diff --git a/backend/services/__tests__/supportAutomation.test.ts b/backend/services/__tests__/supportAutomation.test.ts
new file mode 100644
index 0000000..8eef4c8
--- /dev/null
+++ b/backend/services/__tests__/supportAutomation.test.ts
@@ -0,0 +1,74 @@
+import {
+  buildExternalPayload,
+  buildSupportTicket,
+  dedupeSupportTickets,
+  recordExternalSync,
+  recordSupportAction,
+} from '../supportAutomation';
+
+describe('supportAutomation', () => {
+  const context = {
+    subscriptionId: 'sub-1',
+    subscriptionName: 'Acme Pro',
+    planName: 'Acme Pro',
+    planTier: 'premium',
+    billingCycle: 'monthly',
+    status: 'active',
+    amount: 49,
+    currency: 'USD',
+    createdAt: '2026-05-01T00:00:00.000Z',
+    nextBillingDate: '2026-06-01T00:00:00.000Z',
+    failedPayments: 1,
+    chargeCount: 3,
+    history: ['Payment failed twice'],
+  };
+
+  it('dedupes open tickets for the same subscription issue', () => {
+    const candidate = buildSupportTicket({
+      subscriptionId: 'sub-1',
+      issueType: 'failed_charge',
+      summary: 'Auto-created from failed payment',
+      createdAt: '2026-05-01T00:00:00.000Z',
+      context,
+    });
+    const merged = dedupeSupportTickets([candidate], {
+      ...candidate,
+      id: 'candidate-2',
+      description: 'Duplicate failure event',
+      version: 1,
+      auditTrail: candidate.auditTrail,
+      actions: candidate.actions,
+      sla: candidate.sla,
+      relatedTicketIds: [],
+    });
+
+    expect(merged.id).toBe(candidate.id);
+    expect(merged.relatedTicketIds).toContain('candidate-2');
+  });
+
+  it('records actions, syncs, and builds external payloads', () => {
+    const ticket = buildSupportTicket({
+      subscriptionId: 'sub-2',
+      issueType: 'cancellation',
+      summary: 'Cancellation needs review',
+      createdAt: '2026-05-02T00:00:00.000Z',
+      context: {
+        ...context,
+        subscriptionId: 'sub-2',
+        subscriptionName: 'Northwind Teams',
+        planName: 'Team Plan',
+        planTier: 'enterprise',
+        billingCycle: 'yearly',
+      },
+    });
+    const acted = recordSupportAction(ticket, 'cancel', 'agent-1', 'Cancelled after verification');
+    const synced = recordExternalSync(acted, 'zendesk', 'https://support.example.com');
+    const payload = buildExternalPayload(synced, 'zendesk');
+
+    expect(acted.status).toBe('resolved');
+    expect(synced.externalProvider).toBe('zendesk');
+    expect(payload.context.subscriptionName).toBe('Northwind Teams');
+    expect(payload.actions).toHaveLength(1);
+    expect(payload.sla.resolutionDueAt).toBeTruthy();
+  });
+});
diff --git a/backend/services/index.ts b/backend/services/index.ts
index 1f5c4a1..d304629 100644
--- a/backend/services/index.ts
+++ b/backend/services/index.ts
@@ -16,3 +16,20 @@ export {
   isWebhookEventAllowed,
 } from './webhook';
 export type { RegisterWebhookInput, WebhookDeliveryResult, WebhookEventInput } from './webhook';
+export {
+  buildExternalPayload,
+  buildSupportTicket,
+  calculateSupportSla,
+  dedupeSupportTickets,
+  recordExternalSync,
+  recordSupportAction,
+} from './supportAutomation';
+export type {
+  SupportActionRecord,
+  SupportActionType,
+  SupportIssueType,
+  SupportProvider,
+  SupportSlaSnapshot,
+  SupportTicketContext,
+  SupportTicketRecord,
+} from './supportAutomation';
diff --git a/backend/services/supportAutomation.ts b/backend/services/supportAutomation.ts
new file mode 100644
index 0000000..32a068d
--- /dev/null
+++ b/backend/services/supportAutomation.ts
@@ -0,0 +1,252 @@
+import { randomUUID } from 'crypto';
+
+export type SupportIssueType = 'failed_charge' | 'cancellation' | 'dispute' | 'general';
+export type SupportActionType = 'refund' | 'pause' | 'cancel' | 'escalate' | 'note';
+export type SupportProvider = 'zendesk' | 'intercom' | 'freshdesk' | 'internal';
+
+export interface SupportTicketContext {
+  subscriptionId: string;
+  subscriptionName: string;
+  planName: string;
+  planTier: string;
+  billingCycle: string;
+  status: string;
+  amount: number;
+  currency: string;
+  createdAt: string;
+  nextBillingDate?: string;
+  failedPayments: number;
+  chargeCount: number;
+  history: string[];
+}
+
+export interface SupportTicketRecord {
+  id: string;
+  subscriptionId: string;
+  issueType: SupportIssueType;
+  status: 'open' | 'assigned' | 'pending_customer' | 'resolved' | 'closed';
+  priority: 'low' | 'medium' | 'high' | 'urgent';
+  title: string;
+  description: string;
+  dedupeKey: string;
+  relatedTicketIds: string[];
+  context: SupportTicketContext;
+  actions: SupportActionRecord[];
+  auditTrail: SupportAuditEntry[];
+  sla: SupportSlaSnapshot;
+  externalTicketId?: string;
+  externalProvider?: SupportProvider;
+  version: number;
+}
+
+export interface SupportAuditEntry {
+  id: string;
+  action: SupportActionType | 'create' | 'sync' | 'dedupe' | 'resolve';
+  actorId: string;
+  note: string;
+  createdAt: string;
+  version: number;
+  metadata?: Record<string, string | number | boolean>;
+}
+
+export interface SupportActionRecord {
+  action: SupportActionType;
+  actorId: string;
+  note: string;
+  createdAt: string;
+  version: number;
+  conflict?: boolean;
+}
+
+export interface SupportSlaSnapshot {
+  firstResponseDueAt: string;
+  resolutionDueAt: string;
+  status: 'on_track' | 'at_risk' | 'breached' | 'resolved';
+  breached: boolean;
+}
+
+const priorityForIssue: Record<SupportIssueType, SupportTicketRecord['priority']> = {
+  failed_charge: 'high',
+  cancellation: 'medium',
+  dispute: 'urgent',
+  general: 'low',
+};
+
+const slaByPriority: Record<SupportTicketRecord['priority'], { firstResponseHours: number; resolutionHours: number }> = {
+  low: { firstResponseHours: 24, resolutionHours: 72 },
+  medium: { firstResponseHours: 8, resolutionHours: 48 },
+  high: { firstResponseHours: 4, resolutionHours: 24 },
+  urgent: { firstResponseHours: 1, resolutionHours: 8 },
+};
+
+const createId = (): string => `support_${randomUUID()}`;
+
+const uniqueStrings = (values: (string | undefined)[]): string[] =>
+  Array.from(new Set(values.filter((value): value is string => Boolean(value))));
+
+export const calculateSupportSla = (
+  issueType: SupportIssueType,
+  createdAt: string,
+  priority: SupportTicketRecord['priority'] = priorityForIssue[issueType]
+): SupportSlaSnapshot => {
+  const schedule = slaByPriority[priority];
+  const base = new Date(createdAt).getTime();
+  return {
+    firstResponseDueAt: new Date(base + schedule.firstResponseHours * 60 * 60 * 1000).toISOString(),
+    resolutionDueAt: new Date(base + schedule.resolutionHours * 60 * 60 * 1000).toISOString(),
+    status: 'on_track',
+    breached: false,
+  };
+};
+
+export const buildSupportTicket = (input: {
+  subscriptionId: string;
+  issueType: SupportIssueType;
+  summary: string;
+  createdAt: string;
+  context: SupportTicketContext;
+  relatedTicketIds?: string[];
+  dedupeKey?: string;
+}): SupportTicketRecord => {
+  const priority = priorityForIssue[input.issueType];
+  const dedupeKey = input.dedupeKey ?? `${input.subscriptionId}:${input.issueType}:${input.createdAt.slice(0, 10)}`;
+  const relatedTicketIds = uniqueStrings(input.relatedTicketIds ?? []);
+  return {
+    id: createId(),
+    subscriptionId: input.subscriptionId,
+    issueType: input.issueType,
+    status: 'open',
+    priority,
+    title: `${input.context.subscriptionName} ${input.issueType.replace('_', ' ')}`,
+    description: input.summary,
+    dedupeKey,
+    relatedTicketIds,
+    context: input.context,
+    actions: [],
+    auditTrail: [
+      {
+        id: createId(),
+        action: 'create',
+        actorId: 'system',
+        note: input.summary,
+        createdAt: input.createdAt,
+        version: 1,
+      },
+    ],
+    sla: calculateSupportSla(input.issueType, input.createdAt, priority),
+    version: 1,
+  };
+};
+
+export const dedupeSupportTickets = (
+  existingTickets: SupportTicketRecord[],
+  candidate: SupportTicketRecord
+): SupportTicketRecord => {
+  const match = existingTickets.find(
+    (ticket) =>
+      ticket.subscriptionId === candidate.subscriptionId &&
+      ticket.issueType === candidate.issueType &&
+      ticket.status !== 'closed'
+  );
+
+  if (!match) return candidate;
+
+  return {
+    ...match,
+    relatedTicketIds: uniqueStrings([...match.relatedTicketIds, candidate.id, ...candidate.relatedTicketIds]),
+    context: {
+      ...match.context,
+      history: uniqueStrings([...match.context.history, ...candidate.context.history, candidate.description]),
+    },
+    version: match.version + 1,
+    auditTrail: [
+      ...match.auditTrail,
+      {
+        id: createId(),
+        action: 'dedupe',
+        actorId: 'system',
+        note: `Merged ${candidate.id} into existing ticket`,
+        createdAt: new Date().toISOString(),
+        version: match.version + 1,
+        metadata: { mergedTicketId: candidate.id },
+      },
+    ],
+  };
+};
+
+export const recordSupportAction = (
+  ticket: SupportTicketRecord,
+  action: SupportActionType,
+  actorId: string,
+  note: string,
+  expectedVersion?: number
+): SupportTicketRecord => {
+  const conflict = expectedVersion !== undefined && expectedVersion !== ticket.version;
+  const nextVersion = ticket.version + 1;
+  const nextStatus = action === 'refund' || action === 'pause' || action === 'cancel' ? 'resolved' : 'assigned';
+
+  return {
+    ...ticket,
+    status: conflict ? ticket.status : nextStatus,
+    version: nextVersion,
+    actions: [
+      ...ticket.actions,
+      {
+        action,
+        actorId,
+        note,
+        createdAt: new Date().toISOString(),
+        version: nextVersion,
+        conflict,
+      },
+    ],
+    auditTrail: [
+      ...ticket.auditTrail,
+      {
+        id: createId(),
+        action: conflict ? 'note' : action,
+        actorId,
+        note: conflict ? `Conflict: ${note}` : note,
+        createdAt: new Date().toISOString(),
+        version: nextVersion,
+        metadata: conflict ? { expectedVersion: expectedVersion ?? -1, actualVersion: ticket.version } : { status: nextStatus },
+      },
+    ],
+  };
+};
+
+export const recordExternalSync = (
+  ticket: SupportTicketRecord,
+  provider: SupportProvider,
+  baseUrl?: string
+): SupportTicketRecord => ({
+  ...ticket,
+  externalProvider: provider,
+  externalTicketId: ticket.externalTicketId ?? `${provider}-${ticket.id}`,
+  auditTrail: [
+    ...ticket.auditTrail,
+    {
+      id: createId(),
+      action: 'sync',
+      actorId: 'system',
+      note: `Synced to ${provider}`,
+      createdAt: new Date().toISOString(),
+      version: ticket.version,
+      metadata: { provider, baseUrl: baseUrl ?? '' },
+    },
+  ],
+});
+
+export const buildExternalPayload = (ticket: SupportTicketRecord, provider: SupportProvider) => ({
+  provider,
+  ticketId: ticket.id,
+  subscriptionId: ticket.subscriptionId,
+  title: ticket.title,
+  description: ticket.description,
+  status: ticket.status,
+  priority: ticket.priority,
+  context: ticket.context,
+  sla: ticket.sla,
+  actions: ticket.actions,
+  relatedTicketIds: ticket.relatedTicketIds,
+});
diff --git a/contracts/fraud/src/lib.rs b/contracts/fraud/src/lib.rs
index 125c689..447d249 100644
--- a/contracts/fraud/src/lib.rs
+++ b/contracts/fraud/src/lib.rs
@@ -23,6 +23,11 @@ struct SubscriptionProfile {
     expected_usage: u32,
     observed_usage: u32,
     chargebacks: u32,
+    home_country: Option<String>,
+    current_country: Option<String>,
+    device_fingerprint: Option<String>,
+    trusted_device_fingerprint: Option<String>,
+    false_positive_count: u32,
     is_flagged: bool,
     is_blocked: bool,
 }
@@ -73,15 +78,17 @@ fn get_merchant_subscriptions(env: &Env, merchant: &Address) -> Vec<Subscription
 }
 
 fn save_subscriptions(env: &Env, subscriber: &Address, ids: &Vec<SubscriptionId>) {
-    env.storage()
-        .persistent()
-        .set(&StorageKey::SubscriberSubscriptions(subscriber.clone()), &ids.clone());
+    env.storage().persistent().set(
+        &StorageKey::SubscriberSubscriptions(subscriber.clone()),
+        &ids.clone(),
+    );
 }
 
 fn save_merchant_subscriptions(env: &Env, merchant: &Address, ids: &Vec<SubscriptionId>) {
-    env.storage()
-        .persistent()
-        .set(&StorageKey::MerchantSubscriptions(merchant.clone()), &ids.clone());
+    env.storage().persistent().set(
+        &StorageKey::MerchantSubscriptions(merchant.clone()),
+        &ids.clone(),
+    );
 }
 
 fn load_profile(env: &Env, subscription_id: SubscriptionId) -> Option<SubscriptionProfile> {
@@ -91,12 +98,17 @@ fn load_profile(env: &Env, subscription_id: SubscriptionId) -> Option<Subscripti
 }
 
 fn save_profile(env: &Env, profile: &SubscriptionProfile) {
-    env.storage()
-        .persistent()
-        .set(&StorageKey::Subscription(profile.subscription_id), &profile.clone());
+    env.storage().persistent().set(
+        &StorageKey::Subscription(profile.subscription_id),
+        &profile.clone(),
+    );
 }
 
-fn determine_velocity_score(env: &Env, profile: &SubscriptionProfile, ids: &Vec<SubscriptionId>) -> u32 {
+fn determine_velocity_score(
+    env: &Env,
+    profile: &SubscriptionProfile,
+    ids: &Vec<SubscriptionId>,
+) -> u32 {
     let now = env.ledger().timestamp();
     let mut recent_creations = 0u32;
     let mut i = 0u32;
@@ -149,6 +161,39 @@ fn determine_chargeback_score(profile: &SubscriptionProfile) -> u32 {
     }
 }
 
+fn determine_geolocation_score(profile: &SubscriptionProfile) -> u32 {
+    match (&profile.home_country, &profile.current_country) {
+        (Some(home), Some(current)) if home != current => 24,
+        _ => 0,
+    }
+}
+
+fn determine_device_score(profile: &SubscriptionProfile) -> u32 {
+    match (
+        &profile.device_fingerprint,
+        &profile.trusted_device_fingerprint,
+    ) {
+        (Some(current), Some(trusted)) if current != trusted => 20,
+        _ => 0,
+    }
+}
+
+fn determine_pattern_shift_score(
+    profile: &SubscriptionProfile,
+    geo_score: u32,
+    device_score: u32,
+) -> u32 {
+    if profile.observed_usage >= profile.expected_usage.saturating_mul(2)
+        && (geo_score > 0 || device_score > 0)
+    {
+        16
+    } else if profile.observed_usage > profile.expected_usage && profile.chargebacks > 0 {
+        12
+    } else {
+        0
+    }
+}
+
 fn determine_action(score: u32) -> FraudAction {
     if score >= HIGH_RISK_THRESHOLD {
         FraudAction::Block
@@ -159,16 +204,75 @@ fn determine_action(score: u32) -> FraudAction {
     }
 }
 
-fn score_profile(
+fn build_evidence(
     env: &Env,
     profile: &SubscriptionProfile,
-    ids: &Vec<SubscriptionId>,
-) -> RiskScore {
+    geo_score: u32,
+    device_score: u32,
+) -> Vec<subtrackr_types::FraudEvidence> {
+    let now = env.ledger().timestamp();
+    let mut evidence = Vec::new(env);
+    evidence.push_back(subtrackr_types::FraudEvidence {
+        label: String::from_str(env, "payment profile"),
+        value: String::from_str(env, "subscription payment reviewed"),
+        source: String::from_str(env, "payment"),
+        captured_at: now,
+        confidence: 88,
+    });
+
+    if geo_score > 0 {
+        let current = profile
+            .current_country
+            .clone()
+            .unwrap_or_else(|| String::from_str(env, "unknown"));
+        evidence.push_back(subtrackr_types::FraudEvidence {
+            label: String::from_str(env, "location drift"),
+            value: current,
+            source: String::from_str(env, "location"),
+            captured_at: now,
+            confidence: 92,
+        });
+    }
+
+    if device_score > 0 {
+        let current = profile
+            .device_fingerprint
+            .clone()
+            .unwrap_or_else(|| String::from_str(env, "unknown"));
+        let trusted = profile
+            .trusted_device_fingerprint
+            .clone()
+            .unwrap_or_else(|| String::from_str(env, "unknown"));
+        evidence.push_back(subtrackr_types::FraudEvidence {
+            label: String::from_str(env, "device mismatch"),
+            value: current,
+            source: String::from_str(env, "device"),
+            captured_at: now,
+            confidence: 87,
+        });
+    }
+
+    evidence
+}
+
+fn score_profile(env: &Env, profile: &SubscriptionProfile, ids: &Vec<SubscriptionId>) -> RiskScore {
     let now = env.ledger().timestamp();
     let velocity_score = determine_velocity_score(env, profile, ids);
     let anomaly_score = determine_anomaly_score(profile);
     let chargeback_score = determine_chargeback_score(profile);
-    let total_score = (velocity_score + anomaly_score + chargeback_score).min(100);
+    let geolocation_score = determine_geolocation_score(profile);
+    let device_mismatch_score = determine_device_score(profile);
+    let pattern_shift_score =
+        determine_pattern_shift_score(profile, geolocation_score, device_mismatch_score);
+    let false_positive_penalty = (profile.false_positive_count * 20).min(60);
+    let total_score = (velocity_score
+        + anomaly_score
+        + chargeback_score
+        + geolocation_score
+        + device_mismatch_score
+        + pattern_shift_score)
+        .saturating_sub(false_positive_penalty)
+        .min(100);
 
     let mut signals = Vec::new(env);
     if velocity_score > 0 {
@@ -195,8 +299,39 @@ fn score_profile(
             observed_at: now,
         });
     }
+    if geolocation_score > 0 {
+        signals.push_back(RiskSignal {
+            kind: RiskSignalKind::GeolocationAnomaly,
+            score: geolocation_score,
+            detail: String::from_str(env, "current location differs from the usual profile"),
+            observed_at: now,
+        });
+    }
+    if device_mismatch_score > 0 {
+        signals.push_back(RiskSignal {
+            kind: RiskSignalKind::DeviceMismatch,
+            score: device_mismatch_score,
+            detail: String::from_str(env, "device fingerprint does not match the trusted profile"),
+            observed_at: now,
+        });
+    }
+    if pattern_shift_score > 0 {
+        signals.push_back(RiskSignal {
+            kind: RiskSignalKind::PatternShift,
+            score: pattern_shift_score,
+            detail: String::from_str(env, "usage patterns shifted alongside fraud indicators"),
+            observed_at: now,
+        });
+    }
 
-    let reason = if chargeback_score >= anomaly_score && chargeback_score >= velocity_score {
+    let reason = if geolocation_score >= chargeback_score
+        && geolocation_score >= anomaly_score
+        && geolocation_score >= velocity_score
+    {
+        String::from_str(env, "geolocation anomaly is the dominant signal")
+    } else if device_mismatch_score >= chargeback_score && device_mismatch_score >= anomaly_score {
+        String::from_str(env, "device mismatch is the dominant signal")
+    } else if chargeback_score >= anomaly_score && chargeback_score >= velocity_score {
         String::from_str(env, "chargeback risk dominates")
     } else if velocity_score >= anomaly_score {
         String::from_str(env, "velocity risk is elevated")
@@ -212,10 +347,14 @@ fn score_profile(
         velocity_score,
         anomaly_score,
         chargeback_score,
+        device_mismatch_score,
+        geolocation_score,
+        pattern_shift_score,
         action: determine_action(total_score),
         reason,
         assessed_at: now,
         signals,
+        evidence: build_evidence(env, profile, geolocation_score, device_mismatch_score),
     }
 }
 
@@ -231,11 +370,14 @@ fn persist_case(env: &Env, score: &RiskScore, status: FraudReviewStatus) -> Frau
         reason: score.reason.clone(),
         created_at: score.assessed_at,
         updated_at: score.assessed_at,
+        evidence: score.evidence.clone(),
+        reviewed_at: score.assessed_at,
     };
 
-    env.storage()
-        .persistent()
-        .set(&StorageKey::ReviewCase(score.subscription_id), &case.clone());
+    env.storage().persistent().set(
+        &StorageKey::ReviewCase(score.subscription_id),
+        &case.clone(),
+    );
     case
 }
 
@@ -277,6 +419,11 @@ impl SubTrackrFraud {
             expected_usage: 1,
             observed_usage: 1,
             chargebacks: 0,
+            home_country: Option::None,
+            current_country: Option::None,
+            device_fingerprint: Option::None,
+            trusted_device_fingerprint: Option::None,
+            false_positive_count: 0,
             is_flagged: false,
             is_blocked: false,
         };
@@ -309,15 +456,45 @@ impl SubTrackrFraud {
         }
     }
 
-    pub fn record_chargeback(
+    pub fn record_chargeback(env: Env, subscriber: Address, subscription_id: SubscriptionId) {
+        subscriber.require_auth();
+
+        if let Some(mut profile) = load_profile(&env, subscription_id) {
+            profile.chargebacks = profile.chargebacks.saturating_add(1);
+            profile.last_activity_at = env.ledger().timestamp();
+            save_profile(&env, &profile);
+        }
+    }
+
+    pub fn record_location_profile(
         env: Env,
         subscriber: Address,
         subscription_id: SubscriptionId,
+        home_country: String,
+        current_country: String,
     ) {
         subscriber.require_auth();
 
         if let Some(mut profile) = load_profile(&env, subscription_id) {
-            profile.chargebacks = profile.chargebacks.saturating_add(1);
+            profile.home_country = Option::Some(home_country);
+            profile.current_country = Option::Some(current_country);
+            profile.last_activity_at = env.ledger().timestamp();
+            save_profile(&env, &profile);
+        }
+    }
+
+    pub fn record_device_profile(
+        env: Env,
+        subscriber: Address,
+        subscription_id: SubscriptionId,
+        device_fingerprint: String,
+        trusted_device_fingerprint: String,
+    ) {
+        subscriber.require_auth();
+
+        if let Some(mut profile) = load_profile(&env, subscription_id) {
+            profile.device_fingerprint = Option::Some(device_fingerprint);
+            profile.trusted_device_fingerprint = Option::Some(trusted_device_fingerprint);
             profile.last_activity_at = env.ledger().timestamp();
             save_profile(&env, &profile);
         }
@@ -334,10 +511,14 @@ impl SubTrackrFraud {
                 velocity_score: 0,
                 anomaly_score: 0,
                 chargeback_score: 0,
+                device_mismatch_score: 0,
+                geolocation_score: 0,
+                pattern_shift_score: 0,
                 action: FraudAction::Approve,
                 reason: String::from_str(&env, "no subscription history"),
                 assessed_at: env.ledger().timestamp(),
                 signals: Vec::new(&env),
+                evidence: Vec::new(&env),
             };
         }
 
@@ -373,7 +554,10 @@ impl SubTrackrFraud {
             let case = persist_case(&env, &score, status);
             update_profile_action(&env, subscription_id, &score);
             env.events().publish(
-                (String::from_str(&env, "fraud_case_opened"), score.subscription_id),
+                (
+                    String::from_str(&env, "fraud_case_opened"),
+                    score.subscription_id,
+                ),
                 (case.risk_score, case.action.clone()),
             );
         } else {
@@ -391,6 +575,7 @@ impl SubTrackrFraud {
         if let Some(mut case) = review_case_for_subscription(&env, subscription_id) {
             case.status = FraudReviewStatus::Reviewed;
             case.updated_at = env.ledger().timestamp();
+            case.reviewed_at = case.updated_at;
             case.action = if approved {
                 FraudAction::Approve
             } else {
@@ -402,6 +587,32 @@ impl SubTrackrFraud {
         }
     }
 
+    pub fn submit_false_positive_feedback(
+        env: Env,
+        subscriber: Address,
+        subscription_id: SubscriptionId,
+    ) {
+        subscriber.require_auth();
+
+        if let Some(mut profile) = load_profile(&env, subscription_id) {
+            profile.false_positive_count = profile.false_positive_count.saturating_add(1);
+            profile.is_flagged = false;
+            profile.is_blocked = false;
+            profile.last_activity_at = env.ledger().timestamp();
+            save_profile(&env, &profile);
+        }
+
+        if let Some(mut case) = review_case_for_subscription(&env, subscription_id) {
+            case.status = FraudReviewStatus::Dismissed;
+            case.updated_at = env.ledger().timestamp();
+            case.reviewed_at = case.updated_at;
+            case.action = FraudAction::Approve;
+            env.storage()
+                .persistent()
+                .set(&StorageKey::ReviewCase(subscription_id), &case.clone());
+        }
+    }
+
     pub fn get_fraud_report(env: Env, merchant_id: Address) -> FraudReport {
         let ids = get_merchant_subscriptions(&env, &merchant_id);
         let mut total_risk = 0u32;
@@ -410,7 +621,10 @@ impl SubTrackrFraud {
         let mut manual_review = 0u32;
         let mut velocity_alerts = 0u32;
         let mut anomaly_alerts = 0u32;
+        let mut geolocation_alerts = 0u32;
         let mut chargeback_predictions = 0u32;
+        let mut pending_evidence = 0u32;
+        let mut false_positive_feedback = 0u32;
         let mut high_risk_subscribers: Vec<Address> = Vec::new(&env);
         let mut recent_cases: Vec<FraudCase> = Vec::new(&env);
 
@@ -436,6 +650,9 @@ impl SubTrackrFraud {
                 if score.anomaly_score > 0 {
                     anomaly_alerts += 1;
                 }
+                if score.geolocation_score > 0 {
+                    geolocation_alerts += 1;
+                }
                 if score.chargeback_score > 0 {
                     chargeback_predictions += 1;
                 }
@@ -444,9 +661,19 @@ impl SubTrackrFraud {
                 }
 
                 if let Some(case) = review_case_for_subscription(&env, score.subscription_id) {
+                    if case.evidence.len() == 0 {
+                        pending_evidence += 1;
+                    }
+                    if case.status == FraudReviewStatus::Dismissed {
+                        false_positive_feedback += 1;
+                    }
                     recent_cases.push_back(case);
                 } else if score.total_score >= REVIEW_THRESHOLD {
-                    recent_cases.push_back(persist_case(&env, &score, FraudReviewStatus::Pending));
+                    let case = persist_case(&env, &score, FraudReviewStatus::Pending);
+                    if case.evidence.len() == 0 {
+                        pending_evidence += 1;
+                    }
+                    recent_cases.push_back(case);
                 }
             }
             i += 1;
@@ -478,8 +705,11 @@ impl SubTrackrFraud {
             average_risk,
             velocity_alerts,
             anomaly_alerts,
+            geolocation_alerts,
             chargeback_predictions,
             high_risk_subscribers: high_risk_subscribers.len(),
+            pending_evidence_count: pending_evidence,
+            false_positive_feedback_count: false_positive_feedback,
             recent_cases: trimmed_cases,
         }
     }
diff --git a/contracts/types/src/lib.rs b/contracts/types/src/lib.rs
index 86daa83..2c50a85 100644
--- a/contracts/types/src/lib.rs
+++ b/contracts/types/src/lib.rs
@@ -229,6 +229,7 @@ pub enum RiskSignalKind {
     Chargeback,
     PatternShift,
     DeviceMismatch,
+    GeolocationAnomaly,
 }
 
 #[contracttype]
@@ -240,6 +241,16 @@ pub struct RiskSignal {
     pub observed_at: Timestamp,
 }
 
+#[contracttype]
+#[derive(Clone, Debug, PartialEq)]
+pub struct FraudEvidence {
+    pub label: String,
+    pub value: String,
+    pub source: String,
+    pub captured_at: Timestamp,
+    pub confidence: u32,
+}
+
 #[contracttype]
 #[derive(Clone, Debug, PartialEq)]
 pub struct RiskScore {
@@ -250,10 +261,14 @@ pub struct RiskScore {
     pub velocity_score: u32,
     pub anomaly_score: u32,
     pub chargeback_score: u32,
+    pub device_mismatch_score: u32,
+    pub geolocation_score: u32,
+    pub pattern_shift_score: u32,
     pub action: FraudAction,
     pub reason: String,
     pub assessed_at: Timestamp,
     pub signals: Vec<RiskSignal>,
+    pub evidence: Vec<FraudEvidence>,
 }
 
 #[contracttype]
@@ -269,6 +284,8 @@ pub struct FraudCase {
     pub reason: String,
     pub created_at: Timestamp,
     pub updated_at: Timestamp,
+    pub evidence: Vec<FraudEvidence>,
+    pub reviewed_at: Timestamp,
 }
 
 #[contracttype]
@@ -282,8 +299,11 @@ pub struct FraudReport {
     pub average_risk: u32,
     pub velocity_alerts: u32,
     pub anomaly_alerts: u32,
+    pub geolocation_alerts: u32,
     pub chargeback_predictions: u32,
     pub high_risk_subscribers: u32,
+    pub pending_evidence_count: u32,
+    pub false_positive_feedback_count: u32,
     pub recent_cases: Vec<FraudCase>,
 }
 
diff --git a/src/screens/CancellationFlowScreen.tsx b/src/screens/CancellationFlowScreen.tsx
index 1e83523..0c18e66 100644
--- a/src/screens/CancellationFlowScreen.tsx
+++ b/src/screens/CancellationFlowScreen.tsx
@@ -6,11 +6,13 @@ import { Card } from '../components/common/Card';
 import { colors, spacing, typography } from '../utils/constants';
 import { RootStackParamList } from '../navigation/types';
 import { useCancellationStore } from '../store/cancellationStore';
+import { useSubscriptionStore } from '../store';
 
 type Props = NativeStackScreenProps<RootStackParamList, 'CancellationFlow'>;
 
 const CancellationFlowScreen: React.FC<Props> = ({ route, navigation }) => {
   const { currentStep, setReason, setStep, acceptOffer, reset } = useCancellationStore();
+  const { deleteSubscription } = useSubscriptionStore();
 
   const { subscriptionId } = route.params;
 
@@ -64,7 +66,10 @@ const CancellationFlowScreen: React.FC<Props> = ({ route, navigation }) => {
             <Button
               title="Confirm Cancellation"
               variant="danger"
-              onPress={() => setStep('SUCCESS')}
+              onPress={async () => {
+                await deleteSubscription(subscriptionId);
+                setStep('SUCCESS');
+              }}
             />
           </View>
         );
diff --git a/src/screens/FraudDashboard.tsx b/src/screens/FraudDashboard.tsx
index f26dd4b..51f3063 100644
--- a/src/screens/FraudDashboard.tsx
+++ b/src/screens/FraudDashboard.tsx
@@ -34,6 +34,7 @@ const FraudDashboard: React.FC = () => {
     approveSubscription,
     blockSubscription,
     resolveCase,
+    submitFalsePositiveFeedback,
     getFraudReport,
   } = useFraudStore();
 
@@ -63,8 +64,8 @@ const FraudDashboard: React.FC = () => {
           <View style={styles.heroCopy}>
             <Text style={styles.title}>Fraud Control Center</Text>
             <Text style={styles.subtitle}>
-              Risk scoring, velocity checks, usage anomaly detection, chargeback prediction, and a
-              manual review queue for subscription operations.
+              Risk scoring, velocity checks, geolocation anomaly detection, chargeback prediction,
+              and a manual review queue with evidence-backed decisions.
             </Text>
           </View>
           <View style={styles.heroActions}>
@@ -73,15 +74,46 @@ const FraudDashboard: React.FC = () => {
         </View>
 
         <View style={[styles.metricsGrid, isWide && styles.metricsGridWide]}>
-          {renderMetric('Total checks', analytics.totalChecks.toString(), 'Subscriptions reviewed', colors.accent)}
-          {renderMetric('Blocked', analytics.blocked.toString(), 'Automated hard stops', colors.error)}
-          {renderMetric('Flagged', analytics.flagged.toString(), 'Queued for review', colors.warning)}
+          {renderMetric(
+            'Total checks',
+            analytics.totalChecks.toString(),
+            'Subscriptions reviewed',
+            colors.accent
+          )}
+          {renderMetric(
+            'Blocked',
+            analytics.blocked.toString(),
+            'Automated hard stops',
+            colors.error
+          )}
+          {renderMetric(
+            'Flagged',
+            analytics.flagged.toString(),
+            'Queued for review',
+            colors.warning
+          )}
           {renderMetric('Avg risk', `${analytics.avgRisk}`, 'Aggregate risk score', colors.primary)}
         </View>
 
         <View style={[styles.metricsGrid, isWide && styles.metricsGridWide]}>
-          {renderMetric('Velocity alerts', analytics.velocityAlerts.toString(), 'Rapid creation detected', colors.secondary)}
-          {renderMetric('Anomaly alerts', analytics.anomalyAlerts.toString(), 'Usage deviates from baseline', colors.accent)}
+          {renderMetric(
+            'Velocity alerts',
+            analytics.velocityAlerts.toString(),
+            'Rapid creation detected',
+            colors.secondary
+          )}
+          {renderMetric(
+            'Anomaly alerts',
+            analytics.anomalyAlerts.toString(),
+            'Usage deviates from baseline',
+            colors.accent
+          )}
+          {renderMetric(
+            'Geo alerts',
+            analytics.geoAnomalyAlerts.toString(),
+            'Location drift and travel anomalies',
+            colors.warning
+          )}
           {renderMetric(
             'Chargeback predictions',
             analytics.chargebackPredictions.toString(),
@@ -89,18 +121,26 @@ const FraudDashboard: React.FC = () => {
             colors.error
           )}
           {renderMetric(
-            'False positives',
-            analytics.falsePositiveEstimate.toString(),
-            'Estimated manual override rate',
+            'False positive rate',
+            `${analytics.falsePositiveRate}%`,
+            'Feedback loop for model tuning',
             colors.success
           )}
+          {renderMetric(
+            'Model confidence',
+            `${analytics.modelConfidence}%`,
+            'Adjusted for false-positive feedback',
+            colors.primary
+          )}
         </View>
 
         <View style={[styles.grid, isWide && styles.gridWide]}>
           <Card style={[styles.sectionCard, isWide && styles.halfCard]}>
             <View style={styles.sectionHeader}>
               <Text style={styles.sectionTitle}>Manual review queue</Text>
-              <Text style={styles.sectionMeta}>{reviewQueue.length} open cases</Text>
+              <Text style={styles.sectionMeta}>
+                {reviewQueue.length} open cases · {analytics.manualReviewsClosed} closed
+              </Text>
             </View>
             {reviewQueue.map((item) => (
               <View key={item.caseId} style={styles.caseRow}>
@@ -118,22 +158,61 @@ const FraudDashboard: React.FC = () => {
                     <View style={styles.badgeMuted}>
                       <Text style={styles.badgeMutedText}>Risk {item.riskScore}</Text>
                     </View>
+                    {item.outcome ? (
+                      <View style={styles.badgeMuted}>
+                        <Text style={styles.badgeMutedText}>{item.outcome.replace('_', ' ')}</Text>
+                      </View>
+                    ) : null}
                   </View>
+                  {item.evidence?.length ? (
+                    <View style={styles.evidenceBlock}>
+                      <Text style={styles.evidenceLabel}>Evidence</Text>
+                      <View style={styles.badgeRow}>
+                        {item.evidence.map((evidence) => (
+                          <View key={evidence.evidenceId} style={styles.evidenceChip}>
+                            <Text style={styles.evidenceChipText}>
+                              {evidence.label}: {evidence.value}
+                            </Text>
+                          </View>
+                        ))}
+                      </View>
+                    </View>
+                  ) : (
+                    <Text style={styles.caseDescription}>No evidence attached yet.</Text>
+                  )}
                 </View>
                 <View style={styles.caseActions}>
-                  <TouchableOpacity style={styles.caseButton} onPress={() => approveSubscription(item.subscriptionId)}>
+                  <TouchableOpacity
+                    style={styles.caseButton}
+                    onPress={() => approveSubscription(item.subscriptionId)}>
                     <Text style={styles.caseButtonText}>Approve</Text>
                   </TouchableOpacity>
-                  <TouchableOpacity style={styles.caseButtonWarning} onPress={() => resolveCase(item.subscriptionId, 'flag')}>
+                  <TouchableOpacity
+                    style={styles.caseButtonWarning}
+                    onPress={() => resolveCase(item.subscriptionId, 'flag')}>
                     <Text style={styles.caseButtonText}>Flag</Text>
                   </TouchableOpacity>
-                  <TouchableOpacity style={styles.caseButtonDanger} onPress={() => blockSubscription(item.subscriptionId)}>
+                  <TouchableOpacity
+                    style={styles.caseButtonDanger}
+                    onPress={() => blockSubscription(item.subscriptionId)}>
                     <Text style={styles.caseButtonText}>Block</Text>
                   </TouchableOpacity>
+                  <TouchableOpacity
+                    style={styles.caseButtonSecondary}
+                    onPress={() =>
+                      submitFalsePositiveFeedback(
+                        item.subscriptionId,
+                        'Reviewer marked as false positive'
+                      )
+                    }>
+                    <Text style={styles.caseButtonText}>False positive</Text>
+                  </TouchableOpacity>
                 </View>
               </View>
             ))}
-            {reviewQueue.length === 0 ? <Text style={styles.emptyText}>No cases awaiting manual review.</Text> : null}
+            {reviewQueue.length === 0 ? (
+              <Text style={styles.emptyText}>No cases awaiting manual review.</Text>
+            ) : null}
           </Card>
 
           <Card style={[styles.sectionCard, isWide && styles.halfCard]}>
@@ -181,13 +260,16 @@ const FraudDashboard: React.FC = () => {
                   <Text style={styles.scoreText}>{report.averageRisk}</Text>
                 </View>
                 <Text style={styles.caseDescription}>
-                  {report.totalSubscriptions} subs · {report.flaggedSubscriptions} flagged · {report.blockedSubscriptions} blocked
+                  {report.totalSubscriptions} subs · {report.flaggedSubscriptions} flagged ·{' '}
+                  {report.blockedSubscriptions} blocked
                 </Text>
                 <View style={styles.reportGrid}>
                   <Text style={styles.reportMetric}>Manual review {report.manualReviewCount}</Text>
                   <Text style={styles.reportMetric}>Velocity {report.velocityAlerts}</Text>
                   <Text style={styles.reportMetric}>Anomaly {report.anomalyAlerts}</Text>
                   <Text style={styles.reportMetric}>Chargeback {report.chargebackPredictions}</Text>
+                  <Text style={styles.reportMetric}>Geo {report.geolocationAlerts}</Text>
+                  <Text style={styles.reportMetric}>Evidence {report.pendingEvidenceCount}</Text>
                 </View>
               </View>
             ))}
@@ -201,21 +283,45 @@ const FraudDashboard: React.FC = () => {
             <View style={styles.distributionRow}>
               <Text style={styles.distributionLabel}>Approved</Text>
               <View style={styles.distributionBarTrack}>
-                <View style={[styles.distributionBar, { width: `${(analytics.approved / Math.max(analytics.totalChecks, 1)) * 100}%`, backgroundColor: colors.success }]} />
+                <View
+                  style={[
+                    styles.distributionBar,
+                    {
+                      width: `${(analytics.approved / Math.max(analytics.totalChecks, 1)) * 100}%`,
+                      backgroundColor: colors.success,
+                    },
+                  ]}
+                />
               </View>
               <Text style={styles.distributionValue}>{analytics.approved}</Text>
             </View>
             <View style={styles.distributionRow}>
               <Text style={styles.distributionLabel}>Flagged</Text>
               <View style={styles.distributionBarTrack}>
-                <View style={[styles.distributionBar, { width: `${(analytics.flagged / Math.max(analytics.totalChecks, 1)) * 100}%`, backgroundColor: colors.warning }]} />
+                <View
+                  style={[
+                    styles.distributionBar,
+                    {
+                      width: `${(analytics.flagged / Math.max(analytics.totalChecks, 1)) * 100}%`,
+                      backgroundColor: colors.warning,
+                    },
+                  ]}
+                />
               </View>
               <Text style={styles.distributionValue}>{analytics.flagged}</Text>
             </View>
             <View style={styles.distributionRow}>
               <Text style={styles.distributionLabel}>Blocked</Text>
               <View style={styles.distributionBarTrack}>
-                <View style={[styles.distributionBar, { width: `${(analytics.blocked / Math.max(analytics.totalChecks, 1)) * 100}%`, backgroundColor: colors.error }]} />
+                <View
+                  style={[
+                    styles.distributionBar,
+                    {
+                      width: `${(analytics.blocked / Math.max(analytics.totalChecks, 1)) * 100}%`,
+                      backgroundColor: colors.error,
+                    },
+                  ]}
+                />
               </View>
               <Text style={styles.distributionValue}>{analytics.blocked}</Text>
             </View>
@@ -420,6 +526,12 @@ const styles = StyleSheet.create({
     borderRadius: borderRadius.md,
     backgroundColor: colors.error,
   },
+  caseButtonSecondary: {
+    paddingVertical: spacing.sm,
+    paddingHorizontal: spacing.md,
+    borderRadius: borderRadius.md,
+    backgroundColor: colors.secondary,
+  },
   caseButtonText: {
     ...typography.caption,
     color: colors.text,
@@ -458,6 +570,29 @@ const styles = StyleSheet.create({
     ...typography.caption,
     color: colors.textSecondary,
   },
+  evidenceBlock: {
+    marginTop: spacing.sm,
+    gap: spacing.xs,
+  },
+  evidenceLabel: {
+    ...typography.caption,
+    color: colors.accent,
+    fontWeight: '700',
+    textTransform: 'uppercase',
+  },
+  evidenceChip: {
+    paddingVertical: 4,
+    paddingHorizontal: spacing.sm,
+    borderRadius: borderRadius.full,
+    backgroundColor: colors.surface,
+    borderWidth: 1,
+    borderColor: colors.border,
+  },
+  evidenceChipText: {
+    ...typography.caption,
+    color: colors.textSecondary,
+    fontWeight: '600',
+  },
   scoreText: {
     ...typography.h3,
     color: colors.text,
diff --git a/src/screens/SupportDashboardScreen.tsx b/src/screens/SupportDashboardScreen.tsx
index 648dacf..54e5047 100644
--- a/src/screens/SupportDashboardScreen.tsx
+++ b/src/screens/SupportDashboardScreen.tsx
@@ -1,77 +1,644 @@
-import React from 'react';
-import { StyleSheet, Text, View } from 'react-native';
+import React, { useEffect, useMemo, useState } from 'react';
+import {
+  ScrollView,
+  StyleSheet,
+  Text,
+  TouchableOpacity,
+  useWindowDimensions,
+  View,
+} from 'react-native';
 import { Button } from '../components/common/Button';
 import { Card } from '../components/common/Card';
-import { ListScreen } from '../components/common/ScreenTemplates';
 import { useSupportStore } from '../store';
-import { SupportTicket } from '../types/support';
-import { colors, spacing, typography } from '../utils/constants';
+import { SupportTicket, TicketIssueType } from '../types/support';
+import { colors, spacing, typography, borderRadius } from '../utils/constants';
+
+const issueTypeLabels: Record<TicketIssueType, string> = {
+  failed_charge: 'Failed charge',
+  cancellation: 'Cancellation',
+  dispute: 'Dispute',
+  general: 'General',
+};
+
+const statusColors: Record<SupportTicket['status'], string> = {
+  open: colors.warning,
+  assigned: colors.primary,
+  pending_customer: colors.accent,
+  resolved: colors.success,
+  closed: colors.textSecondary,
+};
 
 const SupportDashboardScreen: React.FC = () => {
-  const { tickets, createTicket, assignTicket, syncTicket, linkResolution } = useSupportStore();
-
-  const handleCreateTicket = () => {
-    createTicket({
-      subscriptionId: `sub-${tickets.length + 1}`,
-      issueType: 'failed_charge',
-      message: 'Automatic ticket created from a failed subscription charge.',
-      occurredAt: new Date(),
+  const { width } = useWindowDimensions();
+  const isWide = width >= 1024;
+  const [selectedTicketId, setSelectedTicketId] = useState<string | null>(null);
+  const {
+    tickets,
+    integration,
+    createTicket,
+    assignTicket,
+    updateTicketStatus,
+    performSupportAction,
+    syncTicket,
+    linkResolution,
+    submitSurvey,
+    setIntegration,
+  } = useSupportStore();
+
+  useEffect(() => {
+    if (!selectedTicketId && tickets.length > 0) {
+      setSelectedTicketId(tickets[0].id);
+    }
+  }, [selectedTicketId, tickets]);
+
+  const selectedTicket = useMemo(
+    () => tickets.find((ticket) => ticket.id === selectedTicketId) ?? tickets[0] ?? null,
+    [selectedTicketId, tickets]
+  );
+
+  const metrics = useMemo(() => {
+    const open = tickets.filter((ticket) => ticket.status === 'open').length;
+    const assigned = tickets.filter((ticket) => ticket.status === 'assigned').length;
+    const resolved = tickets.filter((ticket) => ticket.status === 'resolved').length;
+    const breached = tickets.filter((ticket) => ticket.sla.breached).length;
+    const synced = tickets.filter((ticket) => Boolean(ticket.externalTicketId)).length;
+    const surveysCompleted = tickets.filter(
+      (ticket) => ticket.survey.status === 'completed'
+    ).length;
+
+    return { open, assigned, resolved, breached, synced, surveysCompleted };
+  }, [tickets]);
+
+  const createSampleTicket = (issueType: TicketIssueType) => {
+    const sequence = tickets.length + 1;
+    const createdAt = new Date();
+    const context = {
+      subscriptionName: issueType === 'cancellation' ? 'Atlas Team' : 'Nova Studio',
+      planName: issueType === 'cancellation' ? 'Enterprise' : 'Pro',
+      planTier: issueType === 'cancellation' ? 'enterprise' : 'premium',
+      billingCycle: 'monthly',
+      status: issueType === 'cancellation' ? 'cancel_pending' : 'active',
+      amount: issueType === 'cancellation' ? 149 : 49,
+      currency: 'USD',
+      createdAt: new Date('2026-05-01T10:00:00.000Z').toISOString(),
+      nextBillingDate: new Date('2026-06-01T10:00:00.000Z').toISOString(),
+      failedPayments: issueType === 'failed_charge' ? 2 : 0,
+      chargeCount: issueType === 'failed_charge' ? 4 : 1,
+      history:
+        issueType === 'failed_charge'
+          ? [
+              'Two failed payment retries in the last 24 hours',
+              'Customer complained about card declines',
+            ]
+          : ['Cancellation requested via app', 'Customer asked for invoice history'],
+    };
+
+    const ticket = createTicket({
+      subscriptionId: `sub_support_${sequence}`,
+      issueType,
+      message:
+        issueType === 'failed_charge'
+          ? 'Auto-created from a failed subscription payment.'
+          : 'Auto-created from a subscription cancellation request.',
+      occurredAt: createdAt,
+      context,
+      dedupeKey: `${context.subscriptionName}:${issueType}:${createdAt.toISOString().slice(0, 10)}`,
+      actorId: 'system',
     });
+    setSelectedTicketId(ticket.id);
   };
 
-  const renderTicket = (ticket: SupportTicket) => (
-    <Card style={styles.card}>
-      <Text style={styles.cardTitle}>{ticket.title}</Text>
-      <Text style={styles.meta}>Priority: {ticket.priority}</Text>
-      <Text style={styles.meta}>Status: {ticket.status}</Text>
-      <Text style={styles.meta}>Subscription: {ticket.subscriptionId}</Text>
-      {ticket.externalTicketId ? <Text style={styles.meta}>External: {ticket.externalTicketId}</Text> : null}
-      <View style={styles.actions}>
-        <Button title="Assign" size="small" variant="outline" onPress={() => assignTicket(ticket.id, 'support-team')} />
-        <Button title="Sync" size="small" variant="outline" onPress={() => syncTicket(ticket.id)} />
-        <Button title="Resolve" size="small" onPress={() => linkResolution(ticket.id, ticket.subscriptionId)} />
-      </View>
+  const selectedActions = selectedTicket
+    ? [
+        {
+          label: 'Refund',
+          action: 'refund' as const,
+          note: 'Refund processed from support ticket',
+        },
+        { label: 'Pause', action: 'pause' as const, note: 'Subscription paused by support' },
+        { label: 'Cancel', action: 'cancel' as const, note: 'Subscription cancelled by support' },
+      ]
+    : [];
+
+  const renderMetric = (label: string, value: string, hint: string, color: string) => (
+    <Card style={styles.metricCard}>
+      <View style={[styles.metricAccent, { backgroundColor: color }]} />
+      <Text style={styles.metricValue}>{value}</Text>
+      <Text style={styles.metricLabel}>{label}</Text>
+      <Text style={styles.metricHint}>{hint}</Text>
     </Card>
   );
 
