Implementation steps

This series of guides explains how to use the FrankieOne API to perform many different types of functions. It includes descriptions, code samples and things to consider during implementation It’s important to remember the following:

  • The Individuals API is separate and can not be used in conjunction with any other API.
  • All sample requests require authorization as defined in the Getting Started section.

Individual Verification

The following examples show how to use the FrankieOne API to perform functions related to an individual.

Create an individual entity

To create an individual entity eligible for verification, make a request to the POST /v2/individuals API endpoint.

  • To add a name to an individual, use the name object in the request body.
1"name": {
2	"givenName": "Johnny",
3	"middleName": "Tan",
4	"familyName": "Doe",
5	"displayName": "Johnny Tan Doe"
6}
  • To add a date of birth to an individual, use the dateOfBirth object in the request body.
1...
2"dateOfBirth": {
3	"year": "1990",
4	"month": "05",
5	"day": "15"
6},
7...
  • To add an address to an individual, use the addresses array in the request body.
  • To add multiple addresses, add a separate address to the addresses array.
1...
2"addresses":
3[
4	{
5		"type": "RESIDENTIAL",
6		"streetName": "King",
7		"streetNumber": "123",
8		"streetType": "Street",
9		"neighborhood": "Melbourne CBD",
10		"locality": "Melbourne",
11		"subdivision": "VIC",
12		"country": "AUS",
13		"postalCode": "3000",
14		"status": "CURRENT"
15	}
16]
17...
  • To acknowledge consent for an individual, use the consents array in the request body.
1...
2"consents":
3[
4	{
5		"type": "GENERAL"
6	},
7	{
8		"type": "CREDITHEADER"
9	},
10	{
11		"type": "DOCS"
12	},
13]
14}
15...

Sample request

1curl --location 'http://api.{{env}}.frankie.one/v2/individuals' \
2--header 'api_key: {{your_apiKey}}' \
3--header 'X-Frankie-CustomerID: {{your_CustomerID}}' \
4--header 'Content-Type: application/json' \
5--header 'Accept: application/json' \
6--data-raw '{
7  "individual": {
8"name":
9{
10		"givenName": "Johnny",
11		"middleName": "Tan",
12		"familyName": "Doe",
13		"displayName": "Johnny Tan Doe"
14	},
15"dateOfBirth":
16{
17		"year": "1990",
18		"month": "05",
19		"day": "15"
20},
21"addresses":
22[
23{
24"type": "RESIDENTIAL",
25	"streetName": "King",
26	"streetNumber": "123",
27	"streetType": "Street",
28	"neighborhood": "Melbourne CBD",
29	"locality": "Melbourne",
30	"subdivision": "VIC",
31	"country": "AUS",
32	"postalCode": "3000",
33	"status": "CURRENT"
34}
35],
36"consents":
37[
38	{
39		"type": "GENERAL"
40	},
41	{
42		"type": "CREDITHEADER"
43	},
44	{
45		"type": "DOCS"
46	}
47]
48}
49}'

Sample response

Collect the entityId in the response as it will be used in subsequent API calls for this individual.

1Status: 201 Created
2
3{
4  "individual": {
5    "entityId": "{entityId}",
6    "entityType": "INDIVIDUAL",
7    "createdAt": "2024-01-31T23:21:57.296Z",
8    "schemaVersion": 2,
9    "addresses": [
10      {
11        "addressId": "{addressId}",
12        "type": "RESIDENTIAL",
13        "streetName": "King",
14        "streetNumber": "123",
15        "streetType": "Street",
16        "neighborhood": "Melbourne CBD",
17        "locality": "Melbourne",
18        "subdivision": "VIC",
19        "country": "AUS",
20        "postalCode": "3000",
21        "status": "CURRENT"
22      }
23    ],
24    "name": {
25      "nameId": "{nameId}",
26      "givenName": "Johnny",
27      "middleName": "Tan",
28      "familyName": "Doe",
29      "displayName": "Johnny Tan Doe"
30    },
31    "dateOfBirth": {
32      "dateOfBirthId": "{dateOfBirthId}"
33      "normalized": "1990-03-31",
34      "year": "1990",
35      "month": "03",
36      "day": "27",
37      "type": "GREGORIAN"
38      },
39"consents":
40[
41	{
42		"type": "GENERAL"
43	},
44	{
45		"type": "CREDITHEADER"
46	},
47	{
48		"type": "DOCS"
49	},
50]
51}
52  },
53  "requestId": "{requestId}"
54}

Note: Service Profiles have been intentionally omitted for brevity

Addresses

Don't forget the Address ID.

When updating an address, don’t forget to include the addressId field. This would have been in the response message when you first added the address. You can always get the addressId (and all other IDs) if you call the GET /v2/ {entityType}/{entityId} API call.

Don't forget the Country

This field is mandatory and must be one of the ISO-3166-alpha-3 codes.

See here: List of ISO 3166 country codes

Address Types

Addresses have a number of available type options. Whilst this is an optional field, it’s good practice to include the type to assist with processing and checking. It’s recommended that these following types be used:

  • **RESIDENTIAL **- This will be the primary address used when trying to determine the country of residence and primary current address. If RESIDENTIAL has been used for this, note that this will be deprecated and removed in the next major version of the API.
  • **POSTAL **- This is a mailing address. It’s also used as the current residential address if no RESIDENTIAL type is found.

Street Address and the use of the streetName field

It can be hard to break down an address and so we’ve made the streetName field quite flexible.

Whilst it’s best to break the address into its constituent parts, you can combine streetNumber, streetName and streetType into the streetName field if required.

It's better to break down the address fields.

Whilst combining the fields is readily supported, best matching results are found when you break the address down into as many fields as you can.

Structured Addresses

It’s always best to use the structured address and map in 1-1 the following fields.

Field nameDescriptionType
typeThe type of address, for example residential, postalString (enum)
typeDescriptionThe description of the address. Used for reference only.string
unitNumberUnit/Apartment/Flat/Suite/others number.string
streetNumberThe number on the street. Generally a number, but can also be alphanumeric (for example, 3A).string
streetNameThe name of the street.string
streetTypeThe street type - for example, Road, St, Ave, Circuit, and others.string
buildingNameThe name of the building, apartment block, condo, and othersstring
locality(formerly town) The locality, town, village, suburb, or citystring
district(formerly region) The district, region, county, province, or cantonment of the addressstring
neighborhoodThe neighborhood or suburb in the town or city.

