From Awareness to Action: How LOQR Tackles Deepfake Threats

As synthetic media created using Artificial Intelligence (AI), deepfakes are hyper-realistic images, videos, or audio generated by AI that can impersonate people with startling accuracy. In the context of financial services, the consequences are serious: account takeovers, fraudulent onboarding, and high-risk social engineering attacks.

Recognising the urgency, LOQR has created a security ecosystem that not only detects these threats but also prevents them from succeeding. This blogpost outlines how our LINCE certification, biometric verification with liveness detection, Strong Customer Authentication (SCA), and regulatory compliance are combined to protect identities and transactions in the digital age.

LINCE Certification: Verified, Trusted, Compliant

In 2024, LOQR obtained LINCE biometric-based identity verification certification from Spain’s National Cryptologic Centre (CCN), enabling our systems to meet the highest technical and legal standards for secure, fraud-resistant digital identity verification. This certification:

– Validates our remote identity verification capabilities (including face match and liveness detection) through independent testing.
– Confirms our inclusion in Spain’s trusted ICT security catalogues.
– Supports compliance with eIDAS, enabling legally binding Qualified Electronic Signatures across the EU.

Biometric Defence: Face Recognition & Liveness Detection

Deepfakes are designed to fool the human eye and even basic biometric systems. LOQR counters this with a dual-layer biometric approach:

– Face Recognition: Confirms the user’s identity by comparing live captures to their verified records.
– Liveness Detection: Confirms the person is physically present and that the capture stream is genuine – not a static image, replay, or injected feed. We combine video-injection detection with passive, AI-driven liveness analysis (e.g., motion consistency, depth cues, and texture dynamics). No prompted actions required. 

This layered design blocks screen replays, deepfakes, and injected content while keeping the experience frictionless for legitimate users. 

Strong Customer Authentication (SCA): Multi-Factor Security

Under EU PSD2 regulations, Strong Customer Authentication mandates two or more independent factors:

– Knowledge (something you know – e.g., PIN, password)
– Possession (something you have – e.g., smartphone)
– Inherence (something you are – e.g., biometrics)

LOQR’s Platform seamlessly integrates these elements. By combining biometric verification with device authentication or secure codes, we ensure that even if one factor is compromised, deepfake-driven fraud attempts are prevented. 

Platform V3: Automation Meets Security

Our latest Platform release, Version 3, pushes automation further while maintaining strict security:

– Automated Digital Account Opening: Verification and contract signing take just a few minutes, with no need for manual video interviews.
– Automated Perpetual KYC (pKYC): Continuous updates of customer information, verified through biometric checks, ensuring only the rightful owner can authorise changes.
– Scalable Workflows: Financial institutions can handle large volumes of verifications without sacrificing accuracy or compliance. 

Regulatory Strength and Trust

LOQR supports its technology with:

– ISO 27001 certification for comprehensive information security management.
– ISO/IEC 30107-3 compliance for biometric anti-spoofing standards.
– Full alignment with GDPR and eIDAS regulations for data privacy and legal validity.

These frameworks ensure that our clients comply with both local and international standards while maintaining customer trust. 

Deepfakes are not a distant threat – they are here, becoming more sophisticated every day. LOQR’s layered approach, supported by LINCE-certified biometric verification, multi-factor authentication, and regulatory compliance, provides a proven, certified, and scalable anti-fraud solution.

With LOQR, financial institutions can confidently pursue digital transformation, knowing that every identity is verified, every transaction is secure, and each customer interaction is safeguarded against the rising threat of AI-driven fraud.