All contentGuide
Sanctions API integration guide
Integration principles for secure key management, limits and failure scenarios.
An API integration brings screening into a product flow and requires explicit boundaries for credentials, limits and failure handling.
Store keys on the server
Do not place API keys in browser code or mobile packages. Use a secret manager or protected server environment and prevent keys from appearing in logs.
Reduce scope
Define required domain, IP, source and usage policies. Use separate keys by environment and document rotation in advance.
Handle failures safely
Apply controlled retries for timeouts, rate limits and temporary errors. Never convert an uncertain response into an automatic clear outcome.
Use the API documentation for current endpoints and examples.