+  const renderTicket = (ticket: SupportTicket) => {
+    const isSelected = ticket.id === selectedTicket?.id;
+    return (
+      <TouchableOpacity
+        key={ticket.id}
+        onPress={() => setSelectedTicketId(ticket.id)}
+        style={[styles.ticketCard, isSelected && styles.ticketCardSelected]}>
+        <View style={styles.ticketHeader}>
+          <Text style={styles.ticketTitle}>{ticket.title}</Text>
+          <View style={[styles.statusPill, { borderColor: statusColors[ticket.status] }]}>
+            <Text style={[styles.statusPillText, { color: statusColors[ticket.status] }]}>
+              {ticket.status}
+            </Text>
+          </View>
+        </View>
+        <Text style={styles.ticketMeta}>
+          {issueTypeLabels[ticket.issueType]} · {ticket.priority}
+        </Text>
+        <Text style={styles.ticketMeta}>
+          {ticket.supportContext.subscriptionName} · {ticket.supportContext.planName} ·{' '}
+          {ticket.supportContext.status}
+        </Text>
+        <Text style={styles.ticketMeta}>
+          SLA due {new Date(ticket.sla.resolutionDueAt).toLocaleString()}
+        </Text>
+        <Text style={styles.ticketDescription} numberOfLines={2}>
+          {ticket.description}
+        </Text>
+      </TouchableOpacity>
+    );
+  };
+
+  const detailPanel = selectedTicket ? (
+    <Card style={styles.detailCard}>
+      <View style={styles.detailHeader}>
+        <View>
+          <Text style={styles.sectionTitle}>{selectedTicket.title}</Text>
+          <Text style={styles.detailSubtitle}>
+            {selectedTicket.supportContext.subscriptionName} · {selectedTicket.subscriptionId}
+          </Text>
+        </View>
+        <View style={[styles.statusPill, { borderColor: statusColors[selectedTicket.status] }]}>
+          <Text style={[styles.statusPillText, { color: statusColors[selectedTicket.status] }]}>
+            {selectedTicket.status}
+          </Text>
+        </View>
+      </View>
+
+      <View style={styles.detailGrid}>
+        <View style={styles.detailBlock}>
+          <Text style={styles.detailLabel}>Plan context</Text>
+          <Text style={styles.detailValue}>{selectedTicket.supportContext.planName}</Text>
+          <Text style={styles.detailMeta}>
+            {selectedTicket.supportContext.planTier} · {selectedTicket.supportContext.billingCycle}
+          </Text>
+          <Text style={styles.detailMeta}>
+            {selectedTicket.supportContext.amount} {selectedTicket.supportContext.currency}
+          </Text>
+        </View>
+        <View style={styles.detailBlock}>
+          <Text style={styles.detailLabel}>Billing history</Text>
+          <Text style={styles.detailValue}>
+            {selectedTicket.supportContext.failedPayments} failed payments
+          </Text>
+          <Text style={styles.detailMeta}>
+            {selectedTicket.supportContext.chargeCount} charge attempts
+          </Text>
+          <Text style={styles.detailMeta}>
+            Created {new Date(selectedTicket.supportContext.createdAt).toLocaleDateString()}
+          </Text>
+        </View>
+        <View style={styles.detailBlock}>
+          <Text style={styles.detailLabel}>SLA</Text>
+          <Text style={styles.detailValue}>{selectedTicket.sla.status}</Text>
+          <Text style={styles.detailMeta}>
+            First response by {new Date(selectedTicket.sla.firstResponseDueAt).toLocaleString()}
+          </Text>
+          <Text style={styles.detailMeta}>
+            Resolution by {new Date(selectedTicket.sla.resolutionDueAt).toLocaleString()}
+          </Text>
+        </View>
+        <View style={styles.detailBlock}>
+          <Text style={styles.detailLabel}>Survey</Text>
+          <Text style={styles.detailValue}>{selectedTicket.survey.status}</Text>
+          <Text style={styles.detailMeta}>
+            {selectedTicket.survey.rating
+              ? `CSAT ${selectedTicket.survey.rating}/5`
+              : 'Awaiting customer response'}
+          </Text>
+          <Text style={styles.detailMeta}>
+            {selectedTicket.externalSystem
+              ? `${selectedTicket.externalSystem} synced`
+              : 'Internal queue'}
+          </Text>
+        </View>
+      </View>
+
+      <View style={styles.sectionSpacer}>
+        <Text style={styles.subsectionTitle}>Agent actions</Text>
+        <View style={styles.actionRow}>
+          <Button
+            title="Assign"
+            size="small"
+            variant="outline"
+            onPress={() =>
+              assignTicket(selectedTicket.id, integration.defaultAssignee ?? 'support-team')
+            }
+          />
+          <Button
+            title="Sync"
+            size="small"
+            variant="outline"
+            onPress={() => syncTicket(selectedTicket.id)}
+          />
+          <Button
+            title="Resolve"
+            size="small"
+            onPress={() => linkResolution(selectedTicket.id, selectedTicket.subscriptionId)}
+          />
+          <Button
+            title="Survey"
+            size="small"
+            variant="secondary"
+            onPress={() => submitSurvey(selectedTicket.id, 5, 'Issue resolved quickly.')}
+          />
+        </View>
+        <View style={styles.actionRow}>
+          {selectedActions.map((action) => (
+            <Button
+              key={action.label}
+              title={action.label}
+              size="small"
+              variant="secondary"
+              onPress={() =>
+                performSupportAction(selectedTicket.id, action.action, 'agent-1', action.note)
+              }
+            />
+          ))}
+          <Button
+            title="Pending customer"
+            size="small"
+            variant="outline"
+            onPress={() => updateTicketStatus(selectedTicket.id, 'pending_customer')}
+          />
+        </View>
+      </View>
+
+      <View style={styles.sectionSpacer}>
+        <Text style={styles.subsectionTitle}>Customer history</Text>
+        {selectedTicket.supportContext.history.map((entry) => (
+          <View key={entry} style={styles.historyRow}>
+            <Text style={styles.historyBullet}>•</Text>
+            <Text style={styles.historyText}>{entry}</Text>
+          </View>
+        ))}
+      </View>
+
+      <View style={styles.sectionSpacer}>
+        <Text style={styles.subsectionTitle}>Audit trail</Text>
+        {selectedTicket.auditTrail.map((entry) => (
+          <View key={entry.id} style={styles.auditRow}>
+            <Text style={styles.auditText}>
+              {entry.action} by {entry.actorId} · v{entry.version}
+            </Text>
+            <Text style={styles.auditMeta}>{entry.note}</Text>
+          </View>
+        ))}
+      </View>
+    </Card>
+  ) : null;
+
   return (
-    <ListScreen
-      title="Support"
-      subtitle="Subscription event tickets and external support sync"
-      analyticsName="SupportDashboard"
-      data={tickets}
-      renderItem={renderTicket}
-      keyExtractor={(ticket) => ticket.id}
-      emptyTitle="No tickets"
-      emptyMessage="Failed charges, cancellations, and disputes can create support tickets automatically."
-      emptyActionText="Create sample ticket"
-      onEmptyAction={handleCreateTicket}
-      rightAction={<Button title="New" size="small" onPress={handleCreateTicket} />}
-      testID="support-dashboard-screen"
-    />
+    <ScrollView contentContainerStyle={styles.container}>
+      <View style={styles.hero}>
+        <View style={styles.heroCopy}>
+          <Text style={styles.kicker}>Support Ops</Text>
+          <Text style={styles.title}>Billing support workspace</Text>
+          <Text style={styles.subtitle}>
+            Auto-created tickets for failed charges and cancellations, with subscription context,
+            SLA tracking, customer surveys, external sync, and an audit trail for every agent
+            action.
+          </Text>
+        </View>
+        <View style={styles.heroActions}>
+          <Button title="New failed charge" onPress={() => createSampleTicket('failed_charge')} />
+          <Button
+            title="New cancellation"
+            variant="secondary"
+            onPress={() => createSampleTicket('cancellation')}
+          />
+        </View>
+      </View>
+
+      <View style={[styles.metricGrid, isWide && styles.metricGridWide]}>
+        {renderMetric(
+          'Open tickets',
+          metrics.open.toString(),
+          'Awaiting first action',
+          colors.warning
+        )}
+        {renderMetric('Assigned', metrics.assigned.toString(), 'With an agent', colors.primary)}
+        {renderMetric('Resolved', metrics.resolved.toString(), 'Closed by support', colors.success)}
+        {renderMetric(
+          'SLA breaches',
+          metrics.breached.toString(),
+          'Past the deadline',
+          colors.error
+        )}
+        {renderMetric(
+          'Synced',
+          metrics.synced.toString(),
+          'Zendesk or Intercom link state',
+          colors.accent
+        )}
+        {renderMetric(
+          'Surveys',
+          metrics.surveysCompleted.toString(),
+          'CSAT responses captured',
+          colors.secondary
+        )}
+      </View>
+
+      <View style={[styles.workspace, isWide && styles.workspaceWide]}>
+        <Card style={[styles.listCard, isWide && styles.halfWidth]}>
+          <View style={styles.sectionHeader}>
+            <Text style={styles.sectionTitle}>Tickets</Text>
+            <Text style={styles.sectionMeta}>{tickets.length} active</Text>
+          </View>
+          <View style={styles.integrationBar}>
+            {(['internal', 'zendesk', 'intercom'] as const).map((provider) => (
+              <TouchableOpacity
+                key={provider}
+                onPress={() =>
+                  setIntegration({
+                    ...integration,
+                    provider,
+                    enabled: true,
+                  })
+                }
+                style={[
+                  styles.integrationChip,
+                  integration.provider === provider && styles.integrationChipActive,
+                ]}>
+                <Text style={styles.integrationChipText}>{provider}</Text>
+              </TouchableOpacity>
+            ))}
+          </View>
+          {tickets.map(renderTicket)}
+        </Card>
+
+        <View style={[styles.detailColumn, isWide && styles.halfWidth]}>{detailPanel}</View>
+      </View>
+    </ScrollView>
   );
 };
 
 const styles = StyleSheet.create({
-  card: {
-    marginBottom: spacing.md,
+  container: {
+    padding: spacing.lg,
+    paddingBottom: spacing.xxl,
+    backgroundColor: colors.background,
+    gap: spacing.lg,
   },
-  cardTitle: {
-    ...typography.h3,
+  hero: {
+    flexDirection: 'row',
+    justifyContent: 'space-between',
+    gap: spacing.lg,
+    alignItems: 'flex-start',
+  },
+  heroCopy: {
+    flex: 1,
+    maxWidth: 760,
+  },
+  heroActions: {
+    gap: spacing.sm,
+    alignItems: 'flex-end',
+  },
+  kicker: {
+    ...typography.caption,
+    color: colors.accent,
+    fontWeight: '700',
+    textTransform: 'uppercase',
+    letterSpacing: 1,
+    marginBottom: spacing.xs,
+  },
+  title: {
+    ...typography.h1,
     color: colors.text,
     marginBottom: spacing.xs,
-    textTransform: 'capitalize',
   },
-  meta: {
-    ...typography.body2,
+  subtitle: {
+    ...typography.body,
     color: colors.textSecondary,
+  },
+  metricGrid: {
+    gap: spacing.md,
+  },
+  metricGridWide: {
+    flexDirection: 'row',
+    flexWrap: 'wrap',
+  },
+  metricCard: {
+    flex: 1,
+    minWidth: 160,
+  },
+  metricAccent: {
+    width: 38,
+    height: 4,
+    borderRadius: borderRadius.full,
+    marginBottom: spacing.md,
+  },
+  metricValue: {
+    ...typography.h2,
+    color: colors.text,
     marginBottom: spacing.xs,
   },
-  actions: {
+  metricLabel: {
+    ...typography.body,
+    color: colors.textSecondary,
+    fontWeight: '600',
+  },
+  metricHint: {
+    ...typography.caption,
+    color: colors.textSecondary,
+    marginTop: spacing.xs,
+  },
+  workspace: {
+    gap: spacing.lg,
+  },
+  workspaceWide: {
+    flexDirection: 'row',
+    alignItems: 'flex-start',
+  },
+  halfWidth: {
+    flexBasis: '49%',
+  },
+  listCard: {
+    gap: spacing.md,
+  },
+  detailColumn: {
+    gap: spacing.md,
+  },
+  detailCard: {
+    gap: spacing.lg,
+  },
+  sectionHeader: {
+    flexDirection: 'row',
+    justifyContent: 'space-between',
+    alignItems: 'center',
+    gap: spacing.sm,
+  },
+  sectionTitle: {
+    ...typography.h3,
+    color: colors.text,
+  },
+  sectionMeta: {
+    ...typography.caption,
+    color: colors.accent,
+  },
+  integrationBar: {
     flexDirection: 'row',
     flexWrap: 'wrap',
     gap: spacing.sm,
-    marginTop: spacing.md,
+  },
+  integrationChip: {
+    paddingVertical: 6,
+    paddingHorizontal: spacing.sm,
+    borderRadius: borderRadius.full,
+    borderWidth: 1,
+    borderColor: colors.border,
+    backgroundColor: colors.surface,
+  },
+  integrationChipActive: {
+    borderColor: colors.primary,
+    backgroundColor: 'rgba(59, 130, 246, 0.12)',
+  },
+  integrationChipText: {
+    ...typography.caption,
+    color: colors.textSecondary,
+    fontWeight: '700',
+    textTransform: 'uppercase',
+  },
+  ticketCard: {
+    padding: spacing.md,
+    borderRadius: borderRadius.lg,
+    borderWidth: 1,
+    borderColor: colors.border,
+    backgroundColor: colors.surface,
+    gap: spacing.xs,
+  },
+  ticketCardSelected: {
+    borderColor: colors.primary,
+    backgroundColor: 'rgba(59, 130, 246, 0.08)',
+  },
+  ticketHeader: {
+    flexDirection: 'row',
+    justifyContent: 'space-between',
+    gap: spacing.sm,
+    alignItems: 'center',
+  },
+  ticketTitle: {
+    ...typography.body,
+    color: colors.text,
+    fontWeight: '700',
+    flex: 1,
+  },
+  ticketMeta: {
+    ...typography.caption,
+    color: colors.textSecondary,
+  },
+  ticketDescription: {
+    ...typography.caption,
+    color: colors.textSecondary,
+    marginTop: spacing.xs,
+  },
+  statusPill: {
+    paddingVertical: 4,
+    paddingHorizontal: spacing.sm,
+    borderRadius: borderRadius.full,
+    borderWidth: 1,
+    backgroundColor: colors.background,
+  },
+  statusPillText: {
+    ...typography.caption,
+    fontWeight: '700',
+    textTransform: 'uppercase',
+  },
+  detailHeader: {
+    flexDirection: 'row',
+    justifyContent: 'space-between',
+    alignItems: 'flex-start',
+    gap: spacing.sm,
+  },
+  detailSubtitle: {
+    ...typography.caption,
+    color: colors.textSecondary,
+    marginTop: spacing.xs,
+  },
+  detailGrid: {
+    flexDirection: 'row',
+    flexWrap: 'wrap',
+    gap: spacing.sm,
+  },
+  detailBlock: {
+    flexBasis: '48%',
+    minWidth: 180,
+    padding: spacing.sm,
+    borderRadius: borderRadius.md,
+    borderWidth: 1,
+    borderColor: colors.border,
+    backgroundColor: colors.background,
+    gap: 4,
+  },
+  detailLabel: {
+    ...typography.caption,
+    color: colors.accent,
+    fontWeight: '700',
+    textTransform: 'uppercase',
+  },
+  detailValue: {
+    ...typography.body,
+    color: colors.text,
+    fontWeight: '700',
+  },
+  detailMeta: {
+    ...typography.caption,
+    color: colors.textSecondary,
+  },
+  sectionSpacer: {
+    gap: spacing.sm,
+  },
+  subsectionTitle: {
+    ...typography.body,
+    color: colors.text,
+    fontWeight: '700',
+  },
+  actionRow: {
+    flexDirection: 'row',
+    flexWrap: 'wrap',
+    gap: spacing.sm,
+  },
+  historyRow: {
+    flexDirection: 'row',
+    gap: spacing.sm,
+    alignItems: 'flex-start',
+  },
+  historyBullet: {
+    ...typography.body,
+    color: colors.primary,
+    lineHeight: 20,
+  },
+  historyText: {
+    ...typography.caption,
+    color: colors.textSecondary,
+    flex: 1,
+  },
+  auditRow: {
+    paddingVertical: spacing.sm,
+    borderTopWidth: 1,
+    borderTopColor: colors.border,
+  },
+  auditText: {
+    ...typography.caption,
+    color: colors.text,
+    fontWeight: '700',
+  },
+  auditMeta: {
+    ...typography.caption,
+    color: colors.textSecondary,
+    marginTop: 2,
   },
 });
 
diff --git a/src/services/__tests__/ticketingService.test.ts b/src/services/__tests__/ticketingService.test.ts
index d45137a..e8df409 100644
--- a/src/services/__tests__/ticketingService.test.ts
+++ b/src/services/__tests__/ticketingService.test.ts
@@ -1,7 +1,9 @@
 import {
   assignTicket,
+  buildSupportEventMessage,
   createTicketFromEvent,
   linkTicketResolutionToSubscription,
+  recordSupportSurvey,
   syncTicketToExternalSystem,
 } from '../ticketingService';
 
