Skip to main content

Overview

AML (Anti-Money Laundering) screening is a critical compliance process that helps identify potential risks associated with individuals and businesses. This guide covers how to integrate and use Parcha’s AML screening capabilities.

Quick Start

API Reference

Endpoint Details

  • URL: https://api.parcha.ai/api/v1/startKYCAgentJob (for individuals) or https://api.parcha.ai/api/v1/startKYBAgentJob (for businesses)
  • Method: POST
  • Authentication: API key as Bearer token required
  • Content-Type: application/json

Response Codes

  • 200 OK: Request successful
  • 400 Bad Request: Invalid input data
  • 401 Unauthorized: Invalid or missing authentication, or insufficient permissions
  • 429 Too Many Requests: Rate limit exceeded
  • 500 Internal Server Error: Server-side error

Response Format

Input Requirements

1. Required Fields

Every request must include:
  • agent_key: The unique identifier for the agent to be used
  • kyc_schema or kyb_schema: The schema containing the entity information

2. Self-Attested Data

Individual (KYC)

Business (KYB)

Screening Types and Vendor Data

1. PEP Screening

Politically Exposed Person (PEP) screening helps identify individuals who hold prominent public functions.

Vendor Data Schema

2. Adverse Media Screening

Checks for negative news and adverse media mentions.

Vendor Data Schema

3. Sanctions Screening

Checks individuals and businesses against global sanctions lists.

Vendor Data Schema

Complete Request Examples

Individual Screening Request

Business Screening Request

Business Screening Request with Vendor Data

Business Screening Request with Associated Individuals

Authentication and Security

Authentication

All requests must include your API key in the Authorization header as a Bearer token:
To obtain an API key, log into your Parcha account and navigate to the API Keys section in your account settings. The API uses role-based access control. Users must have appropriate permissions to access specific agents and endpoints.

Rate Limits

  • PEP screening has a concurrent request limit
  • Extraction operations have separate rate limits
  • Rate limits are enforced per agent and per operation type

Webhooks

Parcha uses signed webhooks for secure delivery of screening results. Webhook payloads are signed using your API secret key. To verify webhook signatures:
  1. Extract the signature from the X-Parcha-Signature header
  2. Use your API secret key to verify the signature against the payload

Best Practices

  1. Data Quality
    • Provide as much information as possible for better matching
    • Use standardized formats for dates (YYYY-MM-DD) and country codes
    • Include all known aliases and alternative names
  2. Performance
    • Use the run_in_parallel flag for parallel processing
    • Implement appropriate retry logic with exponential backoff
    • Monitor webhook deliveries and implement proper error handling
  3. Security
    • Keep API keys and webhook signing secrets secure
    • Implement proper access controls
    • Validate webhook signatures
    • Follow data retention policies

Error Handling

  1. Common Errors
    • Invalid input data: Check required fields and data formats
    • Authentication errors: Verify API key and permissions
    • Rate limit exceeded: Implement appropriate backoff strategy
  2. Best Practices
    • Implement retry logic for transient failures
    • Log detailed error information for debugging
    • Monitor webhook delivery failures

Support

For additional support: