Yardstick Research tear-sheet / AI sales cohort

Methodology · how we score · rubric weights in plain sight · vendors received this sheet seven days before publication and could flag factual errors, never rankings

Persona

Identity

Name: Persona Identities, Inc.
Founded: [THIRD-PARTY] 2018 by Charles Yeh and Rick Song, formerly engineers at Dropbox and Square respectively. — https://en.wikipedia.org/wiki/Persona_(identity_verification_service)
HQ: San Francisco, California. — https://www.crunchbase.com/organization/persona-188f
Funding: [THIRD-PARTY] ~$418M total across multiple rounds. Most recent: $200M Series D at $2B valuation, May 2025, co-led by Founders Fund and Ribbit Capital. Prior: $150M Series C at $1.5B valuation (September 2021, Founders Fund); $50M Series B (May 2021). — https://www.prnewswire.com/news-releases/persona-raises-200m-at-2b-valuation-to-build-the-verified-identity-layer-for-an-agentic-ai-world-302442649.html
Headcount: [UNKNOWN] Not disclosed in surveyed sources; estimated 300–500 based on Series D scale.
Recent news:
[THIRD-PARTY] May 2026, FedRAMP Moderate Authorization (upgrade from Low Impact). — https://www.businesswire.com/news/home/20260521233540/en/Persona-Achieves-FedRAMP-Moderate-Authorization-Giving-Federal-Agencies-Modern-Identity-Verification
[THIRD-PARTY] February 2026, Material red flag. Security researcher "vmfunc" (Celeste) and colleagues exposed Persona's government dashboard codebase: 53 MB / 2,456 files on a public endpoint of a FedRAMP-authorized government server. Exposed code included infrastructure to file Suspicious Activity Reports to FinCEN and FINTRAC, intelligence-program codename tagging, Chainalysis crypto-address screening, and 250+ verification checks. Discord ended its UK age-verification relationship with Persona within days. Persona has not (per surveyed sources) published a public post-mortem or remediation timeline. — https://www.techdirt.com/2026/02/25/hackers-expose-the-massive-surveillance-stack-hiding-inside-your-age-verification-check/
[THIRD-PARTY] October 2025, Earlier FedRAMP Authorized status (Low Impact level). — https://www.prnewswire.com/news-releases/persona-achieves-fedramp-authorized-status-to-expand-identity-verification-solutions-for-federal-agencies-302576900.html
[THIRD-PARTY] May 2025, Series D $200M / $2B valuation. Positioning: "verified identity layer for an agentic AI world."
Archetype: AI-augmented identity-verification + KYC/KYB/AML + case-management + fraud-link-analysis infrastructure platform. Horizontal across fintech, marketplaces, gig platforms, healthcare, and government. Founded 2018; heritage ML core with continuous AI additions. Heritage cap: ai_native_score capped at 75.

Total score: 68.8 / 100

(base = 73.8, soft pricing-transparency penalty -5)

Stage fit:
Foundation (<40 readiness): yes, Essential plan at $250/month annual + 500 included verifications. Startup Program for venture-backed SMBs. Near-zero-friction entry.
Pilot (40–59): yes, Essential covers off-the-shelf KYC / document / selfie / liveness flows with 10-line embed.
Scale (60–79): yes, Growth plan covers customized per-verification pricing, case-review tooling, link analysis, multi-product orchestration.
Optimization (80+): conditional, Enterprise supports multi-entity / multi-subsidiary structures and the full 269-check surface, but enterprise buyers should address the February 2026 surveillance-dashboard exposure with their security and compliance teams before signing.
One-line verdict: Mature, well-funded fintech KYC infrastructure with a top-tier customer roster and FedRAMP Moderate authorization, partially offset by the unresolved February 2026 government-dashboard code exposure and quote-only pricing on every tier above the entry plan.

Headline numbers

Metric	Value	Evidence URL
Total funding	~$418M	https://www.crunchbase.com/organization/persona-188f
Latest round	$200M Series D at $2B valuation, May 2025	https://www.prnewswire.com/news-releases/persona-raises-200m-at-2b-valuation-to-build-the-verified-identity-layer-for-an-agentic-ai-world-302442649.html
Entry pricing	$250/month annual (Essential), 500 included verifications, $1 per additional	https://withpersona.com/pricing
Geographic coverage	200+ countries and territories	https://withpersona.com/
Verification checks	269 distinct verification checks (per February 2026 codebase-exposure analysis) [THIRD-PARTY]	https://www.techdirt.com/2026/02/25/hackers-expose-the-massive-surveillance-stack-hiding-inside-your-age-verification-check/
AI spoof detection	50+ unique classes of AI-generated spoofing techniques detected [VENDOR-CLAIMED]	https://withpersona.com/blog/detect-more-ai-based-face-spoofs-persona
Time-to-integrate claim	"Integrate in an afternoon, less than 10 lines of code" [VENDOR-CLAIMED]	https://withpersona.com/
Compliance certifications	SOC 2 Type II, ISO 27001, PCI DSS, FedRAMP Moderate (2026), FIPS 140-2, NIST SP 800-53, Kantara IAL2	https://withpersona.com/security
Named fintech customers	Brex, Robinhood, Square, Gusto, Rippling, OpenAI, LinkedIn, Reddit, Coursera, Etsy, DoorDash, Twilio, Udemy	https://en.wikipedia.org/wiki/Persona_(identity_verification_service)

Dimension scores

Dimension	Score	Weight	Weighted	Evidence
AI capability depth	3/4	15	11.25	[VENDOR-CLAIMED] Document AI auto-collects and verifies; supervised + unsupervised ML for fraud detection; 50+ classes of AI-generated-spoof detection; link-analysis tooling for fraud-ring discovery; "Enhanced Fraud Detection analyzes hundreds of risk indicators." Workforce-identity expansion 2025 added candidate-fraud detection layered on selfie + liveness + device + behavioral signals. [UNKNOWN] No published SR 11-7 MRM alignment statement. No published explainability framework for adverse decisions. No third-party fairness audit. Models work; explainability artifacts are not on the trust page. No ISO 42001. Heritage: founded 2018, ai_native_score capped at 75. Capped at 3/4 by absent MRM documentation. — https://withpersona.com/product/verifications/document-ai, https://withpersona.com/blog/detect-more-ai-based-face-spoofs-persona
Workflow integration depth	3/4	25	18.75	[VENDOR-CLAIMED + THIRD-PARTY] Persona Marketplace integrates with Plaid (confirmed via Branch KYB case study), Clearbit, Salesforce, Slack, Auth0, and Chainalysis (crypto-address screening wired into 250+-check capability per dashboard exposure). Case-review tooling for fraud-team manual investigation. KYB/KYC/AML orchestration layer. API-first with documented embed at docs.withpersona.com; Auth0 marketplace integration available off-the-shelf. [UNKNOWN] No published native connectors to Temenos, FIS, Fiserv, Jack Henry, Mambu, Thought Machine, Galileo, or other core-banking systems, integration goes via customer middleware or REST API. Capped at 3/4 by absent core-banking native connectors. — https://withpersona.com/solutions/persona-marketplace, https://withpersona.com/customers/branch-kyb
Vertical specialization	3/4	15	11.25	[VENDOR-CLAIMED + THIRD-PARTY] Dedicated fintech vertical page; KYC-for-fintech regulatory primer; named-customer roster spans neobanking (Brex), brokerage (Robinhood), crypto onramps (BlockFi historic), payroll (Gusto, Rippling), payments (Square), marketplaces (Etsy, DoorDash). KYB platform for business onboarding. Adverse-media screening across 14 categories. [CAVEAT] The vertical-fit story now includes government identity verification, age verification, and workforce identity. The February 2026 incident exposed that fintech-style controls (SAR filing to FinCEN, FINTRAC, intelligence-program codename tagging) are wired into the government dashboard, a fintech buyer should clarify scope and data-flow boundaries between their deployment and the government-dashboard codebase. Held at 3/4 by horizontal dilution across government + age verification + workforce identity. — https://withpersona.com/industry/fintech
Implementation + time-to-value	4/4	10	10.00	[VENDOR-CLAIMED + THIRD-PARTY] "Integrate in an afternoon, less than 10 lines of code." G2 reviewers consistently corroborate ease of implementation and responsive support. Auth0 marketplace integration available off-the-shelf. Startup Program path further accelerates onboarding for venture-backed SMBs. Essential tier: self-guided onboarding, sandbox available. Fastest time-to-value in the fintech cohort for a KYC platform. — https://withpersona.com/, https://marketplace.auth0.com/integrations/persona
Data + compliance posture	2/4	20	10.00	[VENDOR-CLAIMED] Strong traditional certifications: SOC 2 Type II, ISO 27001, PCI DSS, FedRAMP Moderate (2026), FIPS 140-2, NIST SP 800-53, Kantara IAL2, CCPA/CPRA, GDPR. Sources: https://withpersona.com/security, https://withpersona.com/blog/persona-achieves-iso-27001-certification, https://withpersona.com/blog/persona-achieves-soc2-type2, https://withpersona.com/blog/persona-pci-dss-certification. [THIRD-PARTY, MATERIAL DEDUCTION] February 2026: 53 MB of government-dashboard code (2,456 files) including SAR-filing infrastructure to FinCEN and FINTRAC, intelligence-program codename tagging, and Chainalysis crypto-address screening was exposed on a public endpoint of a FedRAMP-authorized server. Discord terminated its relationship within days. Persona has not published a post-mortem, scope-of-exposure breakdown, or remediation timeline per surveyed sources. [UNKNOWN] ISO 42001 not confirmed. Capped at 2/4, paper-cert breadth is strong; February 2026 code exposure represents a data-handling failure that has not been publicly resolved. — https://www.techdirt.com/2026/02/25/hackers-expose-the-massive-surveillance-stack-hiding-inside-your-age-verification-check/
Pricing + scalability	3/4	10	7.50	[VENDOR-CLAIMED + THIRD-PARTY] Operates across 200+ countries; serves OpenAI (ChatGPT-Plus KYC), LinkedIn, Square, Brex, Robinhood at production scale; FedRAMP-Moderate-authorized federal deployments; 269 verification checks at API scale. G2 reviewers note per-verification pricing manageable at startup scale can become significant at enterprise volume, a pricing-curve concern, not a platform capacity ceiling. Platform scale: proven. Capped at 3/4 by pricing-curve concern at high enterprise volume.
Vendor strength + named-customer evidence	4/4	5	5.00	[VENDOR-CLAIMED + THIRD-PARTY] $2B valuation, $418M raised, Founders Fund + Ribbit Capital Series D. Named fintech customers: Brex, Square, Robinhood, BlockFi, Gusto, Rippling, DoorDash, Coursera, Etsy, Twilio, OpenAI, LinkedIn, Reddit. Branch published KYB case study. G2 + Gartner Peer Insights reviewer sentiment consistently positive on ease + customization. — https://withpersona.com/customers/branch-kyb
Raw weighted total		100	73.75
Pricing transparency soft penalty			-5.00	Essential tier ($250/month + $1 per overage) is fully transparent; Growth + Enterprise are quote-only with no published per-verification floor, no volume-discount curve
Final score			68.75

