Identities

Identities represent any entity that can own accounts, perform transactions, or be subject to permissions within the platform.

Each identity can be a person, organization, or system-level actor. You can create, update, delete, and retrieve identities, as well as define hierarchical relationships and attach rules.

Endpoints

GET /identities
POST /identities
GET /identities/:id
PATCH /identities/:id
DELETE /identities/:id
POST /identities/:id/children
DELETE /identities/:id/children
POST /identities/{id}/rules
DELETE /identities/{id}/rules

The identity object

Attributes

idstringOptional

Unique identifier for the entity.

typestring · enumOptional

Specifies whether the entity is an ORGANIZATION or an individual USER.

Possible values:

namestringOptional

The name of the entity (for users) or the official name (for organizations).

nicknamestringOptional

An alternative or preferred name for the entity.

emailstring · emailOptional

The email address associated with the entity.

phonestringOptional

the phone number linked to the entity. Include +(phone country code)

documentNumberstringOptional

The document number associated with the entity for identification purposes.

documentTypestringOptional

Documeny type of the entity (e.g., RUT, CURP, CURL). Go to the Supported Identity document types page for the complete list of supported values.

idvstringOptional

Identity verification reference

countrystringOptional

Country of operations for the entity, specified using the ISO 3166-1 alpha-3 standard (e.g., CHL, USA, MEX). Go to the countries page for the complete list of supported values.

statusstringOptional

The current status of the entity. PENDING, PENDING_EMAIL_VALIDATION, PENDING_PHONE_VALIDATION, SCREENING, ACTIVE

externalIdstringOptional

External reference ID (client purpose).

lastnamestringOptional

The last name of the user (if applicable).

rulesobjectOptional

Custom rules or policies applicable to the entity.

genderstringOptional

Gender information (if applicable

kycobjectOptional

Information related to Know Your Customer (KYC) compliance

watchListobjectOptional

Watchlist information for compliance or fraud detection.

extendedDatastring[]Optional

Additional data.

createdAtstring · date-timeOptional

Creation date UTC format.

updatedAtstring · date-timeOptional

Time of last update made to the entity, UTC format.

The identity object

{
  "id": "text",
  "type": "USER",
  "name": "text",
  "nickname": "text",
  "email": "[email protected]",
  "phone": "text",
  "documentNumber": "text",
  "documentType": "text",
  "idv": "text",
  "securityOptions": {
    "twoFactorAuth": true,
    "signTrx": true,
    "signAccountsOperations": true,
    "accessControl": {
      "scopes": [
        {
          "resource": "text",
          "reference": "text",
          "permissions": [
            "text"
          ]
        }
      ]
    }
  },
  "country": "text",
  "children": [
    {
      "id": "text",
      "name": "text",
      "email": "text"
    }
  ],
  "status": "text",
  "externalId": "text",
  "lastname": "text",
  "bankAccount": {
    "id": "text",
    "externalId": "text",
    "accountNumber": "text",
    "nickname": "text",
    "bank": "text",
    "currency": "text",
    "typeAccount": "text",
    "accountHolder": "text",
    "accountHolderDni": "text",
    "country": "text",
    "createdAt": "2025-07-17T06:31:33.198Z",
    "updatedAt": "2025-07-17T06:31:33.198Z"
  },
  "rules": {},
  "gender": "text",
  "kyc": {},
  "watchList": {},
  "extendedData": [
    "text"
  ],
  "createdAt": "2025-07-17T06:31:33.198Z",
  "updatedAt": "2025-07-17T06:31:33.198Z",
  "address": {
    "administrativeAreaLevel1": "text",
    "administrativeAreaLevel2": "text",
    "administrativeAreaLevel3": "text",
    "street": "text",
    "streetNumber": "text",
    "optionalAddress": "text",
    "country": "text"
  }
}

The bank-account object

Attributes

Schema representing a bank account, including essential details about the account holder and financial institution.

idstringOptional

Unique identifier for the bank account.

externalIdstringOptional

External reference identifier for integrations.

accountNumberstringRequired

The bank account number.

nicknamestringOptional

A friendly name assigned to the bank account.

bankstringRequired

The name of the bank where the account is held.

currencystringRequired

Specifies the currency used, following the ISO 4217 standard for fiat currencies (e.g., CLP, ARS, MXN). Go to the currencies page for the complete list of supported values.

typeAccountstringOptional

The type of bank account. CHECKING_ACOUNT, SAVINGS

accountHolderstringRequired

The full name of the account holder.

accountHolderDnistringRequired

The national identification number or tax ID of the account holder.

countrystringRequired

Country of operations for the entity, specified using the ISO 3166-1 alpha-3 standard (e.g., CHL, USA, MEX). Go to the countries page for the complete list of supported values.

createdAtstring · date-timeOptional

Timestamp indicating when the account was created.

updatedAtstring · date-timeOptional

Timestamp indicating the last update to the account details.

