codeDeveloper API

Buildcomplianceinto
your stack.

The KYCopilot REST API gives you programmatic access to every compliance intelligence product - entity screening, EDD reports, country risk, and batch processing.

How it connects

Your System
CRMTPRMERPHRMS
REST API
KYCopilot
KYCEDD
Get API Keyarrow_forwardTalk to our team
POST /api/kycopilot-api-search/person
curl https://app.kycopilot.com/api/kycopilot-api-search/person \
  -X POST \
  -H "Authorization: Bearer YOUR_API_KEY" \
  -H "Content-Type: application/json" \
  -d '{
    "Full_Name": "John Gordon Smith",
    "Country": "za",
    "Gender": "male",
    "Date_of_Birth": "1957-10-21",
    "Categories": [
      "PEP_PIP",
      "Sanctions",
      "Adverse_Media",
      "Court_Cases"
    ],
    "AI_Deep_Scan": "top",
    "AI_Clean_And_Rate": "true"
  '}

API Reference

Not just a search. A Decision.

Programmatic access to every KYCopilot intelligence product - from entity screening to country risk.

shield_lock
Compliance Intelligence
POSTEDD Report API
/api/kycopilot-api/report-types

Generate Enhanced Due Diligence reports for any company. Supports async job polling and optional email delivery of completed reports.

POSTPerson Search
/api/kycopilot-api-search/person

Screen individuals against PEP/PIP, sanctions, adverse media, and court case databases. Supports AI cleaning, comfort scoring, and deep-scan web intelligence.

POSTCompany Lookup
/api/kycopilot-api/companies/search

Search by company name and country to retrieve registration numbers from our supported country registry database.

POSTCompany Search
/api/kycopilot-api/companies/search

Screen organisations against sanctions, adverse media, and court case databases - with optional company registration detail enrichment.

GETCountry Risk API
/api/kycopilot-api-search/country_risk?iso_code=za

Retrieve the latest AI-generated country risk assessment for any supported nation. Covers sovereign, ESG, AML, sanctions, tax, governance, and security risk dimensions.

monitoring
Account Monitoring
GETAPI Call History
/api/kycopilot-api/history

Retrieve a paginated log of all API calls made by your organisation - filter by status, endpoint, and date range.

GETCredit Status
/api/kycopilot-api/credit_status

Retrieve your organisation's current credit balances and next renewal date.

terminal
Utilities
GETSystem Status
/api/kycopilot-api/system-status

Ping the API to confirm the system is reachable and your API key is valid.

API Dashboard

KYCopilot API Doesn't Just Run Calls
It Puts You In Control

Every API call is tracked, scored and surfaced in a live dashboard. Monitor endpoint activity, credit consumption, system health and full call history - across your entire organisation, in real time.

app.kycopilot.ai / dashboard / api
API Dashboard
Good morning, Joe
Friday, 24 April 2026
refreshRefresh
API System Status
Online
All systems operational
Checked 08:15:44
Compliance Intelligence
Operational
Account & Monitoring APIs
Operational
Webhook Delivery
Operational
Monthly API Snapshot
Credits used per calendar month
347
total credits · 42 calls
Oct
Nov
Dec
Jan
Feb
Mar
Apr
Credit Balances
Subscription Credits
bolt
332
Resets monthly with your plan
General Credits
bolt
3,023
Top-up balance, never expires
Total Available
trending_up
3,355
Combined balance
Credit Usage Explorer
API calls grouped by endpoint · hover bars for detail
All endpoints ▾
Today7 Days30 Days90 Days
open_in_newView Breakdown
42 calls347 credits used
17 Apr
18 Apr
19 Apr
20 Apr
21 Apr
22 Apr
23 Apr
24 Apr

API Security

Secured at every layer. Every request.

API key authentication and bearer token security built in from the ground up - not bolted on.

lock
Authorization:Bearersk_live_••••••••••••••••••••••••••••••••
AUTHENTICATED
key

Bearer Token Authentication

Every request must carry a valid Bearer token in the Authorization header. Invalid or missing tokens are rejected before touching any compliance data.

RFC 6750Stateless AuthInstant Reject
password

API Key Management

Generate, rotate, and revoke API keys instantly from your dashboard. Every key is uniquely identified, individually tracked, and scoped to your organisation.

Key RotationInstant RevokeAudit-Logged
shield_lock

TLS 1.3 Encryption

Every byte of API traffic is encrypted in transit. Your keys, bearer tokens, and compliance payloads are never readable on the wire.

TLS 1.3HTTPS OnlyEnd-to-End
manage_history

Immutable Audit Trail

Every API call is logged with timestamp, key ID, endpoint, response code, and credit cost. Full accountability on every request - required by SOC 2.

Key-AttributedTimestampedSOC 2
speed

Rate Limiting

Per-key rate limits guard against quota abuse and protect the platform. Excess requests receive a 429 with a Retry-After header - no silent failures.

Per-Key Quotas429 EnforcedAbuse Prevention
tune

Least-Privilege Scoping

Scope keys to specific endpoint groups. A monitoring key cannot trigger a screen. A screening key cannot read billing data. Minimal access by design.

Endpoint ScopesZero TrustMinimal Access

Built for any stack

Any system can level up.

One integration gives your CRM, ERP, TPRM, HRMS, or custom build enterprise-grade compliance intelligence. No rip-and-replace. No rebuilds.

Salesforce CRMSAP ERPOracleTPRM PlatformBanking CoreHRMS / PayrollCustom AppOnboarding Tool
REST API
api
KYCopilot API
Compliance Intelligence Layer
LIVE

Trusted by teams at

Standard BankAfrican AllianceShoprite

API calls draw from the same credit pool as your dashboard. No separate API pricing - scale up with confidence on any plan.

Get Your API KeyTalk to Sales