← Back to architecture

Provisioning & Onboarding — Solution Deployment Pipeline

End-to-end onboarding: catalog selection → configuration → compliance → infrastructure → testing → go-live → active portfolio · standardized for all Kredete solutions

Solution catalog
Available solutions
Send (Remittance)
Credit (Builder)
Cards (Issuing)
Prael (AI Agent)
Savings
Insurance
Investments
Solution maturity
Send
PROD
Credit
MVP
Cards
MVP
Prael
PROD
Savings
POC
Prerequisites
KYC/AML integration
Payment rail access
Data platform connected
AI gateway configured
Monitoring setup
Deployment tiers
Tier 1: Internal (beta)
Tier 2: Limited (1K users)
Tier 3: GA (all users)
Tier 4: Enterprise
1 Solution configuration & parameterization
Business configuration
Corridors (country pairs)
Currency pairs enabled
Transaction limits (min/max)
Fee structure
Revenue share (partner)
Branding (white-label)
Technical configuration
API endpoints
Webhook URLs
Auth credentials (vault)
Rate limits
Timeout thresholds
Feature flags (initial)
AI configuration
Model selection
Prompt templates
Guardrail rules
Context window size
Token budget per request
Fallback chain order
Data configuration
Data sources mapped
Schema validation
PII handling rules
Retention policies
Access control (RBAC)
Backup schedule
2 Compliance checklist & licensing
License requirements
Money transmitter (state)
MSB registration (FinCEN)
EMI license (if EU)
FCA authorization (if UK)
CBN license (if Nigeria)
Compliance controls
KYC program ✓
AML program ✓
Sanctions screening ✓
Transaction monitoring ✓
Privacy impact assessment
Data compliance
GDPR mapping (if EU data)
CCPA compliance (if CA)
Data residency check
Cross-border transfer rules
DPA with partners
AI compliance
Responsible AI review
Bias testing complete
Explainability documented
Human oversight plan
EU AI Act classification
3 Infrastructure provisioning
Compute
EKS cluster (K8s)
Node groups (auto-scale)
CPU: m6i.xlarge (base)
GPU: g5.xlarge (if ML)
Spot instances (non-critical)
Data stores
RDS PostgreSQL (primary)
ElastiCache Redis
S3 (object storage)
Pinecone namespace
DynamoDB (session)
Networking
VPC peering (data platform)
ALB (load balancer)
WAF rules (OWASP)
CloudFront (CDN)
Route53 (DNS)
Security
IAM roles (least privilege)
KMS keys (encryption)
Secrets Manager
Security groups
GuardDuty enabled
4 Integration testing & validation
Integration tests
API contract validation
End-to-end flow test
Partner connectivity
Payment rail test (sandbox)
AI model response check
Load & performance
Throughput baseline
Latency benchmarks
Auto-scaling validation
Failover testing
Chaos engineering (lite)
Security validation
Pen test (if new surface)
Vulnerability scan
Auth flow testing
Data encryption verify
Access control audit
UAT sign-off
Product owner review
Compliance sign-off
Operations team ready
Support team trained
Runbooks documented
5 Go-live & portfolio activation
Go-live checklist
All tests passing ✓
Compliance approved ✓
Security cleared ✓
Runbooks ready ✓
Monitoring active ✓
Rollback plan ✓
Rollout strategy
Internal dogfood (day 1-3)
Beta users 1% (day 4-7)
Limited 10% (week 2)
Expanded 50% (week 3)
GA 100% (week 4+)
Portfolio registration
Solution card created
Metrics dashboard live
Documentation published
Support routing enabled
SLA tracking active
Post-launch monitoring
Error rate (< 0.1%)
Latency p95 (< 500ms)
User satisfaction (NPS)
Business KPIs tracking
Cost vs forecast
Avg time to GA: 6 weeks
Governance track
Approval gates
G0: Ideation approved
G1: POC funded
G2: MVP approved
G3: Prod readiness
G4: GA release
Approvers
CTO (technical)
CCO (compliance)
CPO (product)
CISO (security)
CFO (budget)
Support setup
L1: AI auto-resolution
L2: Ops team
L3: Engineering
Escalation matrix
SLA: 4h (P1) / 24h (P2)
Documentation
API docs (OpenAPI)
User guide
Runbooks (ops)
Architecture decision
Compliance mapping
Onboarding metrics
Avg time
6 wks
Success
89%
Active
7
Pipeline
4