Pricing detail

Source: https://withpersona.com/pricing and https://help.withpersona.com/getting-started/pricing-and-plans/. All [VENDOR-CLAIMED].

Essential, $250/month on annual contract: 500 included verifications or reports per month; $1 per additional verification beyond the included pool. Basic platform access. Trusted off-the-shelf KYC / document / selfie / liveness solutions. Self-guided onboarding.
Persona Startup Program: Eligible venture-backed startups and SMBs can apply for discounted access. — https://help.withpersona.com/getting-started/pricing-and-plans/persona-startup-program/
Growth, custom pricing: Recommended plan for most businesses. Customized pricing for the verifications and reports the customer plans to use most. Adds case-review tooling, link analysis, multi-product orchestration. Contact-sales path.
Enterprise, custom pricing: For large organizations with multiple business units or international subsidiaries. Expands upon Growth. [UNKNOWN, no per-seat or per-verification floor disclosed]
Pricing-transparency posture: Essential is fully transparent. Growth + Enterprise are quote-only with no published per-verification floor, no published volume-discount curve. G2 reviewers flag steep per-verification pricing at enterprise volume.

Integrations

Persona is an API-first KYC/KYB/AML orchestration layer. It connects to core fintech data sources and identity infrastructure but does not have published native connectors to traditional core banking systems.

