Protect customers from your own name.
Banks and payment providers are the most-impersonated brands in phishing. Give your customers a tool that exposes fake "bank" and "PayPal" mails - before they click.
Every phishing mail caught is a prevented fraud case.
Reputation, heuristics and AI in one verdict - in German, with a DE scam corpus.
Catch brand impersonation
Look-alike domains, one-for-L tricks, fake TAN requests - the patterns that hit your customers.
Compliance & audit
Logged, exportable verdicts. Evidence for regulators and fraud teams.
API into your app
"Is this mail real?" as an endpoint - embedded in your online banking or app.
What arrives at you, what arrives at us.
A concrete example pipeline, from forward to anti-fraud dashboard.
Customer forwards
Customer Bauer sees a suspicious Sparkasse-branded mail. She clicks "Forward" and sends it to phishing@my-bank.de.
Inbound email
Your mail rule forwards the mail (including all headers) to phishing-triage.x7q3@in.scampilot.de. We accept it within 500 ms.
Analyze + cluster
Scampilot inspects content, compares the signal fingerprint against the last 24 hours. If it matches a known template, we cluster it. If not, we escalate.
Webhook push to your SOC
One HTTP POST per report to your endpoint. Payload contains verdict, confidence, all signals, evidence strings, cluster ID. Secret as a path suffix - rotatable.
Dashboard for new only
In your anti-fraud tooling you only see clusters that first appeared today. Average: 8 to 15 per day. Plus an aggregation of known templates for your stats.
"90 % of reports to phishing@ are real phishing we just archive. 10 % are false alarms. We want the 10 % immediately."- Head of Customer Trust, direct bank
MaRisk-compliant audit trail, EU SCC for US sub-processors, full deletion cascade on request.
Frankfurt & Falkenstein, no model training on content, no data resale - built by Pixel & Process UG in Lübeck.
Contracts your compliance team waves through.
We've already run the DPA past two German bank legal teams. Adjustments can be handled as an appendix.
| Data processing | Standard DPA (GDPR Art. 28) + EU SCC for AI/email providers as sub-processors. |
| Retention periods | Configurable per tenant: 30 days to 7 years. Deletion cascade is automatic. |
| MaRisk audit | Append-only database log, available as a signed export on request for audit review. |
| Tenant separation | Row-level security in the database, one token bucket per tenant. No cross-tenant visibility possible. |
Frequently asked questions
How does Scampilot reduce phishing and payment-fraud losses?
With fast, explainable verdicts on suspicious messages and links, plus a confidence score and signal reasoning - integrable into existing flows via API.
Does Scampilot meet data-residency and evidence needs?
Yes: EU data residency, audit trails, exportable evidence and a custom DPA - suited to regulated teams.
Do I get confidence scores rather than just yes or no?
Yes. Every verdict carries a score from 0 to 100; on low confidence the system automatically escalates to a larger model.
