Skip to content
Sentri
Real-time market surveillance

Market surveillance that explains itself

Sentri watches every order, trade, quote, and news event in real time, flags market abuse the moment it happens, and hands your compliance team an explained, evidence-backed case instead of a raw number. Deterministic detection you can defend to a regulator, with an AI layer that does the reading for you.

Deploys on-premise or inside your own cloud account. Single-tenant. Your data never leaves your perimeter.

Live feedsDetection coreIntelligenceExplained case

Every event flows through a deterministic core, then an advisory layer, into an explained case.

MAR Article 16MiFID IISTOR-readyFCA · SEC · MAS · ASICFull audit trail

Surveillance teams are drowning, and the abuse is getting smarter

Compliance desks at trading venues face the same four pressures, and most tooling makes at least one of them worse.

Alert fatigue

Too much noise, not enough signal

Legacy systems fire thousands of bare alerts a day. Analysts spend most of their time rebuilding context by hand before they can judge a single one. The real abuse hides in the backlog.

Cross-product manipulation

Blind spots between products

Manipulation increasingly spans a future and its underlying, a bond and its CDS, an index and its constituents. Surveillance siloed per product or per venue cannot see the pattern that lives between them.

Defensibility

Scores you cannot explain

A black-box risk score is not an answer a regulator accepts. When an authority asks why an alert fired, you need the exact rule, the exact parameters, and the exact events, not a model's best guess.

Operational risk

Outages mid-trading-day

Surveillance that drops events or stalls during a failover leaves a gap in the record. For a regulated venue, an unmonitored window is a reportable failure, not an inconvenience.

Rules surrounded by AI, not rules replaced by AI

Sentri keeps a deterministic detection core as the system of record and wraps it in an intelligence layer that does the analyst's reading. You get the speed and judgement of AI with an answer you can still defend.

Detectioncore
  • Detection core deterministic rules
  • AI advisory clusters, narrates, ranks
  • Model runtime self-hosted in your perimeter
1

Deterministic detection core

Twenty-three production rule types across five abuse families run on every event. Each alert names the rule, the parameters, and the underlying events. Reproducible, auditable, and defensible to the letter.

2

An advisory intelligence layer

AI reads each alert the way a senior analyst would: it clusters related alerts into one case, drafts the narrative, ranks by genuine risk, and surfaces the cross-product pattern. It advises. It never overrides the rule.

3

A self-hosted model runtime

Models run inside your perimeter on hardware you control. No event, order, or client identifier is sent to an external service. The intelligence layer is an asset you own, not an API you rent.

Two planes, one pipeline

Every event flows through a deterministic detection plane that decides what is and is not an alert, then an intelligence plane that decides what is worth a human's attention first.

EventsDetection planeIntelligence planeAnalyst reviewReport

Detection plane

System of record
  1. 1Ingest orders, trades, quotes, and news through per-asset-class adaptors
  2. 2Merge feeds into a single time-ordered stream for cross-event correlation
  3. 3Run all rules on every event with loss-free, low-latency processing
  4. 4Raise a deterministic alert with full evidence the moment a pattern matches

Intelligence plane

Advisory
  1. 1Cluster related alerts into a single investigable case
  2. 2Draft the case narrative and rank it by genuine risk
  3. 3Surface cross-product and cross-participant links a single rule cannot see
  4. 4Hand the analyst an explained case, ready for four-eyes review and reporting
The detection plane decides what is an alert. The intelligence plane decides what to look at first. The human always decides what to do about it.

Twenty-three rule types, five abuse families, every asset class

Out-of-the-box detection tuned per asset class, from CDS and interest rate swaps to cash bonds, commodities, FX, and equities. Every rule is parameterised, suppression-aware, and audit-logged.

CDS / IRSCash bondsCommoditiesFXEquities
Price manipulation
Wash & circular
Order book manipulation
Large & erroneous
Full family coverageTargeted coverage for that asset class

Price manipulation

  • Ramping
  • Marking the close
  • Abnormal market share
  • Abnormal volume turnover

Wash & circular trading

  • Trade to trade
  • Circular trading
  • Circular trading, single party
  • Wash trade

Order book manipulation

  • Spoofing
  • Layering
  • Pinging
  • Quote stuffing
  • Many order events in one book

Large & erroneous orders

  • Large trade
  • Large trade value
  • Large order entry
  • Mistaken order entry
  • Off-market trade

Benchmarked & adaptive

  • Large trade, benchmarked
  • Trade to trade, benchmarked
  • Per-participant rolling baselines

Fast enough for the tape, lean enough for the desk

10,000+
events per second

Loss-free, low-latency ingestion on commodity hardware.

~50%
less analyst time per case

AI assembles context so people spend time deciding, not collecting.

Seconds
to failover

Clustered with replicated event logs. No unmonitored window.

23
rule types out of the box

Across five abuse families and every supported asset class.

Figures are design targets for the platform under active development, not audited benchmarks.

Runs where your data is allowed to live

Single-tenant by design. Sentri deploys into your environment and stays there. You keep custody of every event, every model, and every record.

On-premise or your own cloud

Run Sentri in your data centre or inside your own cloud account. The same single-tenant build, deployed wherever your data is allowed to live.

Your data never leaves

On-premise can be fully air-gapped. In the cloud, it runs inside your VPC with no egress. Sentri operates no shared service and sees none of your traffic.

Self-hosted models

The AI layer runs on hardware you control, in your perimeter. No orders, events, or client identifiers are ever sent to a third-party model API.

Built for the regulator

Full transaction logs, history tracking, indexed search, and four-eyes approval before any case is closed or escalated. Reporting maps to FCA, SEC, MAS, ASIC, and more.

See Sentri on your own data

Walk through the detection core, the intelligence layer, and the deployment model with our team. We will run a tailored session against the asset classes and abuse patterns that matter to your venue.