and actions in one convenient location. Every check performed, every document reviewed, every risk decision made is captured and stored in a format that tells a coherent, defensible story to a regulator or auditor. This is the kind of documentation discipline that many fintechs only discover they are missing when it is too late.

Integrated Communication and Mailbox. The integrated mailbox centralises communication efforts and enhances compliance, allowing seamless information exchange within the platform. When client correspondence sits inside the compliance platform rather than in personal email inboxes, every exchange becomes part of the audit record automatically. This is a detail that makes an enormous practical difference when you are demonstrating the quality of your due diligence process.

Immediate Alerts and Notifications. The platform provides immediate alerts, notifying users instantly as documents arrive and undergo verification, ensuring no crucial update is missed in document management. In ongoing monitoring terms, this means that changes in a client's risk profile, whether a new sanctions listing, an expired document, or a change in company status, surface immediately rather than sitting undetected until the next periodic review.

Supplier Templates with Autofill. Users can access readily available supplier templates or create their own with SpeedyDD's unique Autofill functionality. For fintechs onboarding business clients at volume, this reduces the repetitive administrative work of setting up similar client profiles and ensures consistency across your onboarding records.

SpeedyDD's unique value proposition in the European fintech market is its positioning as a compliance platform that prioritises both regulatory depth and audit-readiness without sacrificing usability. It is built for compliance teams who need to move quickly but cannot afford to cut corners, which is precisely the balance that European fintechs are navigating in 2025 and beyond.

For fintech companies that are growing fast and need to onboard business clients at volume while maintaining the documentation and audit trails that regulators expect, SpeedyDD offers a compelling combination of automation, risk intelligence, and operational clarity. It is purpose-built for the kind of due diligence workflows that complex, regulated industries actually run, making it our top recommendation overall.

2. Ondorse — Best for Compliance Workflow Orchestration

Ondorse is a Paris-based KYB compliance platform that has built a strong reputation among European fintechs for its orchestration capabilities. Rather than trying to be a data provider in its own right, it acts as a compliance middleware layer.

Ondorse provides an all-in-one platform that automates and accelerates compliance processes, enabling businesses to verify customers more efficiently and reduce the operational costs of compliance. By eliminating manual tasks such as copy-pasting KYB data, retrieving data and documents, and manual activity logging, customers have reported a 70% reduction in overall compliance costs and 95% reduction in manual compliance reviews.

Ondorse orchestrates vendors and enriches client profiles by connecting processes with over 35 certified third-party vendors. This means you can use your preferred data sources (such as ComplyAdvantage, LexisNexis, or Dun & Bradstreet) and have Ondorse pull everything together into a single workflow.

One fintech client of Ondorse reported a 60% reduction in onboarding time and a 40% increase in successful applications after implementing the KYB solution.

The platform is particularly well-suited for fintechs that have already invested in specific compliance data sources and want to consolidate them rather than starting from scratch. The ongoing monitoring capabilities are strong, and Ondorse allows users to monitor changes in circumstances like expired information or insolvencies, remediate gaps, refresh KYC/KYB, conduct periodic reviews, and keep timestamped records on customers for audit.

The main consideration with Ondorse is that its strengths lie in orchestration and workflow management. If you need deep out-of-the-box data coverage without building a vendor ecosystem around it, you may find it requires more configuration than some alternatives.

3. Sumsub — Best for Identity Verification and KYC Support for Crypto and High-Volume Financial Institutions

Sumsub is one of the most widely recognised names in compliance technology globally, and its strongest suit is individual identity verification at scale. For fintech companies in the crypto, DeFi, and payments space where onboarding thousands of individual users quickly and accurately is the core compliance challenge, it is a genuinely powerful platform.

It offers identity verification, AML screening, KYB checks, ongoing monitoring, and fraud prevention in one platform. Platforms can customise verification rules and workflows to match their exact compliance needs, which is especially helpful for crypto exchanges, DeFi projects, and other fintechs with more complex requirements. 

Covering 230 or more jurisdictions, Sumsub combines automated checks with localised legal expertise to tackle challenges like deepfakes and spoofing attacks. Its solutions for KYC, KYB, transaction monitoring, and fraud prevention empower businesses to tailor their verification processes, attract a global customer base, ensure compliance, reduce operational costs, and safeguard their operations. 

Where Sumsub excels is in the sheer volume and speed of individual KYC verification. For a crypto exchange onboarding retail users across multiple European countries, or a payments platform that needs to verify individuals quickly before they can transact, the platform's breadth of coverage and fraud detection capabilities are well suited to the challenge.

