Transactions
The Transactions module is the operational heart of Datalex. Every payment event processed by your system flows through this module, where it is enriched with risk signals, evaluated by active workflows, and made available for manual review and investigation.
The Transactions list view with risk scores, statuses, and filter controls.
Transaction Lifecycle
| Status | Description |
|---|---|
| Approved | The transaction passed all workflow conditions and was allowed. |
| Rejected | A workflow rule triggered a Reject node and the transaction was declined. |
| Pending | The transaction is queued and awaiting workflow evaluation. |
| Flagged | A signal was raised but no terminal decision has been made yet. |
| Under Review | The transaction has been escalated for manual review by an analyst. |
Transaction Attributes
Every transaction carries a rich set of structured attributes that are used for risk evaluation, routing, and investigation.Core Fields
| Attribute | Type | Description |
|---|---|---|
id | Text | Unique transaction identifier |
amount | Number | Transaction amount |
currency | Text | ISO 4217 currency code (e.g., QAR, USD) |
status | Text | Current transaction status |
riskScore | Number | Computed risk score from 0 (safe) to 100 (high risk) |
createdAt | Date | UTC timestamp of when the transaction was received |
paymentMethod | Text | Payment method description |
ipAddress | Text | IP address of the originating device |
deviceId | Text | Unique device identifier |
failureReason | Text | Reason code if the transaction failed |
insight | Text | AI-generated risk summary |
Card Information
| Attribute | Type | Description |
|---|---|---|
card.cardNumber | Text | Masked or tokenised card number |
card.cardHolder | Text | Name of the cardholder |
card.cardExpiry | Text | Expiry date of the card |
card.cardIssuer | Text | Issuing bank or network (e.g., Visa, Mastercard) |
card.cardFingerprint | Text | Unique fingerprint of the card |
cardCountryCode | Text | Country code of the issuing bank |
Payment Info (Metadata)
| Attribute | Description |
|---|---|
paymentInfo.status | Provided payment status from the source |
paymentInfo.failureReason | Provided failure reason from the source |
paymentInfo.cardHolder | Cardholder name from payment metadata |
Merchant Info
| Attribute | Description |
|---|---|
merchantInfo.name | Merchant display name |
merchantInfo.categoryCode | Merchant Category Code (MCC) |
merchantInfo.marketplace | Marketplace or platform name |
merchantInfo.organizationId | Organisation identifier |
User Info
| Attribute | Description |
|---|---|
userInfo.userId | The platform user identifier |
userInfo.email | User email address |
userInfo.accountAge | Account age in days |
userInfo.country | User’s registered country |
Risk Score
The Risk Score is a 0–100 index computed at the time of transaction evaluation by combining signals from active workflow integrations, device telemetry, VPN detection, velocity checks, and rule outcomes.| Score Range | Risk Level | Visual indicator |
|---|---|---|
| 0 – 39 | Low | Green |
| 40 – 69 | Medium | Amber |
| 70 – 100 | High | Red |
Risk score displayed as a colour-coded progress bar on each transaction card.
Fraud Flags
Fraud flags are machine-generated signals that identify specific anomalies detected during evaluation. Multiple flags can be present on a single transaction.| Flag | Description |
|---|---|
high_velocity | Unusual number of transactions in a short time window |
location_mismatch | Transaction origin differs from the billing address country |
high_amount | Amount significantly exceeds the customer’s typical spend |
new_device | First-time device seen for this customer |
vpn_detected | IP address resolves to a known VPN or proxy range |
tor_detected | IP address resolves to a Tor exit node |
suspicious_ip | IP is on a known threat blocklist |
bot_attack | Behavioural signals consistent with automated bot activity |
social_engineering | Pattern consistent with social-engineering indicators |
Transaction Detail View
Click any transaction row to open the full Transaction Detail page.
Transaction detail page with sections for risk, card, merchant, and location.
Sections
Risk Assessment
Displays the risk score, breakdown of individual fraud flags, and an AI-generated insight summarising the key risk drivers.
Card Information
Shows the card number (masked), holder name, expiry, issuer, and card fingerprint used for velocity tracking.
Merchant Information
Provides merchant name, category code, marketplace, organisation, country, risk level, transaction volume, and dispute rate.
Location
Displays the resolved geographic location of the transaction IP address, including city, country, and latitude/longitude on an interactive map.
Related Transactions
Lists prior transactions from the same card fingerprint or user, enabling analysts to spot patterns across multiple interactions.
Transaction Graph
The Transaction Graph provides a network visualisation of relationships between transactions, users, merchants, and devices. It helps analysts identify fraud rings, account takeovers, and merchant collusion by revealing structural patterns that are invisible in flat lists.
Network graph showing connections between transactions, cards, merchants, and devices.
Node types in the graph
| Node type | Represents |
|---|---|
| User | The platform customer |
| Transaction | An individual payment event |
| Merchant | A merchant or business |
| Device | A unique device fingerprint |
| Card | A payment card |
Transaction Analytics
The analytics section of Case Management provides aggregated dashboards over the transactions linked to a set of cases, including:- Transaction volume by time period (area or line chart)
- Status distribution breakdown
- Risk score distribution histogram
- Geographic heat map of transaction origins
Analytics charts for the transaction volume and status breakdown.
Geographic Map
The Location Map aggregates transactions by country and renders them as sized markers on an interactive map. Each marker shows the transaction count, total amount, and highest risk level for that country.
Geographic distribution map with per-country transaction aggregations.
Reviewing a Transaction Manually
- Navigate to Transactions in the main navigation.
- Use the filters to search by date, status, risk level, or merchant.
- Click a transaction to open its detail view.
- Review the risk signals, fraud flags, and related transactions.
- Take one of the following actions:
- Approve — mark the transaction as legitimate.
- Reject — mark the transaction as fraudulent.
- Create Case — escalate to the Case Management module for deeper investigation.
- Flag — add a flag for secondary review without making a final decision.
Action controls on the Transaction Detail page.