@@ -12,11 +14,26 @@ describe('ticketingService', () => {
       issueType: 'dispute',
       message: 'Customer disputed the latest charge.',
       occurredAt: new Date('2026-05-01T00:00:00.000Z'),
+      context: {
+        subscriptionName: 'Pro Plan',
+        planName: 'Pro Plan',
+        planTier: 'premium',
+        billingCycle: 'monthly',
+        status: 'active',
+        amount: 49,
+        currency: 'USD',
+        createdAt: '2026-04-01T00:00:00.000Z',
+        failedPayments: 0,
+        chargeCount: 2,
+        history: ['Charged successfully on the last cycle'],
+      },
     });
 
     expect(ticket.priority).toBe('urgent');
     expect(ticket.status).toBe('open');
     expect(ticket.subscriptionId).toBe('sub-1');
+    expect(ticket.sla.status).toBe('on_track');
+    expect(ticket.auditTrail).toHaveLength(1);
   });
 
   it('assigns, syncs, and resolves tickets', () => {
@@ -25,6 +42,19 @@ describe('ticketingService', () => {
       issueType: 'failed_charge',
       message: 'Payment failed.',
       occurredAt: new Date('2026-05-01T00:00:00.000Z'),
+      context: {
+        subscriptionName: 'Pro Plan',
+        planName: 'Pro Plan',
+        planTier: 'premium',
+        billingCycle: 'monthly',
+        status: 'active',
+        amount: 49,
+        currency: 'USD',
+        createdAt: '2026-04-01T00:00:00.000Z',
+        failedPayments: 2,
+        chargeCount: 4,
+        history: ['Card failed twice today'],
+      },
     });
     const assigned = assignTicket(ticket, 'agent-1');
     const synced = syncTicketToExternalSystem(assigned, {
@@ -38,5 +68,27 @@ describe('ticketingService', () => {
     expect(synced.externalSystem).toBe('zendesk');
     expect(resolved.status).toBe('resolved');
     expect(resolved.resolutionSubscriptionId).toBe('sub-1');
+    expect(recordSupportSurvey(resolved, 5, 'Great help').survey.status).toBe('completed');
+  });
+
+  it('builds support messages from context', () => {
+    expect(
+      buildSupportEventMessage(
+        {
+          subscriptionName: 'Acme Pro',
+          planName: 'Acme Pro',
+          planTier: 'premium',
+          billingCycle: 'monthly',
+          status: 'active',
+          amount: 99,
+          currency: 'USD',
+          createdAt: '2026-04-01T00:00:00.000Z',
+          failedPayments: 1,
+          chargeCount: 3,
+          history: ['Failed payment recorded'],
+        },
+        'failed_charge'
+      )
+    ).toContain('payment failed');
   });
 });
diff --git a/src/services/ticketingService.ts b/src/services/ticketingService.ts
index f16a357..14193b6 100644
--- a/src/services/ticketingService.ts
+++ b/src/services/ticketingService.ts
@@ -1,7 +1,12 @@
 import {
+  SubscriptionSupportContext,
   SubscriptionSupportEvent,
+  SupportActionRecord,
+  SupportAuditEntry,
+  SupportSlaRecord,
   SupportTicket,
   TicketingIntegrationConfig,
+  TicketIssueType,
   TicketPriority,
   TicketStatus,
 } from '../types/support';
@@ -9,29 +14,116 @@ import {
 const createId = (): string =>
   `ticket_${Date.now().toString(36)}_${Math.random().toString(36).slice(2, 8)}`;
 
-const priorityByIssue: Record<SubscriptionSupportEvent['issueType'], TicketPriority> = {
+const toIso = (value: string | Date): string =>
+  value instanceof Date ? value.toISOString() : new Date(value).toISOString();
+
+const uniqueStrings = (values: (string | undefined)[]): string[] =>
+  Array.from(new Set(values.filter((value): value is string => Boolean(value))));
+
+const priorityByIssue: Record<TicketIssueType, TicketPriority> = {
   failed_charge: 'high',
   cancellation: 'medium',
   dispute: 'urgent',
   general: 'low',
 };
 
+const slaByPriority: Record<
+  TicketPriority,
+  { firstResponseHours: number; resolutionHours: number }
+> = {
+  low: { firstResponseHours: 24, resolutionHours: 72 },
+  medium: { firstResponseHours: 8, resolutionHours: 48 },
+  high: { firstResponseHours: 4, resolutionHours: 24 },
+  urgent: { firstResponseHours: 1, resolutionHours: 8 },
+};
+
+export const buildSupportContext = (
+  event: SubscriptionSupportEvent
+): SubscriptionSupportContext => ({
+  ...event.context,
+});
+
+export const buildSupportDedupeKey = (event: SubscriptionSupportEvent): string =>
+  event.dedupeKey ??
+  `${event.subscriptionId}:${event.issueType}:${toIso(event.occurredAt).slice(0, 10)}`;
+
+export const buildSupportAuditEntry = (
+  action: SupportAuditEntry['action'],
+  actorId: string,
+  note: string,
+  version: number,
+  metadata: SupportAuditEntry['metadata'] = {}
+): SupportAuditEntry => ({
+  id: createId(),
+  action,
+  actorId,
+  note,
+  createdAt: new Date().toISOString(),
+  version,
+  metadata,
+});
+
+export const calculateSupportSla = (
+  issueType: TicketIssueType,
+  priority: TicketPriority,
+  createdAt: string
+): SupportSlaRecord => {
+  const schedule = slaByPriority[priorityByIssue[issueType] ?? priority];
+  const createdAtMs = new Date(createdAt).getTime();
+  const firstResponseDueAt = new Date(
+    createdAtMs + schedule.firstResponseHours * 60 * 60 * 1000
+  ).toISOString();
+  const resolutionDueAt = new Date(
+    createdAtMs + schedule.resolutionHours * 60 * 60 * 1000
+  ).toISOString();
+
+  return {
+    firstResponseDueAt,
+    resolutionDueAt,
+    status: 'on_track',
+    breached: false,
+  };
+};
+
+const normalizeAction = (action: SupportActionRecord['action']): TicketStatus => {
+  if (action === 'refund' || action === 'pause' || action === 'cancel') return 'resolved';
+  return 'assigned';
+};
+
 export const createTicketFromEvent = (
   event: SubscriptionSupportEvent,
   relatedTicketIds: string[] = []
 ): SupportTicket => {
-  const now = new Date();
+  const createdAt = toIso(event.occurredAt);
+  const context = buildSupportContext(event);
+  const dedupeKey = buildSupportDedupeKey(event);
+  const relatedIds = uniqueStrings([...(event.relatedTicketIds ?? []), ...relatedTicketIds]);
+  const priority = event.severity ?? priorityByIssue[event.issueType];
+  const auditTrail = [
+    buildSupportAuditEntry('create', event.actorId ?? 'system', event.message, 1, {
+      issueType: event.issueType,
+      dedupeKey,
+    }),
+  ];
+
   return {
     id: createId(),
     subscriptionId: event.subscriptionId,
     issueType: event.issueType,
-    priority: event.severity ?? priorityByIssue[event.issueType],
+    priority,
     status: 'open',
-    title: `${event.issueType.replace('_', ' ')} for ${event.subscriptionId}`,
+    title: `${context.subscriptionName} ${event.issueType.replace('_', ' ')}`,
     description: event.message,
-    relatedTicketIds,
-    createdAt: event.occurredAt ?? now,
-    updatedAt: now,
+    relatedTicketIds: relatedIds,
+    createdAt,
+    updatedAt: createdAt,
+    supportContext: context,
+    auditTrail,
+    actions: [],
+    sla: calculateSupportSla(event.issueType, priority, createdAt),
+    survey: { status: 'not_sent' },
+    dedupeKey,
+    version: 1,
   };
 };
 
@@ -43,30 +135,166 @@ export const assignTicket = (
   ...ticket,
   assignee,
   status,
-  updatedAt: new Date(),
+  version: ticket.version + 1,
+  updatedAt: new Date().toISOString(),
+  lastActorId: assignee,
+  auditTrail: [
+    ...ticket.auditTrail,
+    buildSupportAuditEntry('note', assignee, `Assigned to ${assignee}`, ticket.version + 1, {
+      assignee,
+      status,
+    }),
+  ],
 });
 
+export const applySupportAction = (
+  ticket: SupportTicket,
+  action: SupportActionRecord['action'],
+  actorId: string,
+  note: string,
+  expectedVersion?: number
+): SupportTicket => {
+  const versionMismatch = expectedVersion !== undefined && expectedVersion !== ticket.version;
+  const nextVersion = ticket.version + 1;
+  const nextStatus = versionMismatch ? ticket.status : normalizeAction(action);
+
+  return {
+    ...ticket,
+    status: nextStatus,
+    version: nextVersion,
+    updatedAt: new Date().toISOString(),
+    lastActorId: actorId,
+    actions: [
+      ...ticket.actions,
+      {
+        action,
+        actorId,
+        note,
+        createdAt: new Date().toISOString(),
+        version: nextVersion,
+        conflict: versionMismatch,
+      },
+    ],
+    auditTrail: [
+      ...ticket.auditTrail,
+      buildSupportAuditEntry(
+        versionMismatch ? 'dedupe' : action,
+        actorId,
+        note,
+        nextVersion,
+        versionMismatch
+          ? { expectedVersion, actualVersion: ticket.version }
+          : { status: nextStatus }
+      ),
+    ],
+  };
+};
+
 export const syncTicketToExternalSystem = (
   ticket: SupportTicket,
   config: TicketingIntegrationConfig
 ): SupportTicket => {
   if (!config.enabled) return ticket;
 
+  const externalSystem = config.provider;
+  const externalTicketId = ticket.externalTicketId ?? `${config.provider}-${ticket.id}`;
+
   return {
     ...ticket,
     assignee: ticket.assignee ?? config.defaultAssignee,
-    externalSystem: config.provider,
-    externalTicketId: ticket.externalTicketId ?? `${config.provider}-${ticket.id}`,
-    updatedAt: new Date(),
+    externalSystem,
+    externalTicketId,
+    updatedAt: new Date().toISOString(),
+    auditTrail: [
+      ...ticket.auditTrail,
+      buildSupportAuditEntry(
+        'sync',
+        ticket.lastActorId ?? 'system',
+        `Synced to ${externalSystem}`,
+        ticket.version,
+        {
+          provider: externalSystem,
+          queueName: config.queueName ?? '',
+        }
+      ),
+    ],
   };
 };
 