Data / enrichment:
Plaid: banking + business signals confirmed via Branch KYB case study. [THIRD-PARTY — https://withpersona.com/customers/branch-kyb]
Clearbit: firmographic + person enrichment. [VENDOR-CLAIMED]
CRM + workflow: Salesforce. [VENDOR-CLAIMED]
Identity / auth: Auth0 (off-the-shelf marketplace integration). [VENDOR-CLAIMED — https://marketplace.auth0.com/integrations/persona]
Collaboration: Slack (case alerts / fraud-team notifications). [VENDOR-CLAIMED]
Crypto-compliance: Chainalysis, crypto-address screening confirmed in government dashboard exposure as a wired-in 250+-check capability. Whether this applies to all fintech deployments or only government-dashboard deployments is [UNKNOWN]; buyers should clarify directly with Persona. [THIRD-PARTY — https://www.techdirt.com/2026/02/25/hackers-expose-the-massive-surveillance-stack-hiding-inside-your-age-verification-check/]
Fintech-cohort peer:
Unit21: Persona is listed as a technology integration partner in Unit21's partner ecosystem, identity verification workflows configurable via Unit21's no-code UI. [VENDOR-CLAIMED, Unit21 integrations page]
Core banking (Temenos / FIS / Fiserv / Jack Henry / Mambu / Thought Machine): [UNKNOWN] No published native connector; integration goes via customer middleware or REST API.
API: Documented REST API at docs.withpersona.com. "Less than 10 lines of code" embed.

Editorial assessment

Persona is one of the two or three most credible KYC/KYB/identity-verification platforms in the fintech market. The $418M raised, the $2B valuation, the FedRAMP Moderate authorization, and the named-customer roster (Brex, Robinhood, Square, Gusto, Rippling, OpenAI, LinkedIn) put it in the top tier of the category. Implementation speed is the platform's clearest competitive advantage, "integrate in an afternoon" is corroborated by G2 reviewers, and the Essential tier's $250/month + $1 overage pricing gives fintech buyers a genuinely transparent on-ramp that most enterprise KYC vendors do not offer. The platform breadth, KYC, KYB, AML, document AI, selfie + liveness, link analysis, case review, 200+ country coverage, 269 verification checks, is what regulated fintech buyers say they want from a single layer in front of their core banking stack.

Two material qualifiers sit on top of that strong baseline.

The February 2026 government-dashboard code exposure. Security researchers found 53 MB / 2,456 files of Persona's government dashboard code on a public endpoint of a FedRAMP-authorized server. The exposed code documented Persona's infrastructure for filing Suspicious Activity Reports to FinCEN and Canada's FINTRAC, intelligence-program codename tagging, Chainalysis crypto-address screening, and 250+ verification checks across 14 adverse-media categories. Discord ended the UK age-verification relationship within days. Per surveyed sources, Persona has not published a post-mortem, scope-of-exposure breakdown, or remediation timeline. This is why the data_compliance_posture dimension sits at 2/4 despite a strong paper-cert portfolio (SOC 2 Type II, ISO 27001, PCI DSS, FedRAMP Moderate, Kantara IAL2). Any regulated fintech buyer should ask, in writing: (a) was customer data exposed, (b) what is the remediation timeline, (c) what controls have been added, (d) does my deployment touch the government-dashboard codebase, (e) under what conditions does my customer data flow into SAR filings or intelligence-program tags.

Pricing opacity above the entry tier. Essential ($250/month + $1 per overage) is transparent. Growth and Enterprise are quote-only with no published per-verification floor and no published volume-discount curve. G2 reviewers explicitly note per-verification pricing that scales steeply at enterprise volume.

The workflow integration story (weight 25) earns 3/4. Persona connects to the right data sources for fintech KYC (Plaid, Salesforce, Auth0, Chainalysis) and ships with a 10-line code embed that actually works in an afternoon. The gap is the absence of published native connectors to traditional core banking systems (FIS, Fiserv, Jack Henry, Mambu), a fintech buyer running KYC through Persona while connecting to a traditional core must build middleware.

Against cohort peers: Persona is most directly comparable to Alloy and Socure in the KYC orchestration layer. Alloy wins on breadth of pre-built core-banking connectors (Q2, MANTL, Jack Henry ecosystem) and a no-code compliance rules engine. Socure wins on synthetic-fraud detection accuracy and US-bank consortium depth. Persona wins on implementation speed (clearest in cohort), customer-roster social proof, and geographic coverage (200+ countries). For a Series A–C fintech wanting the fastest path to production KYC with a recognizable vendor name for compliance due diligence, Persona is the default, with the February 2026 incident as a required evaluation checkpoint.