Note: Only use neighborhood if locality is already captured as part of the address and an additional location is required. Otherwise just use locality.		string
subdivisionThe administrative area, state, or subdivision.

Note: Abbreviations (β€œVIC”) and full names (β€œVictoria”) are acceptable.		string
countryThe ISO-3166-1 alpha 3 country code of the address.string
postalCodeThe postal code or zip code of the address.string
careOfIndividual or business name at this address if not the same as the name of the entity to which this address belongs.string
longFormThe full address details. It’s preferable that the address is broken down into its constituent parts; however, where that isn’t possible, a longForm can be used.

Note: longForm address matching generally produces weaker results due to the complexity involved in breaking down, interpreting, and mapping an entire address from a single string.		string
statusDetermines the status of this address in relation to the entity using it.
Example: Current or Future

Note: β€œCurrent” addresses will be treated as primary addresses for verification purposes.		string (enum)
validToWhen will this entity no longer be using this address? Used for reference only.date
validFromWhen did the entity first start using this address? Used for reference only.date

Example 1: Full Address Entered as Separate Fields (preferable)

1...
2"addresses":
3[
4	{
5		"type": "RESIDENTIAL",
6		"streetName": "King",
7		"streetNumber": "123",
8		"streetType": "Street",
9    "locality": "Melbourne",
10		"subdivision": "VIC",
11		"country": "AUS",
12		"postalCode": "3000",
13		"status": "CURRENT"
14	}
15]
16...

Example 2: Full Address Entered as Long Form

1...
2"addresses":
3[
4	{
5		"type": "RESIDENTIAL",
6		"longForm": "123 King Street, Melbourne 3000, Victoria, Australia",
7		"status": "CURRENT"
8	}
9]
10...

Before proceeding with data verification checks, obtaining consent is essential and varies based on the verification type. While general consent encompasses standard verifications against government databases, it may not include credit checks and document validations. Consult with your AML team and the FrankieOne team to determine what consent flags you need to supply.

ConsentDescription
GENERALThis indicates that the entity has given consent for their name, address, or DoB to be checked against our various databases and external services.
DOCSThis indicates that the entity has given consent to have their identity documents checked against official sources.
CREDITHEADERThis indicates that the entity has given permission to have their details checked against a credit bureau service. If this check fails, you must inform the user that the check failed and put them in touch with the bureau directly so that they may update their details as necessary. This isn’t normally available by default, so please see your account manager about making this service available.
UNDER18This indicates that the entity is under the age of 18 and a parent or guardian has provided consent. This is a special case of the consent.general flag (see above). consent.docs would still be required to check their passports or drivers license.
PAYROLLThis consent is used to allow access to verifying an identity using payroll data.
INSURANCEThis consent is used to allow access to verifying an identity using workcover data.
SUPERANNUATIONThis consent is used to allow access to verifying an identity using superannuation data.

Retrieve an individual entity

The individual entity can be retrieved at any time by making a request to the GET /v2/individuals/{entityId} API endpoint.

Update an individual entity

The individual entity can be updated at any time by making a request to the PATCH /v2/individuals/{entityId} API endpoint.

To update a specific element of an individual entity, be sure to provide the relevant information you wish to update along with the ID of the object. This doesn’t the case with primary entity elements (name, dateOfBirth, placeOfBirth)

Example 1: update a name

1"name":
2{
3	"givenName": "James",
4	"familyName": "Done"
5}

Example 2: update an address

1"addresses":
2[
3	{
4		"addressId": "{addressId}",
5		"status": "CURRENT"
6	}
7]

Example 3: update alternateDatesOfBirth

1"alternateDatesOfBirth":
2{
3	"dateOfBirthId": "{dateOfBirthId}",
4        "year": "1992",
5	"month": "12",
6	"day": "05"
7}

Adding entity elements

To add a new object to an existing entity, simply add the new object without an ID.

Example 1: adding an address

1"addresses":
2[
3	{
4		"type": "RESIDENTIAL",
5		"streetNumber": "123",
6		"streetName": "King",
7		"streetType": "Street",
8		"locality": "Melbourne",
9		"postalCode": "3000",
10		"subdivision": "NSW",
11		"country": "AUS",
12		"status": "CURRENT"
13	}
14]

Adding consents

Consents won’t be duplicated so new consent types will simply be added if not already applied.

Example 2: adding consents

1"consents":
2[
3	{
4		"type": "CREDITHEADER"
5	}
6]

Deleting entity elements

Individual entity objects can be deleted at any time by making a request to the DELETE /v2/individuals/{entityId}/{objectType}/{objectId} API endpoint.

Example 1: deleting a phoneNumber

DELETE /v2/individuals/{entityId}/phonenumbers/{objectId}

Example 2: deleting a emailAddress

DELETE /v2/individuals/{entityId}/emailaddresses/{objectId}

Deleting documents

Individual document objects can be deleted at any time by making a request to the DELETE /v2/individuals/{entityId}/documents/{documentId} API endpoint.

DELETE /v2/individuals/{entityId}/documents/{documentId}

Deleting document attachments

Individual document attachment objects can be deleted at any time by making a request to the DELETE /v2/individuals/{entityId}/documents/{documentId}/attachments/{attachmentId} API endpoint.

DELETE /v2/individuals/{entityId}/documents/{documentId}/attachments/{attachmentId}

Individual consent of a certain type can be withdrawn at any time by making a request to the DELETE /v2/individuals/{entityId}/consents/{consentType} API endpoint.

DELETE /v2/individuals/{entityId}/consents/CREDITHEADER

Delete an individual entity

The individual entity can be deleted at any time by making a request to the DELETE /v2/individuals/{entityId} API endpoint.

Individual entities that are deleted can not be recovered by FrankieOne.

Please ensure you only delete entities that are no longer needed for any purpose, including audit or compliance.

Execute a workflow

To start onboarding an individual and running checks on them, you’ll need to call the β€œexecute workflow” API endpoint. Upon execution, the workflow will return a result.