However, if your primary compliance need is KYB specifically, particularly deep corporate due diligence involving complex ownership structures, UBO mapping across multi-layered holding companies, and the kind of audit-ready documentation trail that European regulators expect for business client onboarding, Sumsub is not where you will find the deepest capability. Sumsub's business verification relies on cached, third-party data rather than real-time registry connections, which can affect data freshness and audit traceability. Organisations may also find limited ability to map multi-layer ownership structures across jurisdictions. 

For fintech companies whose compliance workload is dominated by individual KYC at volume, especially in crypto and digital assets, Sumsub is a strong and well-established choice. For those whose primary challenge is business client onboarding with full KYB depth, a more KYB-native platform will serve you better.

4. Binderr — Best for Corporate KYB Complexity and Risk Customisation

Binderr is a compliance platform that has carved a niche in handling the structural complexity that corporate KYB often involves. It is well-regarded in the European market, particularly among regulated industries dealing with complex ownership structures.

Binderr provides end-to-end KYC, KYB, and AML solutions designed to streamline compliance processes for regulated industries. Its focus on corporate compliance complexity offers tools that address pain points like UBO discovery and bulk entity screening, features often overlooked by competitors. Its blend of AI efficiency and granular risk customisation makes it ideal for businesses prioritising both speed and regulatory rigour.

Binderr's dynamic risk assessment system assigns a risk score to each user based on KYC and KYB questionnaires and screening results. It allows businesses to configure and adjust the scoring parameters according to their own internal risk appetite and compliance policies. This level of configurability is important for fintechs with specialised client bases where generic risk models do not reflect the actual risk picture.

Binderr screens individuals, businesses, aircraft, vessels, trusts, foundations, and partnerships, with ongoing monitoring using daily updates and weekly refreshed PEP lists. It provides global watchlist and sanction screening including OFAC, UN, HMT, EU, DFAT, and FATF, as well as AI-based risk assessment with access to over 11,000 data sources across 220 or more countries.

Binderr is a strong choice for fintechs that need granular control over their compliance logic and are dealing with structurally complex corporate clients. Legal and accounting firms, corporate service providers, and fintechs with a predominantly B2B client base will find it particularly well-suited.

5. Fenergo — Best for Large Banks and Traditional Financial Institutions

Fenergo occupies an entirely different part of the market to the other platforms in this list. It is an enterprise-grade client lifecycle management platform, and it has been built from the ground up for large banks, global financial institutions, and established regulated entities with significant operational complexity. It is included here for completeness, but it is worth being direct: for most fintech companies, it is likely more platform than you need.

Fenergo is designed for larger institutions needing full client lifecycle management: customer onboarding, compliance, transaction monitoring, and offboarding. 

Fenergo provides client lifecycle management software focused on KYC, AML, and regulatory onboarding for large financial institutions. It is known for its deep integrations and high configurability, with support for over 120 global regulatory frameworks and a strong global presence with major clients in Europe, North America, APAC, and the Middle East. 

The implementation of Fenergo is a significant undertaking. It typically requires dedicated IT resource, extended project timelines, and a compliance team large enough to configure and manage the platform on an ongoing basis. For a tier-one bank or a large financial institution managing thousands of corporate clients across dozens of jurisdictions, this investment makes sense. For a growing fintech, it is likely to slow you down rather than accelerate you.

According to Fenergo's own data, onboarding delays account for 77% of the high attrition rates at commercial banks. This statistic reflects the environment Fenergo was designed for: large institutions where onboarding friction is a systemic, enterprise-wide problem requiring an enterprise-wide solution.

If you are a fintech company that has scaled to the point where you are operationally closer to a bank than a startup, and you have the infrastructure to support a full CLM deployment, Fenergo deserves consideration. For everyone else, the other platforms in this list will give you far more speed, flexibility, and practical value for your compliance investment.

Quick Comparison: Which Platform Is Right for You?

As a practical guide, here is how to think about the choice:

SpeedyDD is a great choice for fintech companies in Europe that need a complete, audit-ready KYB and CDD platform that is practical to use at scale, with strong PEP and sanctions screening, document management, and risk profiling built in. It is designed for compliance teams who need to move fast without creating regulatory gaps.

Ondorse is ideal if you have already built relationships with specific compliance data vendors and want a smart orchestration layer that ties them together, delivers continuous monitoring, and reduces manual review burden.

Sumsub is the right pick if you need a combined KYC and KYB platform, particularly if your business involves consumer-facing onboarding alongside business client onboarding, or if you operate in crypto or payments and need strong fraud prevention tools.

Binderr suits fintechs dealing with structurally complex corporate clients and those who need highly configurable risk scoring logic, particularly in regulated B2B environments.

Fenergo is built for large-scale fintechs and financial institutions that have outgrown lighter platforms and need full client lifecycle management across multiple jurisdictions.

