Summary
Many of the deepfake detection vendors attracting attention today are based in the United States. DuckDuckGoose AI isn't. It was built in Delft, Netherlands, with EU privacy and data sovereignty requirements baked in from day one. Despite being a relatively young company, it has already earned customers in banking, forensic investigation, and government environments where trust and verification are mission-critical.
Disclaimer: All information in this article was verified as of May 2026. Vendors update features, pricing, and benchmarks frequently. These insights reflect the current state of the application. As deepfake and impersonation technologies continue to improve, many of today's limitations, risks, and solutions are likely to change significantly over the next few years.
What is DuckDuckGoose?
DuckDuckGoose is a Dutch deepfake detection company founded in March 2020 by three TU Delft students, Parya Lotfi (CEO), Joris Mollinga, and Mark Evenblij. It started as a student project analysing how manipulated media could be used as fake evidence in court, and grew into a company once the police and the Dutch government said yes, they'd actually pay for this.
The company bootstrapped for roughly four years before raising a €1.3M pre-seed in June 2024 from Shaping Impact Group, Ctrl+Alt+Invest, Aruma Ventures, the Graduate Entrepreneur Fund. By 2026, they have raised $2.6 million in funding as mentiond on forbes.
That funding level matters for the SMB conversation: this is a small, focused European team, not a US enterprise giant. Strengths and trade-offs follow from that.
Customers of DuckDuckGoose AI:
Customer | Sector | What they use it for? |
|---|---|---|
neobank (NL) - (operates exclusively using online banking) | KYC onboarding deepfake detection | |
Bank (Brazil) | Digital identity fraud prevention | |
Identity Verification(IDV) provider (LATAM) - (Brazil IDV) | Synthetic identity blocking at scale | |
Forensics / public safety | Authenticity verification for legal evidence | |
Tweede Kamer | Dutch House of Representatives | Protection against political deepfakes |
DataChecker | IDV vendor (NL) | Selfie verification in KYC flows |
DSTA | Defence (Singapore) | National security applications |
The angle DuckDuckGoose leans on, repeatedly, is explainable AI. They don't just return a probability score, they return a visual trace showing which region of an image or which segment of a clip triggered the flag. For a compliance team that has to justify a rejected onboarding to a regulator, that matters.
2. Platform Capabilities
DuckDuckGoose runs three detection engines, each handling one media type. Together they cover the surface area an SMB actually sees in fraud: selfies, documents, video calls, and voice.
What it detects?
Modality | What it catches? | Where it plugs in? |
|---|---|---|
Image | AI-generated faces, morphing attacks, tampered IDs, synthetic profile photos | KYC selfie uploads, document checks, claims review, content moderation |
Video (live or recorded) | Face swaps, camera-injection attacks, liveness bypass, deepfake impersonators on live calls | Onboarding video, video conferencing, livestreams (live broadcasts) |
Audio | Voice clones, AI-generated speech, synthetic call fraud, across 16+ languages | Payment authorisation calls, contact centres, executive voice channels |
Reported performance
The vendor publishes these numbers across product pages. Treat them as vendor-reported accuracy that might differ on your own dataset.
Metric | Reported value | What to verify? |
|---|---|---|
Accuracy | ~95–99% (varies by product / source) | Independent benchmark on your data |
False Acceptance Rate (FAR) (system mistakenly identifies a synthetic, manipulated, or spoofed identity as a legitimate, genuine user) | 0–5% | Pilot it against your fraud sample |
False Rejection Rate (FRR) (system incorrectly identifies legitimate, authentic media as synthetic or fake) | 0.8 % | Confirm in your traffic mix |
Response time | Sub-second / ~1 second | Latency under your peak load |
How it actually works?
The technical approach combines three things:
Multimodal models trained on adversarial datasets built from real fraud attempts (not lab-generated test sets)
Explainable AI (XAI) that outputs a heatmap-style "activation map" showing the manipulated region, alongside the confidence score
Continuous model updates as new generators (the company's most recent threat report flagged 55+ new synthetic media generators released in Q4 2025 alone, roughly one every 1.6 days)
Deployment options
Mode | Description | Best fit |
|---|---|---|
API / SDK | REST API, sub-second response, drop-in integration | Dev-led integrations into existing KYC flows |
Phocus (web UI) | No-code workspace for analysts | Fraud/compliance teams without engineering bandwidth |
On-premise | Fully local deployment of DeepDetector | Regulated industries, data-sovereignty requirements |
Hybrid / private cloud | Available on request | Mid-market with mixed compliance needs |
Available on AWS Marketplace as well, which simplifies procurement if your org already buys through AWS.
3. Products & Pricing
Three products, each pointed at a different buyer.
DeepDetector: Their flagship product. Real-time image and video deepfake detection, available via API/SDK or on-premise. This is what bunq integrated into its KYC onboarding pipeline. Best fit if you have engineering resource and want detection wired into an existing flow.
Phocus: A web platform sitting on top of DeepDetector. No code required. Fraud analysts, compliance reviewers, and legal teams upload media (image, video, or audio), get a verdict with explainability, and export an audit-ready report. Best fit if your team needs to manually investigate flagged cases or do ad-hoc verification, and you don't want to build a UI yourself.
Waver: audio deepfake detection across 16+ languages. Voice-cloned executive fraud, synthetic speech in payment authorisation calls, contact-centre account-takeover attempts. Real-time, language-agnostic, integrates via API.