The bank-account object

{
  "id": "text",
  "externalId": "text",
  "accountNumber": "text",
  "nickname": "text",
  "bank": "text",
  "currency": "text",
  "typeAccount": "text",
  "accountHolder": "text",
  "accountHolderDni": "text",
  "country": "text",
  "createdAt": "2025-07-17T06:31:33.198Z",
  "updatedAt": "2025-07-17T06:31:33.198Z"
}

Get Identities

get

Authorizations

Query parameters

typestring · enumOptional

Specifies whether the entity is an ORGANIZATION or an individual USER.

Possible values:

emailstring · emailOptional

identity email

documentNumberstringOptional

identity document number

phonestringOptional

identity phone number

countrystringOptional

Country of operations for the entity, specified using the ISO 3166-1 alpha-3 standard (e.g., CHL, USA, MEX). Go to the countries page for the complete list of supported values.

statusstringOptional

identity status

limitstringOptional

Specifies the maximum number of items to return in a single request.

nextstringOptional

A cursor indicating the position of the last retrieved item.

Header parameters

x-api-keystringRequired

The API key used for authentication when making requests to the API Gateway.

User-AgentstringRequired

Identifies the application making the request.

Example: ConomyApp

Responses

200Success

application/json

400Error

application/json

500Error

application/json

get

GET /identities HTTP/1.1
Host: 
Authorization: Bearer YOUR_SECRET_TOKEN
x-api-key: text
User-Agent: text
Accept: */*

{
  "data": [
    {
      "id": "text",
      "type": "USER",
      "name": "text",
      "nickname": "text",
      "email": "[email protected]",
      "phone": "text",
      "documentNumber": "text",
      "documentType": "text",
      "idv": "text",
      "securityOptions": {
        "twoFactorAuth": true,
        "signTrx": true,
        "signAccountsOperations": true,
        "accessControl": {
          "scopes": [
            {
              "resource": "text",
              "reference": "text",
              "permissions": [
                "text"
              ]
            }
          ]
        }
      },
      "country": "text",
      "children": [
        {
          "id": "text",
          "name": "text",
          "email": "text"
        }
      ],
      "status": "text",
      "externalId": "text",
      "lastname": "text",
      "bankAccount": {
        "id": "text",
        "externalId": "text",
        "accountNumber": "text",
        "nickname": "text",
        "bank": "text",
        "currency": "text",
        "typeAccount": "text",
        "accountHolder": "text",
        "accountHolderDni": "text",
        "country": "text",
        "createdAt": "2025-07-17T06:31:33.198Z",
        "updatedAt": "2025-07-17T06:31:33.198Z"
      },
      "rules": {},
      "gender": "text",
      "kyc": {},
      "watchList": {},
      "extendedData": [
        "text"
      ],
      "createdAt": "2025-07-17T06:31:33.198Z",
      "updatedAt": "2025-07-17T06:31:33.198Z",
      "address": {
        "administrativeAreaLevel1": "text",
        "administrativeAreaLevel2": "text",
        "administrativeAreaLevel3": "text",
        "street": "text",
        "streetNumber": "text",
        "optionalAddress": "text",
        "country": "text"
      }
    }
  ],
  "pagination": {
    "pagination": {
      "count": 1,
      "next": 1,
      "previous": 1,
      "total": 1
    },
    "results": [
      {}
    ]
  }
}

Create Identity

post

Authorizations

Header parameters

x-api-keystringRequired

The API key used for authentication when making requests to the API Gateway.

User-AgentstringRequired

Identifies the application making the request.

Example: ConomyApp/2.1.1

Body

typestring · enumOptional

Specifies whether the entity is an ORGANIZATION or an individual USER.

Possible values:

namestringRequired

The name of the entity (for users) or the official name (for organizations).

nicknamestringOptional

An alternative or preferred name for the entity.

emailstring · emailRequired

The email address associated with the entity.

phonestringRequired

he phone number linked to the entity. Include +(phone country code)

documentNumberstringRequired

The document number associated with the entity for identification purposes.

documentTypestringRequired

The type of document (e.g., PASSPORT, NATIONAL_ID, RUT, CURP, etc).

idvstringRequired

Identity verification reference

countrystringOptional

Country of operations for the entity, specified using the ISO 3166-1 alpha-3 standard (e.g., CHL, USA, MEX). Go to the countries page for the complete list of supported values.

externalIdstringOptional

External reference ID (client purpose).

lastnamestringOptional

The last name of the user (if applicable).

rulesobjectOptional

Custom rules or policies applicable to the entity.