1curl --location --request POST
2'https://api.{{env}}.frankie.one/v2/individuals/{entityId}/serviceprofiles/kyc/workflows/{workflowName}/execute' \
3--header 'api_key: {{your_apiKey}}' \
4--header 'X-Frankie-CustomerID: {{your_CustomerID}}' \
5--header 'X-Frankie-CustomerChildID: {{your_CustomerChildID}}' \
6--header 'Content-Type: application/json' \
7--header 'Accept: application/json' \

Retrieve a workflow execution result

The workflow execution result can be retrieved at any time post execution by making a request to the GET /v2/individuals/{entityId}/serviceprofiles/{serviceName}/workflows/{workflowName}/executions/{workflowExecutionId} API endpoint.

Retrieve a history of workflow execution result

The individual entity can be updated at any time by making a request to the PATCH /v2/individuals/{entityId} API endpoint.

Interpreting Workflow Results

After a workflow has been executed, various elements require examination to determine the final outcome.

Legend:

  • ‼️ - Results that deem whether the entity has passed or failed or the workflow failed to execute to completion.
  • ⚠ - Context on why the entity may have passed or failed.
  • ℹ️ - Information-only, no contribution to whether the entity has passed or failed.
Field nameDescriptionImportance
statusThe ultimate assessment of whether the individual passed all workflow requirements lies in the status, which provides a conclusive recommendation based on the checks run. It accounts for whether all verification checks were successful or if there were failures. The status also captures manual intervention such as any action of overriding the result directly outside the context of a workflow.

β€’ UNCHECKED - Workflow hasn’t yet been executed or the workflow result wasn’t updated successfully as part of the workflow execution.

β€’ IN_PROGRESS - Workflow is currently running and awaiting completion.

β€’ PASS - Workflow completed successfully and the entity passed all checks required. Alternatively, the status was applied manually proceeding workflow execution.

β€’ FAIL - Workflow completed successfully, however the entity didn’t pass all checks required. Alternatively, the status was applied manually proceeding workflow execution.

Note: the statusOverrideAt field can be used to determine if the status was manually overridden.		‼️
statusOverrideAtThe UTC time of when the status was manually overridden outside the workflow execution.ℹ️
statusOverrideRequestIdThe unique requestId of the request that manually overrode the status outside the workflow execution.ℹ️
statusOverrideByThe X-Frankie-Username header value in the request that manually overrode the status outside of the workflow execution.ℹ️
resultThe result is the original workflow outcome that was determined at the completion of the workflow. In the case of manual override, this will differ from the status.

β€’ UNCHECKED - Workflow hasn’t yet been executed or the workflow result wasn’t updated successfully as part of the workflow execution.

β€’ IN_PROGRESS - Workflow is currently running and awaiting completion.

β€’ PASS - Workflow completed successfully and the entity passed all checks required.

β€’ FAIL - Workflow completed successfully, however the entity didn’t pass all checks required.		⚠️
workflowExecutionStateThe workflowExecutionState is an indicator of whether the workflow was able to execute to completeness. The workflowExecutionState should always be in a state of β€œCOMPLETED” otherwise it’s telling that the workflow execution didn’t finish executing and that the result should be taken with that context in mind.‼️
workflowStepResultsThe workflowStepResults is a detailed list of all the steps that were executed as part of the workflow and their individual outcomes.⚠️
riskAssessmentThe riskAssessment is a summary of all the risk factors that were encountered during the execution of the workflow and the accumulated risk level of the entity as a result of those factors.⚠️
issuesissues is a summary of all the issues that were encountered during the execution of the workflow that may have affected the outcome such as errors, insufficient data, or simply a failed verification.

Typically issues will only be present if any checks have failed.		⚠️
workflowExecutionIdThe unique identifier of the workflow execution. Generated on triggering the workflow execution.ℹ️
serviceProfileIdThe unique identifier of the service profile in which the workflow was executed. Set based on the serviceName in the path of the workflow execution request API.ℹ️
workflowIdThe ID of the workflow that was executed. Set based on the workflowName in the path of the workflow execution request API.ℹ️
workflowNameThe name of the workflow that was executed. Set based on the workflowName in the path of the workflow execution request API.ℹ️
stepsThe steps that were executed as part of this workflow execution:
order - order in which the steps were executed
passed - steps that passed or were successful in execution
failed - steps that failed or were unsuccessful in execution
incomplete - steps that didn’t execute or didn’t execute to completion
notApplicable - steps that didn’t run because they were deemed unnecessary		ℹ️
entityTypeThe type of entity in which the workflow was executed. INDIVIDUAL or ORGANIZATION.ℹ️
errorsAny errors that were encountered as part of the workflow execution⚠️
requestIdThe requestId is the unique identifier of the request that triggered this workflow execution.ℹ️
entityIdThe entityId of the individual/organization in which the workflow was executed.ℹ️
startedAtstartedAt refers to when the workflow started executing.ℹ️
endedAtendedAt refers to when the workflow finished executing.ℹ️
createdAtcreatedAt refers to when the process result was created.ℹ️
updatedAtupdatedAt refers to when the process result was last updated.ℹ️
updatedByupdatedBy refers to who last updated the workflow execution. This will be the value of the X-Frankie-Username header of the request that executed the workflow or overrode the workflow result.ℹ️
schemaVersionRefers to the version of the schema returned. Will always be 2 in the FrankieOne v2.x API.ℹ️
notesAny additional notes that were captured during the process.ℹ️
Know Your Customer (KYC) Database Verification

Example 1: Pass

1"workflowResult": {
2    "createdAt": "2024-07-08T06:37:22.520433Z",
3    "endedAt": "2024-07-08T06:37:27.697016Z",
4    "entityType": "INDIVIDUAL",
5    "issues": [...],
6    "workflowExecutionId": "{workflowExecutionId}",
7    "requestId": "{requestId}",
8    "entityId": "{entityId}",
9    "startedAt": "2024-01-15T02:18:11.365Z",
10    "endedAt": "2024-01-15T02:18:11.365Z",
11    "workflowId": "{workflowId}",
12    "workflowName": "onboarding",
13    "steps": "[KYC]",
14    "result": "PASS",
15    "status": "PASS",
16    "workflowExecutionState": "COMPLETED",
17    "schemaVersion": 2,
18    "serviceProfileId": "{serviceProfileId}",
19    "updatedAt": "2024-07-08T06:37:27.769601Z",
20    "updatedBy": "system:frankieone",
21    "riskAssessment": [...],
22    "workflowStepResults": [...]
23},
24"requestId": "{requestId}"

