New CBN rules make manual AML non-compliant.

Read the brief
MaiGuard Resolve · Financial Crime Operations

Where alerts become investigations.

MaiGuard Resolve transforms fraud and AML alerts into structured investigations, regulatory filings, and audit-ready evidence. From the first alert to the final regulatory submission, every decision is documented, traceable, and defensible.

Every decision documented. Every investigation audit-ready. Every regulatory filing supported.

case_4471EXAMPLE
REVIEWrisk 72 · RULE-GEO-011
priorityCRITICAL
sla2h left
entityent_2b91 + 3 linked
Claim caseAssign

More than case management. The operating platform for financial crime investigations and regulatory compliance.

When Sentinel flags a transaction or Verify escalates a customer's risk, the work lands here — investigated, decided, documented, and carried through to regulatory filing on one audit trail. No switching tools, no hunting for context.

One workspace

One workspace for every financial crime investigation

Not just fraud. Resolve is where the whole compliance function investigates everything that carries financial-crime risk.

Fraud

Confirmed and suspected fraud, from the first alert to a documented outcome.

AML alerts

Monitoring alerts investigated with the full customer and transaction context.

High-risk customers

Enhanced due diligence reviews escalated from Verify's risk reassessment.

Suspicious activity

Patterns that need a human judgement and a documented rationale.

Policy violations

Internal control breaches, tracked, investigated, and resolved.

Internal investigations

Staff, agent, and merchant investigations in one place.

Compliance exceptions

Exceptions logged, owned, and closed with the evidence attached.

Regulatory findings

Examination findings worked and archived through to closure.

The queue

A queue built to be worked

Cases are ranked, time-boxed, and routed to people, so the most urgent investigation is always at the top.

Priority & risk ranking

Cases are ranked by priority, from critical to low, and by risk score, so the most urgent surface first.

SLA countdown

Every case carries an SLA: on-time, warning, or overdue. Overdue cases are surfaced first.

Assignment & routing

Claim, assign, or reassign to analysts. Escalations auto-route to an available supervisor.

Filters & views

Tabs for assigned to me, unassigned, unresolved, and resolved, plus priority and SLA filters.

Queue health

At-a-glance counts for queued, assigned, unassigned, overdue, and overall SLA health.

Bulk actions

Assign, approve, or reject in bulk when the pattern across cases is clear.

Evidence in one place

Every investigation, without the spreadsheet

Each case carries the full evidence in one place, so the decision is made with the whole picture — not an email thread and an exported CSV.

Transaction payload

Amount, currency, and the full event, with sensitive fields masked by permission.

Matched rules & risk

The risk score and the exact rules and playbook that fired on the transaction.

Entity graph

Linked accounts, shared devices, and counterparty clusters, mapped.

Device & behavior signals

Fingerprints, anomalies, and device reuse across the network.

Customer history

Prior transactions and how earlier cases on the entity resolved.

Case timeline

An append-only record of every claim, note, change, and escalation.

The workflow

From alert to regulatory filing to audit archive

An alert is a signal. An investigation is a decision — owned, evidenced, and defensible. Resolve carries every case from the first alert through regulatory filing and into the archive, so nothing lives in an inbox and nothing closes without a rationale.

Open

Signal to case

  1. Alert

    From Sentinel monitoring or a Verify customer-risk escalation.

  2. Risk Assessment

    Triage and prioritise: what is this, and how urgent?

Investigate

Build the case

  1. Evidence Collection

    Transactions, identity, device, and entity links gathered in-case.

    In-case, not email
  2. Analyst Review

    A human judgement, with the full context attached.

  3. Internal Collaboration

    Assign, comment, and four-eyes review across the team.

Resolve & report

Decide, file, archive

  1. Decision

    A documented outcome with a captured rationale.

    Documented
  2. SAR / STR / Regulatory Filingwhere applicable

    Generate the report from the case, with the evidence attached.

    Filing
  3. Regulatory Submission

    Internal approval, then submission to the FIU or regulator.

    Submitted
  4. Case Closed

    Closed with outcome, owner, filing record, and timeline intact.

  5. Audit Archive

    An immutable, examination-ready record is retained.

    Audit-ready
Powered by MaiGuard Assist

An agent in every investigation

MaiGuard Assist works inside the case. Analysts investigate in plain language, get the score explained, and let it draft the narrative and prepare the next action, always for their approval.

  • Ask about the transaction, entity, or policy in plain language
  • Get the risk score explained, signal by signal
  • Surface suggested next steps and the transaction drivers
  • Draft the STR or SAR narrative from the case evidence
  • Prepare enforcement actions, executed only on your approval
Resolution outcomes

Every resolution is documented — and feeds the model

Cases close with a labelled outcome that both completes the record and sharpens the scoring pipeline.

LEGITIMATE

Cleared and labelled

The transaction is released and labelled legitimate, reducing future risk weight for similar patterns.

SUSPICIOUS (AML)

Enhanced monitoring + SAR

Flags the customer for enhanced monitoring and opens a suspicious-activity report workflow.

CONFIRMED FRAUD

Blocked and fed to the model

The transaction is blocked, the entity is flagged, and the outcome feeds model training.

ESCALATED

Senior or compliance review

Routed to a senior analyst or the compliance queue with the full context attached.

Regulatory operations

Simplify regulatory reporting

Generate and manage regulatory reports from completed investigations. Resolve keeps supporting evidence, investigation history, analyst decisions, and filing records connected — making regulatory reporting faster, more consistent, and fully auditable.

Supported report types

STRSuspicious TransactionSARSuspicious ActivityCTRCurrency TransactionFTRFunds TransferPEPPEP ReviewSANCTIONSSanctions EscalationTFTerrorism Financing EscalationFRAUDFraud Transaction Report

Case-to-filing traceability

Every filing links back to the investigation, evidence, and decisions behind it.

Supporting evidence attachment

Bundle the case evidence with the report as submission-ready artifacts (PDF, XML, CSV).

Internal approvals before submission

Route every report through review and sign-off before anything is filed.

Filing history

A complete record of what was filed, when, by whom, and against which case.

Regulatory audit trail

Append-only, timestamped, attributed, and exportable — ready for examination.

Examination-ready

Answer CBN examinations from one complete, attributable record.

From alert to regulatory filing, on one platform.

MaiGuard Resolve is the operating platform for financial crime operations — investigation, collaboration, regulatory reporting, and audit-ready evidence. Talk to us about your workflow.