Responses

200Success

application/json

400Error

application/json

500Error

application/json

post

POST /identities HTTP/1.1
Host: 
Authorization: Bearer YOUR_SECRET_TOKEN
x-api-key: text
User-Agent: text
Content-Type: application/json
Accept: */*
Content-Length: 409

{
  "type": "USER",
  "name": "Juan Pérez",
  "nickname": "juanp",
  "email": "[email protected]",
  "phone": "+56912345674",
  "documentType": "RUT",
  "documentNumber": "123125",
  "status": "ACTIVE",
  "idv": "iv-23123",
  "country": "CHL",
  "securityOptions": {
    "twoFactorEnabled": false,
    "accessControl": {
      "scopes": [
        {
          "resource": "IDENTITY",
          "reference": "6808d26af21dc6b97c1cc12a",
          "permissions": [
            "account:write",
            "account:read"
          ]
        }
      ]
    }
  },
  "children": []
}

{
  "id": "text",
  "type": "USER",
  "name": "text",
  "nickname": "text",
  "email": "[email protected]",
  "phone": "text",
  "documentNumber": "text",
  "documentType": "text",
  "idv": "text",
  "securityOptions": {
    "twoFactorAuth": true,
    "signTrx": true,
    "signAccountsOperations": true,
    "accessControl": {
      "scopes": [
        {
          "resource": "text",
          "reference": "text",
          "permissions": [
            "text"
          ]
        }
      ]
    }
  },
  "country": "text",
  "children": [
    {
      "id": "text",
      "name": "text",
      "email": "text"
    }
  ],
  "status": "text",
  "externalId": "text",
  "lastname": "text",
  "bankAccount": {
    "id": "text",
    "externalId": "text",
    "accountNumber": "text",
    "nickname": "text",
    "bank": "text",
    "currency": "text",
    "typeAccount": "text",
    "accountHolder": "text",
    "accountHolderDni": "text",
    "country": "text",
    "createdAt": "2025-07-17T06:31:33.198Z",
    "updatedAt": "2025-07-17T06:31:33.198Z"
  },
  "rules": {},
  "gender": "text",
  "kyc": {},
  "watchList": {},
  "extendedData": [
    "text"
  ],
  "createdAt": "2025-07-17T06:31:33.198Z",
  "updatedAt": "2025-07-17T06:31:33.198Z",
  "address": {
    "administrativeAreaLevel1": "text",
    "administrativeAreaLevel2": "text",
    "administrativeAreaLevel3": "text",
    "street": "text",
    "streetNumber": "text",
    "optionalAddress": "text",
    "country": "text"
  }
}

Get Identity

get

Authorizations

Path parameters

idstringRequired

Unique identifier for the identity.

Header parameters

x-api-keystringRequired

The API key used for authentication when making requests to the API Gateway.

User-AgentstringRequired

Identifies the application making the request.

Example: ConomyApp

Responses

200Success

application/json

400Error

application/json

500Error

application/json

get

GET /identities/{id} HTTP/1.1
Host: 
Authorization: Bearer YOUR_SECRET_TOKEN
x-api-key: text
User-Agent: text
Accept: */*

{
  "id": "text",
  "type": "USER",
  "name": "text",
  "nickname": "text",
  "email": "[email protected]",
  "phone": "text",
  "documentNumber": "text",
  "documentType": "text",
  "idv": "text",
  "securityOptions": {
    "twoFactorAuth": true,
    "signTrx": true,
    "signAccountsOperations": true,
    "accessControl": {
      "scopes": [
        {
          "resource": "text",
          "reference": "text",
          "permissions": [
            "text"
          ]
        }
      ]
    }
  },
  "country": "text",
  "children": [
    {
      "id": "text",
      "name": "text",
      "email": "text"
    }
  ],
  "status": "text",
  "externalId": "text",
  "lastname": "text",
  "bankAccount": {
    "id": "text",
    "externalId": "text",
    "accountNumber": "text",
    "nickname": "text",
    "bank": "text",
    "currency": "text",
    "typeAccount": "text",
    "accountHolder": "text",
    "accountHolderDni": "text",
    "country": "text",
    "createdAt": "2025-07-17T06:31:33.198Z",
    "updatedAt": "2025-07-17T06:31:33.198Z"
  },
  "rules": {},
  "gender": "text",
  "kyc": {},
  "watchList": {},
  "extendedData": [
    "text"
  ],
  "createdAt": "2025-07-17T06:31:33.198Z",
  "updatedAt": "2025-07-17T06:31:33.198Z",
  "address": {
    "administrativeAreaLevel1": "text",
    "administrativeAreaLevel2": "text",
    "administrativeAreaLevel3": "text",
    "street": "text",
    "streetNumber": "text",
    "optionalAddress": "text",
    "country": "text"
  }
}

