Sift
Active competitorBehavioral data network (1T+ events/year from 34k+ apps). Identity Trust XD framework. Wager Risk Signals launched 2025 — push into iGaming. Complement, not Compete.
Detection scorecard
How Sift handles every spoofing technique we test for. Click any cell for findings.
| Competitor | VPN | Proxy | Remote access | Fake GPS app | GPS spoofer | Emulator | Device farm | Jailbreak / Root | Resigned / tampered app | Sideload (PlayCover) | Browser extension | MITM / replay | Tor |
|---|
Strongest findings
Failed and partial test outcomes ranked for sales impact — what to lean on in a call.
No findings yet
Once tests land in updates/ with an outcome, they'll surface here.
All findings
Test results and intel tagged to Sift.
Battle card
Talking points for a live sales call.
Sift is an AI-powered fraud prevention platform with a global behavioural data network processing 1+ trillion events annually from 34,000+ apps and sites. **GeoComply's internal classification: complement, not primary competitor.** Sift provides behavioural fraud intelligence + transaction risk scoring; GeoComply provides verified physical location + jurisdiction enforcement. **Watchpoint: Wager Risk Signals (launched 2025)** — iGaming-specific betting velocity signals. A direct push into GeoComply's core vertical. Anticipate Sift appearing in iGaming operator conversations as a bundled fraud option alongside existing geo-compliance vendors.
Watch out for
- Best-in-class behavioural data network: 1T+ events/year from 34,000+ apps + sites.
- Identity Trust XD (2025) — cross-dimensional identity profiling layer aggregating behavioural / device / transaction signals.
- Global Identity Insights (March 2025) — cross-network user profiles in the Sift Console.
- ActivityIQ (May 2025) — generative AI surfacing ATO behavioural anomalies.
- #1 G2 ranking across all fraud categories (2025, second consecutive year).
- Pre-built integrations: Auth0, Ping Identity, Okta, PayPal, Braintree, Checkout.com, Adyen.
How we win
- IP-only geolocation — no GPS, Wi-Fi, or Bluetooth sensor fusion.
- VPN/proxy detection is behavioural inference (Sift's own data shows fraudsters use 20-36% fewer IPs — detection is pattern-based, not direct classification).
- No published independent accuracy test for VPN/proxy detection (vs GeoGuard 99.1% / 0% FPR, Kingsmead Sept 2025).
- Significant manual review workload — Sift themselves note this as a product weakness.
- No jurisdiction enforcement — risk score only.
- No AML, no compliance audit log.
Capability claims
What they say they do, grouped by category. Cross-check against the detection scorecard above — claims and tests don't always match.
Geolocation
How accurately and reliably the product determines a user's real location.
- GPS / OS locationUses native device GPS or OS-level location services.○ Noverifiedstale
- Wi-Fi triangulation○ Noverifiedstale
- IP geolocation● Yesverifiedstale
- IP-change detectionContinuously monitors IP and re-runs geolocation on Wi-Fi ↔ cellular or VPN swap (GeoComply MyIP equivalent).● Yesverifiedstale
- Boundary / state-lineHandles users moving across regulated boundaries during an active session.○ Noverifiedstale
- Near-border accuracyMulti-point aggregation + buffer-zone handling near regulated borders; measured as pass rate at 250m.○ Noverifiedstale
- Pre-login pre-check◐ Partialverifiedstale
Sift Score 0-100; standalone risk score API.
- Multi-jurisdictionSingle integration handling operators in multiple regulated states (GeoComply Multipass / Dynamic Boundaries equivalent).○ Noverifiedstale
- Desktop plugin (PLC-class)Native desktop client / plugin required by PA, NJ, MS and most US iGaming regulators.○ Noverifiedstale
- On-property BLE geofenceBluetooth Low Energy precision geofencing for tribal / on-property venues (PinPoint-class).· Unknowninferredstale
Anti-spoofing detection
Detection coverage for the spoof vectors tested by the Competitive Intelligence team. Cell values reflect SDK-level detection of the listed vector at the most recently tested operator.
- VPN exit nodesDetects commercial VPN exit nodes (NordVPN, ExpressVPN, Surfshark, etc.).◐ Partialverifiedstale
Behavioural inference, not direct classification. No published accuracy.
- Proxy / residentialDetects datacenter and residential proxies — the harder class of IP obfuscation.◐ Partialverifiedstale
- Tor exits· Unknownrumorstale
- Remote desktop (RDP)Detects AnyDesk, TeamViewer, FaceTime, Assistant, HopToDesk, iPhone screen mirroring, RustDesk and similar remote-control sessions.· Unknownrumorstale
- Fake-location appsDetects iAnyGo / Fake GPS / mock-location apps on iOS and Android.○ Noverifiedstale
- Hardware GPS spooferDetects HackRF / BladeRF and GPS-simulator-device signal injection.○ Noverifiedstale
- Emulator / VMDetects Xcode iOS Simulator, BlueStacks, Genymotion and similar virtual environments.● Yesverifiedstale
- Device farm / VMOSDetects VMOS / virtualized Android device-farm environments used for multi-accounting.● Yesverifiedstale
Identity Trust XD aggregates cross-network device + identity signals.