About SpeedyDD

At SpeedyDD, our mission is to help complex and regulated businesses stay ahead of their compliance obligations and maintain genuine audit-readiness. We know that for fintechs in Europe, the regulatory environment is not getting simpler. The establishment of AMLA, the coming AMLR framework, and tightening enforcement all mean that robust KYB onboarding is not just about avoiding fines. It is about building the kind of compliant, trustworthy business that can grow sustainably.

SpeedyDD is a cloud-based platform that automates the most painful parts of KYB and CDD workflows, from automated document collection and real-time PEP and sanctions screening to tailored risk profiling and centralised audit documentation. We built it specifically for compliance teams who need to do more with less, without ever compromising on the standards that regulators and partners expect.

If you are a fintech company navigating EU compliance requirements and want to explore how SpeedyDD can support your onboarding and due diligence processes, we would love to speak with you.

Frequently Asked Questions

What is the difference between KYB and KYC for fintech companies?

KYC (Know Your Customer) applies when a fintech is onboarding an individual person. KYB (Know Your Business) applies when the customer is a corporate entity. KYB involves significantly more checks because of the complexity of corporate structures, including verifying legal registration, identifying the ultimate beneficial owners, checking directors, and assessing operational and industry risk. Many fintechs need both, because they may serve both individual and business clients.

Is KYB legally required for fintech companies in the EU?

Yes. KYB onboarding is mainly monitored by financial regulators in many regions, and in the EU, it is governed by the 5th and 6th AML Directives. Fintechs operating in the EU are legally required to conduct due diligence on the business entities they onboard, and failure to do so can result in significant regulatory penalties.

What does the EU's new AMLR mean for my fintech?

The new EU AML Regulation, officially Regulation (EU) 2024/1624, applies from July 2027 and will replace the existing 4th and 5th AML Directives. It introduces stricter customer due diligence requirements, reduced thresholds for occasional and cash transactions, tighter rules on beneficial ownership, and mandatory enhanced due diligence for high-net-worth individuals. It also brings crypto-asset service providers fully within AML rules. Fintechs should be reviewing their onboarding processes now to ensure they can meet these requirements when they come into force.

What is a UBO and why does my KYB software need to identify one?

UBO stands for Ultimate Beneficial Owner. It refers to the natural person or persons who ultimately own or control a corporate entity, even if that ownership is exercised through layers of intermediate companies. Identifying UBOs is central to EU AML compliance because criminals often hide behind complex corporate structures. Your KYB software should be able to map ownership structures and identify UBOs, then run those individuals through PEP and sanctions checks.

How long must I retain KYB documentation?

Under EU requirements, businesses must generally retain KYB documentation for at least five years after the business relationship ends, and records must be readily available for regulatory inspections and audits. Your compliance platform should be maintaining these records automatically.

Can I use KYB software to onboard clients from outside the EU?

Yes, and many European fintechs do. However, you should ensure your platform can access company registries and data sources in the jurisdictions where your clients are incorporated, and that it can apply appropriate due diligence rules for higher-risk jurisdictions. The EU's risk-based approach requires enhanced due diligence for clients from countries with elevated money laundering or terrorist financing risk.

What is ongoing monitoring and do I really need it?

Ongoing monitoring means continuously watching for changes in the risk profile of your business clients after onboarding. This includes monitoring for ownership changes, new sanctions listings, adverse media, and changes in the entity's legal status. Fintech firms need automated KYC and KYB compliance for risk management purposes. When automated, fintech startups can be alerted to potential infractions, suspicious activity, non-compliance, or key changes to individuals or entities. It is not optional for regulated EU fintechs.

What is the difference between EDD and CDD?

Customer Due Diligence (CDD) is the standard level of verification applied to most business clients. Enhanced Due Diligence (EDD) is a deeper level of scrutiny applied to higher-risk clients, such as businesses operating in high-risk jurisdictions, politically exposed persons in ownership structures, or clients in higher-risk industries. Your KYB software should allow you to trigger EDD workflows automatically based on risk score thresholds, and to document the enhanced checks that were performed.

What should I look for when comparing KYB software for my fintech?

The most important considerations are: the quality and freshness of the underlying data sources, the depth of UBO mapping capabilities, the configurability of risk scoring, the quality of the audit trail produced, the platform's integration capabilities with your existing stack, the ease of use for your compliance team, and how well the vendor understands EU-specific regulatory requirements. Audit-readiness should be a non-negotiable criterion.

How does fraud risk factor into KYB onboarding?

Global estimates suggest that synthetic identity fraud, where stolen and fabricated data are combined to create fake but convincing business entities, costs financial institutions between $20 and $40 billion each year. A good KYB platform should be doing more than just verifying that a company registration number exists. It should be cross-referencing data points, checking for inconsistencies, and applying risk signals that help identify entities that may not be what they appear.