Delete Identity

delete

Authorizations

Path parameters

idstringRequired

Unique identifier for the identity.

Header parameters

x-api-keystringRequired

The API key used for authentication when making requests to the API Gateway.

User-AgentstringRequired

Identifies the application making the request.

Example: ConomyApp

Responses

204Success

application/json

Responseobject

400Error

application/json

500Error

application/json

delete

DELETE /identities/{id} HTTP/1.1
Host: 
Authorization: Bearer YOUR_SECRET_TOKEN
x-api-key: text
User-Agent: text
Accept: */*

{}

Update Identity

patch

Authorizations

Path parameters

idstringRequired

Unique identifier for the identity.

Header parameters

x-api-keystringRequired

The API key used for authentication when making requests to the API Gateway.

User-AgentstringRequired

Identifies the application making the request.

Body

namestringOptional

The name of the entity (for users) or the official name (for organizations).

nicknamestringOptional

An alternative or preferred name for the entity.

countrystringOptional

Country of operations for the entity, specified using the ISO 3166-1 alpha-3 standard (e.g., CHL, USA, MEX). Go to the countries page for the complete list of supported values.

externalIdstringOptional

External reference ID (client purpose).

lastnamestringOptional

The last name of the user (if applicable).

rulesobjectOptional

Custom rules or policies applicable to the entity.

genderstringOptional

Gender information (if applicable

Responses

200Success

application/json

400Error

application/json

500Error

application/json

patch

PATCH /identities/{id} HTTP/1.1
Host: 
Authorization: Bearer YOUR_SECRET_TOKEN
x-api-key: text
User-Agent: text
Content-Type: application/json
Accept: */*
Content-Length: 21

{
  "nickname": "Thomas"
}

{
  "id": "text",
  "type": "USER",
  "name": "text",
  "nickname": "text",
  "email": "[email protected]",
  "phone": "text",
  "documentNumber": "text",
  "documentType": "text",
  "idv": "text",
  "securityOptions": {
    "twoFactorAuth": true,
    "signTrx": true,
    "signAccountsOperations": true,
    "accessControl": {
      "scopes": [
        {
          "resource": "text",
          "reference": "text",
          "permissions": [
            "text"
          ]
        }
      ]
    }
  },
  "country": "text",
  "children": [
    {
      "id": "text",
      "name": "text",
      "email": "text"
    }
  ],
  "status": "text",
  "externalId": "text",
  "lastname": "text",
  "bankAccount": {
    "id": "text",
    "externalId": "text",
    "accountNumber": "text",
    "nickname": "text",
    "bank": "text",
    "currency": "text",
    "typeAccount": "text",
    "accountHolder": "text",
    "accountHolderDni": "text",
    "country": "text",
    "createdAt": "2025-07-17T06:31:33.198Z",
    "updatedAt": "2025-07-17T06:31:33.198Z"
  },
  "rules": {},
  "gender": "text",
  "kyc": {},
  "watchList": {},
  "extendedData": [
    "text"
  ],
  "createdAt": "2025-07-17T06:31:33.198Z",
  "updatedAt": "2025-07-17T06:31:33.198Z",
  "address": {
    "administrativeAreaLevel1": "text",
    "administrativeAreaLevel2": "text",
    "administrativeAreaLevel3": "text",
    "street": "text",
    "streetNumber": "text",
    "optionalAddress": "text",
    "country": "text"
  }
}

Add Child to Identity Children

post

Add children to an identity. The _id as path param is the identityId.

Authorizations

Path parameters

idstringRequired

Unique identifier for the identity.

Header parameters

x-api-keystringRequired

The API key used for authentication when making requests to the API Gateway.

User-AgentstringRequired

Identifies the application making the request.