Pricing reality
Plan | What you get? | Price |
|---|---|---|
Free trial | Limited evaluation access | Available on request, not self-serve |
Commercial (all tiers) | API, Phocus, on-prem, all custom-quoted | "Book a demo" - direct sales |
AWS Marketplace | Contract-based procurement through AWS | 12-month contracts, custom |
Every commercial engagement runs through their sales team. The AWS Marketplace listing exists, but the visible numbers there are placeholder values, not real pricing.
What this means for an SMB evaluation?: you can't kick the tyres on a credit card the way you can with Reality Defender's free API tier. You'll need to book a demo, have a budget conversation, and likely negotiate a pilot. That's a higher-friction entry for organisations doing low-volume evaluation, but it's not unusual for the European B2B SaaS playbook, and it leaves room for negotiating pilot terms.
You may also contact DuckDuckGoose's sales representative, Enrique, at [email protected] for further assistance.
Decision Metrics
Use these to decide whether DuckDuckGoose belongs on your shortlist.
Evaluation Parameters
Dimension | DuckDuckGoose | SMB consideration |
|---|---|---|
Threat fit | Image/video/audio deepfakes in KYC, onboarding, calls, content review | Strong fit if you do digital onboarding, IDV, or have voice channels in finance ops |
Ease of deployment | API/SDK in hours per docs, Phocus web app is no-code | Phocus is the SMB-friendly entry point, API needs developer time |
Integrations | Sits alongside your KYC vendor, document verification, liveness provider | Designed to layer in, not replace your stack |
Accuracy (vendor-reported) | ~95–99% across products, FAR 0–5%, FRR 0.8% | Vendor numbers - validate on your traffic before treating as a hard gate |
Explainability | explainable AI with visual activation maps showing the manipulated region | Genuine differentiator for audit, legal escalation, and regulator-facing decisions |
Compliance | GDPR, ISO 27001, SOC 2, HIPAA | Strong for EU operations, verify current certification dates in their Trust Centre |
Data residency | EU-based by default, on-prem available | Strong for EU data-sovereignty requirements |
Pricing transparency | All custom-quoted, no public tier | ⚠️ Gap - request itemised pricing and pilot terms upfront |
Vendor stability | $1.3M pre-seed, profitable bootstrapped years pre-funding | Smaller than US competitors, the upside is responsiveness, the risk is concentration |
Model currency | Continuous updates, published threat-intel report tracks new generators | Ask for the SLA on model update cadence in writing |
Support | Direct sales-led, no self-serve documentation tier | Smaller team = likely better access during evaluation than a larger vendor |
False positive rate | 0.1–0.8% reported | ⚠️ Test this on your actual traffic mix in a pilot |
Free / trial access | Limited free trials available on request | ⚠️ No self-serve free tier, barrier to quick evaluation |
Quick Fit Check
Your situation | Verdict |
|---|---|
Digital KYC / onboarding flow with selfie + document upload | ✅ Strong fit - this is the bunq playbook |
EU-based business with GDPR data-residency requirements | ✅ Strong fit - EU-native, on-prem available |
Need explainable, audit-defensible flagging decisions | ✅ Strong fit - explainable AI is their main differentiator |
Contact centre with voice-based account recovery / payment auth | ✅ Likely fit - Waver, 16+ languages |
Forensic / legal investigation work on disputed media | ✅ Strong fit - NFI is a reference customer |
Want plug-and-play with a credit card and free tier | ❌ Not available - all custom-quoted |
Need a US-based vendor with a US enterprise reference list | ⚠️ Smaller US footprint than Reality Defender or Pindrop |
Looking for live Zoom/Teams/Webex meeting verification | ⚠️ Possible but ask explicitly |
Detecting AI-written phishing or document text only | ❌ Not the primary use case - they're focused on visual/audio media |
Questions to ask before signing
What's the current production false positive rate on our specific media profile (compressed phone selfies, low-res video, the actual fraud samples we'd send you)?
How often do you retrain against new generators, and is there a contractual SLA on this?
Where is uploaded media stored, for how long, and is it ever used for training?
Can the model be fine-tuned on our flagged-fraud samples, or do we share with the vendor's general pipeline?
What's the latency under sustained load - not just typical response time?
Is there a documented escalation path when a decision needs to be defended in a regulatory or legal context, and can your team appear as expert witnesses?
What does the pilot look like in concrete terms - volume cap, duration, cost, success criteria, exit terms?
Conclusion
DuckDuckGoose is a credible, focused European deepfake detection vendor with a real customer base , including a top-tier neobank, a national forensic institute, and a national parliament. Their explainable AI output is the genuine standout: most competitors give you a probability score, DuckDuckGoose gives you a probability score plus a defensible visual artifact, and that gap matters once you're in front of regulators or in court.
For an SMB sitting in the EU and doing digital KYC, identity verification, or any onboarding flow where a synthetic face could pass through, DuckDuckGoose belongs on the shortlist. The GDPR-first posture, on-prem option, and EU footprint are real procurement advantages over US-based alternatives.
The trade-offs are honest ones. There's no self-serve free tier, so you can't pilot it on a credit card the way you can with Reality Defender. The company is smaller than its US-based competitors, with €1.3M raised against Reality Defender's $52M+.
If you're running a US-only stack with a heavy live-call/Zoom requirement and need to procure quickly via a free tier, Reality Defender is the easier entry. If you're EU-based, care about explainability, and want a vendor whose model has been validated inside actual forensic and banking deployments, DuckDuckGoose is worth the demo.
For a demo, simply click the "Get Started" option → fill up the form and submit the request. Alternatively, you can contact DuckDuckGoose's sales representative, Enrique at [email protected] for additional information.