Lootboxes

Mystery box platforms, built to comply

Digital drops and physical unboxing share one problem: regulators and card networks read your checkout flow like a contract. We ship odds surfaces, geo rules, and fulfillment glue that hold up when a lawyer, tax authority, or payment risk team actually looks.

What we deliver

Digital Lootboxes

Instant delivery of virtual goods with the same provably fair verification stack as our case product: committed seeds, deterministic rolls, and public replay. Integrations for Steam inventory grants, custodial wallets for on-platform items, or NFT mint pipelines where legal. Webhook and email hooks for fulfillment status.

Physical Item Fulfillment

Warehouse SKU mapping, pick/pack workflows, carrier APIs (UPS/FedEx/DHL), and tracking webhooks back to player accounts. Fair market value (FMV) guarantees on disclosed tiers, buffer stock alerts, and substitution policies you can show counsel before launch.

Probability Disclosure

Per-item percentages on the purchase interstitial, machine-readable JSON for the same snapshot, and change logs when pools update. Copy and UI reviewed against FTC guidance on clear disclosure; we avoid burying odds behind secondary modals.

Age Verification

Age gates with document vendors where required, parental consent flows for minors in permissive jurisdictions, and hard blocks where loot boxes are prohibited (Belgium, Netherlands) or under active regulatory review (UK Gambling Commission positioning). Configurable per locale.

Geo-Restriction Engine

Edge middleware (Cloudflare Workers or Envoy) plus server-side enforcement on purchase. Rulesets versioned in Git; shadow mode for testing; automatic fallback experiences (cosmetic-only, direct purchase store) instead of silent failures.

Anti-Fraud & Fair Pricing

No obfuscated premium-currency-only SKUs without clear fiat equivalence at checkout. Chargeback monitoring, velocity limits, and independent verification hooks for high-value physical pulls. FMV calculators referencing third-party comps for tax and sweepstakes posture where applicable.

How it works

01 — Eligibility

Geo + age gate

Request hits edge; country and region resolve to a ruleset. Blocked locales never reach the payment intent. Where age is uncertain, KYC vendors run before SKU unlock. Entitlements cache with short TTL so policy changes propagate within minutes, not days.

02 — Purchase

Transparent checkout

Odds render above the fold with the same numbers the server will use. Payment succeeds → ledger records liability → RNG service draws against the locked pool version. Receipt includes seed commitments for digital items or tracking references for physical ones.

03 — Fulfill

Digital or warehouse

Virtual goods grant via APIs; physical goods enqueue WMS jobs with SLA timers. Support consoles show chain-of-custody: payment, roll, pick, ship. Chargebacks attach to the original roll record for dispute packets.

Technical depth

  • Feature flags (LaunchDarkly/Unleash) drive jurisdiction packs — same codebase, different purchase surfaces per country.
  • Immutable audit trail: who changed which probability table, when, and which deploy tag carried it.
  • KMS-wrapped master seeds with rotation playbooks; break-glass access logged to SIEM.
  • PCI-scoped card flows isolated from game services; tokens only cross the boundary into the ledger service.
  • A/B testing of disclosure layouts with legal-approved variants only — no dark-pattern experiments on our watch.

Build your lootbox platform

From odds UX to warehouse integrations — we bias toward architectures your counsel and payment partners will not fight you on.

Start a Project