 export const linkTicketResolutionToSubscription = (
   ticket: SupportTicket,
-  subscriptionId: string
+  subscriptionId: string,
+  resolutionNote = 'Resolved against subscription'
 ): SupportTicket => ({
   ...ticket,
   resolutionSubscriptionId: subscriptionId,
   status: 'resolved',
-  updatedAt: new Date(),
+  updatedAt: new Date().toISOString(),
+  sla: {
+    ...ticket.sla,
+    resolvedAt: new Date().toISOString(),
+    status: 'resolved',
+    breached: ticket.sla.breached,
+  },
+  survey: {
+    ...ticket.survey,
+    status: ticket.survey.status === 'completed' ? 'completed' : 'sent',
+    sentAt: ticket.survey.sentAt ?? new Date().toISOString(),
+  },
+  auditTrail: [
+    ...ticket.auditTrail,
+    buildSupportAuditEntry(
+      'resolve',
+      ticket.lastActorId ?? 'system',
+      resolutionNote,
+      ticket.version,
+      {
+        subscriptionId,
+      }
+    ),
+  ],
 });
+
+export const recordSupportSurvey = (
+  ticket: SupportTicket,
+  rating: number,
+  comment?: string
+): SupportTicket => ({
+  ...ticket,
+  survey: {
+    status: 'completed',
+    rating,
+    comment,
+    sentAt: ticket.survey.sentAt ?? new Date().toISOString(),
+    completedAt: new Date().toISOString(),
+  },
+  updatedAt: new Date().toISOString(),
+  auditTrail: [
+    ...ticket.auditTrail,
+    buildSupportAuditEntry(
+      'survey',
+      ticket.lastActorId ?? 'customer',
+      'Customer survey submitted',
+      ticket.version,
+      {
+        rating,
+      }
+    ),
+  ],
+});
+
+export const buildSupportEventMessage = (
+  context: SubscriptionSupportContext,
+  issueType: TicketIssueType
+): string => {
+  const base =
+    issueType === 'failed_charge'
+      ? 'A subscription payment failed and needs review.'
+      : issueType === 'cancellation'
+        ? 'A subscription was cancelled and needs support follow-up.'
+        : issueType === 'dispute'
+          ? 'A billing dispute was opened by the customer.'
+          : 'A support ticket was created for subscription billing.';
+
+  return `${base} Plan ${context.planName} is ${context.status}.`;
+};
diff --git a/src/store/__tests__/fraudStore.test.ts b/src/store/__tests__/fraudStore.test.ts
index 54c3c98..929cceb 100644
--- a/src/store/__tests__/fraudStore.test.ts
+++ b/src/store/__tests__/fraudStore.test.ts
@@ -21,11 +21,15 @@ describe('fraudStore', () => {
         flagged: 0,
         blocked: 0,
         manualReviews: 0,
+        manualReviewsClosed: 0,
         avgRisk: 0,
         velocityAlerts: 0,
         anomalyAlerts: 0,
+        geoAnomalyAlerts: 0,
         chargebackPredictions: 0,
         falsePositiveEstimate: 0,
+        falsePositiveRate: 0,
+        modelConfidence: 0,
       },
       loading: false,
       error: null,
@@ -138,4 +142,64 @@ describe('fraudStore', () => {
     expect(useFraudStore.getState().subscriptions[0].action).toBe('approve');
     expect(useFraudStore.getState().reviewQueue[0].status).toBe('reviewed');
   });
+
+  it('records false positive feedback and lowers future risk', () => {
+    useFraudStore.setState({
+      subscriptions: [
+        {
+          id: 's3',
+          merchantId: 'm3',
+          merchantName: 'SignalCo',
+          subscriberId: 'sub-3',
+          subscriptionName: 'Plan C',
+          currency: 'USD',
+          amount: 55,
+          createdAt: '2026-04-24T09:00:00.000Z',
+          expectedUsage: 3,
+          observedUsage: 15,
+          chargebacks: 1,
+          homeCountry: 'US',
+          currentCountry: 'CA',
+          deviceFingerprint: 'device-old',
+          trustedDeviceFingerprint: 'device-new',
+          riskScore: 88,
+          action: 'block',
+          reason: 'high risk',
+          usagePattern: 'burst',
+          signals: [],
+          isBlocked: true,
+          isFlagged: true,
+          falsePositiveCount: 0,
+        },
+      ],
+      reviewQueue: [
+        {
+          caseId: 's3',
+          subscriptionId: 's3',
+          subscriberId: 'sub-3',
+          merchantId: 'm3',
+          merchantName: 'SignalCo',
+          subscriptionName: 'Plan C',
+          riskScore: 88,
+          action: 'block',
+          status: 'pending',
+          reason: 'high risk',
+          createdAt: '2026-04-24T09:00:00.000Z',
+          updatedAt: '2026-04-24T09:00:00.000Z',
+          evidence: [],
+        },
+      ],
+    });
+
+    act(() => {
+      useFraudStore.getState().submitFalsePositiveFeedback('s3', 'Legit travel');
+      useFraudStore.getState().refreshFraudSignals();
+    });
+
+    const store = useFraudStore.getState();
+    expect(store.subscriptions[0].falsePositiveCount).toBe(1);
+    expect(store.subscriptions[0].riskScore).toBeLessThan(100);
+    expect(store.reviewQueue[0].status).toBe('dismissed');
+    expect(store.analytics.falsePositiveRate).toBeGreaterThanOrEqual(0);
+  });
 });
diff --git a/src/store/__tests__/supportStore.test.ts b/src/store/__tests__/supportStore.test.ts
new file mode 100644
index 0000000..ff533bf
--- /dev/null
+++ b/src/store/__tests__/supportStore.test.ts
@@ -0,0 +1,96 @@
+import { act } from 'react';
+import { beforeEach, describe, expect, it } from '@jest/globals';
+import { useSupportStore } from '../supportStore';
+
+describe('supportStore', () => {
+  beforeEach(() => {
+    useSupportStore.setState({
+      tickets: [],
+      integration: {
+        provider: 'internal',
+        enabled: true,
+        defaultAssignee: 'support-team',
+        baseUrl: 'https://support.local',
+        queueName: 'billing-support',
+      },
+    });
+  });
+
+  it('dedupes open support tickets for the same subscription issue', () => {
+    const baseEvent = {
+      subscriptionId: 'sub-1',
+      issueType: 'failed_charge' as const,
+      message: 'Payment failed.',
+      occurredAt: new Date('2026-05-01T00:00:00.000Z'),
+      context: {
+        subscriptionName: 'Pro Plan',
+        planName: 'Pro Plan',
+        planTier: 'premium',
+        billingCycle: 'monthly',
+        status: 'active',
+        amount: 49,
+        currency: 'USD',
+        createdAt: '2026-04-01T00:00:00.000Z',
+        nextBillingDate: '2026-06-01T00:00:00.000Z',
+        failedPayments: 1,
+        chargeCount: 3,
+        history: ['Retry failed once'],
+      },
+    };
+
+    act(() => {
+      useSupportStore.getState().createTicket(baseEvent);
+      useSupportStore.getState().createTicket({
+        ...baseEvent,
+        message: 'Duplicate failure event.',
+      });
+    });
+
+    const { tickets } = useSupportStore.getState();
+    expect(tickets).toHaveLength(1);
+    expect(tickets[0].auditTrail.some((entry) => entry.action === 'dedupe')).toBe(true);
+    expect(tickets[0].supportContext.history).toContain('Duplicate failure event.');
+  });
+
+  it('records support actions and survey responses', () => {
+    act(() => {
+      useSupportStore.getState().createTicket({
+        subscriptionId: 'sub-2',
+        issueType: 'cancellation',
+        message: 'Cancellation needs retention review.',
+        occurredAt: new Date('2026-05-02T00:00:00.000Z'),
+        context: {
+          subscriptionName: 'Team Plan',
+          planName: 'Team Plan',
+          planTier: 'enterprise',
+          billingCycle: 'yearly',
+          status: 'cancel_pending',
+          amount: 129,
+          currency: 'USD',
+          createdAt: '2026-01-01T00:00:00.000Z',
+          nextBillingDate: '2026-06-01T00:00:00.000Z',
+          failedPayments: 0,
+          chargeCount: 1,
+          history: ['Cancellation requested'],
+        },
+      });
+      useSupportStore
+        .getState()
+        .performSupportAction('ticket-does-not-exist', 'cancel', 'agent-1', 'noop');
+    });
+
+    const ticketId = useSupportStore.getState().tickets[0].id;
+    act(() => {
+      useSupportStore
+        .getState()
+        .performSupportAction(ticketId, 'pause', 'agent-1', 'Paused for investigation');
+      useSupportStore.getState().submitSurvey(ticketId, 5, 'Great resolution');
+    });
+
+    const ticket = useSupportStore.getState().tickets[0];
+    expect(ticket.actions).toHaveLength(1);
+    expect(ticket.status).toBe('resolved');
+    expect(ticket.survey.status).toBe('completed');
+    expect(ticket.survey.rating).toBe(5);
+  });
+});
diff --git a/src/store/fraudStore.ts b/src/store/fraudStore.ts
index a4f281a..15484ee 100644
--- a/src/store/fraudStore.ts
+++ b/src/store/fraudStore.ts
@@ -5,6 +5,7 @@ import {
   FraudAction,
   FraudAnalytics,
   FraudCase,
+  FraudEvidence,
   FraudMerchantRecord,
   FraudReport,
   FraudRiskScore,
@@ -59,14 +60,33 @@ const subscriptionSeeds: FraudSubscriptionRecord[] = [
     expectedUsage: 8,
     observedUsage: 25,
     chargebacks: 0,
+    homeCountry: 'NG',
+    currentCountry: 'GH',
+    deviceFingerprint: 'device-ada-lagos',
+    trustedDeviceFingerprint: 'device-ada-lagos',
     riskScore: 78,
     action: 'flag',
     reason: 'Usage burst and fast creation cadence',
     usagePattern: 'burst',
     signals: [
-      { kind: 'velocity', score: 28, detail: 'Created alongside two other subscriptions', observedAt: nowIso() },
-      { kind: 'usage-anomaly', score: 30, detail: 'Observed usage is 3x the expected baseline', observedAt: nowIso() },
-      { kind: 'chargeback', score: 20, detail: 'Recent dispute behavior is elevated', observedAt: nowIso() },
+      {
+        kind: 'velocity',
+        score: 28,
+        detail: 'Created alongside two other subscriptions',
+        observedAt: nowIso(),
+      },
+      {
+        kind: 'usage-anomaly',
+        score: 30,
+        detail: 'Observed usage is 3x the expected baseline',
+        observedAt: nowIso(),
+      },
+      {
+        kind: 'chargeback',
+        score: 20,
+        detail: 'Recent dispute behavior is elevated',
+        observedAt: nowIso(),
+      },
     ],
     isBlocked: false,
     isFlagged: true,
@@ -83,13 +103,27 @@ const subscriptionSeeds: FraudSubscriptionRecord[] = [
     expectedUsage: 10,
     observedUsage: 6,
     chargebacks: 1,
+    homeCountry: 'NG',
+    currentCountry: 'NG',
+    deviceFingerprint: 'device-ada-travel',
+    trustedDeviceFingerprint: 'device-ada-lagos',
     riskScore: 84,
     action: 'block',
     reason: 'Chargeback history and rapid subscription creation',
     usagePattern: 'erratic',
     signals: [
-      { kind: 'velocity', score: 35, detail: 'Second subscription within the same day', observedAt: nowIso() },
-      { kind: 'chargeback', score: 35, detail: 'Chargeback history predicts blocked outcome', observedAt: nowIso() },
+      {
+        kind: 'velocity',
+        score: 35,
+        detail: 'Second subscription within the same day',
+        observedAt: nowIso(),
+      },
+      {
+        kind: 'chargeback',
+        score: 35,
+        detail: 'Chargeback history predicts blocked outcome',
+        observedAt: nowIso(),
+      },
     ],
     isBlocked: true,
     isFlagged: true,
@@ -106,11 +140,22 @@ const subscriptionSeeds: FraudSubscriptionRecord[] = [
     expectedUsage: 12,
     observedUsage: 12,
     chargebacks: 0,
+    homeCountry: 'GH',
+    currentCountry: 'GH',
+    deviceFingerprint: 'device-mina-1',
+    trustedDeviceFingerprint: 'device-mina-1',
     riskScore: 18,
     action: 'approve',
     reason: 'Usage profile is stable',
     usagePattern: 'normal',
-    signals: [{ kind: 'velocity', score: 6, detail: 'Low velocity but within threshold', observedAt: nowIso() }],
+    signals: [
+      {
+        kind: 'velocity',
+        score: 6,
+        detail: 'Low velocity but within threshold',
+        observedAt: nowIso(),
+      },
+    ],
     isBlocked: false,
     isFlagged: false,
   },
@@ -126,14 +171,33 @@ const subscriptionSeeds: FraudSubscriptionRecord[] = [
     expectedUsage: 4,
     observedUsage: 19,
     chargebacks: 2,
+    homeCountry: 'KE',
+    currentCountry: 'UA',
+    deviceFingerprint: 'device-jon-vpn',
+    trustedDeviceFingerprint: 'device-jon-office',
     riskScore: 92,
     action: 'block',
     reason: 'Chargeback prediction and anomalous usage behavior',
     usagePattern: 'burst',
     signals: [
-      { kind: 'usage-anomaly', score: 30, detail: 'Observed usage is far above baseline', observedAt: nowIso() },
-      { kind: 'chargeback', score: 35, detail: 'Repeated disputes indicate high risk', observedAt: nowIso() },
-      { kind: 'velocity', score: 27, detail: 'Fast subscription creation detected', observedAt: nowIso() },
+      {
+        kind: 'usage-anomaly',
+        score: 30,
+        detail: 'Observed usage is far above baseline',
+        observedAt: nowIso(),
+      },
+      {
+        kind: 'chargeback',
+        score: 35,
+        detail: 'Repeated disputes indicate high risk',
+        observedAt: nowIso(),
+      },
+      {
+        kind: 'velocity',
+        score: 27,
+        detail: 'Fast subscription creation detected',
+        observedAt: nowIso(),
+      },
     ],
     isBlocked: true,
     isFlagged: true,
@@ -155,6 +219,7 @@ const reviewSeeds: FraudCase[] = [
     createdAt: '2026-04-22T09:05:00.000Z',
     updatedAt: '2026-04-22T09:05:00.000Z',
     notes: 'Auto-flagged for analyst review',
+    evidence: [],
   },
   {
     caseId: 'fraud_sub_2',
@@ -170,6 +235,7 @@ const reviewSeeds: FraudCase[] = [
     createdAt: '2026-04-22T11:15:00.000Z',
     updatedAt: '2026-04-22T11:15:00.000Z',
     notes: 'Blocked automatically',
+    evidence: [],
   },
   {
     caseId: 'fraud_sub_4',
@@ -185,25 +251,257 @@ const reviewSeeds: FraudCase[] = [
     createdAt: '2026-04-24T07:05:00.000Z',
     updatedAt: '2026-04-24T07:05:00.000Z',
     notes: 'High confidence block',
+    evidence: [],
   },
 ];
 
 const averageRisk = (items: FraudSubscriptionRecord[]): number =>
-  items.length ? Math.round(items.reduce((sum, item) => sum + item.riskScore, 0) / items.length) : 0;
+  items.length
+    ? Math.round(items.reduce((sum, item) => sum + item.riskScore, 0) / items.length)
+    : 0;
+
+const cloneSignal = (signal: FraudSignal): FraudSignal => ({ ...signal });
+
+const cloneEvidence = (evidence: FraudEvidence): FraudEvidence => ({ ...evidence });
+
+const cloneCase = (entry: FraudCase): FraudCase => ({
+  ...entry,
+  evidence: entry.evidence?.map(cloneEvidence),
+});
+
+const dedupeSignals = (signals: FraudSignal[]): FraudSignal[] => {
+  const byKind = new Map<FraudSignal['kind'], FraudSignal>();
+  signals.forEach((signal) => {
+    const existing = byKind.get(signal.kind);
+    if (!existing || signal.score >= existing.score) {
+      byKind.set(signal.kind, signal);
+    }
+  });
+  return Array.from(byKind.values()).sort((left, right) => right.score - left.score);
+};
+
+const countVelocitySignals = (
+  item: FraudSubscriptionRecord,
+  subscriptions: FraudSubscriptionRecord[]
+): number => {
+  const sameSubscriber = subscriptions.filter(
+    (candidate) => candidate.subscriberId === item.subscriberId
+  );
+  const recentWindow = sameSubscriber.filter((candidate) => {
+    const createdAt = new Date(candidate.createdAt).getTime();
+    const current = new Date(item.createdAt).getTime();
+    return (
+      Number.isFinite(createdAt) &&
+      Number.isFinite(current) &&
+      Math.abs(current - createdAt) <= 24 * 60 * 60 * 1000
+    );
+  });
+
+  return recentWindow.length > 2 ? 24 : recentWindow.length > 1 ? 14 : 0;
+};
+
+const determineAction = (score: number): FraudAction => {
+  if (score >= 80) {
+    return 'block';
+  }
+
+  if (score >= 50) {
+    return 'flag';
+  }
+
+  return 'approve';
+};
+
+const buildDerivedSignals = (
+  item: FraudSubscriptionRecord,
+  subscriptions: FraudSubscriptionRecord[]
+): FraudSignal[] => {
+  const derived: FraudSignal[] = [];
+
+  const velocityScore = countVelocitySignals(item, subscriptions);
+  if (velocityScore > 0) {
+    derived.push({
+      kind: 'velocity',
+      score: velocityScore,
+      detail: 'subscription creation velocity is above the safe threshold',
+      observedAt: nowIso(),
+    });
+  }
+
+  if (item.expectedUsage > 0 && item.observedUsage >= item.expectedUsage * 3) {
+    derived.push({
+      kind: 'usage-anomaly',
+      score: 32,
+      detail: 'observed usage is more than 3x the expected baseline',
+      observedAt: nowIso(),
+    });
+  } else if (item.expectedUsage > 0 && item.observedUsage >= item.expectedUsage * 2) {
+    derived.push({
+      kind: 'usage-anomaly',
+      score: 22,
+      detail: 'observed usage is more than 2x the expected baseline',
+      observedAt: nowIso(),
+    });
+  }
+
+  if ((item.chargebacks ?? 0) > 0) {
+    derived.push({
+      kind: 'chargeback',
+      score: Math.min(18 + item.chargebacks * 12, 40),
+      detail: 'chargeback history predicts dispute exposure',
+      observedAt: nowIso(),
+    });
+  }
+
+  if (item.homeCountry && item.currentCountry && item.homeCountry !== item.currentCountry) {
+    derived.push({
+      kind: 'geolocation-anomaly',
+      score: 24,
+      detail: `${item.currentCountry} activity differs from the normal ${item.homeCountry} profile`,
+      observedAt: nowIso(),
+    });
+  }
+
+  if (
+    item.deviceFingerprint &&
+    item.trustedDeviceFingerprint &&
+    item.deviceFingerprint !== item.trustedDeviceFingerprint
+  ) {
+    derived.push({
+      kind: 'device-mismatch',
+      score: 20,
+      detail: 'device fingerprint does not match the trusted profile',
+      observedAt: nowIso(),
+    });
+  }
+
+  if (
+    item.usagePattern === 'burst' &&
+    derived.some(
+      (signal) => signal.kind === 'geolocation-anomaly' || signal.kind === 'device-mismatch'
+    )
+  ) {
+    derived.push({
+      kind: 'pattern-shift',
+      score: 16,
+      detail: 'burst usage combined with travel or device drift suggests a pattern shift',
+      observedAt: nowIso(),
+    });
+  }
+
+  return dedupeSignals([...item.signals.map(cloneSignal), ...derived]);
+};
+
+const scoreSubscription = (
+  item: FraudSubscriptionRecord,
+  subscriptions: FraudSubscriptionRecord[] = []
+): FraudRiskScore => {
+  const signals = buildDerivedSignals(item, subscriptions);
+  const velocityScore = signals.find((signal) => signal.kind === 'velocity')?.score ?? 0;
+  const anomalyScore = signals.find((signal) => signal.kind === 'usage-anomaly')?.score ?? 0;
+  const chargebackScore = signals.find((signal) => signal.kind === 'chargeback')?.score ?? 0;
+  const geoScore = signals.find((signal) => signal.kind === 'geolocation-anomaly')?.score ?? 0;
+  const deviceScore = signals.find((signal) => signal.kind === 'device-mismatch')?.score ?? 0;
+  const patternShiftScore = signals.find((signal) => signal.kind === 'pattern-shift')?.score ?? 0;
+  const falsePositivePenalty = Math.min((item.falsePositiveCount ?? 0) * 40, 60);
+  const totalScore = Math.max(
+    0,
+    Math.min(
+      100,
+      velocityScore +
+        anomalyScore +
+        chargebackScore +
+        geoScore +
+        deviceScore +
+        patternShiftScore -
+        falsePositivePenalty
+    )
+  );
+
+  const evidence: FraudEvidence[] = [
+    {
+      evidenceId: `${item.id}-payment`,
+      label: 'Payment profile',
+      value: `${item.currency} ${item.amount.toFixed(2)}`,
+      source: 'payment',
+      capturedAt: item.createdAt,
+      confidence: 0.88,
+    },
+    ...(item.homeCountry && item.currentCountry && item.homeCountry !== item.currentCountry
+      ? [
+          {
+            evidenceId: `${item.id}-geo`,
+            label: 'Location drift',
+            value: `${item.homeCountry} -> ${item.currentCountry}`,
+            source: 'location',
+            capturedAt: item.lastSeenAt ?? nowIso(),
+            confidence: 0.92,
+          } as FraudEvidence,
+        ]
+      : []),
+    ...(item.deviceFingerprint &&
+    item.trustedDeviceFingerprint &&
+    item.deviceFingerprint !== item.trustedDeviceFingerprint
+      ? [
+          {
+            evidenceId: `${item.id}-device`,
+            label: 'Device mismatch',
+            value: `${item.trustedDeviceFingerprint} != ${item.deviceFingerprint}`,
+            source: 'device',
+            capturedAt: item.lastSeenAt ?? nowIso(),
+            confidence: 0.87,
+          } as FraudEvidence,
+        ]
+      : []),
+  ];
+
+  const reason =
+    geoScore >= chargebackScore && geoScore >= anomalyScore && geoScore >= velocityScore
+      ? 'Geolocation anomaly is the dominant signal'
+      : deviceScore > chargebackScore && deviceScore >= anomalyScore
+        ? 'Device fingerprint drift drove the score'
+        : chargebackScore >= anomalyScore && chargebackScore >= velocityScore
+          ? 'Chargeback risk dominates'
+          : velocityScore >= anomalyScore
+            ? 'Velocity risk is elevated'
+            : 'Usage anomaly detected';
 
