Skip to content
Innova Black®

Case Study

SOFOM ER SME lending · 90-day auditable compliance

We modernized an SME-lending SOFOM ER in 90 days: auditable compliance, OCR-based KYC and automated UIF reporting.

Client
SME-lending SOFOM ER (anonymized)
Vertical
SOFOM ER · SME lending
Published
April 2026

Outcomes

  • −97%

    time to generate ROU/ROP reports

  • 0

    findings on the subsequent CNBV visit

  • +18%

    approval rate with the same default rate

  • 3 days → 7 min

    end-to-end KYC onboarding

The context

The institution originated credit to SMEs in Mexico’s Bajío region, with a sustained growth portfolio and an operations team that had already outgrown its stack. UIF reports were built by hand from Excel exports. KYC files lived in local folders without traceability. CNBV had raised observations in its last visit and another visit was scheduled in roughly ninety days.

The internal legal team had already explored two prior routes: a compliance firm that delivered documentation in PDF and a generic software vendor that required an eight-month implementation. Neither route closed in time.

How we approached the problem

We began with a complimentary 45-minute DTX Audit™. The regulatory maturity report identified three fronts with mutual dependencies: transactional monitoring with AML scoring, automated generation of ROU/ROP reports, and a KYC system with a client-signed file. The architectural decision was to build everything on a single model-orchestration layer (Anthropic Claude + OpenAI GPT-4 + Google Gemini) rather than buy three different products.

PHASE 01 · Days 1–14

Operational diagnostic and target architecture

Complete map of origination, collection and reporting flows. Design of the new stack: transactional databases, event layer, orchestrated LLM models and CNBV/UIF connectors. 90-day roadmap signed by the CEO and the compliance officer.

PHASE 02 · Days 15–45

Building the Compliance Engine™

Transaction ingestion pipeline, real-time AML scoring engine, automated generation of ROU/ROP reports, immutable log of automated decisions. UIF integration in a test environment.

PHASE 03 · Days 46–70

OCR-based KYC and hybrid scoring

KYC onboarding with document extraction, SAT/RENAPO/CURP validation and biometrics. Hybrid scorecard: parameterizable credit policies on top of the legacy core, A/B testing in production.

PHASE 04 · Days 71–85

CNBV documentation and team training

Updated operating manuals, signed electronic files, training for the compliance, sales and operations teams. Mock CNBV visit with an external consultant.

PHASE 05 · Days 86–90

Go-live and handover to DTX Retainer™

Production with 24/7 monitoring. Handover of the operating file to the internal team. Start of monthly DTX Retainer™ with continuous regulatory monitoring.

Measurable results

  • Reduction in ROU/ROP report generation time from roughly 8 hours to 12 automated minutes.
  • Subsequent CNBV visit closed without technical findings on compliance or KYC.
  • Credit approval +18% maintaining the same historical default rate, thanks to the hybrid scoring.
  • End-to-end KYC onboarding from 3 days to 7 minutes on the happy path.
  • Complete traceability of AML decisions with an immutable log available to the regulator.

“We came to Innova Black® after two years with a vendor that only delivered reports. In three months we had automated compliance and the CNBV visit closed with no findings.”

— General Manager, SOFOM ER · reference under NDA available after the DTX Audit™

Next step

Does your institution face a similar challenge?

Request a DTX Audit