Use-case

This guide helps companies that have a single payment form to accept donations or to accept payments for services that do not require fulfillment of items prevent chargebacks.

Sending Data to Sift

A core integration includes the following (when applicable):

Send User Activity
Send Key User Events
When you process a payment
  1. When you process a payment, send a $transaction event with
    • $transacton_status : '$pending'
    • $transaction_type : '$sale' (or '$authorize' if you authorize before capturing
    • Use the customer's email address (lowercase) as $user_id if they're not logged in to an account.
    • Set the $amount field to the amount they are donating.
    • Fill out as many fields in the $payment_method object as possible.
  2. Check the response from the $transaction event for our risk assessment (see the 'Make Decisions' section below).
  3. If you proceed with the transaction, send another $transaction event with
    • $transacton_status : '$success', '$failure' (based on response from the payment gateway)
    • $transaction_type : '$sale' (or '$authorize' - the same as before)
    • Fill out all fields from the previous $transaction event.
  4. If you do a separate authorization, send a third $transaction event with
    • $transaction_type : '$capture'
    • Fill out all fields from the previous $transaction events.
Additional Events

The following events can be sent to capture a more complete picture of users when applicable: $update_account (whenever a user updates their account information, e.g. adds payment information or changes contact info), $login, $logout.

Send Business Decisions

Whenever your automated systems or analysts take action, send those actions into Sift as Decision events. Actions range from positive (eg Approve Order), to neutral (Flag Account), to negative (Ban User). The key thing is that you should send all Actions you take to Sift, not just your negative actions.

Set up your Business Decisions

In order to send Decision events you'll first have to create the specific Decisions your business takes in the Sift Console. While we start all accounts out with a few generic Decisions, Decisions are fully customizable so you can create a Decision for every action that your business takes. Some examples of Decisions are:

  • Ban Account (Block Category Decision)
  • Cancel Order (Block Category Decision)
  • Flag for Additional Review (Watch Category Decision)
  • Approve User (Accept Category Decision)

See the Decisions tutorial for more context.

During your integration, you should send the Decisions that your business is currently making through any internal fraud engines or Manual Review processes to the Sift Decisions API. If you currently do not have in-house fraud logic or a manual review process, work with Sift to setup your initial Workflows within Sift's platform.

Get Started with Sift Scores

When you are initially integrating with Sift, your scores will be based on whatever data you’ve sent us. So if it is a brand new integration with no backfilled data, Sift will need a week or two of data to learn your unique fraud patterns. One of the key strengths of the Sift platform is that it consistently learns as you send more and more data to it. You should see a substantial increase in accuracy of your scores during these first weeks as you send more Decisions and User Events.

During this stage, you should be assessing your Sift Scores in the Sift Console and determining which actions you want to take for different score ranges. Since all businesses are different, finding your unique score thresholds that achieve your business goals is key.

To reduce the amount of time required in this initial learning phase, you can send a historical backfill so that Sift can learn about your user's fraud patterns.

Build Your Business Logic With Sift Scores

Now that you sending both user events and business decisions to Sift, you’re ready to start using Sift scores in your business logic. At this point, you’ll have an understanding how scores correlate to different levels of risk. Based on the user’s risk score, you’ll set up different outcomes within your application (eg users with low score are automatically approved).

To build this logic, you'll want to evaluate a user's Sift Score at the key events where bad users can hurt your business or good users can have a more frictionless experience.

The two ways to use Sift Scores:

  • Create a Sift Workflow: Sift Workflows give you a powerful way to automate your Decisions without having to write business logic on your side. Workflows let you set up rules that gets evaluated whenever specified events occur. These rules enable you to route users to different outcomes based on Sift Score and other attributes of the user and transaction (eg User is from Canada, Order is greater than $500, and Sift Score is greater than 80). With Sift Workflows, you also get Sift Review Queues for fast, easy investigation so you won’t have to build your own queues. To learn more, see our Workflows documentation.
  • Build application logic in your system: You can synchronously request the Sift score of a user with any event you send to Sift. This score will take into consideration all data you’ve sent to Sift including the event you just sent. Sift Scores should only be requested at the key events where fraud or abuse occurs (eg ask for score when sending a Create Order event) To learn more, see our API documentation

Any questions? We're happy to talk it through.