BSP Sandbox Application No. SNDBX-202606-0001

Payee verified.
No data stored.

Verified. Never Viewed.

Confirmation of Payee infrastructure with integrated real-time sanctions screening for Philippine instant payments. AFASA creates significant reimbursement exposure for banks that cannot demonstrate adequate fraud controls to BSP — CoP verification is the most direct evidence of that diligence. Every verification completed in under 10ms, with mathematical proof that no personal data crosses the boundary.

System Operational Live Metrics
CoP Accuracy 97.62%
p99 Latency (100 concurrent users) 340ms ✓ BSP
Live Sanctions Entries 26,110
Sanctions False Positives 0%
Automated Tests Passing 264/264
🇵🇭 BSP REGULATORY SANDBOX
APPLICATION NO. SNDBX-202606-0001
UNDER REVIEW BY TRISD

The Compliance Gap

Fraud losses fall on banks
that can't prove diligence.

AFASA (RA 12010) makes banks liable to reimburse customers for fraud losses when they fail to maintain adequate risk management controls — with no statutory cap on reimbursement amounts. Banks that demonstrate BSP-compliant fraud controls are protected from liability. Confirmation of Payee is the most direct evidence of that diligence. The gap is real: no CoP system exists anywhere in the Philippines or ASEAN.

⚖️

Uncapped Reimbursement Liability

Under AFASA, banks that fail to demonstrate adequate fraud controls to BSP must reimburse customers for fraud losses — with no statutory ceiling. The protection exists, but only for institutions that can prove compliance.

⏱️

30-Second Settlement Window

InstaPay settles in under 30 seconds. Pre-settlement human review is impossible at scale. Compliance must be automated, instantaneous, and auditable.

🔍

Separate AML Screening Required

Banks run CoP and sanctions screening as separate systems. Duplicate infrastructure, duplicate cost, and no guarantee the systems share the same data at transaction time.

The Solution

One API call.
Two compliance systems.

Your core banking system calls Unview once per transaction. Unview returns a CoP verdict and integrated sanctions screening simultaneously — in under 10ms. The bank retains full decision authority.

CoP Verdict

Confirmation of Payee

Nine verdict types covering exact match, DBA/AKA alias match, partial match, no match, and fraud patterns. Purpose-built for Filipino name structures with five fraud-hardened false positive guards. 97.62% accuracy on 10,000 labeled Philippine test cases.

AML Screening

Integrated Sanctions & PEP

Every payee screened against OFAC SDN, UN Consolidated, EU Consolidated, AMLC Philippines, and PEP database — 26,110 live entries — in the same API call. Match scores, match type, and risk signals returned to your rules engine. Bank retains full decision authority.

🔐

Mathematical Privacy — Not a Policy

Unview uses OPRF cryptographic protocol (RFC-9497). The bank blinds the payee name before transmission. Unview evaluates a cryptographic token — never the readable name. Zero personal data stored. This is mathematically provable, not a contractual commitment. Your customer data never leaves your infrastructure.

Production-Ready

Tested. Measured.
Documented.

Stress-tested across six categories with fully reproducible results. All test cases labeled, seeded, and verifiable.

97.62%
CoP Accuracy
10,000 labeled cases
340ms
p99 Latency
BSP threshold: 500ms
99.2%
Sanctions TP Rate
483 live names tested
0%
False Positive Rate
26,110 live entries
Test Category Result Context
Overall CoP accuracy97.62%10,000 labeled test cases, seed 42 — reproducible
EXACT_MATCH accuracy99.7%3,000 exact match cases
Fraud pattern detection100%300 fraud scenarios including homoglyphs
Sanctions true positive rate99.2%483 live OFAC / UN / EU sanctions names
Sanctions false positive rate0%80 Filipino / PH corporate names vs 26,110 live entries
Strong alias detection100%150 OFAC strong aliases at 0.82 threshold
Weak alias detection100%50 OFAC weak aliases at 0.92 threshold
p99 latency (100 concurrent users)340ms ✓BSP Annex D commitment: 500ms — 32% margin
Load test failure rate0.11%66,345 requests, 221 RPS, 4 workers
Chaos tests (6 scenarios)24/24 passedRedis down, sanctions unavailable, HMAC missing
Security boundary tests28/28 passedAPI key security, HMAC tamper detection, zero PII
Edge case tests82/82 passedUnicode, injection attempts, homoglyphs, 10,000-char inputs
All automated tests264/264No failures, no regressions across all categories

Why Unview

Built for Philippine
AMLA compliance.

Alternative approaches create new compliance risks for Philippine banks. Understanding the difference matters when your compliance officer defends a decision to AMLC.

Unview
  • Deterministic: Same input always produces the same output. Every verdict is reproducible and auditable.
  • Explainable: Every match score is traceable to a specific algorithm, threshold, and list entry. AMLC-ready audit trail.
  • Zero data transfer: OPRF means names never leave your infrastructure in readable form. No RA 10173 data transfer obligations.
  • Philippine-specific: Matching engine calibrated for Filipino names, DBA/AKA business aliases, and Philippine corporate naming conventions.
  • BSP sandbox applicant: Only CoP provider with a formal BSP sandbox application under review. Application No. SNDBX-202606-0001.
AI-Based Alternatives (e.g. iPiD Match / Azure OpenAI)
  • ⚠️Non-deterministic: LLM verdicts vary across runs. "The AI decided" is not a defensible AMLC audit trail.
  • ⚠️Black box: Compliance decisions cannot be explained to regulators. Philippine AMLA requires traceability to a specific list entry and score.
  • ⚠️Third-party cloud: Payee names pass through Microsoft Azure infrastructure, creating data transfer obligations under RA 10173.
  • ⚠️European design: Built for EU GDPR VoP compliance — not calibrated for Filipino name structures or Philippine corporate naming.
  • ⚠️No Philippine regulatory approval: No BSP sandbox application filed. Operating without Philippine regulatory framework.

Regulatory Status

The only CoP provider
in the BSP Sandbox.

🏛️

BSP Regulatory Sandbox Application No. SNDBX-202606-0001

Submitted June 25, 2026 — the same date the AFASA compliance deadline elapsed. Acknowledged and currently under review by the Technology Risk and Innovation Supervision Department (TRISD). Unview is the only Confirmation of Payee infrastructure provider with a formal BSP sandbox application in the Philippines.

Unview's architecture is designed for BSP Circular 1153 sandbox compliance and aligns with BSP Circular 1213 (AFASA implementation), BSP Circular 1238 (consumer fee framework), and the AMLA/CTF framework under the Anti-Money Laundering Act. All test results are documented and reproducible for BSP Technical Assessment review.

Get Started

Request a live demonstration.

We offer a full end-to-end demo covering transaction verification, sanctions screening scenarios, and BSP interim reporting — available to Technology, Compliance, and Digital Banking teams at any time.

Email
paul@unview.app
Founder & CEO direct
Mobile
+63 962 329 4759
Philippines
BSP Sandbox
SNDBX-202606-0001
Under review by TRISD
Email paul@unview.app