Fraud management
Configure Recurly's fraud management tools — including Kount integration, AVS/CVV verification, risk score thresholds, velocity rules, and blocked countries — to protect against payment fraud.
Limitations
- Only new card verifications (sign-ups and billing info updates) are subject to risk inquiries. Existing accounts with a card on file are not re-evaluated unless billing information is updated.
- Fraud detection accuracy depends on the quality and completeness of transaction and customer data provided.
Definition
Key benefits
Key details
Kount
Recurly uses Kount as its primary fraud management integration partner. See the Kount integration documentation for full details.
AVS and CVV verification
AVS and CVV responses from gateway partners are used as part of Recurly's fraud prevention. See Payment Settings for configuration details.
Fraud management configuration
Navigate to Configuration → Fraud Management in Recurly to customize your fraud detection settings.
The overview page shows whether fraud management is active and how it is configured. To view fraudulent transactions, click View All (Enterprise merchants only). To adjust settings, click Configure Settings in the upper right corner.
Enable fraud management
Set the status to Enabled to activate real-time fraud monitoring.

Decline threshold rules
High risk decline
Kount analyzes transactions for connections to known fraud outside Recurly's network. Any transaction identified as High Risk is automatically declined.

Risk score decline threshold
This setting defines the risk score above which a transaction is automatically declined. A higher threshold means a more lenient approach — fewer declines. A lower threshold means stricter rules — more declines. Select the threshold from the dropdown to match your organization's risk tolerance.

Fraud velocity rules
Velocity rules restrict how frequently the same credit/debit card, IP address, email, or device can be used to enter or update billing information.

- Credit cards — Limits how often billing information can be updated using the same card number within a single hour.
- IP addresses — Limits billing info updates from the same IP address within an hour.
- Email addresses — Caps billing info updates using the same email address within a 24-hour period.
- Devices — Controls how often billing updates can be initiated from the same device within an hour.
Blocked countries

Automatically decline transactions from countries you designate as high risk. The block activates when the transaction's BIN (Bank Identification Number) country matches any country on your deny list. This rule applies to credit card transactions only.
Updated 6 days ago