- Jailbreak / rootDetects jailbroken iOS, rooted Android (incl. Magisk hidden root), and Frida / runtime-hook tampering.◐ Partialverifiedstale
- Resigned / tampered appDetects iOS apps that have been re-signed / Android apps that have been repackaged with injected code.· Unknowninferredstale
- Sideload (PlayCover)Detects ARM-macOS iOS sideloading via PlayCover and equivalent hardware-abstraction loaders.· Unknowninferredstale
- Browser extension spoofDetects Chrome / browser extensions that spoof location (Location Guard, Hola, etc.).· Unknowninferredstale
- Session terminationTerminates session when location services are disabled mid-game or device leaves the jurisdiction.● Yesverifiedstale
- MITM / replay attackResists network-level interception, request tampering, and replay attacks against the SDK ↔ backend channel.· Unknownrumorstale
Identity & KYC
Document verification, biometric liveness, sanctions screening.
- Document scan / OCR○ Noverifiedstale
- Biometric liveness○ Noverifiedstale
- Sanctions / PEP○ Noverifiedstale
- AML / responsible gaming○ Noverifiedstale
- Reusable identity· Unknowninferredstale
Platform coverage
Which surfaces the SDK / product runs on.
- iOS native● Yesverifiedstale
- Android native● Yesverifiedstale
- Web / browser● Yesverifiedstale
JavaScript tag.
- React Native· Unknowninferredstale
- Flutter· Unknowninferredstale
- Unity· Unknowninferredstale
- .NET / desktop· Unknowninferredstale
- Server-side API● Yesverifiedstale
Compliance & certification
Regulatory coverage and certifications.
- US state-licensed (iGaming/sportsbook)· Unknowninferredstale
- US tribal / on-property· Unknowninferredstale
- Canadian provincial· Unknowninferredstale
- European (MGA/UKGC)· Unknowninferredstale
- LatAm (Brazil SPA)· Unknowninferredstale
- SOC 2 Type II· Unknowninferredstale
- ISO 27001· Unknowninferredstale
- GLI-certified· Unknowninferredstale
Fraud & device intelligence
Device fingerprinting, IP intelligence, behavioral signals, account-takeover detection.
- Device fingerprint● Yesverifiedstale
- IP intelligence DBMaintained DB of VPN / TOR / proxy / hijacked-residential IPs with documented refresh cadence (GeoGuard equivalent).◐ Partialverifiedstale
- Behavioral signals● Yesverifiedstale
1T+ events/year — core differentiator.
- Velocity / impossible travel● Yesverifiedstale
Including Wager Risk Signals (2025) for iGaming.
- Bot detection● Yesverifiedstale
- Account takeover● Yesverifiedstale
ActivityIQ (May 2025) — gen-AI ATO detection.
- Chargeback mgmt● Yesverifiedstale
Dispute Management — core product.
Ops & integration
How easy the product is to integrate, observe, and operate.
- Self-serve onboarding· Unknowninferredstale
- Case management UI● Yesverifiedstale
- Webhook delivery● Yesverifiedstale
- Real-time API● Yesverifiedstale
Sift Score API for in-house decisioning engines.
- Analytics dashboard● Yesverifiedstale
- Audit log export○ Noverifiedstale
- Encrypted responseDetection flag names hidden from the end user (GeoComply uses encrypted XML; most challengers expose JSON flag names).· Unknowninferredstale
- SDK hardeningSDK is signed, obfuscated, and license-bound — not findable / patchable to inject coordinates client-side.· Unknowninferredstale
Commercial
Pricing model and go-to-market shape.
- Usage-based pricing● Yesverifiedstale
- Flat license / enterprise· Unknowninferredstale
- Free tier / trial· Unknowninferredstale
- Publicly listed pricing○ Noverifiedstale
- Bundled with platformGeo is bundled inside a broader platform deal (OpenBet, GeoLocs/Mkodo, Playtech).· Unknowninferredstale
Resources
Briefings, source docs, and external links.
Website (1)
Sift is a complement in fintech / crypto / e-commerce. But Wager Risk Signals (2025) is a direct push into iGaming — surface this as a watchpoint, not a current displacement risk.
Talking points
- Co-sell in fintech / crypto / e-commerce. Sift covers behavioural fraud + ATO + chargeback; GeoComply covers location compliance.
- iGaming watchpoint. Wager Risk Signals positions Sift as a bundled fraud option alongside geo-compliance vendors. The deterministic vs probabilistic argument (pass/fail location vs risk score) is GeoComply's strongest counter.
- Manual review burden is a Sift-acknowledged weakness. GeoComply's deterministic location decisions need no analyst review — operational efficiency argument in fraud-team evaluations.
- Sift Score API is the same integration model GeoComply uses for fintech / crypto — head-to-head signal comparison in custom decisioning engines. Make the case for verified location vs behavioural score.