Example 2: Fail

1"workflowResult": {
2    "createdAt": "2024-07-08T06:37:22.520433Z",
3    "endedAt": "2024-07-08T06:37:27.697016Z",
4    "entityType": "INDIVIDUAL",
5    "issues": [...],
6    "workflowExecutionId": "{workflowExecutionId}",
7      "requestId": "{requestId}",
8    "entityId": "{entityId}",
9    "startedAt": "2024-01-15T02:18:11.365Z",
10    "endedAt": "2024-01-15T02:18:11.365Z",
11    "workflowId": "{workflowId}",
12    "workflowName": "onboarding",
13    "steps": "[KYC]",
14    "result": "FAIL",
15    "status": "FAIL",
16    "workflowExecutionState": "COMPLETED",
17    "schemaVersion": 2,
18    "serviceProfileId": "{serviceProfileId}",
19    "updatedAt": "2024-07-08T06:37:27.769601Z",
20    "updatedBy": "system:frankieone",
21    "riskAssessment": [...],
22    "workflowStepResults": [...]
23},
24"requestId": "{requestId}"

Example 3: Workflow failed but status was overridden to be passed

1"workflowResult": {
2    "createdAt": "2024-07-08T06:37:22.520433Z",
3    "endedAt": "2024-07-08T06:37:27.697016Z",
4    "entityType": "INDIVIDUAL",
5    "issues": [...],
6    "workflowExecutionId": "{workflowExecutionId}",
7    "requestId": "{requestId}",
8    "entityId": "{entityId}",
9    "startedAt": "2024-01-15T02:18:11.365Z",
10    "endedAt": "2024-01-15T02:18:11.365Z",
11    "workflowId": "{workflowId}",
12    "workflowName": "onboarding",
13    "steps": "[KYC]",
14    "result": "FAIL",
15    "status": "PASS",
16    "workflowExecutionState": "COMPLETED",
17    "schemaVersion": 2,
18    "serviceProfileId": "{serviceProfileId}",
19    "updatedAt": "2024-07-08T06:37:27.769601Z",
20    "updatedBy": "system:frankieone",
21    "riskAssessment": [...],
22    "workflowStepResults": [...]
23},
24"requestId": "{requestId}"

Interpreting Workflow Step Results

Workflow outcomes will encompass a variety of individual step outcomes, each autonomously documenting the findings of their specific verification processes. Steps such as data verification/Know Your Customer (KYC) checks, Anti-Money Laundering (AML) screenings, Identity Verification (IDV), and risk evaluations are integral components of a workflow. To streamline reporting, step outcomes are consolidated according to their category, ensuring that identical steps are aggregated and presented as a unified outcome. For instance, KYC procedures may be executed repeatedly using a diversified set of service providers and configurations; however, a singular step outcome will be generated, encapsulating the entirety of the assessments conducted.

Each step is defined in a consistent format, with significant variations stemming from the stepData and processResults only. These elements are distinct to each step type, providing tailored insights specific to the step’s function.

Know Your Customer (KYC) Database Verification

The KYC workflow step takes into account all the processed data and indicates the outcome in the result field.

  • UNCHECKED - KYC wasn’t attempted due to a failure in a previous step
  • MISSING_DATA - KYC wasn’t attempted as not enough data was available
  • MATCH - KYC was attempted successfully, the entity was verified against the required number of data sources
  • NO_MATCH - KYC was attempted, however the entity wasn’t verified against any data sources
  • PARTIAL - KYC was attempted, however the entity wasn’t verified against the required number of data sources if more than 1 was required
  • ERROR - KYC was attempted, however an error was encountered during the process. See errors for more information.
1{
2    "workflowResult": {
3        "workflowStepResults": [
4            {
5                "endedAt": "2024-05-14T04:04:12.66319Z",
6                "objectId": "{objectId}",
7                "objectType": "INDIVIDUAL",
8                "processResults": [...],
9                "requestId": "{requestId}",
10                "result": "MATCH",
11                "serviceProviders": [...],
12                "startedAt": "2024-05-14T04:04:11.849152Z",
13                "stepData": {...},
14                "stepName": "kyc",
15                "stepResultId": "{stepResultId}",
16                "workflowExecutionId": "{workflowExecutionId}"
17            },
18        ]
19    }
20}
Service Provider Result

The KYC workflow step indicates the service provider overall outcome as the serviceProviders.result

1{
2    "workflowResult": {
3        "workflowStepResults": [
4            {
5                "endedAt": "2024-05-14T04:04:12.66319Z",
6                "objectId": "{objectId}",
7                "objectType": "INDIVIDUAL",
8                "processResults": [...],
9                "requestId": "{requestId}",
10                "result": "MATCH",
11                "serviceProviders": [
12                    {
13                        "endedAt": "2024-05-14T04:04:12.663187286Z",
14                        "provider": "dvs",
15                          "result": "MATCH",
16                        "startedAt": "2024-05-14T04:04:11.849152Z"
17                    }
18                ],
19                "startedAt": "2024-05-14T04:04:11.849152Z",
20                "stepData": {...},
21                "stepName": "kyc",
22                "stepResultId": "{stepResultId}",
23                "workflowExecutionId": "{workflowExecutionId}"
24            },
25        ]
26    }
27}
Step Summary: Data Source Match Details

To gain insight into which personal information matched against specific sources, please refer to the matchedRules. Commonly, you’ll find a singular ruleMatches entry detailing the outcome of a particular rule established in the workflow. For example, a rule might stipulate that both a name and either a date of birth or address be verified against two independent data sources. matchTypes will reveal the exact element verified, while matchSources will specify the data sources used for confirmation. Any data sources consulted but yielding no matches will be listed as nonMatchSources.

After a KYC step has been executed, various elements require examination to determine the final outcome.

Legend:

  • ‼️ - Results that deem whether the entity has passed or failed or the workflow failed to execute to completion.
  • ⚠ - Context on why the entity may have passed or failed.
  • ℹ️ - Information-only, no contribution to whether the entity has passed or failed.
Matched and Unmatched Rules

The matchedRules and unmatchedRules that exist within the KYC workflow step summary are identical in structure and differ only in whether the ruleset was matched against successfully (matchedRules) or not (unmatchedRules).

