Powered by the TrustRelay Fabric
Payout Policy Engine
Pre-flight policy enforcement before funds move.
Payout Policy Engine is powered by the TrustRelay Fabric, evaluating policies against unified vendor data, bank account status, and sanctions results before any payment leaves your bank.
Problem
Payment approvals happen in ERP without real-time context on vendor status, bank account changes, or risk signals. No pre-flight controls to catch fraud or policy violations before funds move.
Risk
Paying compromised accounts, missing bank change fraud, violating internal controls, or funding sanctioned entities. No way to gate payouts based on verification status.
Solution
Payout Policy Engine provides synchronous decisioning via API. ERP sends payout intent, Fabric evaluates policies (vendor status, bank changes, sanctions, amount limits), returns approve/hold/deny with evidence captured for audit.
Core Capabilities
Decision API with Risk Scoring
REST API for synchronous policy evaluation with real-time risk scores. ERP calls with payout intent, receives approve/hold/deny decision with confidence-weighted reasoning.
Intelligent Risk Signals
ML-powered feature analysis evaluates vendor age, bank change frequency, prior return patterns, and network-wide risk signals. Risk scores inform policy decisions without replacing human oversight.
First-Payment Holds
Automatically hold first payments to new vendors pending manual review. Risk-aware thresholds adjust based on vendor profile and historical patterns.
Bank Change Detection
AI monitors bank account change patterns across the network. Flag and hold payouts when vendor updates banking details in suspicious patterns. Requires re-verification before releasing funds.
Explainable Decisions
Every hold or denial includes human-readable reasoning generated from policy evaluations and risk factors. No black boxes—auditors see exactly why each decision was made.
Idempotency & Replay Protection
Idempotent decision API prevents duplicate evaluations. All decisions logged with full context to Evidence Vault for compliance and forensics.
How It Works
ERP Calls Decision API
When AP analyst approves payment in NetSuite/SAP, ERP calls TrustRelay Decision API with payout intent (vendor ID, amount, rail, idempotency key).
Policy Evaluation
Fabric evaluates tenant policies: vendor verification status, bank change flags, sanctions results, first-payment rules, amount limits, and rail constraints.
Decision Returned
API returns APPROVE, HOLD, or DENY with human-readable reasoning ("first payment to new vendor", "bank account changed", "sanctions flagged").
Evidence Captured
Every decision, policy rule evaluated, and vendor state snapshot saved to Evidence Vault. Immutable audit trail for compliance and forensics.
Connection to TrustRelay Fabric
Vendor Data Integration
Policy Engine reads vendor status, bank account history, and sanctions flags from Fabric. Single source of truth ensures decisions reflect latest verified state.
Tenant Policy Configuration
Rules stored in Fabric's policy layer. Configure per-tenant thresholds, first-payment holds, rail limits, and vendor gating logic via Tenant Config Service.
Reconciliation Outcomes
Approved payout intents flow to Reconciliation Studio. Bank outcomes (settled/returned) feed back into Fabric, closing the loop for GL export and audit evidence.
For Your CFO
Policy Engine catches fraud before it happens. Instead of detecting ACH fraud after the money's gone, Policy Engine blocks compromised payments at decision time. Bank change? Held. Sanctions match? Denied. First payment over threshold? Manual review.
Policies are deterministic, not discretionary. No more "I didn't know" or "I thought it was okay." Every payout evaluated against explicit rules. Holds and denials logged with reasoning for audit.
ERP integration is clean. One API call from NetSuite or SAP. No middleware spaghetti, no "sync delays," no wondering if the rule actually fired. Synchronous decision means ERP knows immediately whether to proceed.