Enabling Fraud Prevention

Learn how to enable and configure fraud prevention to protect your digital products from fraudulent purchases.

Prerequisites

Before enabling fraud prevention:

Required:

✅ Shopify plan that includes fraud analysis (Shopify, Advanced, or Plus)
✅ At least Basic or higher plan
✅ Active shop with digital products

Note: Shopify Starter plans do not include fraud analysis.

How to Enable Fraud Prevention

Step 1: Navigate to Settings

Open Alva Digital Downloads app
Click Settings in the navigation menu
Scroll to Fraud Prevention section

Step 2: Enable Fraud Prevention

Find the Enable Fraud Prevention toggle
Click to turn ON (green)

Settings panel expands showing configuration options

Step 3: Configure Fraud Settings

Fraud Prevention Options:

Automatically Flag High Risk Orders

Toggle: ON (recommended)

What it does:

Orders flagged as “High Risk” by Shopify automatically held
No files sent until manual approval
Customer notified of delay

When to use: Always recommended for protection

Automatically Flag Medium Risk Orders

Toggle: OFF (default)
Default: OFF
Recommended: Consider your risk tolerance

What it does:

Orders flagged as “Medium Risk” by Shopify held for review
May increase false positives
More manual review required

When to enable:

High-value digital products
History of fraud attempts
Extra caution needed

When to leave OFF:

Most orders are legitimate
Medium risk rarely indicates fraud
Want faster delivery

Hold All Orders for Review

Toggle: OFF (default)
Use case: Special situations only

What it does:

Every order held regardless of fraud score
Manual approval required for all orders
Maximum control, slowest delivery

When to enable:

Temporary fraud spike
Launching new high-value product
Testing fraud prevention system
Special promotional periods

Not recommended for: Normal daily operations

Step 4: Save Configuration

Review all settings
Click Save button
Confirmation message appears

✅ Fraud prevention is now active!

Configuration Options Explained

Risk Thresholds

Low Risk:

Action: Auto-approve and send files
Shopify indicates: Legitimate order

Medium Risk:

Action: Auto-approve OR hold (based on your setting)
Shopify indicates: Some suspicious signals
Default: Auto-approve

High Risk:

Action: Always hold for review (when fraud prevention enabled)
Shopify indicates: Multiple fraud indicators

Email Notification Integration

Fraud prevention works with email notifications:

Email Disabled + Fraud Enabled:

- Orders held silently
- No email sent while pending
- Email sent after manual approval

Email Enabled + Fraud Enabled:

- High/medium risk orders held (based on settings)
- Pending email sent to customer
- Download email sent after approval

Email Enabled + Fraud Disabled:

- All orders auto-approved
- Download email sent immediately
- No fraud checking

Testing Fraud Prevention

Test with Sample Order

After enabling, test the system:

Option 1: Use Shopify Test Orders

Create test order in Shopify admin
Manually set fraud analysis to “High Risk”
Check if order appears in Flagged Orders
Approve/reject from app

Option 2: Wait for Real Orders

Enable fraud prevention
Monitor next few real orders
Check Flagged Orders page for holds
Approve legitimate orders promptly

Verification Checklist

After enabling, verify:

Toggle shows ON in settings
Configuration saved successfully
High risk orders appear in Flagged Orders page
Test order held correctly
Approval/rejection works
Emails sent after approval (if enabled)
Download links work after approval

How Fraud Prevention Works (Technical)

Order Processing Flow

With Fraud Prevention Enabled:

1. Customer completes purchase
2. Shopify sends ORDERS_PAID webhook
3. App receives order data
4. Check: Fraud prevention enabled?
   ↓
5. YES → Queue fraud check job
6. Background worker calls Shopify API
7. Retrieves fraud analysis
8. Decision:
   - Low Risk → Approve + send email (if enabled)
   - Medium Risk → Check settings
     - Auto-approve setting ON → Approve + send email
     - Auto-approve setting OFF → Hold for review
   - High Risk → Always hold for review
9. Held orders → Flagged Orders page
10. Manual approval → Send email + create download link

Background Processing

Fraud checks run asynchronously:

Order webhook received (instant)
Fraud check queued (instant)
Background worker processes queue (within seconds)
Shopify API called (1-2 seconds)
Result stored in database
Action taken based on risk level

Typical timeline: 5-10 seconds from purchase to decision

Impact on Customer Experience

For Low Risk Orders

Customer sees:

Completes purchase
Receives order confirmation (Shopify)
Receives download email within seconds (if emails enabled)
Downloads files immediately

No difference from orders without fraud prevention.

