Reviewing Transaction and Activity monitoring check results
In the entities table, those with active Transaction and Activity monitoring issues will have an issue marked as Activity. To view all of these entities, find the “Issues” filter and select Activity.
Entity view
Alerts (Check results)
When the Evaluate API is called and the system detects potential transaction and activity monitoring issues, alerts are generated. These alerts indicate potential fraud or AML concerns that require investigation and resolution. These alerts are categorized into two primary sections:- AML transactions & activities - includes alerts related to suspicious financial transactions (e.g. transfers, deposits, withdrawals) and activity patterns that may indicate money laundering or other financial crimes.
- Fraud transactions & activities - includes alerts related to fraudulent transactions (e.g. unauthorized payments) and high-risk behavioral activities (e.g. unusual login attempts and account changes) often associated with account takeover or identity fraud.
Collapsed view
The collapsed view provides a high-level summary of the check results. This allows for a quick assessment of outstanding alerts or those currently flagged as ‘In Review’. It prominently highlights the specific rules that were triggered during the check, offering immediate insight into the potential risk areas.
Expanded view
Expanding either the AML Transactions & Activities or Fraud Transactions & Activities section will reveal all individual alerts related to that issue type, along with their detailed information.
Alert details drawer
- Activity Details and Triggered Rules: Specific information about the activity that generated the alert and the rules that were triggered.
- Transaction Details: Comprehensive information about the financial transaction, if applicable.
- Device Signals: Data related to the device used, such as VPN detection, remote monitoring, and other device intelligence.
- IP Signals: Information regarding the IP address, including location and associated risk.
Resolving alerts
If you have the necessary permissions, you can resolve alerts (located at the bottom-left corner) directly from the alert details drawer. A pop-up modal will appear, requiring you to select a status, approve or reject the alert if applicable, and leave a comment for auditability.
Re-evaluation of results
Once all alerts within a specific check have been resolved, the portal will automatically re-evaluate (re-run) the monitoring workflow. This ensures that the entity’s status and overall risk assessment are updated to reflect the most current decisions and changes.Comments
Comments are recorded each time the status of that specific alert is changed. To view the latest comments related to the resolution of an alert, hover over the comment icon within the alert details drawer.
Click on the icon to see all comments for the alert.
Reviewing related activities
To view all recorded activities and transactions for a given entity or alert, clicking on the View all activities. This centralized hub is designed to facilitate detailed historical analysis, identify patterns, and enable efficient investigation of past events, regardless of the activity and issue type, and whether they were flagged for review or not.
