Your safety is important to us. If you notice any suspicious emails that appear to come from Shopify, please forward them to Visit the Help Center page on phishing for more information.

Risk analysis

Shopify's risk analysis flags orders that might be fraudulent so that you can investigate them before fulfilling. Risk analysis can help you avoid receiving chargebacks from fraudulent orders.

If you're on the Basic Shopify plan and you aren't using Shopify Payments, then you have access to the basic risk summary. The basic summary flags orders that might be fraudulent and identifies the areas of concern.

Enhanced risk analysis is available for merchants on the Shopify plan or higher, as well as for merchants on the Basic Shopify plan who are using Shopify Payments. It includes risk indicators for each order, recommended next steps, and additional information (for example, the IP address from where the order was placed) when applicable.

Flagged orders aren't necessarily fraudulent, but they do meet fraud criteria. If the risk analysis identifies one of your orders as suspicious, then you should investigate the order before fulfilling it. You can set up manual payment captures to give yourself time to investigate orders before fulfilling them.


You can't use prepaid bank cards as bank account credentials to receive payouts from Shopify Payments.

View an order's risk summary

To see the risk summary for an order:

Enhanced risk analysis

With enhanced risk analysis, extra risk assessment checks are done based on data shared across the Shopify platform. You can only use enhanced risk analysis if you have the Shopify plan or higher, or if you are using Shopify Payments.

To see the enhanced risk analysis for an order:

  1. From your Shopify admin, click Orders.

  2. Click an order number to view its information including the risk analysis for the order. Suspicious orders are flagged with a small exclamation mark next to the order number:

    A flagged order
  3. In the Risk level section, click View full risk analysis.

    The enhanced risk analysis section

What the risk analysis looks for

Shopify's risk analysis includes many tests that look for potentially suspicious features of an order, or risk indicators. The risk analysis does several checks for indicators: an Address Verification System check, a Card Verification Value check, and an IP address check. There are also checks for other potential issues, like the reputation of the IP address, suspicious activity with the customer's credit card, and failed payment attempts.

Along with the risk indicators, the risk analysis also calculates a risk level for the order. Each order gets flagged as having a high risk, a medium risk, or a low risk. The risk level is based on more than just the number of risk indicators, so it's possible for an order to have several risk indicators but still have a low risk level.

Address Verification System (AVS) check

AVS compares the numeric part of the customer’s billing address and zip code to the information on file with the credit card issuer. This helps reduce a significant amount of fraud, because unauthorized users might not have the billing address information for the credit card they’ve stolen.

Card Verification Value (CVV) check

The CVV is a 3 or 4 digit number on the back of the customer’s credit card. Credit card companies prohibit the storage of the CVV code, so asking for the CVV is a way of ensuring that a customer has the card physically in their possession. Credit card information stolen from a merchant database is also less useable, because it shouldn't contain CVV information.

IP Address check

The IP address check compares the country of the buyer’s billing address to the country the buyer placed the order from. If the countries don't match, then Shopify Risk Analysis issues a warning so that you can investigate further.

Messages that you might see include:

  • The customer used a web proxy when placing this order This means that the customer is trying to obscure their network source through a VPN or web proxy. It doesn't always indicate fraud, but is cause for manual verification of the order.

  • IP has been temporarily blocked because of fraudulent activity

    This applies to abandoned checkouts only. If you see this error message it means that the person trying to check out was blocked from doing so:

    Risk analysis ac 1

    Instead of an order being created with a fraud marker - the order is blocked from completing, and creates an abandoned checkout.

Want to discuss this page?

Visit the Shopify Community

Ready to start selling online with Shopify?

Try it free