Field nameDescriptionImportance
matchedRulesList of all the KYC rulesets that matched and the summary of those matches. See Matched and Unmatched Rules.⚠
unmatchedRulesList of all the KYC rulesets that didn’t match and the summary of those matches. See Matched and Unmatched Rules.⚠
Rulesets

The requirements rulesets are defined within the KYC workflow step configuration and are used to determine whether the number of data source matches have been met for each entity element (for example, name, date of birth, address and others) for the verification to be considered a match.

Field nameDescriptionImportance
ruleNameName of the ruleset
Default: default		ℹ️
ruleOrderOrder in which we attempted to match the results against the requirements defined in the ruleset.
Example: 1		ℹ️
ruleMatchesList of matches that made up this ruleset. See Rule Matches.⚠️
Ruleset Match Details

The specific matching details of each **rule **that was matched or not matched.

Field nameDescriptionImportance
matchTypesThe match types that this overall count and results refer to⚠️
matchCountNumber of matches found for this ruleset⚠️
matchCountRequiredNumber of matches required for this ruleset to be satisfied⚠️
hasAllRequiredSourcesMatchedDetermines whether a match has been found for all required data sources defined in the ruleset.

Note: Optional. This is only evaluated if 1 or more data sources have been set as mandatory within the KYC workflow step configuration.		⚠️
requiredSourcesMatchedList of the required sources that the entity has been matched against.

Note: Optional. This is only evaluated if 1 or more data sources have been set as mandatory within the KYC workflow step configuration.		⚠️
requiredSourcesNotMatchedList of the required sources that the entity has not been matched against.

Note: Optional. This is only evaluated if 1 or more data sources have been set as mandatory within the KYC workflow step configuration.		⚠️
isVerifiedDetermines whether the matches required have been satisfied, indicating a successful matched ruleset. Based on whether matchCount >= matchCountRequired

true/false		‼️
Ruleset Matched Types

The specific matching details of each element (for example, name, dateOfBirth, and others) that was matched or not matched.

Field nameDescriptionImportance
objectIdThe unique identifier of the object (for example: name, address, date of birth) that was verifiedℹ️
objectTypeThe type of the object that was verified (for example: name, address, date of birth)ℹ️
matchCountNumber of matches found for this object type⚠️
matchSourcesList of all the data sources that the entity was matched against.
Example: β€œau-elec-roll”		⚠️
nonMatchSourcesList of all the data sources that the entity was not matched against.
Example: β€œau-elec-roll”		⚠️
isCheckedDetermines whether an attempt was made to verify the entity’s personal information as identified by the objectId and objectType (for example: name, date of birth, address)⚠️
isVerifiedDetermines whether the entity’s personal information as identified by the objectId and objectType (for example: name, date of birth, address) was able to be verified by at least 1 data source.‼️
Example 1: Successful KYC Database Verification

Let’s break down the following **match **result:

  • name, dob and address were checked as they’re listed under matchTypes
  • Based on the matchCount we can determine how many data sources we were able to match against for each element:
    • name matched against the Australian Electoral Roll (β€œau-elec-roll”) and Equifax Public Credit Data Header (β€œau-efax-cdh-pub”)
    • address matched against the Australian Electoral Roll (β€œau-elec-roll”) only
    • dateOfBirth matched against the Equifax Public Credit Data Header (β€œau-efax-cdh-pub”)
  • matchCount equals the matchCountRequired which means we were able to find enough matches for a positive result
  • requiredSourcesMatched indicates that the Australian Electoral Roll (β€œau-elec-roll”) was a source that was required to be matched against, which it was (name, address)
  • isVerified indicates that the match requirements were satisfied based on the rule criteria
1"summary": {
2  "matchedRules": [
3	{
4	  "ruleName": "SafeHarbour2x2",
5	  "ruleOrder": 1,
6	  "ruleMatches": [
7		{
8		  "matchTypes": {
9			"name": {
10			  "objectId": "{objectId}",
11			  "matchCount": 2,
12			  "matchSources": ["au-elec-roll", "au-efax-cdh-pub"],
13			  "nonMatchSources": ["au-efax-cdh-consumer"],
14			  "isChecked": true,
15			  "isVerified": true
16			},
17 			"address": {
18			  "objectId": "{objectId}",
19			  "matchCount": 1,
20			  "matchSources": ["au-elec-roll"],
21			  "nonMatchSources": ["au-efax-cdh-pub", "au-efax-cdh-consumer"],
22			  "isChecked": true,
23			  "isVerified": true
24			},
25 			"dateOfBirth": {
26			  "objectId": "{objectId}",
27			  "matchCount": 1,
28			  "matchSources": [""au-efax-cdh-pub""],
29			  "nonMatchSources": ["au-elec-roll", "au-efax-cdh-consumer"],
30			  "isChecked": true,
31			  "isVerified": true
32			}
33		  },
34		  "matchCount": 2,
35		  "matchCountRequired": 2,
36		  "hasAllRequiredSourcesMatched": true,
37		  "requiredSourcesMatched": ["au-elec-roll"],
38		  "isVerified": true
39		}
40	  ]
41	}
42  ],
43...
Example 2: Unsuccessful KYC Database Verification

Similarly to the matchedRules, the unmatchedRules contains a singular ruleMatches entry detailing the outcome of a particular rule established in the workflow that hasn’t been met.