-const computeAnalytics = (subscriptions: FraudSubscriptionRecord[], reviewQueue: FraudCase[]): FraudAnalytics => {
+  return {
+    subscriberId: item.subscriberId,
+    subscriptionId: item.id,
+    merchantId: item.merchantId,
+    merchantName: item.merchantName,
+    totalScore,
+    velocityScore,
+    anomalyScore,
+    chargebackScore,
+    action: determineAction(totalScore),
+    reason,
+    assessedAt: nowIso(),
+    signals,
+    evidence,
+  };
+};
+
+const computeAnalytics = (
+  subscriptions: FraudSubscriptionRecord[],
+  reviewQueue: FraudCase[]
+): FraudAnalytics => {
+  const scores = subscriptions.map((item) => scoreSubscription(item, subscriptions));
   const approved = subscriptions.filter((item) => item.action === 'approve').length;
   const flagged = subscriptions.filter((item) => item.action === 'flag').length;
   const blocked = subscriptions.filter((item) => item.action === 'block').length;
-  const velocityAlerts = subscriptions.filter((item) =>
-    item.signals.some((signal) => signal.kind === 'velocity')
+  const velocityAlerts = scores.filter((item) => item.velocityScore > 0).length;
+  const anomalyAlerts = scores.filter((item) => item.anomalyScore > 0).length;
+  const geoAnomalyAlerts = scores.filter((item) =>
+    item.signals.some((signal) => signal.kind === 'geolocation-anomaly')
   ).length;
-  const anomalyAlerts = subscriptions.filter((item) =>
-    item.signals.some((signal) => signal.kind === 'usage-anomaly')
-  ).length;
-  const chargebackPredictions = subscriptions.filter((item) =>
-    item.signals.some((signal) => signal.kind === 'chargeback')
+  const chargebackPredictions = scores.filter((item) => item.chargebackScore > 0).length;
+  const manualReviewsClosed = reviewQueue.filter(
+    (item) => item.status === 'reviewed' || item.status === 'dismissed'
   ).length;
+  const falsePositiveCount = reviewQueue.filter((item) => item.outcome === 'false_positive').length;
+  const modelConfidence = Math.max(0, 100 - Math.min(falsePositiveCount * 8, 40));
 
   return {
     totalChecks: subscriptions.length,
@@ -211,31 +509,19 @@ const computeAnalytics = (subscriptions: FraudSubscriptionRecord[], reviewQueue:
     flagged,
     blocked,
     manualReviews: reviewQueue.length,
+    manualReviewsClosed,
     avgRisk: averageRisk(subscriptions),
     velocityAlerts,
     anomalyAlerts,
+    geoAnomalyAlerts,
     chargebackPredictions,
-    falsePositiveEstimate: Math.max(0, Math.round(flagged * 0.18)),
+    falsePositiveEstimate: Math.max(0, Math.round((flagged + blocked) * 0.18)),
+    falsePositiveRate:
+      manualReviewsClosed > 0 ? Math.round((falsePositiveCount / manualReviewsClosed) * 100) : 0,
+    modelConfidence,
   };
 };
 
-const scoreSubscription = (item: FraudSubscriptionRecord): FraudRiskScore => ({
-  subscriberId: item.subscriberId,
-  subscriptionId: item.id,
-  merchantId: item.merchantId,
-  merchantName: item.merchantName,
-  totalScore: item.riskScore,
-  velocityScore: item.signals.find((signal) => signal.kind === 'velocity')?.score ?? 0,
-  anomalyScore: item.signals.find((signal) => signal.kind === 'usage-anomaly')?.score ?? 0,
-  chargebackScore: item.signals.find((signal) => signal.kind === 'chargeback')?.score ?? 0,
-  action: item.action,
-  reason: item.reason,
-  assessedAt: item.createdAt,
-  signals: item.signals,
-});
-
-const cloneCase = (entry: FraudCase): FraudCase => ({ ...entry, notes: entry.notes });
-
 interface FraudState {
   merchants: FraudMerchantRecord[];
   subscriptions: FraudSubscriptionRecord[];
@@ -250,11 +536,12 @@ interface FraudState {
   approveSubscription: (subscriptionId: string) => void;
   blockSubscription: (subscriptionId: string) => void;
   resolveCase: (subscriptionId: string, action: FraudAction) => void;
+  submitFalsePositiveFeedback: (subscriptionId: string, notes?: string) => void;
   getFraudReport: (merchantId: string) => FraudReport;
 }
 
 const hydrateAssessments = (subscriptions: FraudSubscriptionRecord[]): FraudRiskScore[] =>
-  subscriptions.map((item) => scoreSubscription(item));
+  subscriptions.map((item) => scoreSubscription(item, subscriptions));
 
 const hydrateReviewQueue = (reviews: FraudCase[]): FraudCase[] => reviews.map(cloneCase);
 
@@ -275,6 +562,7 @@ const buildMerchantReport = (
   const merchantName = merchant?.name ?? 'Unknown merchant';
   const scoped = subscriptions.filter((item) => item.merchantId === merchantId);
   const scopedCases = reviewQueue.filter((entry) => entry.merchantId === merchantId);
+  const scoredScoped = scoped.map((item) => scoreSubscription(item, scoped));
 
   return {
     merchantId,
@@ -284,10 +572,18 @@ const buildMerchantReport = (
     blockedSubscriptions: scoped.filter((item) => item.action === 'block').length,
     manualReviewCount: scopedCases.filter((item) => item.status !== 'reviewed').length,
     averageRisk: averageRisk(scoped),
-    velocityAlerts: scoped.filter((item) => item.signals.some((signal) => signal.kind === 'velocity')).length,
-    anomalyAlerts: scoped.filter((item) => item.signals.some((signal) => signal.kind === 'usage-anomaly')).length,
-    chargebackPredictions: scoped.filter((item) => item.signals.some((signal) => signal.kind === 'chargeback')).length,
-    highRiskSubscribers: new Set(scoped.filter((item) => item.riskScore >= 50).map((item) => item.subscriberId)).size,
+    velocityAlerts: scoredScoped.filter((item) => item.velocityScore > 0).length,
+    anomalyAlerts: scoredScoped.filter((item) => item.anomalyScore > 0).length,
+    chargebackPredictions: scoredScoped.filter((item) => item.chargebackScore > 0).length,
+    highRiskSubscribers: new Set(
+      scoredScoped.filter((item) => item.totalScore >= 50).map((item) => item.subscriberId)
+    ).size,
+    geolocationAlerts: scoredScoped.filter((item) =>
+      item.signals.some((signal) => signal.kind === 'geolocation-anomaly')
+    ).length,
+    pendingEvidenceCount: scopedCases.filter((item) => (item.evidence?.length ?? 0) === 0).length,
+    falsePositiveFeedbackCount: scopedCases.filter((item) => item.outcome === 'false_positive')
+      .length,
     recentCases: scopedCases.slice(0, 5),
   };
 };
@@ -296,7 +592,10 @@ export const useFraudStore = create<FraudState>()(
   persist(
     (set, get) => ({
       merchants: merchantSeeds.map((merchant) => ({ ...merchant })),
-      subscriptions: subscriptionSeeds.map((item) => ({ ...item, signals: item.signals.map((signal) => ({ ...signal })) })),
+      subscriptions: subscriptionSeeds.map((item) => ({
+        ...item,
+        signals: item.signals.map((signal) => ({ ...signal })),
+      })),
       assessments: hydrateAssessments(subscriptionSeeds),
       reviewQueue: hydrateReviewQueue(reviewSeeds),
       analytics: computeAnalytics(subscriptionSeeds, reviewSeeds),
@@ -305,28 +604,50 @@ export const useFraudStore = create<FraudState>()(
 
       refreshFraudSignals: () => {
         const { subscriptions, reviewQueue, merchants } = get();
+        const rescored = subscriptions.map((item) => {
+          const score = scoreSubscription(item, subscriptions);
+          return {
+            ...item,
+            riskScore: score.totalScore,
+            reason: score.reason,
+            signals: score.signals,
+            isFlagged: item.action !== 'approve',
+            isBlocked: item.action === 'block',
+            lastSeenAt: score.assessedAt,
+            falsePositiveCount: item.falsePositiveCount ?? 0,
+          };
+        });
         set({
-          analytics: computeAnalytics(subscriptions, reviewQueue),
-          assessments: hydrateAssessments(subscriptions),
-          merchants: merchants.map((merchant) => ({
-            ...merchant,
-            averageRisk: buildMerchantReport(merchants, subscriptions, reviewQueue, merchant.id).averageRisk,
-            blockedSubscriptions: buildMerchantReport(merchants, subscriptions, reviewQueue, merchant.id).blockedSubscriptions,
-            activeSubscriptions: buildMerchantReport(merchants, subscriptions, reviewQueue, merchant.id).totalSubscriptions,
-            status:
-              buildMerchantReport(merchants, subscriptions, reviewQueue, merchant.id).averageRisk >= 60
-                ? 'high-risk'
-                : buildMerchantReport(merchants, subscriptions, reviewQueue, merchant.id).averageRisk >= 35
-                  ? 'watch'
-                  : 'healthy',
-          })),
+          subscriptions: rescored,
+          analytics: computeAnalytics(rescored, reviewQueue),
+          assessments: hydrateAssessments(rescored),
+          merchants: merchants.map((merchant) => {
+            const report = buildMerchantReport(merchants, rescored, reviewQueue, merchant.id);
+            return {
+              ...merchant,
+              averageRisk: report.averageRisk,
+              blockedSubscriptions: report.blockedSubscriptions,
+              activeSubscriptions: report.totalSubscriptions,
+              falsePositiveRate:
+                report.totalSubscriptions > 0
+                  ? report.falsePositiveFeedbackCount / report.totalSubscriptions
+                  : 0,
+              status:
+                report.averageRisk >= 60
+                  ? 'high-risk'
+                  : report.averageRisk >= 35
+                    ? 'watch'
+                    : 'healthy',
+            };
+          }),
         });
       },
 
       assessRisk: (subscriberId: string) => {
-        const assessments = get()
-          .subscriptions.filter((item) => item.subscriberId === subscriberId)
-          .map((item) => scoreSubscription(item));
+        const subscriptions = get().subscriptions;
+        const assessments = subscriptions
+          .filter((item) => item.subscriberId === subscriberId)
+          .map((item) => scoreSubscription(item, subscriptions));
 
         set((state) => ({
           assessments: [
@@ -340,10 +661,11 @@ export const useFraudStore = create<FraudState>()(
       },
 
       flagSubscription: (subscriptionId: string) => {
-        const current = get().subscriptions.find((item) => item.id === subscriptionId);
+        const subscriptions = get().subscriptions;
+        const current = subscriptions.find((item) => item.id === subscriptionId);
         if (!current) return;
 
-        const score = scoreSubscription(current);
+        const score = scoreSubscription(current, subscriptions);
         const nextCase: FraudCase = {
           caseId: subscriptionId,
           subscriptionId,
@@ -358,6 +680,7 @@ export const useFraudStore = create<FraudState>()(
           createdAt: nowIso(),
           updatedAt: nowIso(),
           notes: 'Manually queued for analyst review',
+          evidence: score.evidence?.map(cloneEvidence),
         };
 
         set((state) => ({
@@ -366,14 +689,20 @@ export const useFraudStore = create<FraudState>()(
             isFlagged: true,
             isBlocked: nextCase.action === 'block',
           }),
-          reviewQueue: [nextCase, ...state.reviewQueue.filter((entry) => entry.subscriptionId !== subscriptionId)],
+          reviewQueue: [
+            nextCase,
+            ...state.reviewQueue.filter((entry) => entry.subscriptionId !== subscriptionId),
+          ],
           analytics: computeAnalytics(
             updateSubscription(state.subscriptions, subscriptionId, {
               action: nextCase.action,
               isFlagged: true,
               isBlocked: nextCase.action === 'block',
             }),
-            [nextCase, ...state.reviewQueue.filter((entry) => entry.subscriptionId !== subscriptionId)]
+            [
+              nextCase,
+              ...state.reviewQueue.filter((entry) => entry.subscriptionId !== subscriptionId),
+            ]
           ),
         }));
       },
@@ -385,11 +714,21 @@ export const useFraudStore = create<FraudState>()(
             isFlagged: false,
             isBlocked: false,
           });
-          const reviewQueue = state.reviewQueue.map((entry) =>
-            entry.subscriptionId === subscriptionId
-              ? { ...entry, status: 'reviewed', action: 'approve', updatedAt: nowIso() }
-              : entry
-          );
+          const reviewQueue = state.reviewQueue.map((entry) => {
+            if (entry.subscriptionId !== subscriptionId) {
+              return entry;
+            }
+
+            const reviewedCase: FraudCase = {
+              ...entry,
+              status: 'reviewed',
+              action: 'approve',
+              outcome: 'true_positive',
+              reviewedAt: nowIso(),
+              updatedAt: nowIso(),
+            };
+            return reviewedCase;
+          });
           return {
             subscriptions,
             reviewQueue,
@@ -405,11 +744,19 @@ export const useFraudStore = create<FraudState>()(
             isFlagged: true,
             isBlocked: true,
           });
-          const reviewQueue = state.reviewQueue.map((entry) =>
-            entry.subscriptionId === subscriptionId
-              ? { ...entry, status: 'escalated', action: 'block', updatedAt: nowIso() }
-              : entry
-          );
+          const reviewQueue = state.reviewQueue.map((entry) => {
+            if (entry.subscriptionId !== subscriptionId) {
+              return entry;
+            }
+
+            const escalatedCase: FraudCase = {
+              ...entry,
+              status: 'escalated',
+              action: 'block',
+              updatedAt: nowIso(),
+            };
+            return escalatedCase;
+          });
           return {
             subscriptions,
             reviewQueue,
@@ -425,16 +772,57 @@ export const useFraudStore = create<FraudState>()(
             isFlagged: action !== 'approve',
             isBlocked: action === 'block',
           });
-          const reviewQueue = state.reviewQueue.map((entry) =>
-            entry.subscriptionId === subscriptionId
-              ? {
-                  ...entry,
-                  action,
-                  status: action === 'approve' ? 'reviewed' : action === 'block' ? 'escalated' : 'pending',
-                  updatedAt: nowIso(),
-                }
-              : entry
-          );
+          const reviewQueue = state.reviewQueue.map((entry) => {
+            if (entry.subscriptionId !== subscriptionId) {
+              return entry;
+            }
+
+            const resolvedCase: FraudCase = {
+              ...entry,
+              action,
+              status:
+                action === 'approve' ? 'reviewed' : action === 'block' ? 'escalated' : 'pending',
+              updatedAt: nowIso(),
+            };
+            return resolvedCase;
+          });
+          return {
+            subscriptions,
+            reviewQueue,
+            analytics: computeAnalytics(subscriptions, reviewQueue),
+          };
+        });
+      },
+
+      submitFalsePositiveFeedback: (subscriptionId: string, notes?: string) => {
+        set((state) => {
+          const subscriptions = updateSubscription(state.subscriptions, subscriptionId, {
+            action: 'approve',
+            isFlagged: false,
+            isBlocked: false,
+            falsePositiveCount:
+              (state.subscriptions.find((item) => item.id === subscriptionId)?.falsePositiveCount ??
+                0) + 1,
+            lastSeenAt: nowIso(),
+          });
+
+          const reviewQueue = state.reviewQueue.map((entry) => {
+            if (entry.subscriptionId !== subscriptionId) {
+              return entry;
+            }
+
+            const dismissedCase: FraudCase = {
+              ...entry,
+              status: 'dismissed',
+              action: 'approve',
+              outcome: 'false_positive',
+              reviewedAt: nowIso(),
+              updatedAt: nowIso(),
+              notes: notes ?? entry.notes ?? 'Marked as false positive',
+            };
+            return dismissedCase;
+          });
+
           return {
             subscriptions,
             reviewQueue,
diff --git a/src/store/subscriptionStore.ts b/src/store/subscriptionStore.ts
index 3f0563e..e41ace4 100644
--- a/src/store/subscriptionStore.ts
+++ b/src/store/subscriptionStore.ts
@@ -24,7 +24,9 @@ import { AchievementTrigger } from '../types/gamification';
 import { errorHandler, AppError } from '../services/errorHandler';
 import { useSettingsStore } from './settingsStore';
 import { currencyService } from '../services/currencyService';
-
+import { useSupportStore } from './supportStore';
+import { buildSupportEventMessage } from '../services/ticketingService';
+import { SubscriptionSupportContext, TicketIssueType } from '../types/support';
 
 const STORAGE_KEY = 'subtrackr-subscriptions';
 const STORE_VERSION = 1;
@@ -73,6 +75,44 @@ const normalizeSubscription = (raw: Partial<Subscription>): Subscription => {
   };
 };
 