Best for

Sub-segment: US and international fintechs, neobanks, brokerages, crypto onramps, payroll/HRIS platforms, marketplaces, and gig platforms needing a horizontal KYC/KYB/AML/identity layer.
Stage: Foundation, Pilot, Scale. Enterprise conditional (February 2026 incident should be formally addressed at procurement review).
Skip if: (a) you need a direct native connector to Temenos / FIS / Fiserv / Jack Henry / Mambu and cannot build via REST; (b) your security or compliance team will not accept the unresolved February 2026 dashboard exposure without a published post-mortem; (c) your procurement team requires fully published per-tier pricing for board approval; (d) you need ISO 42001 for EU AI Act readiness; (e) you need published SR 11-7 MRM documentation for federal-regulator review.

Right-of-reply gaps

February 2026 government-dashboard exposure, scope and remediation. Full scope of customer data potentially exposed; remediation timeline; post-mortem (public or private); controls added to prevent recurrence. Whether the code exposure affected any fintech customer deployments or was isolated to the government-dashboard codebase.
SAR-filing infrastructure boundary. Under what conditions does customer data from a fintech deployment flow into SAR filings (FinCEN), FINTRAC filings, or intelligence-program codename tags? Is this opt-in, opt-out, contractual, or wired by default for certain customer categories?
Chainalysis crypto-address screening scope. Is the Chainalysis 250+-check pipeline applied to all customer deployments or only government-dashboard deployments? Are crypto-touching fintech customers automatically scoped in?
BSA/AML + OFAC + KYC/CDD coverage. Does Persona's KYC workflow explicitly support FinCEN CDD Rule beneficial ownership collection and verification? Does the adverse-media screening cover OFAC SDN, FinCEN 314(a), EU/UK sanctions lists?
MiCA applicability. For EU VASPs subject to MiCA Article 38 KYC requirements, does Persona's EU KYB/KYC product explicitly map to MiCA technical standards?
ISO 42001. Is AI management systems certification on the roadmap? Target scope and timeline.
MRM documentation. Is there a public or NDA-available SR 11-7 alignment statement? Published model cards for the document-AI and link-analysis models? Third-party fairness audit?
Volume pricing curve for Growth and Enterprise. Per-verification floor, volume-tier breakpoints, seat/case-reviewer pricing, multi-product bundling discounts.

Sources

https://withpersona.com/
https://withpersona.com/pricing
https://withpersona.com/security
https://withpersona.com/blog/persona-achieves-soc2-type2
https://withpersona.com/blog/persona-achieves-iso-27001-certification
https://withpersona.com/blog/persona-pci-dss-certification
https://withpersona.com/blog/personas-fedramp-status
https://withpersona.com/blog/series-d
https://withpersona.com/blog/detect-more-ai-based-face-spoofs-persona
https://withpersona.com/industry/fintech
https://withpersona.com/product/verifications/document-ai
https://withpersona.com/solutions/persona-marketplace
https://withpersona.com/customers/branch-kyb
https://help.withpersona.com/getting-started/pricing-and-plans/
https://help.withpersona.com/getting-started/pricing-and-plans/persona-startup-program/
https://docs.withpersona.com/
https://marketplace.auth0.com/integrations/persona
https://www.prnewswire.com/news-releases/persona-raises-200m-at-2b-valuation-to-build-the-verified-identity-layer-for-an-agentic-ai-world-302442649.html
https://www.businesswire.com/news/home/20260521233540/en/Persona-Achieves-FedRAMP-Moderate-Authorization-Giving-Federal-Agencies-Modern-Identity-Verification
https://www.crunchbase.com/organization/persona-188f
https://en.wikipedia.org/wiki/Persona_(identity_verification_service)
https://www.g2.com/products/persona-persona/reviews
https://www.techdirt.com/2026/02/25/hackers-expose-the-massive-surveillance-stack-hiding-inside-your-age-verification-check/
https://cybernews.com/privacy/persona-leak-exposes-global-surveillance-capabilities/
https://www.dlnews.com/articles/web3/openai-kyc-provider-persona-accused-of-sharing-users-crypto-addresses-with-fincen/