API & Rate Limits
| Question | Answer |
|---|---|
| What are the rate limits for the APIs? | The current rate limit is 25 requests per second (QPS). Average API response time is 150–200ms. |
| Why does the journey token expire in 10 minutes but Customer Details API works for 24 hours? | There are two different validity periods: User journey window (10 minutes) for frontend user interactions, and API data retrieval window (24 hours) for backend systems to fetch journey and customer data. |
API & Data Response
| Question | Answer |
|---|---|
| Are Emirates ID issue date and expiry date included in API responses? | Yes, these fields are part of residence information in the response payload. A detailed field mapping sheet will be shared. |
| What is the UAE KYC ID and how is it generated? | It’s a unique identifier generated internally upon first onboarding. It remains consistent across multiple journeys for the same individual. |
| Can we get a sample API response format? | Yes, a sample dummy JSON response will be provided to illustrate the data format and content. |
API & Security
| Question | Answer |
|---|---|
| What APIs are available for integration? | Two main API groups: one for retrieving customer-submitted data and one for verification responses post-journey. See the Create Journey API and other APIs in the API Reference. |
| What is the digital certificate and how to access it? | A certificate containing all verified attributes is generated by ICP and accessible via API for audit or compliance purposes. |
| Can multiple IPs be whitelisted for API access? | A limited number of IPs can be whitelisted (max 3) — for example, 1 IP for staging and 2 IPs for production. |