Skip to content
For financial services

Protect customers from your own name.

Banks and payment providers are the most-impersonated brands in phishing. Give your customers a tool that exposes fake "bank" and "PayPal" mails - before they click.

01
Why it matters

Every phishing mail caught is a prevented fraud case.

Reputation, heuristics and AI in one verdict - in German, with a DE scam corpus.

Catch brand impersonation

Look-alike domains, one-for-L tricks, fake TAN requests - the patterns that hit your customers.

Compliance & audit

Logged, exportable verdicts. Evidence for regulators and fraud teams.

API into your app

"Is this mail real?" as an endpoint - embedded in your online banking or app.

02
Use cases

What arrives at you, what arrives at us.

A concrete example pipeline, from forward to anti-fraud dashboard.

01

Customer forwards

Customer Bauer sees a suspicious Sparkasse-branded mail. She clicks "Forward" and sends it to phishing@my-bank.de.

02

Inbound email

Your mail rule forwards the mail (including all headers) to phishing-triage.x7q3@in.scampilot.de. We accept it within 500 ms.

03

Analyze + cluster

Scampilot inspects content, compares the signal fingerprint against the last 24 hours. If it matches a known template, we cluster it. If not, we escalate.

04

Webhook push to your SOC

One HTTP POST per report to your endpoint. Payload contains verdict, confidence, all signals, evidence strings, cluster ID. Secret as a path suffix - rotatable.

05

Dashboard for new only

In your anti-fraud tooling you only see clusters that first appeared today. Average: 8 to 15 per day. Plus an aggregation of known templates for your stats.

"90 % of reports to phishing@ are real phishing we just archive. 10 % are false alarms. We want the 10 % immediately."- Head of Customer Trust, direct bank
BaFin readiness

MaRisk-compliant audit trail, EU SCC for US sub-processors, full deletion cascade on request.

EU hosting

Frankfurt & Falkenstein, no model training on content, no data resale - built by Pixel & Process UG in Lübeck.

03
Compliance

Contracts your compliance team waves through.

We've already run the DPA past two German bank legal teams. Adjustments can be handled as an appendix.

Data processingStandard DPA (GDPR Art. 28) + EU SCC for AI/email providers as sub-processors.
Retention periodsConfigurable per tenant: 30 days to 7 years. Deletion cascade is automatic.
MaRisk auditAppend-only database log, available as a signed export on request for audit review.
Tenant separationRow-level security in the database, one token bucket per tenant. No cross-tenant visibility possible.

Frequently asked questions

How does Scampilot reduce phishing and payment-fraud losses?

With fast, explainable verdicts on suspicious messages and links, plus a confidence score and signal reasoning - integrable into existing flows via API.

Does Scampilot meet data-residency and evidence needs?

Yes: EU data residency, audit trails, exportable evidence and a custom DPA - suited to regulated teams.

Do I get confidence scores rather than just yes or no?

Yes. Every verdict carries a score from 0 to 100; on low confidence the system automatically escalates to a larger model.