Let’s break down the following **non matched **result:

  • name, dob and address were checked as they’re listed under matchTypes
  • Based on the matchCount we can see no matchSources present which tells us that there were no matches.
  • The nonMatchSources lists the sources that were checked against but without a successful match result
    • name didn’t match against the Australian Electoral Roll (β€œau-elec-roll”) and Equifax Public Credit Data Header (β€œau-efax-cdh-pub”) or Equifax Consumer Credit Data Header (β€œau-efax-cdh-consumer”)
    • address didn’t match against the Australian Electoral Roll (β€œau-elec-roll”) and Equifax Public Credit Data Header (β€œau-efax-cdh-pub”) or Equifax Consumer Credit Data Header (β€œau-efax-cdh-consumer”)
    • dateOfBirth didn’t match against the Australian Electoral Roll (β€œau-elec-roll”) and Equifax Public Credit Data Header (β€œau-efax-cdh-pub”) or Equifax Consumer Credit Data Header (β€œau-efax-cdh-consumer”)
  • matchCount doesn’t equal the matchCountRequired which means we weren’t able to find enough matches for a positive result
  • requiredSourcesMatched indicates that the Australian Electoral Roll (β€œau-elec-roll”) was also a source that was required to be matched against, which wasn’t
  • isVerified indicates that the match requirements weren’t satisfied based on the rule criteria
1"summary": {
2  "unmatchedRules": [
3	{
4	  "ruleName": "SafeHarbour2x2",
5	  "ruleOrder": 1,
6	  "ruleMatches": [
7		{
8		  "matchTypes": {
9				"name": {
10			  	"matchCount": 0,
11			  	"nonMatchSources": ["au-elec-roll", "au-efax-cdh-pub", "au-efax-cdh-consumer"],
12			  	"isChecked": true,
13			  	"isVerified": false
14			},
15 			"address": {
16			  "matchCount": 0,
17			  "nonMatchSources": ["au-elec-roll", "au-efax-cdh-pub", "au-efax-cdh-consumer"],
18			  "isChecked": true,
19			  "isVerified": false
20			},
21 			"dateOfBirth": {
22			  "matchCount": 0,
23			  "nonMatchSources": ["au-elec-roll", "au-efax-cdh-pub" "au-efax-cdh-consumer"],
24			  "isChecked": true,
25			  "isVerified": false
26			}
27		  },
28		  "matchCount": 0,
29		  "matchCountRequired": 2,
30		  "hasAllRequiredSourcesMatched": false,
31		  "requiredSourcesNotMatched": ["au-elec-roll"],
32		  "isVerified": false
33		}
34	  ]
35	}
36  ]
Process Results: Data Source Match Details

KYC match details are represented as processResults existing under the workflow step results for steps that require verification or some sort of checks to be run and differ based on the context of what the check is trying to accomplish. For checks against external data sources, the processResults will aim to capture what exactly has matched against what source. Steps typically return an array of all the individual process results that were used in determining that step’s result.

After a KYC step has been executed, various elements require examination to determine the final outcome.

Legend:

  • ‼️ - Results that deem whether the entity has passed or failed or the workflow failed to execute to completion.
  • ⚠ - Context on why the entity may have passed or failed.
  • ℹ️ - Information-only, no contribution to whether the entity has passed or failed.
Field nameDescriptionImportance
processResultIdThe processResultId represents the unique identifier of the process resultℹ️
classThe class reflects the type of process result (for example: KYC, AML)ℹ️
resultThe result is the overall outcome of the process (for example: MATCH, NO_MATCH, PARTIAL)‼️
stateThe state reflects whether the process was completed successfully or whether an error of some kind was encountered during the process⚠️
stepNameThe stepName indicates the workflow step that triggered the process and thus generated the process resultℹ️
stepTypeThe stepType indicates whether there was a subtype for the step. Generally used in non-KYC step process results.ℹ️
groupIdThe groupId is generated in order to tie related process results together. In the context of KYC, a single groupId will be generated and added to each process result per data source that’s checked.ℹ️
systemStatusThe systemStatus indicates that the result is valid and was used in determining the overall step result (typically only VALID results will be returned unless specifically requested).⚠️
manualStatusThe manualStatus indicates whether the result has been manually classified by an operator outside of FrankieOne (for example: via API or Portal). This is set most commonly in AML classifications where an operator has registered whether a potential match is a true positive or false positive.⚠️
providerResultβ€’ The providerResult.confidence refers to the confidence rating that was returned by the provider. Defaults to 0/100 if confidence isn’t explicit.
β€’ providerResult.name refers to the name of the provider
β€’ Any unique identifier on the data provider side will be returned as providerResult.reference
The providerResult.source indicates the raw source that was checked against
The providerResult.sourceNormalized indicates the normalized source that was checked against.
Note: Same sources checked by different providers will have the same sourceNormalized value but different source values.		⚠️
riskFactorsAny risk factors returned by the service provider will be present as riskFactors and potentially utilized in FrankieOne’s own risk engine, depending on your risk configuration.⚠️
objectIdThe objectId indicates the exact element that was checked.ℹ️
objectTypeThe objectType indicates the specific type of element that was checked.ℹ️
entityIdThe entityId of the individual that was checkedℹ️
createdAtcreatedAt refers to when the process result was created.ℹ️
updatedAtupdatedAt refers to when the process result was last updated.ℹ️
updatedByupdatedBy refers to who last updated the process result. Generally this will be FrankieOne unless a manual override was triggered.ℹ️
schemaVersionRefers to the version of the schema returned. Will always be 2 in the FrankieOne v2.x API.ℹ️
requestIdThe unique identifier of the request that generated this process resultℹ️
notesAny additional notes that were captured during the process. May contain extra information about how the result was determined.⚠️
errorsAny errors that were encountered as part of the process.⚠️
Example: 1: KYC Data Source Match Details

Process Result Objects (PROs) encapsulate the outcomes of specific processes (check, comparison, verification etc.). They play a crucial role in evaluating the overall outcome of relevant workflow steps.

Let’s break down the following KYC process result:

  • The class is β€œKYC” which indicates the process is in relation to a KYC database verification check.
  • The address of the entity has been successfully verified against the Australian Electoral Roll:
    • Based on the objectType we can see that the specific element checked was an β€œADDRESS”
    • The providerResult array contains the details of the service provider that the entity was checked against:
      • The service provider is the Document Verification Service as indicated by the name field (β€œdvs”)
      • The specific data source that was checked is the Australian Electoral Roll as indicated by the source (β€œau-elec-roll”) and sourceNormalized (β€œau-elec-roll”) fields
    • The result is β€œMATCH” indicating that the address was successfully matched.
  • The check was completed successfully (state is β€œCOMPLETED”) and hasn’t yet been invalidated in any way (systemStatus is β€œVALID”), therefore it’s safe to determine that the process ran to completion and was indeed used in determining the successful result.
  • There has been no manual status applied to the process (due to the absence of a manualStatus field)
1"processResults": [
2{
3	"class": "KYC",
4	"createdAt": "2024-07-11T23:57:08.197185Z",
5	"entityId": "{entityId}",
6	"groupId": "{groupId}",
7	"notes": {...},
8	"objectId": "{objectId}",
9	"objectType": "ADDRESS",
10	"processResultId": "{processResultId}",
11	"providerResult": {
12		"confidence": "100",
13		"name": "dvs",
14		"reference": "{referenceId",
15		"source": "au-elec-roll",
16		"sourceNormalized": "au-elec-roll"
17	},
18	"supplementaryData": {
19		"matchStrengths": {
20			"fullAddress": 100,
21			"streetNumber": 100,
22			"streetName": 100
23			"streetType": 100,
24			"locality": 100,
25			"district": 100,
26			"subdivision": 100,
27			"postalCode": 100,
28			"country": 100,
29		},
30		"fuzziness": {
31			"normalized": 0,
32			"actual": 0
33		},
34		"wasNameMatchStrongEnough": true
35	},
36	"requestId": "{requestId}",
37	"result": "MATCH",
38	"schemaVersion": 2,
39	"state": "COMPLETED",
40	"stepName": "KYC",
41	"systemStatus": "VALID",
42	"updatedAt": "2024-07-11T23:57:08.197185Z"
43}
Example: 2: KYC Data Source Non-Match Details

Similar to Process Results (PROs) for KYC database verification matches, process results that result in no match will be generated during step execution and will provide insights into why the data source could NOT be matched.

Let’s break down the following KYC process result:

  • The class is β€œKYC” which indicates the process is in relation to a KYC database verification check.
  • The address of the entity has been checked but wasn’t verified against the Australian Electoral Roll:
    • Based on the objectType we can see that the specific element checked was an β€œNAME”
    • The providerResult array contains the details of the service provider that the entity was checked against:
      • The service provider is the Document Verification Service as indicated by the name field (β€œdvs”)
      • The specific data source that was checked is the Australian Electoral Roll as indicated by the source (β€œau-elec-roll”) and sourceNormalized (β€œau-elec-roll”) fields
    • The result is β€œMATCH” indicating that the address was successfully matched.
  • The matchStrengths within supplementaryData shows that no part of the name matched at all.
  • The fuzziness within supplementaryData shows that an exact match (normalized as β€œ0”) was required, potentially restricting any passable partial matching (β€œSarah”, β€œSara”).
  • The check was completed successfully (state is β€œCOMPLETED”) and hasn’t yet been invalidated in any way (systemStatus is β€œVALID”), therefore it’s safe to determine that the process ran to completion and was indeed used in determining the successful result.
  • There has been no manual status applied to the process (due to the absence of a manualStatus field).
1"processResults": [
2{
3	"class": "KYC",
4	"createdAt": "2024-07-11T23:57:08.197185Z",
5	"entityId": "{entityId}",
6	"groupId": "{groupId}",
7	"notes": {...},
8	"objectId": "{objectId}",
9	"objectType": "NAME",
10	"processResultId": "{processResultId}",
11	"providerResult": {
12		"confidence": "0",
13		"name": "dvs",
14		"reference": "{referenceId}",
15		"source": "au-elec-roll",
16		"sourceNormalized": "au-elec-roll"
17	},
18	"supplementaryData": {
19		"matchStrengths": {
20			"fullname": 0,
21			"familyName": 0,
22			"givenName": 0,
23			"otherNames": 0,
24			"firstInitialFamilyName": 0
25		},
26		"fuzziness": {
27			"normalized": 0,
28			"actual": 0
29		}
30	}
31	"requestId": "{requestId}",
32	"result": "NO_MATCH",
33	"schemaVersion": 2,
34	"state": "COMPLETED",
35	"stepName": "KYC",
36	"systemStatus": "VALID",
37	"updatedAt": "2024-07-11T23:57:08.197185Z"
38}

Anti-Money Laundering (AML) Screening

AML screening results are reflected in the result field, which clearly indicates the step’s outcome. This field summarizes the step’s result, taking into account all the processed data. For instance, if an individual’s details such as name show up on any AML screening lists like PEP or Sanctions lists, the result will be HIT. If not, the result will be CLEAR.

1{
2    "workflowResult": {
3        "workflowStepResults": [
4            {
5                "endedAt": "2024-05-14T04:04:12.66319Z",
6                "objectId": "{objectId}",
7                "objectType": "INDIVIDUAL",
8                "processResults": [...],
9                "requestId": "{requestId}",
10                "result": "CLEAR",
11                "serviceProviders": [
12                    {
13                        "endedAt": "2024-05-14T04:04:12.663187286Z",
14                        "provider": "complyadvantage",
15                        "result": "CLEAR",
16                        "startedAt": "2024-05-14T04:04:11.849152Z"
17                    }
18                ],
19                "startedAt": "2024-05-14T04:04:11.849152Z",
20                "stepData": {...},
21                "stepName": "aml",
22                "stepResultId": "{stepResultId}",
23                "workflowExecutionId": "{workflowExecutionId}"
24            },
25        ]
26    }
27}

processResults and summary has been omitted for brevity

Process Results: AML Match Results

processResults exist under the workflow step results for steps that require verification or some sort of checks to be run and differ based on the context of what the check is trying to accomplish. For checks against external data sources, the processResults will aim to capture what exactly has matched against what source. Steps typically return an array of all the individual process results that were used in determining that step’s result.

Take for instance the following example:

1"processResults": [
2	{
3		"class": "AML",
4		"createdAt": "2024-05-14T04:04:12.566065Z",
5		"entityId": "{entityId}",
6		"notes": {...},
7		"objectId": "{objectId}",
8		"objectType": "name",
9		"processResultId": "{processResultId}",
10		"providerResult": {
11			"confidence": "100",
12			"name": "complyadvantage",
13			"reference": "{referenceId}",
14			"riskScore": 0
15		},
16		"result": "HIT",
17		"state": "COMPLETED",
18		"stepName": "pep",
19		"supplementaryData": {...},
20		"systemStatus": "VALID",
21		"updatedAt": "2024-05-14T04:04:12.566065Z"
22	}
Supplementary Workflow Steps
Start Step

The start step indicates a successful commencement of the workflow. An effective measure to ascertain if the workflow initiated without complications is to check if the execution result includes a start step with a β€œCOMPLETE” result. Typically, no processResults are anticipated for this step.