+const buildSupportContext = (
+  subscription: Subscription,
+  history: string[]
+): SubscriptionSupportContext => ({
+  subscriptionName: subscription.name,
+  planName: subscription.name,
+  planTier: subscription.category,
+  billingCycle: subscription.billingCycle,
+  status: subscription.isActive ? 'active' : 'paused',
+  amount: subscription.price,
+  currency: subscription.currency,
+  createdAt: subscription.createdAt.toISOString(),
+  nextBillingDate:
+    subscription.nextBillingDate?.toISOString?.() ??
+    new Date(subscription.nextBillingDate).toISOString(),
+  failedPayments: subscription.chargeCount ? Math.max(subscription.chargeCount - 1, 0) : 0,
+  chargeCount: subscription.chargeCount ?? 0,
+  history,
+});
+
+const createSupportEvent = (
+  subscription: Subscription,
+  issueType: TicketIssueType,
+  history: string[],
+  actorId = 'system'
+) => {
+  const context = buildSupportContext(subscription, history);
+  return {
+    subscriptionId: subscription.id,
+    issueType,
+    message: buildSupportEventMessage(context, issueType),
+    occurredAt: new Date(),
+    context,
+    dedupeKey: `${subscription.id}:${issueType}`,
+    actorId,
+  };
+};
+
 const serializeForStorage = (state: PersistedSubscriptionSlice): PersistedSubscriptionSlice => ({
   subscriptions: state.subscriptions.map((sub) => ({
     ...sub,
@@ -248,6 +288,18 @@ export const useSubscriptionStore = create<SubscriptionState>()(
       deleteSubscription: async (id: string) => {
         set({ isLoading: true, error: null });
         try {
+          const current = get().subscriptions.find((sub) => sub.id === id);
+          if (current) {
+            useSupportStore
+              .getState()
+              .createTicket(
+                createSupportEvent(current, 'cancellation', [
+                  'Cancellation requested from subscription management',
+                  'Subscription marked for removal',
+                ])
+              );
+          }
+
           set((state) => ({
             subscriptions: state.subscriptions.filter((sub) => sub.id !== id),
             isLoading: false,
@@ -344,6 +396,16 @@ export const useSubscriptionStore = create<SubscriptionState>()(
             },
             0
           );
+        } else {
+          useSupportStore
+            .getState()
+            .createTicket(
+              createSupportEvent(sub, 'failed_charge', [
+                'Payment failure recorded during billing run',
+                `Next billing date remains ${sub.nextBillingDate.toISOString()}`,
+                `Notifications ${sub.notificationsEnabled === false ? 'disabled' : 'enabled'}`,
+              ])
+            );
         }
       },
 
@@ -416,7 +478,6 @@ export const useSubscriptionStore = create<SubscriptionState>()(
           return total + priceInPreferred * BILLING_CONVERSIONS.MONTHS_PER_YEAR;
         }, 0);
 
-
         const categoryBreakdown = activeSubs.reduce(
           (acc, sub) => {
             acc[sub.category] = (acc[sub.category] || 0) + 1;
diff --git a/src/store/supportStore.ts b/src/store/supportStore.ts
index 706c451..cdab959 100644
--- a/src/store/supportStore.ts
+++ b/src/store/supportStore.ts
@@ -1,12 +1,17 @@
 import { create } from 'zustand';
 import {
+  applySupportAction,
   assignTicket,
+  buildSupportAuditEntry,
   createTicketFromEvent,
   linkTicketResolutionToSubscription,
+  recordSupportSurvey,
   syncTicketToExternalSystem,
 } from '../services/ticketingService';
 import {
+  SubscriptionSupportContext,
   SubscriptionSupportEvent,
+  SupportActionType,
   SupportTicket,
   TicketingIntegrationConfig,
   TicketStatus,
@@ -18,8 +23,16 @@ interface SupportState {
   createTicket: (event: SubscriptionSupportEvent) => SupportTicket;
   assignTicket: (ticketId: string, assignee: string) => void;
   updateTicketStatus: (ticketId: string, status: TicketStatus) => void;
+  performSupportAction: (
+    ticketId: string,
+    action: SupportActionType,
+    actorId: string,
+    note?: string,
+    expectedVersion?: number
+  ) => void;
   syncTicket: (ticketId: string) => void;
   linkResolution: (ticketId: string, subscriptionId: string) => void;
+  submitSurvey: (ticketId: string, rating: number, comment?: string) => void;
   setIntegration: (integration: TicketingIntegrationConfig) => void;
 }
 
@@ -29,31 +42,186 @@ const mapTicket = (
   updater: (ticket: SupportTicket) => SupportTicket
 ): SupportTicket[] => tickets.map((ticket) => (ticket.id === ticketId ? updater(ticket) : ticket));
 
+const findDedupeTicket = (
+  tickets: SupportTicket[],
+  event: SubscriptionSupportEvent
+): SupportTicket | undefined => {
+  const openStatuses: TicketStatus[] = ['open', 'assigned', 'pending_customer'];
+  const dedupeKey = event.dedupeKey;
+  return tickets.find((ticket) => {
+    if (!openStatuses.includes(ticket.status)) return false;
+    if (ticket.subscriptionId !== event.subscriptionId) return false;
+    if (ticket.issueType !== event.issueType) return false;
+    if (dedupeKey && ticket.dedupeKey !== dedupeKey) return false;
+    return true;
+  });
+};
+
+const enrichContext = (
+  context: SubscriptionSupportContext,
+  historyEntry: string
+): SubscriptionSupportContext => ({
+  ...context,
+  history: Array.from(new Set([...context.history, historyEntry])),
+});
+
+const seedContext = (
+  subscriptionName: string,
+  planName: string,
+  planTier: string,
+  status: string,
+  amount: number,
+  currency: string,
+  createdAt: string,
+  history: string[],
+  billingCycle = 'monthly',
+  nextBillingDate?: string
+): SubscriptionSupportContext => ({
+  subscriptionName,
+  planName,
+  planTier,
+  billingCycle,
+  status,
+  amount,
+  currency,
+  createdAt,
+  nextBillingDate,
+  failedPayments: 0,
+  chargeCount: 0,
+  history,
+});
+
+const seedTickets: SupportTicket[] = [
+  createTicketFromEvent({
+    subscriptionId: 'sub_support_1',
+    issueType: 'failed_charge',
+    message: 'Payment failed after retry on Pro plan. Zendesk sync pending.',
+    occurredAt: '2026-05-18T10:00:00.000Z',
+    context: seedContext(
+      'Acme Pro',
+      'Pro Plan',
+      'premium',
+      'active',
+      49,
+      'USD',
+      '2026-04-18T10:00:00.000Z',
+      [
+        '2 failed payment attempts in the last 24 hours',
+        'Customer previously requested receipt copy',
+      ],
+      'monthly',
+      '2026-06-18T10:00:00.000Z'
+    ),
+    actorId: 'system',
+  }),
+  createTicketFromEvent({
+    subscriptionId: 'sub_support_2',
+    issueType: 'cancellation',
+    message: 'Subscription cancellation requires retention review and survey follow-up.',
+    occurredAt: '2026-05-19T08:30:00.000Z',
+    context: seedContext(
+      'Northwind Teams',
+      'Team Plan',
+      'enterprise',
+      'cancel_pending',
+      129,
+      'USD',
+      '2026-01-08T09:30:00.000Z',
+      ['Cancellation requested from detail screen', 'Customer cited budget pressure'],
+      'yearly',
+      '2026-07-08T09:30:00.000Z'
+    ),
+    actorId: 'system',
+  }),
+];
+
 export const useSupportStore = create<SupportState>((set, get) => ({
-  tickets: [],
-  integration: { provider: 'internal', enabled: true, defaultAssignee: 'support-team' },
+  tickets: seedTickets,
+  integration: {
+    provider: 'internal',
+    enabled: true,
+    defaultAssignee: 'support-team',
+    baseUrl: 'https://support.local',
+    queueName: 'billing-support',
+  },
 
   createTicket: (event) => {
-    const relatedTicketIds = get()
-      .tickets.filter((ticket) => ticket.subscriptionId === event.subscriptionId && ticket.status !== 'closed')
-      .map((ticket) => ticket.id);
-    const ticket = createTicketFromEvent(event, relatedTicketIds);
+    const existing = findDedupeTicket(get().tickets, event);
+    if (existing) {
+      const relatedTicketIds = Array.from(
+        new Set([...(event.relatedTicketIds ?? []), ...existing.relatedTicketIds])
+      );
+      const updated = {
+        ...existing,
+        relatedTicketIds,
+        supportContext: enrichContext(existing.supportContext, event.message),
+        auditTrail: [
+          ...existing.auditTrail,
+          buildSupportAuditEntry(
+            'dedupe',
+            event.actorId ?? 'system',
+            'Merged into existing open ticket',
+            existing.version + 1,
+            {
+              dedupeKey: existing.dedupeKey,
+            }
+          ),
+        ],
+        version: existing.version + 1,
+        updatedAt: new Date().toISOString(),
+      };
+
+      set((state) => ({
+        tickets: mapTicket(state.tickets, existing.id, () => updated),
+      }));
+      return updated;
+    }
+
+    const ticket = createTicketFromEvent(event, event.relatedTicketIds ?? []);
     set((state) => ({ tickets: [...state.tickets, ticket] }));
     return ticket;
   },
 
   assignTicket: (ticketId, assignee) =>
-    set((state) => ({ tickets: mapTicket(state.tickets, ticketId, (ticket) => assignTicket(ticket, assignee)) })),
+    set((state) => ({
+      tickets: mapTicket(state.tickets, ticketId, (ticket) => assignTicket(ticket, assignee)),
+    })),
 
   updateTicketStatus: (ticketId, status) =>
     set((state) => ({
       tickets: mapTicket(state.tickets, ticketId, (ticket) => ({
         ...ticket,
         status,
-        updatedAt: new Date(),
+        version: ticket.version + 1,
+        updatedAt: new Date().toISOString(),
+        auditTrail: [
+          ...ticket.auditTrail,
+          buildSupportAuditEntry(
+            'note',
+            ticket.lastActorId ?? 'system',
+            `Status changed to ${status}`,
+            ticket.version + 1,
+            {
+              status,
+            }
+          ),
+        ],
       })),
     })),
 
+  performSupportAction: (ticketId, action, actorId, note = '', expectedVersion) =>
+    set((state) => ({
+      tickets: mapTicket(state.tickets, ticketId, (ticket) =>
+        applySupportAction(
+          ticket,
+          action,
+          actorId,
+          note || `${action} requested by ${actorId}`,
+          expectedVersion
+        )
+      ),
+    })),
+
   syncTicket: (ticketId) =>
     set((state) => ({
       tickets: mapTicket(state.tickets, ticketId, (ticket) =>
@@ -68,5 +236,12 @@ export const useSupportStore = create<SupportState>((set, get) => ({
       ),
     })),
 
+  submitSurvey: (ticketId, rating, comment) =>
+    set((state) => ({
+      tickets: mapTicket(state.tickets, ticketId, (ticket) =>
+        recordSupportSurvey(ticket, rating, comment)
+      ),
+    })),
+
   setIntegration: (integration) => set({ integration }),
 }));
diff --git a/src/types/fraud.ts b/src/types/fraud.ts
index 818042e..9a00f3b 100644
--- a/src/types/fraud.ts
+++ b/src/types/fraud.ts
@@ -1,6 +1,14 @@
 export type FraudAction = 'approve' | 'flag' | 'block';
 export type FraudReviewStatus = 'pending' | 'reviewed' | 'dismissed' | 'escalated';
-export type FraudSignalType = 'velocity' | 'usage-anomaly' | 'chargeback' | 'pattern-shift' | 'device-mismatch';
+export type FraudSignalType =
+  | 'velocity'
+  | 'usage-anomaly'
+  | 'chargeback'
+  | 'pattern-shift'
+  | 'device-mismatch'
+  | 'geolocation-anomaly';
+export type FraudReviewOutcome = 'true_positive' | 'false_positive' | 'needs_follow_up';
+export type FraudEvidenceSource = 'payment' | 'device' | 'location' | 'support';
 
 export interface FraudSignal {
   kind: FraudSignalType;
@@ -9,6 +17,15 @@ export interface FraudSignal {
   observedAt: string;
 }
 
+export interface FraudEvidence {
+  evidenceId: string;
+  label: string;
+  value: string;
+  source: FraudEvidenceSource;
+  capturedAt: string;
+  confidence: number;
+}
+
 export interface FraudRiskScore {
   subscriberId: string;
   subscriptionId: string;
@@ -22,6 +39,7 @@ export interface FraudRiskScore {
   reason: string;
   assessedAt: string;
   signals: FraudSignal[];
+  evidence?: FraudEvidence[];
 }
 
 export interface FraudCase {
@@ -38,6 +56,10 @@ export interface FraudCase {
   createdAt: string;
   updatedAt: string;
   notes?: string;
+  reviewer?: string;
+  reviewedAt?: string;
+  outcome?: FraudReviewOutcome;
+  evidence?: FraudEvidence[];
 }
 
 export interface FraudReport {
@@ -52,6 +74,9 @@ export interface FraudReport {
   anomalyAlerts: number;
   chargebackPredictions: number;
   highRiskSubscribers: number;
+  geolocationAlerts: number;
+  pendingEvidenceCount: number;
+  falsePositiveFeedbackCount: number;
   recentCases: FraudCase[];
 }
 
@@ -67,6 +92,12 @@ export interface FraudSubscriptionRecord {
   expectedUsage: number;
   observedUsage: number;
   chargebacks: number;
+  homeCountry?: string;
+  currentCountry?: string;
+  deviceFingerprint?: string;
+  trustedDeviceFingerprint?: string;
+  lastSeenAt?: string;
+  falsePositiveCount?: number;
   riskScore: number;
   action: FraudAction;
   reason: string;
@@ -84,6 +115,7 @@ export interface FraudMerchantRecord {
   blockedSubscriptions: number;
   averageRisk: number;
   monthlyVolume: number;
+  falsePositiveRate?: number;
 }
 
 export interface FraudAnalytics {
@@ -92,9 +124,13 @@ export interface FraudAnalytics {
   flagged: number;
   blocked: number;
   manualReviews: number;
+  manualReviewsClosed: number;
   avgRisk: number;
   velocityAlerts: number;
   anomalyAlerts: number;
+  geoAnomalyAlerts: number;
   chargebackPredictions: number;
   falsePositiveEstimate: number;
+  falsePositiveRate: number;
+  modelConfidence: number;
 }
diff --git a/src/types/support.ts b/src/types/support.ts
index a1bebca..345c0e4 100644
--- a/src/types/support.ts
+++ b/src/types/support.ts
@@ -1,6 +1,60 @@
 export type TicketIssueType = 'failed_charge' | 'cancellation' | 'dispute' | 'general';
 export type TicketPriority = 'low' | 'medium' | 'high' | 'urgent';
 export type TicketStatus = 'open' | 'assigned' | 'pending_customer' | 'resolved' | 'closed';
+export type SupportActionType = 'refund' | 'pause' | 'cancel' | 'escalate' | 'note';
+export type SupportSlaStatus = 'on_track' | 'at_risk' | 'breached' | 'resolved';
+export type SupportSurveyStatus = 'not_sent' | 'sent' | 'completed';
+
+export interface SubscriptionSupportContext {
+  subscriptionName: string;
+  planName: string;
+  planTier: string;
+  billingCycle: string;
+  status: string;
+  amount: number;
+  currency: string;
+  createdAt: string;
+  nextBillingDate?: string;
+  failedPayments: number;
+  chargeCount: number;
+  history: string[];
+}
+
+export interface SupportAuditEntry {
+  id: string;
+  action: SupportActionType | 'create' | 'sync' | 'resolve' | 'dedupe' | 'survey';
+  actorId: string;
+  note: string;
+  createdAt: string;
+  version: number;
+  metadata?: Record<string, string | number | boolean>;
+}
+
+export interface SupportActionRecord {
+  action: SupportActionType;
+  actorId: string;
+  note: string;
+  createdAt: string;
+  version: number;
+  conflict?: boolean;
+}
+
+export interface SupportSlaRecord {
+  firstResponseDueAt: string;
+  resolutionDueAt: string;
+  firstResponseAt?: string;
+  resolvedAt?: string;
+  status: SupportSlaStatus;
+  breached: boolean;
+}
+
+export interface SupportSurveyRecord {
+  status: SupportSurveyStatus;
+  rating?: number;
+  comment?: string;
+  sentAt?: string;
+  completedAt?: string;
+}
 
 export interface SupportTicket {
   id: string;
@@ -15,8 +69,16 @@ export interface SupportTicket {
   externalTicketId?: string;
   resolutionSubscriptionId?: string;
   relatedTicketIds: string[];
-  createdAt: Date;
-  updatedAt: Date;
+  createdAt: string;
+  updatedAt: string;
+  supportContext: SubscriptionSupportContext;
+  auditTrail: SupportAuditEntry[];
+  actions: SupportActionRecord[];
+  sla: SupportSlaRecord;
+  survey: SupportSurveyRecord;
+  dedupeKey: string;
+  version: number;
+  lastActorId?: string;
 }
 
 export interface SubscriptionSupportEvent {
@@ -24,11 +86,18 @@ export interface SubscriptionSupportEvent {
   issueType: TicketIssueType;
   message: string;
   severity?: TicketPriority;
-  occurredAt: Date;
+  occurredAt: string | Date;
+  context: SubscriptionSupportContext;
+  dedupeKey?: string;
+  relatedTicketIds?: string[];
+  actorId?: string;
 }
 
 export interface TicketingIntegrationConfig {
   provider: 'zendesk' | 'freshdesk' | 'intercom' | 'internal';
   enabled: boolean;
   defaultAssignee?: string;
+  apiKey?: string;
+  baseUrl?: string;
+  queueName?: string;
 }