KYC / KYB · Identity-as-a-Service

Verified humans, reusable identity.

KYCPort verifies a person once and lets them reuse that verification across every service you run — with bank-grade AML screening, document + liveness checks, and a clean “Sign in with KYCPort” experience.

Verify once, reuse everywhere

A person completes KYC a single time and carries a reusable, privacy-preserving credential across every tenant — selective disclosure, no re-uploads.

Human-verified, not just document-checked

The enforced decision engine returns an outcome plus human_verified and an automation tier — so you know whether a real human was confirmed and how it was decided.

Sign in with KYCPort

Drop-in OIDC (PKCE S256, EdDSA ID tokens with kyc_* claims). Your relying-party backend holds the keys; the browser never does.

Multi-tenant by construction

Postgres row-level security isolates every tenant's data at the database, not just the app layer. KYC/PII isolation survives application bugs.

Security by design

This entire UI runs the BFF pattern: a server-side Backend-For-Frontend holds the tenant API key and proxies to the core API. The browser only ever sees an httpOnly, Secure, SameSite session cookie. No JS-readable tokens — ever.