# SEON MCP

> SEON MCP connects advanced fraud and risk intelligence directly to your chat interface. It gives you real-time access to digital footprints for emails, phone numbers, and IPs. You can run full Know Your Customer (KYC) checks, screen against global watchlists for AML compliance, and monitor transactions instantly, all without leaving your workflow.

## Overview
- **Category:** industry-titans
- **Price:** Free
- **Tags:** fraud-prevention, risk-scoring, aml-compliance, device-fingerprinting, identity-verification, data-security

## Description

Using this MCP lets you manage fraud prevention and risk orchestration through natural conversation with your AI agent. Instead of juggling multiple dashboards or running manual background checks, your agent handles the heavy lifting. You can ask it to assess a user based on their email address alone, which instantly pulls in digital metadata for social links and domain age. It screens users against global sanctions lists for AML compliance, analyzes IP risk scores, and even lets you monitor organizational fraud health by listing rules or reviewing past transactions. This capability means your AI acts like a dedicated, always-on risk analyst that lives right inside your chat client, making complex operations simple to execute within the Vinkius catalog.

## Tools

### add_label
Adds a specific label or classification tag to existing data for training purposes.

### add_to_list
Adds an item, like a phone number or email, to either a custom blacklist or whitelist.

### aml_screening
Performs comprehensive Anti-Money Laundering screening against global watchlists.

### check_email
Gets a detailed digital footprint and risk score for any given email address.

### check_fraud
Runs a full-scope fraud check on a transaction or user registration attempt.

### check_ip
Retrieves risk data and location intelligence associated with an IP address.

### check_phone
Gathers intelligence on a phone number, including carrier details and validity checks.

### get_account_info
Retrieves general account profile information for monitoring purposes.

### get_transaction
Fetches specific, detailed metadata about a completed or pending transaction.

### list_aml_monitors
Displays the list of current Anti-Money Laundering monitoring rules in place.

### list_lists
Shows all custom blacklists and whitelists currently managed by your account.

### list_rules
Lists all active fraud rules that govern risk scoring for the platform.

## Prompt Examples

**Prompt:** 
```
Check this email for fraud risk: suspicious.user@example.com.
```

**Response:** 
```
I've retrieved the digital footprint. The email has no linked social media accounts and the domain was registered 2 days ago, resulting in a high risk score of 85. Would you like to check the associated IP address?
```

**Prompt:** 
```
Run a fraud risk assessment on a new user registration with email and IP analysis.
```

**Response:** 
```
Fraud assessment completed. Overall risk score: 23/100 (Low Risk). Email analysis: user@gmail.com - Registered 4 years ago, active social profiles (LinkedIn, GitHub), data breach count: 1 (minor). Email score: 15/100 (safe). IP analysis: 203.0.113.45 - ISP: Comcast, Location: San Francisco, CA. VPN: No. Tor: No. Proxy: No. IP score: 18/100 (safe). Device fingerprint: Chrome 125, macOS, unique device. Phone: +1-555-0198 - Carrier: AT&T, type: mobile, valid format. Recommendation: APPROVE.
```

**Prompt:** 
```
Show me all flagged transactions from the last 24 hours with their risk scores and reasons.
```

**Response:** 
```
12 flagged transactions in 24 hours. High risk (3): TX-8923 ($2,400, score 89, disposable email + VPN), TX-8934 ($1,800, score 82, velocity abuse - 5 orders in 10 min), TX-8941 ($3,200, score 91, card-country mismatch + new account). Medium risk (5): velocity patterns, mismatched billing/shipping (scores 55-72). Low risk (4): minor flags, first-time buyers (scores 35-48). Auto-blocked: 2 transactions. Manual review queue: 6. False positive rate (last 30 days): 3.2%.
```

## Capabilities

### Run Fraud Risk Assessments
The MCP performs comprehensive fraud checks on any given transaction or user registration data.

### Analyze Digital Identities
It retrieves social media and domain metadata for emails, phone numbers, and IP addresses to build a digital profile.

### Verify Compliance Status
The agent screens individuals against global watchlists like sanctions and PEP lists for AML compliance.

### Manage Risk Data Sets
You can list existing fraud rules or add specific items to custom blacklists and whitelists.

### Track Business Operations
The MCP allows you to get current account details, view transaction specifics, and monitor the status of various AML monitors.

## Use Cases

### Investigating suspicious new sign-ups
A risk analyst encounters a high volume of registrations. They ask their agent to check_fraud on all pending accounts and then use check_ip for any IPs with known VPN usage, instantly flagging potential bot activity.

### Handling international payment disputes
An ops team member receives a payment from a new country. They ask the agent to get_transaction details to verify shipping/billing matches and run aml_screening on the sender's name, mitigating cross-border financial risk.

### Updating internal fraud policies
A compliance officer needs to update rules. They use list_rules to review existing logic, then use add_to_list to block a known fraudulent domain on the blacklist, ensuring all agents respect the change.

### Investigating account takeovers
A security team member notices suspicious activity. They check_account_info for user history, then use check_phone and check_email to see if linked profiles suddenly changed or match known compromised data patterns.

## Benefits

- Stop jumping between apps. Your AI agent handles everything from checking the phone number (check_phone) to running a full fraud assessment (check_fraud), all in one chat window.
- Ensure global compliance instantly. Use aml_screening to screen users against sanctions and PEP lists, giving you clear answers on regulatory risk without manual spreadsheet work.
- Build better models faster. Instead of guessing, use add_label to feed specific feedback directly into the system, ensuring your fraud detection tools train on real-world outcomes.
- Get comprehensive identity context immediately. When a user signs up, run check_email and get instant social media metadata alongside domain age, improving risk scoring accuracy.
- Understand complex transactions at a glance. Use get_transaction to pull all relevant details—like card country mismatches or velocity abuse flags—without leaving the chat interface.

## How It Works

The bottom line is you get complex fraud intelligence delivered conversationally, without leaving your preferred chat application.

1. Subscribe to this MCP on Vinkius and provide your SEON Admin API Key from your dashboard settings.
2. Tell your AI agent what you need. For example, ask it to 'check the risk for this email' or 'run fraud assessment on this IP address.'
3. Your agent uses the available tools to run real-time checks and returns a clear, actionable report detailing scores, risks, and compliance flags.

## Frequently Asked Questions

**How do I use SEON MCP to check a user's email for fraud?**
You simply instruct your agent to perform a check_email on the address. The tool will return a complete digital footprint, showing things like linked social profiles and domain age alongside an immediate risk score.

**What is aml_screening doing when I use the SEON MCP?**
aml_screening runs your user against global sanction lists and watchlists. It confirms if the individual or entity poses a regulatory compliance threat, which is vital for financial institutions.

**Can I update my fraud models with this MCP?**
Yes. You use add_label to give feedback on past transactions. This trains your underlying models and helps the platform stay synchronized with emerging fraud patterns.

**What if I need to check an IP address for risk?**
Use check_ip. It retrieves detailed data points, including the ISP, geographic location, and whether the IP is known to be associated with VPNs or proxies.

**Does SEON MCP only work for e-commerce fraud?**
No. While excellent for transaction risk, it also helps compliance officers by allowing them to list_aml_monitors and track general account details using get_account_info.