1{
2    "requestId": "{requestId}",
3    "individual": {...},
4    "workflowResult": {
5        "workflowStepResults": [
6            {
7                "endedAt": "2024-07-22T05:46:07.722933Z",
8                "objectId": "{objectId}",
9                "objectType": "INDIVIDUAL",
10                "requestId": "{requestId}",
11                "result": "COMPLETE",
12                "risk": {
13                    "contributedScore": 150,
14                    "factors": [
15                        {
16                            "factor": "entity_type",
17                            "score": 0,
18                            "value": "Individual"
19                        },
20                        {
21                            "factor": "country",
22                            "score": 50,
23                            "value": "Lithuania"
24                        },
25                        {
26                            "factor": "entity_age",
27                            "score": 100,
28                            "value": "Under 18"
29                        }
30                    ],
31                    "level": "HIGH",
32                    "overallScore": 150
33                },
34                "schemaVersion": 2,
35                "startedAt": "2024-07-22T05:46:09.013204Z",
36                "stepName": "START",
37                "stepResultId": "{stepResultId}",
38                "updatedBy": "01J3CFKFJE1HJACPRFZ7F47N5K",
39                "workflowExecutionId": "{workflowExecutionId}"
40            }
41        ]
42    }
43}
Finish Step

The finish step indicates whether the workflow completed successfully. This means that all results have been collected and stored, ready for further investigation. To check if the workflow finished without issues, look for a β€œCOMPLETE” result. Keep in mind that this only confirms the workflow’s completion, not the success of individual checks or the absence of errors. Typically, no processResults are generated in this step.

1{
2    "requestId": "{requestId}",
3    "individual": {...},
4    "workflowResult": {
5        "workflowStepResults": [
6            {
7                "endedAt": "2024-07-22T05:46:26.547446Z",
8                "objectId": "{objectId}",
9                "objectType": "INDIVIDUAL",
10                "requestId": "{requestId}",
11                "result": "COMPLETE",
12                "schemaVersion": 2,
13                "startedAt": "2024-07-22T05:46:26.511309Z",
14                "stepName": "FINISH",
15                "stepResultId": "{stepResultId}",
16                "updatedBy": "system:frankieone",
17                "workflowExecutionId": "{workflowExecutionId}"
18            }
19        ]
20    }
21}
Decision Step

The decision step within the workflow serves as a critical juncture that determines the workflow’s statusβ€”be it PASS, FAIL, or REVIEW. This determination hinges on the specific actions taken during the workflow. For instance, if all preceding steps have been executed flawlessly and all checks were cleared, the workflow is typically set to be β€œPASS”. Conversely, if there’s a hiccup in any step, such as an issue with individual verification, the workflow is likely to be marked as β€œFAIL”. It’s important to note that the statuses set can be modified within the workflow builder.

1{
2  "workflowStepResults": [
3    {
4      "endedAt": "2024-07-22T05:46:25.826735Z",
5      "objectId": "{objectId}",
6      "objectType": "INDIVIDUAL",
7      "processResults": [],
8      "requestId": "{requestId}",
9      "result": "COMPLETE",
10      "schemaVersion": 2,
11      "startedAt": "2024-07-22T05:46:25.76572Z",
12      "stepName": "DECISION",
13      "stepResultId": "{stepResultId}",
14      "summary": {
15        "stepName": "DECISION",
16        "workflowExecutionResult": "PASS"
17      },
18      "updatedBy": "system:frankieone",
19      "workflowExecutionId": "{stepResultId}"
20    }
21  ]
22}
Risk Step

The risk step in the workflow is a mandatory checkpoint for risk assessment. It doesn’t result in a pass or fail status. Instead, it’s simply marked as β€œCOMPLETED” once a risk evaluation has been conducted. This step ensures that risks are always considered in the process, without directly affecting the workflow’s status. While the risk assessment itself doesn’t change the workflow, the information gathered may be useful for later steps.

1"workflowStepResults": [
2            {
3                "endedAt": "2024-07-22T05:46:24.998288Z",
4                "objectId": "{objectId}",
5                "objectType": "INDIVIDUAL",
6                "requestId": "{requestId}",
7                "result": "COMPLETE",
8                "schemaVersion": 2,
9                "startedAt": "2024-07-22T05:46:24.963811Z",
10                "stepName": "RISK",
11                "stepResultId": "{stepResultId}",
12                "updatedBy": "system:frankieone",
13                "workflowExecutionId": "{workflowExecutionId}"
14            }
15	]
16    }

Classifying AML Match Results

After investigating the supplementaryData for any AML screening match details, you’ll need to make a decision on whether the person you are evaluating matches the person that we found during screening (true positive) or not (false positive).

To confirm whether an AML screening hit is true positive, false positive or unknown, you’ll need to update the manualStatus of the process result. The manualStatus is used to store any manually determined statuses on a result as not to override the initial result gathered as part of the workflow execution.

Example 1: Classify Single Match as True Positive
1curl --location --request POST
2'https://api.{{env}}.frankie.one/v2/individuals/{entityId}/results/{processResultId}' \
3--header 'api_key: {{your_apiKey}}' \
4--header 'X-Frankie-CustomerID: {{your_CustomerID}}' \
5--header 'X-Frankie-CustomerChildID: {{your_CustomerChildID}}' \
6--header 'Content-Type: application/json' \
7--header 'Accept: application/json' \
8--data-raw '{
9  "processResults": [
10    "{processResultId}"
11  ],
12  "manualStatus": "TRUE_POSITIVE"
13}'
Example 2: Classify Multiple Matches as False Positive
1curl --location --request POST
2'https://api.{{env}}.frankie.one/v2/individuals/{entityId}/results/aml' \
3--header 'api_key: {{your_apiKey}}' \
4--header 'X-Frankie-CustomerID: {{your_CustomerID}}' \
5--header 'X-Frankie-CustomerChildID: {{your_CustomerChildID}}' \
6--header 'Content-Type: application/json' \
7--header 'Accept: application/json' \
8--data-raw '{
9  "processResults": [
10    "processResultId", "processResultId"
11  ],
12  "manualStatus": "FALSE_POSITIVE"
13}'
Built with