Platform walkthrough
How EVIDENCEE works
From first connection to regulator-ready audit bundle — in four steps.
Step 01 / 04
Connect Shopify, Stripe, or GoCardless in minutes
Add your store URL, Stripe API keys, or GoCardless access token. EVIDENCEE automatically detects your subscription model, identifies which apps you use, and configures the initial compliance controls.
- Shopify App Bridge — supports ReCharge, Bold, Skio, and Native Subscriptions
- Stripe API key verification and subscription model detection
- GoCardless direct debit and recurring payment integration
- Automatic webhook registration and event verification
- Test mode available — connect a test environment before going live
Add a Brand
Choose the platform that powers this brand's recurring payments.
Shopify
Subscriptions & checkout sync
Stripe
Subscriptions & invoices
GoCardless
Direct debit & mandates
Step 02 / 04
Set up your DMCC compliance controls
Work through the guided setup to configure your pre-contract information block, notice templates, hosted cancellation page, cooling-off policy, drip-pricing scan targets, and connected review sources. EVIDENCEE validates each control against DMCC requirements before you go live.
- Pre-contract template editor — DMCC Act s.254–257 validated
- Notice timing: configurable per your renewal cycle (3, 14, or 30 days)
- Hosted cancellation page with magic-link subscriber verification
- Cooling-off policy — manual review; you issue the refund in your provider and EVIDENCEE records the reference, date, and proof
- Drip-pricing scans — your Shopify catalogue and Stripe checkout
- Review sources — connect Trustpilot, Judge.me, Yotpo, Loox, Okendo, or Stamped (Google in limited preview)
Configure your DMCC compliance controls
Step 03 / 04
EVIDENCEE operates continuously in the background
Once live, EVIDENCEE monitors your subscription events, sends notices on schedule, scans for drip pricing and fake reviews, records every interaction in the Evidence Vault with SHA-256 payload hashes, and alerts you when something needs attention.
- Real-time webhook event processing — sub-second ingestion
- Scheduled notice delivery with delivery confirmation receipt
- Automatic cooling-off case creation when a subscriber cancels
- Scheduled drip-pricing scans — every finding links to the page and the missing price component
- Scheduled fake-review scans — incentivised, paid, or duplicated patterns surfaced for triage
- Readiness audit score updates in real time as events are processed
DMCC Readiness
HealthyHealthy
Notices Due (7d)
0
Scheduled to send
Notice Failures (24h)
All clear0
Parity Issues
Pass0
Cooling-Off Cases
Clear0
Exports (30d)
0
Evidence bundles
Active Alerts
No active alerts
All compliance controls are reporting healthy.
Step 04 / 04
Export a complete audit bundle in minutes
When a regulator or legal team requests evidence, use the Evidence Vault to search by subscriber or date range and generate a self-contained HTML audit bundle. Every event is signed with a SHA-256 payload hash and a continuous linked chain, and the bundle is sealed with a Merkle-root manifest — providing cryptographic proof of integrity.
- Search by subscriber hash, subscription ID, or date range
- Bundle includes: pre-contract records, notice logs, cancellation journey, refund decisions
- SHA-256 payload hash on every event — evidence cannot be altered
- Regulator-ready HTML bundle with an integrity summary and evidence count
Export Evidence Bundle
Compile an integrity-verifiable bundle for the selected scope.
Include sections
HTML evidence bundle
Self-describing manifest with embedded Merkle root and SHA-256.
Ready to become audit-ready?
Connect your platform in minutes, get your readiness score, and see exactly what needs to change — before the CMA asks.