Policy Configurations

Any behavior from Canopy’s system that is enforced over a borrower’s lifecycle.

Policy Configurations


As a computation engine, Canopy strives to enforce all policies that you ask it to for all of your borrowers, which are necessary for running your lending program. In order to make sure that Canopy is behaving as expected, you will need to - “in code” communicate “plain-english” policies to the system. The goal of this guide is to teach you how to ask (in code / by configuration) Canopy to enforce the policies you would like for it to enforce.

A Few “Plain-english” Examples


Interest Accural Policy

Interest should accrue at the end of each cycle, following the average daily balance formula.


Late Fee Policy

Late fees of $20 dollars should accrue every time the borrower misses a payment, with the first late fee automatically waived.


Statement Timing Policy

Statements should cut every 1 month, adjusting for the end-of-month.

Configuration Layer Policies


These are enforced for all borrowers your team onboards, unless overridden at the product, account, or line-item level. Common examples include risk management or compliance rules unique to your domain. Generally, organization-level configs are very rare, and unique to enterprise contracts.


These are enforced for all borrowers onboarded with a specific product_id, unless overridden at the account or line-item level. A common example is the cycle length of the borrower. These are configured in your create product payload. Those that are safe to edit can be edited with subsequent API calls.


These are unique to each borrower onboarded with a specific product_id, unless overridden at the line item level. A common example is the borrower’s interest rate. These are configured in your create account payload. Those that are safe to edit can be edited with subsequent API calls.


These are unique to each line item for a borrower. A common example is: two charges that have two different interest rates. These are configured in your create line item payloads.

System Enforced Policies


These policies are encoded to fire at the execution of an event. Their logic can live in one of two places:


The logic lives in your system and is enforced via call-and-response.

For Example:
Canopy notifies you when the borrower has missed a payment. In response to the notification, you query the account’s state, determine whether you would like to create a fee / change the account status, and then issue API requests to the create fee and update account status API endpoints. In this pattern, Canopy does not enforce the logic of your policy, but does enforce its outcome. This pattern is very common to get complex and highly policies up and running, and gives your team complete control over how the policy gets enforced in Canopy’s system.

Internal Hooks (Enterprise Only)

The custom logic for the policy is encoded directly into Canopy. When the event fires, Canopy automatically enforces the custom logic based on your team’s business requirements instead of having the logic live in your webhook handler.


Some behavior in Canopy, as with any System of Record, is simply implicit. Our implicit behaviors are documented rigorously, but their impact is unique to your workflow. To make sure your lending program is resilient to implicit policies, we recommend the following best practices detailed in our documentation and working with our customer success teams, who can help to identify areas of implicit behavior your program could be impacted by.


Enterprise Customer?

In detailed scoping we can identify additional policies that we don’t support today. Canopy's client delivery team is able to work with enterprise customers to safely construct policies to meet the specific needs of your lending program.

What’s Next