Core Concepts
Understanding the fundamental concepts of our Account Information Services
Account Types
Our API supports various types of accounts:Payment Accounts
Includes current accounts, checking accounts, and other payment instruments
Savings Accounts
Interest-bearing accounts for saving purposes
Credit Cards
Credit card accounts with associated credit limits
Investment Accounts
Accounts holding investment products and securities
Data Models
Account Information
Consent Management
User consent is a crucial aspect of AIS. All data access requires explicit
consent from the account holder.
Consent Lifecycle
1
Request Consent
Application requests access to specific account information
2
User Authorization
Account holder reviews and authorizes the request
3
Consent Storage
Consent details are securely stored
4
Access Management
API enforces consent boundaries during data access
Data Refresh
Implement smart refresh strategies to balance data freshness with API usage
Refresh Methods
-
Real-time Access
- Direct connection to bank
- Latest data always available
- Higher API usage
-
Cached Access
- Data stored temporarily
- Reduced API calls
- Configurable freshness
-
Webhook Updates
- Push notifications
- Real-time updates
- Efficient resource usage
Security
Data Protection
Encryption
All data is encrypted in transit and at rest
Access Control
Fine-grained permission system
Audit Logging
Comprehensive activity tracking
Compliance
PSD2 and GDPR compliant
Error Handling
Common Error Scenarios
Authentication Errors
Authentication Errors
- Invalid credentials
- Expired tokens
- Missing permissions
Validation Errors
Validation Errors
- Invalid parameters
- Missing required fields
- Format errors
Resource Errors
Resource Errors
- Account not found
- Insufficient funds
- Technical errors