---
title: Incentive abuse prevention
---

# Incentive abuse prevention

Incentive abuse is claiming a reward more times than you allow: repeat free trials, reusing a one-time coupon, a fresh account for every promo, free credits, or completing a paid survey again and again for the payout.

## Step 1: Set up login and signup protection

Before anything else here, set up [Signup protection](/docs/v3/fundamentals/signup-protection) and [Login protection](/docs/v3/fundamentals/login-protection). They're the basis this builds on, and without them the policies below can be bypassed. With those in place, the rest of this guide covers the policies that cap how often one person can claim.

## Step 2: Add the policies

A policy has a trigger (the event it runs on) and a verdict. Add these in your [policies dashboard](https://app.rupt.dev/policies):

| Policy                  | Trigger            | Conditions                               | Verdict   |
| ----------------------- | ------------------ | ---------------------------------------- | --------- |
| Limit claims per device | `signup`           | `fingerprint_user_count` over your limit | Challenge |
| Block repeat offenders  | `signup`, `access` | `in_list` your block list                | Deny      |

This is [multi-accounting prevention](/docs/v3/guides/multi-accounting-prevention) pointed at a reward: one person can't keep making accounts to claim again, because the shared device gives them away. When someone does abuse an offer, add their identifier to a block list and deny it. That's the same machinery as [ban enforcement](/docs/v3/guides/ban-enforcement), and adding their fingerprint stops them coming back for the next promo.

## Related

- [Multi-accounting prevention](/docs/v3/guides/multi-accounting-prevention): the core pattern behind this.
- [Ban enforcement](/docs/v3/guides/ban-enforcement): block repeat offenders for good.
- [Linked accounts](/docs/v3/concepts/linked-accounts): the `fingerprint_user_count` check.