A complete compliance infrastructure for crypto businesses that need to meet regulatory requirements without sacrificing the principles that make Web3 valuable.
If you're running a crypto exchange, DeFi protocol, or any platform handling digital assets, you're dealing with an increasingly complex regulatory landscape. KYC, AML, sanctions screening, transaction monitoring—these aren't optional anymore, and building them from scratch is expensive and time-consuming.
This platform gives you the compliance infrastructure you need, built specifically for blockchain companies. It handles identity verification, monitors on-chain activity, flags suspicious transactions, and generates the reports regulators actually want to see.
KYC verification
Complete identity verification flow from document collection through approval. Users submit IDs and selfies, documents get OCR'd and verified, and compliance teams can review everything in a centralized queue. Tracks verification status, expiry dates, and risk levels per user.
AML monitoring
Watches blockchain transactions in real-time and flags patterns that look suspicious. Checks wallet addresses against sanctions lists, screens for politically exposed persons, and scores risk based on transaction behavior and fund sources. Not perfect, but catches most of the obvious stuff.
Case management
When something gets flagged, investigators need tools to actually work the case. This includes assignment workflows, evidence collection, note-taking, and status tracking from initial alert through resolution. Integrates with the alert system so nothing falls through the cracks.
Blockchain analytics
Pulls on-chain data across multiple networks (Ethereum, BSC, Polygon) to understand transaction flows, track address relationships, and identify unusual patterns. Useful for both proactive monitoring and investigating specific cases.
Compliance reporting
Generates SARs (Suspicious Activity Reports) and other regulatory filings in the formats authorities expect. Export options include PDF, CSV, and JSON. Templates are designed to match actual regulatory requirements, though you should obviously have legal review anything before submission.
Built with React and TypeScript because we needed something that could handle complex state management while staying maintainable. Tailwind keeps the UI consistent without fighting with CSS. For Web3 interactions, we're using ethers.js—it's well-documented and handles most blockchain connectivity needs.
The current version uses local storage and mock APIs for data persistence, which makes it easy to demo and test. In production, you'd swap in a proper backend with PostgreSQL or similar, add authentication infrastructure, and connect to real KYC/AML service providers.
Security features include role-based access control, audit logging, encrypted storage, and session management. Two-factor authentication is supported but needs to be configured with your preferred provider.
Clone the repository:
git clone <repo-url>
cd web3-compliance-platformInstall dependencies:
npm installStart the development server:
npm run devOpen http://localhost:3000 and you should see the dashboard.
For production deployment, create a .env.local file:
NEXT_PUBLIC_RPC_URL=your_rpc_endpoint
NEXT_PUBLIC_CHAIN_ID=1
NEXT_PUBLIC_SANCTIONS_API=your_sanctions_api_key
NEXT_PUBLIC_KYC_PROVIDER=your_kyc_provider_key
NEXT_PUBLIC_FAKE_BACKEND=false
The fake backend flag is useful during development when you don't want to burn through API credits or need to work offline.
The platform is designed to work with established compliance vendors:
- Chainalysis / Elliptic / TRM Labs: Blockchain intelligence and risk scoring
- Onfido / Jumio: ID document verification and liveness checks
- OFAC / UN sanctions lists: Automated sanctions screening
- Email/SMS providers: User notifications and alerts
Most integrations are optional and can be swapped based on your preferences and budget.
The repository comes with mock data so you can explore functionality without connecting to real services:
- Sample KYC submissions in various states
- Generated blockchain transactions with different risk profiles
- Example AML alerts and investigation cases
- Pre-formatted compliance reports
This makes it easier to demo to stakeholders or test workflows before going live.
This is a solid foundation, but don't deploy it to production without:
- Replacing mock storage with a real database
- Implementing proper authentication (OAuth, JWT, etc.)
- Setting up encrypted backups for sensitive data
- Configuring monitoring and alerting
- Getting a legal review of your compliance workflows
- Penetration testing, especially around data handling
- Ensuring you meet jurisdiction-specific requirements
Compliance is serious business and regulations vary significantly by region. This platform handles the technical infrastructure, but you still need legal guidance.
Features we're considering:
- Machine learning models for better risk prediction
- Zero-knowledge proofs for privacy-preserving KYC
- Mobile app for compliance officers in the field
- Multi-tenant architecture for white-label deployment
- Automated regulatory filing integration
- Support for additional blockchain networks
If you need something specific, open an issue and let's discuss.
MIT License. Use it commercially, modify it, build on top of it—just don't blame us if something breaks.