Body

childrenstring[]Required

Array of identity ids (strings) that are going to be linked as child to the identityId father

Responses

200Success

application/json

400Error

application/json

500Error

application/json

post

POST /identities/{id}/children HTTP/1.1
Host: 
Authorization: Bearer YOUR_SECRET_TOKEN
x-api-key: text
User-Agent: text
Content-Type: application/json
Accept: */*
Content-Length: 92

{
  "children": [
    "1a5925ac-4629-f7bf-db28-ac0f655e3eef",
    "3cbf2e28-ff31-804c-829e-bf97ed3d44a2"
  ]
}

{
  "id": "text",
  "type": "USER",
  "name": "text",
  "nickname": "text",
  "email": "[email protected]",
  "phone": "text",
  "documentNumber": "text",
  "documentType": "text",
  "idv": "text",
  "securityOptions": {
    "twoFactorAuth": true,
    "signTrx": true,
    "signAccountsOperations": true,
    "accessControl": {
      "scopes": [
        {
          "resource": "text",
          "reference": "text",
          "permissions": [
            "text"
          ]
        }
      ]
    }
  },
  "country": "text",
  "children": [
    {
      "id": "text",
      "name": "text",
      "email": "text"
    }
  ],
  "status": "text",
  "externalId": "text",
  "lastname": "text",
  "bankAccount": {
    "id": "text",
    "externalId": "text",
    "accountNumber": "text",
    "nickname": "text",
    "bank": "text",
    "currency": "text",
    "typeAccount": "text",
    "accountHolder": "text",
    "accountHolderDni": "text",
    "country": "text",
    "createdAt": "2025-07-17T06:31:33.198Z",
    "updatedAt": "2025-07-17T06:31:33.198Z"
  },
  "rules": {},
  "gender": "text",
  "kyc": {},
  "watchList": {},
  "extendedData": [
    "text"
  ],
  "createdAt": "2025-07-17T06:31:33.198Z",
  "updatedAt": "2025-07-17T06:31:33.198Z",
  "address": {
    "administrativeAreaLevel1": "text",
    "administrativeAreaLevel2": "text",
    "administrativeAreaLevel3": "text",
    "street": "text",
    "streetNumber": "text",
    "optionalAddress": "text",
    "country": "text"
  }
}

Remove Child from Children

delete

Authorizations

Path parameters

idstringRequired

Unique identifier for the identity.

Header parameters

x-api-keystringRequired

The API key used for authentication when making requests to the API Gateway.

User-AgentstringRequired

Identifies the application making the request.

Body

childrenstring[]Required

Identity Ids of those identities that are going to be removed from the list of children of that specific father

Responses

200Success

application/json

400Error

application/json

500Error

application/json

delete

DELETE /identities/{id}/children HTTP/1.1
Host: 
Authorization: Bearer YOUR_SECRET_TOKEN
x-api-key: text
User-Agent: text
Content-Type: application/json
Accept: */*
Content-Length: 41

{
  "children": [
    "67fee5eb0bfde89026114369"
  ]
}

{
  "id": "text",
  "type": "USER",
  "name": "text",
  "nickname": "text",
  "email": "[email protected]",
  "phone": "text",
  "documentNumber": "text",
  "documentType": "text",
  "idv": "text",
  "securityOptions": {
    "twoFactorAuth": true,
    "signTrx": true,
    "signAccountsOperations": true,
    "accessControl": {
      "scopes": [
        {
          "resource": "text",
          "reference": "text",
          "permissions": [
            "text"
          ]
        }
      ]
    }
  },
  "country": "text",
  "children": [
    {
      "id": "text",
      "name": "text",
      "email": "text"
    }
  ],
  "status": "text",
  "externalId": "text",
  "lastname": "text",
  "bankAccount": {
    "id": "text",
    "externalId": "text",
    "accountNumber": "text",
    "nickname": "text",
    "bank": "text",
    "currency": "text",
    "typeAccount": "text",
    "accountHolder": "text",
    "accountHolderDni": "text",
    "country": "text",
    "createdAt": "2025-07-17T06:31:33.198Z",
    "updatedAt": "2025-07-17T06:31:33.198Z"
  },
  "rules": {},
  "gender": "text",
  "kyc": {},
  "watchList": {},
  "extendedData": [
    "text"
  ],
  "createdAt": "2025-07-17T06:31:33.198Z",
  "updatedAt": "2025-07-17T06:31:33.198Z",
  "address": {
    "administrativeAreaLevel1": "text",
    "administrativeAreaLevel2": "text",
    "administrativeAreaLevel3": "text",
    "street": "text",
    "streetNumber": "text",
    "optionalAddress": "text",
    "country": "text"
  }
}

PreviousAuthentication NextAccounts

Last updated 15 days ago