Welcome back.
Session secured
|
Phishing-resistant
|
Post-quantum sealed
|
Ledger chained
|
Sovereign anchored
API
Operational
14 endpoints
All ready
Protocol
ISP v1.0 · Post-quantum
Signing
NIST FIPS 204
Deadline
BSP June 30, 2026
API calls this month ?
0
production calls
Calls today ?
0
since midnight PHT
Endpoints active ?
6/6
all obligations covered
Account tier ?
Starter
free · up to 100 calls/day
Production credentials & account
Production API key ?
Authorization: Bearer
Loading…
Account details ?
Contact support
Institution
—
Request change
Email
—
BSP Supervision
—
BSP Licence No.
Not provided
Tier
Starter
Member since
—
Institution profile Included in your Fiduciary Access Certificate
Business information & contact details ?
Institution Logo
Logo
PNG, JPEG, SVG or WebP · max 512 KB · appears on FAC
White-label Assets · applied to your certificate
ICO
OG
APP
SEAL
PNG/SVG/WebP · max 512 KB each · favicon & social image appear on your FAC and verify page
Marketing Brochure
PDF
View current
PDF or HTML · max ~10 MB · edit offline, upload here · served at /brochure.file
Compliance Officer
Sandbox credentials
Sandbox API key ?
Open sandbox →
Authorization: Bearer · Sandbox Mode
Loading…
500 calls/day · All 6 endpoints · Real backend ·
sandbox: true in every response · Never deducted from production quota
Usage & endpoint health
API quota ?
● Live
Resets at midnight Philippine Standard Time
Starter tier · Resets on the 1st
Tier limits · Starter: 100/day · Scale: 2,000/day · Enterprise: custom
Production only. Sandbox calls are always free and unlimited.
Endpoint status ?
● 14/14 READY
POST
/v1/auth
Identity authentication
828
READY
POST
/v1/payee
Payee due diligence
836
READY
POST
/v1/risk
Risk assessment
838
READY
POST
/v1/consent
FPIC consent logging
827
READY
GET
/v1/audit/:id
Court-admissible audit trail
826
READY
POST
/v1/breach
Breach notification (72-hr)
837
FREE
POST
/v1/auth/challenge
Login · begin SCA challenge
828
READY
POST
/v1/auth/verify
Login · issue signed session
828·829
READY
POST
/v1/auth/session
Validate session token
826
READY
POST
/v1/auth/step-up
Value-scaled step-up (AAL3)
829
READY
POST
/v1/kill-switch
Customer account kill switch
884
FREE
POST
/v1/money-lock
Lock funds vs digital transfer
884
FREE
POST
/v1/auth/passkey/register/*
WebAuthn passkey enrollment
828
READY
POST
/v1/auth/passkey/login/*
Phishing-resistant passkey login
828·829
READY
BSP Circular 1213 — obligation coverage
Nine obligations · your coverage status ?
Full API spec →
✅
§1(a) · Consumer protection
Identity verification at onboarding
POST /v1/auth · isp://code/828
✅
§1(e)(g) · Payee protection
Payee due diligence record
POST /v1/payee · isp://code/836
✅
§3 · Risk governance
Transaction risk assessment log
POST /v1/risk · isp://code/838
✅
§1(c) · RA 10173 consent
FPIC data-sharing consent capture
POST /v1/consent · isp://code/827
✅
§7 · AFASA audit trail
Court-admissible evidence retrieval
GET /v1/audit/:id · isp://code/826
✅
§1(b) · Breach reporting
72-hour breach notification (free)
POST /v1/breach · isp://code/837
🔶
§4 · Governance policy
Written policy — your institution provides
FidTech logs; policy is yours
🔶
§5 · Training & awareness
Staff training — your institution provides
Audit record via /v1/auth trail
○
§8 · BSP reporting
Regulatory filing — direct to BSP
Use audit IDs as supporting evidence
Covered by API (6 of 9)
Partial — your obligation, API evidence assists (2 of 9)
External — direct BSP filing (1 of 9)
Integration & onboarding
Quick start ?
Full guide →
Node.js
cURL
Python
// 1. Install
npm install node-fetch
// 2. Verify a payee const res = await fetch('https://fiduciary.technology/v1/payee', {
method: 'POST',
headers: {
'Authorization': `Bearer `,
'Content-Type': 'application/json'
},
body: JSON.stringify({ sender_id, recipient_account, amount })
});
const { isp_code, audit_id, signature } = await res.json();
// → Post-quantum signed · court-admissible under RA 8792 §7
// 2. Verify a payee const res = await fetch('https://fiduciary.technology/v1/payee', {
method: 'POST',
headers: {
'Authorization': `Bearer `,
'Content-Type': 'application/json'
},
body: JSON.stringify({ sender_id, recipient_account, amount })
});
const { isp_code, audit_id, signature } = await res.json();
// → Post-quantum signed · court-admissible under RA 8792 §7
# Verify a payee
curl -X POST https://fiduciary.technology/v1/payee \
-H "Authorization: Bearer " \
-H "Content-Type: application/json" \
-d '{"sender_id":"BSP-0001","recipient_account":"PH-00192","amount":5000}'
# Response includes isp_code, audit_id, Post-quantum signature
-H "Authorization: Bearer " \
-H "Content-Type: application/json" \
-d '{"sender_id":"BSP-0001","recipient_account":"PH-00192","amount":5000}'
# Response includes isp_code, audit_id, Post-quantum signature
# pip install requests
import requests
resp = requests.post(
"https://fiduciary.technology/v1/payee",
headers={"Authorization": f"Bearer "},
json={"sender_id": sender_id, "recipient_account": account, "amount": amount}
)
data = resp.json() # isp_code, audit_id, signature
resp = requests.post(
"https://fiduciary.technology/v1/payee",
headers={"Authorization": f"Bearer "},
json={"sender_id": sender_id, "recipient_account": account, "amount": amount}
)
data = resp.json() # isp_code, audit_id, signature
Getting production-ready ?
0 / 5
✓
Account registered
Your institution is registered and your production API key is issued.
2
API key saved securely
Store your key in an environment variable, not in source code.
Copy key to clipboard →
3
Tested in sandbox
Run all six endpoints in the sandbox console before going live.
Open sandbox console →
4
First production call made
Make at least one live API call — your activity log will confirm it.
Integration guide →
5
MSA signed for production scale
Sign the Master Service Agreement to remove Starter tier limits.
Request MSA →
API activity log
Production call history
Last 25 calls · real-time
No production calls yet
Open the API sandbox to test your endpoints, then make your first live call using your key above.
Fiduciary Verified Badge
Optional · Free
Display a verified trust mark on your website. Visitors can click it to verify your institution's registration and BSP compliance coverage in real time.