How does MRRescue access my Stripe account?

Read-only OAuth. We detect failed invoices and subscription events but can never charge customers, modify subscriptions, or access sensitive data. You can disconnect in one click.

What emails do my customers receive?

A 6-step recovery sequence when a payment fails (1h, 24h, 72h, 7d, 14d, 30d), a save-flow when someone cancels, renewal reminders, expiring card alerts, trial-ending notifications, and win-back campaigns. All branded with your logo and colors.

What happens when a customer tries to cancel?

We detect the intent in real time and send a personalised save-flow. On Growth, our AI segments customers by MRR — high-value accounts get a VIP offer (40% off 6 months), others get a standard discount or a free 30-day pause.

What are the Growth AI features?

Growth adds: AI Churn Insights (patterns and action items from your exit data), Churn Risk Score per subscriber, AI-personalised win-back emails, Weekly AI digest, Smart cancel-flow with MRR-based segmentation, Churn Spike Alerts, In-app recovery widget, Zero Churn Potential projection, and MRR Stress Test simulator.

What's the in-app recovery widget?

A JavaScript snippet you embed on your cancellation page. It shows a branded modal offering your customer a free 30-day pause instead of cancelling — no code required beyond one script tag.

What's the free diagnosis?

Connect your Stripe account and we scan 90 days of failed and uncollectible invoices. You see exactly how much you've lost — before you pay anything. No credit card required.

What does 'Real MRR vs Stripe MRR' mean?

Stripe counts subscriptions set to cancel-at-period-end as active MRR. MRRescue shows you the true number — stripping out the revenue you've already lost but that Stripe hasn't removed from your dashboard yet.

What if it doesn't work for me?

14-day free trial on every plan. Cancel before day 15, pay nothing. No questions asked.

Pro + Growth

Proactive signup fraud blocking
for Stripe SaaS at scale

Card testers, fraudulent signups, and trial abusers cost SaaS founders real money in chargebacks and dispute fees. MRRescue blocks them at the door — before they can complete a signup and leave you with a fraudulent subscription to deal with.

<5s

Fraud check per signup

False positives for legit users

100%

Disposable email blocked

Code to configure

How proactive signup fraud blocking protects your Stripe account

1
Signup detected
When a new subscription or payment intent is created on your connected Stripe account, MRRescue runs the fraud check.
2
Multi-signal analysis
We check the email against 100+ disposable domains, analyze the TLD, detect plus-addressing, and count signup velocity.
3
Risk score computed
Each signal adds to the score (0-100). Below 40 is allowed, 40-69 is flagged for review, 70+ is blocked.
4
Alert + action
Blocked signups generate a fraud alert in your dashboard and Slack. You can review, dismiss, or adjust thresholds.

Signup fraud check

Email domaintempmail.ninja

Disposable

Risk score82 / 100

High

Velocity7 signups / 24h

Elevated

ActionBlocked

🛡️

Checked in 12ms · fraud alert created

Without vs With signup fraud blocking

Without fraud blocking

✕Card testers sign up with disposable emails
✕Fraudulent subscriptions sit on your account
✕Chargebacks pile up from dishonest signups
✕Your dispute rate creeps toward the 0.75% threshold
✕Manual review adds friction to your signup flow
✕Money spent on dispute fees and refunds

With MRRescue

✓Fraud is blocked automatically in <5 seconds
✓Only legitimate signups reach your Stripe account
✓Zero chargebacks from card testers
✓Your dispute rate stays safely below threshold
✓Signup flow remains fast and frictionless
✓Dispute fees drop significantly

Why blocking fraud at signup is cheaper than recovering from chargebacks

Chargeback cost prevention

One fraudulent subscription can trigger a $15-$50 chargeback fee. Block fraud at signup and you never pay that cost.

Reduce dispute fees

Chargebacks count toward your Stripe dispute rate. Blocking fraud early keeps you safe from the 0.75% account suspension threshold.

Instant fraud detection

Fraud is detected and blocked in under 5 seconds using in-memory pattern matching — zero external API calls, zero latency impact.

Why SaaS fraud prevention starts at signup, not after the chargeback

The math of fraud prevention for SaaS is brutal but simple: a chargeback costs $15-$50 in fees. A fraudulent trial signup that never converts costs you nothing. Every dollar spent preventing fraud at signup saves you multiple dollars in chargeback fees downstream. Yet most founders treat fraud prevention as a back-end concern, monitoring chargebacks after they land and refunding reactively. This is like waiting until your house catches fire to install smoke detectors. By the time you see a chargeback, you've already lost the transaction, paid processing fees, and contributed to a dispute rate that could eventually close your Stripe account. The only rational fraud strategy is prevention at the front door.

Card testing is the most common fraud pattern at signup. A fraudster uses a bot to test stolen credit card numbers at scale. They sign up with a disposable email address, run the card through your payment processor, and if it goes through, they mark that card as valid and sell the list to other criminals. A single compromised card can generate $50-$300 in fraudulent charges before the actual cardholder notices and files a chargeback. Most card testers use telltale signals: disposable email domains like tempmail, 10minutemail, or mailinator; plus-addressed emails like "john+test@gmail.com"; or numeric-heavy email patterns. These signals cost almost nothing to check, and catching them blocks 80%+ of obvious fraud before it reaches your payment processor.

The second fraud layer is behavioral velocity. A single fraudster testing cards will often run dozens of signups in minutes, all from the same email domain. If you see 10 signups in 5 minutes from similar email patterns, that's not a coincidence — that's a bot. Velocity checks are stateless and fast, requiring only an in-memory lookup of recent signups. Combining email pattern analysis with velocity checking catches almost all automated fraud attempts without adding latency or false positives for legitimate users. The goal isn't zero fraud (impossible) or zero false positives (unnecessary). The goal is to eliminate the low-hanging fruit — automated testing, disposable emails, obviously risky patterns — so your chargeback rate stays below dangerous thresholds.

Key takeaways:

▸Block disposable email domains immediately. These account for 70%+ of signup fraud and almost zero legitimate users.
▸Log every signup with email, timestamp, and card fingerprint. This data is invaluable for spotting patterns and debugging fraud after the fact.
▸Combine email verification with card verification. A $1 authorization hold confirms the card is real; disposable email signals the signup is risky.
▸Build a layered defense: pattern matching, velocity checks, and card verification. Single signals generate false positives; multiple signals are highly predictive.

Frequently asked questions

What signals does the fraud check look at?

We check for disposable email domains (100+ known providers), suspicious TLDs, plus-address patterns, numeric-heavy email addresses, and signup velocity from the same domain in the last 24 hours.

What happens when a signup is flagged or blocked?

Blocked signups (risk score 70+) are rejected and logged as a fraud alert in your dashboard. Flagged signups (40-69) are allowed through but highlighted for manual review.

Can I override a blocked signup?

Yes. Fraud alerts in your dashboard let you dismiss false positives. The toggle in Email Flows lets you enable or disable the feature entirely.

Does this add latency to the signup flow?

The check runs in under 50ms since it uses in-memory pattern matching — no external API calls. It's designed to be invisible to legitimate users.

Will fraud blocking affect my trial signup conversion rate?

No. MRRescue only blocks signups with a risk score of 70+, which typically represent card testers and bots—not real customers. Our analysis shows legitimate users have conversion impact of <0.1%, while preventing fraud that would otherwise cost you in dispute fees.