For Flagged Orders (High/Medium Risk)

Customer sees:

Completes purchase
Receives order confirmation (Shopify)
Does NOT receive download email immediately
Waits for manual review
After approval:
- Receives download email
- Can access files

Email example (if enabled):

Subject: Order Under Review

Hi [Name],

Thank you for your order. We're reviewing it for security
purposes and will send your download link shortly.

Typical review time: 1-2 hours

[Shop Name]

Communication Best Practices

During review period:

Set expectations in order confirmation
Respond to customer inquiries promptly
Review orders within 1-2 hours (business hours)
Approve legitimate orders quickly
Communicate clearly if rejected

Common Setup Issues

Issue: Toggle Won’t Save

Symptoms:

Toggle switches but reverts to OFF
Save button doesn’t work
No confirmation message

Solutions:

Refresh page and try again
Check internet connection
Verify Shopify plan includes fraud analysis
Check browser console for errors
Contact support if persists

Issue: No Orders Being Flagged

Possible causes:

Orders are genuinely low risk
Shopify hasn’t assigned fraud analysis yet (new shops)
Fraud prevention not fully activated

How to verify:

Check Settings → Fraud Prevention toggle is ON
Create test high-risk order
Check Flagged Orders page
Review recent orders in Shopify admin for fraud analysis

Issue: All Orders Being Flagged

Cause: “Hold All Orders for Review” enabled

Solution:

Go to Settings → Fraud Prevention
Turn OFF “Hold All Orders for Review”
Keep only “High Risk” toggle ON
Save settings

Issue: Customers Not Receiving Emails After Approval

Check:

Email notifications enabled in Settings → Email
Email provider configured (Postmark/MailerToGo)
Check Email Logs for send status
Verify customer email address correct
Check spam folder

Best Practices for Setup

1. Start Conservative

First time enabling:

✅ Enable High Risk flagging only
❌ Don’t enable Medium Risk initially
❌ Don’t enable “Hold All Orders”

Why: Learn how system works before increasing restrictions.

2. Monitor First Week

After enabling:

Check Flagged Orders daily
Review false positive rate
Adjust settings if needed
Track customer complaints

3. Set Review Schedule

Establish routine:

Check Flagged Orders 2-3 times per day
Respond to customer inquiries promptly
Review within 1-2 hours (business hours)
Set up notifications (if available)

4. Document Decisions

Keep log of:

Why orders approved
Why orders rejected
Common fraud patterns
False positives

Benefits:

Consistency in decisions
Training for team members
Pattern recognition
Dispute resolution

5. Communicate with Customers

Be transparent:

Mention security review in order confirmation
Provide estimated review time
Respond quickly to inquiries
Explain rejections professionally

Advanced Configuration

Risk Level Strategy by Product Value

Low-value products ($5-20):

High Risk: Flag ✅
Medium Risk: Auto-approve ✅
Reason: Speed over caution

Medium-value products ($20-100):

High Risk: Flag ✅
Medium Risk: Flag ✅
Reason: Balanced approach

High-value products ($100+):

High Risk: Flag ✅
Medium Risk: Flag ✅
Consider: Manual review for all
Reason: Maximum protection

Seasonal Adjustments

Holiday/Sale Periods:

Increase fraud monitoring
Consider flagging medium risk
Review orders more frequently
Expect higher fraud attempts

Normal Periods:

Standard high-risk flagging
Auto-approve medium risk
Regular review schedule

Team Coordination

Multiple team members:

Assign review responsibilities
Set coverage schedule
Document approval criteria
Share fraud patterns
Regular team check-ins

Disabling Fraud Prevention

When to Disable

Consider disabling if:

Very low fraud rate (<1%)
Creating customer friction
Want faster delivery
Manual review burden too high
False positive rate high

How to Disable

Go to Settings → Fraud Prevention
Turn OFF “Enable Fraud Prevention” toggle
Save settings

Effect:

All new orders auto-approved
Existing flagged orders remain held
Must manually approve pending orders
Download emails sent immediately (if enabled)

Partial Disable

Keep fraud prevention but reduce strictness:

Keep fraud prevention ON
Turn OFF medium risk flagging
Only flag high risk
Review less frequently

Monitoring & Maintenance

Regular Checks

Daily:

Review Flagged Orders page
Approve/reject pending orders
Check customer support tickets

Weekly:

Review fraud prevention effectiveness
Check false positive rate
Adjust settings if needed

Monthly:

Analyze fraud trends
Review rejected orders
Update team training
Assess overall impact

Key Metrics to Track

Fraud Prevention Performance:

Total orders flagged
Approved vs. rejected ratio
False positive rate
Average review time
Customer complaints
Actual fraud prevented

Next Steps

Managing Flagged Orders - Approve/reject orders
Fraud Email Notifications - Configure fraud emails
Fraud Prevention Best Practices - Optimize your setup