Treat each swipe, click, and authorization as a first-class event carrying immutable facts, not rows awaiting nightly reconciliation. We will define keys that survive retries, reconcile out-of-order arrivals, and sketch an ingestion contract that vendors can honor. A short story from a card-not-present rollout highlights how consistent event identities simplified dispute handling across acquirers.
Fraud patterns live inside time, so we slice the stream with tumbling, sliding, and session windows to reveal velocity spikes and coordinated attempts. We will compare watermarking strategies, examine the cost of lateness, and replay a payday micro-burst that only surfaced after switching to sessionization tied to device and merchant affinities.
Chargeback labels arrive weeks late, while stolen gift cards burn in minutes. We will blend proxy outcomes, delayed supervision, and cautious priors to steady early decisions. Learn how positive-unlabeled techniques, weak signals from rule outcomes, and human review resolutions can reduce regret during the coldest, scariest hours of a new launch.