Pillar Four · Compliance & Risk

Know the Risk Behind Every Wallet.

Behavioral analytics, risk scoring, and compliance attestation for digital wallets. The Wallet Intelligence Engine continuously evaluates wallet activity against fraud patterns, sanctions lists, and regulatory thresholds - producing explainable risk scores and sealed evidence for every determination.

A wallet address is not an identity. It is a pattern of behavior. JIL translates on-chain activity into structured risk intelligence, scoring wallets against known fraud typologies, sanctions exposure, mixing behavior, and velocity anomalies. Every determination is attested by the Verdict Engine and sealed to CourtChain with the same evidentiary standard applied to healthcare claims.

Executive Summary Architecture Use Cases Demo / POC Technical DesignGated

Business use

Built for compliance teams that need defensible wallet risk.

Exchanges, custodians, investigators, and payment networks need to understand the risk behind deposits, withdrawals, transfers, and wallet interactions before they approve movement or document a case. JIL translates wallet behavior into explainable, auditable, court-ready risk intelligence.

13+

Chains supported

Real-time

Risk API

Typologies

Mixer, peel, layer

CREB

Sealed evidence

Six business outcomes

Where Wallet Intelligence moves the needle.

01 · EXCHANGE AML

Exchange AML monitoring

Real-time risk score on deposits and withdrawals. Triggered checks routed into the SAR workflow.

02 · CUSTODIAN

Custodian screening

Pre-clearance signal on counterparty wallet before institutional transfer. Defensible record for examiner review.

03 · DEFI

DeFi risk layer

Protocols add a risk gate on wallet interactions without taking custody or onboarding identity.

04 · LE

Law enforcement

Investigators reconstruct wallet behavior and counterparty graphs with sealed evidence suitable for court filing.

05 · TREASURY

Institutional treasury

Treasury teams screen counterparty wallets and document the decision before transfer.

06 · PAYMENTS

Payment networks

Card and payment networks evaluate crypto-payment exposure across stablecoin and on-chain rails.

Use cases

Risk signals across real wallet behavior.

MIXER

Mixer & layering detection

Behavioral patterns and proximity to known mixers, tumblers, and layering services across chains.

SANCTIONS

Sanctions proximity

Direct and indirect exposure to OFAC, EU, UN, and national sanctions lists. Hop distance and counterparty graph tracked.

VELOCITY

Velocity anomaly

Unusual movement patterns relative to the wallet's historical baseline and counterparty network.

BRIDGE

Bridge & cross-chain

Cross-chain bridge activity and re-entry patterns through DEXs and bridges with sanctions exposure.

COUNTERPARTY

Counterparty graph

Wallet behavior in the context of its counterparties, not just its own transactions.

TYPOLOGY

Typology library

Known fraud, scam, and laundering typologies maintained and updated as new patterns emerge.

Architecture

From on-chain behavior to court-ready risk.

Wallet activity flows through a multi-chain query layer, scored against the typology library and sanctions overlays, and contextualized by the counterparty graph. The result is a structured risk verdict with reason codes - and a sealed CREB that compliance, investigators, and counsel can verify after the fact.

Wallet Intelligence architecture: multi-chain query, typology library, sanctions overlay, counterparty graph, risk verdict, sealed CREB.

Technical deep dive

From on-chain activity to sealed risk evidence.

Supported chains

13+ chains supported including Bitcoin, Ethereum, Tron, Solana, BNB Chain, Polygon, Avalanche, Arbitrum, Optimism, Base, and major stablecoin rails. Bridge activity tracked across supported networks.

Risk signals

Sanctions proximity, mixer exposure, layering behavior, velocity anomaly, counterparty risk, bridge activity, age/age-on-chain anomalies, dust attack patterns, sybil clustering, and typology matches.

Typology library

Curated set of known typologies: ransomware, scam-rotation, peel chain, mixer/tumbler, layering, terrorist financing, sanctions evasion, exchange withdrawal abuse, and others. Updated as new patterns surface.

Score model

Composite risk score with reason codes. Each contributing signal is visible: which typology, which sanctions hit, which velocity threshold. Not a black-box score.

API response

JSON response with risk score, triggered checks, reason codes, counterparty links, typology matches, timestamp, and an evidence reference suitable for compliance documentation.

Alert routing

Webhook routing into SAR, KYT, and case-management systems. Configurable thresholds per business rule. Watchlist support for ongoing monitoring of specific wallets.

Evidence and CourtChain seal

Risk determination packaged as a CREB with chain data references, counterparty graph, triggered checks, and reason codes. CourtChain seals the bundle under FRE 902(13) for self-authenticating evidence.

What this is not

Scope, plainly.

Not an identity service by itself
Not a custody service
Not a guarantee a wallet is good or bad
Not an AML legal opinion
Not a replacement for compliance officer judgment

Score wallet risk with evidence attached.

Brief your AML or treasury lead. We will walk the typology library, the score model, the API response, and the CourtChain evidence seal.

Request demo Request technical design