Authentication 

Our API uses a standard HTTP Authorization header. This protects your account and the data within it so only you and SEON can access them. 

You must provide authentication for all API requests using the following format: 
X-API-KEY: [licensekey]

Error Details

In case of problems with the API request payload or authentication, SEON returns specific error codes in the error property of the response body. You should be able to understand the exact issue based on the returned error codes. 

For a detailed list of error codes, please check the API Reference - Error codes.

Rate Limits

Rate limits are in place to prevent misuse and overloading of our systems. The limit takes into account all requests with a specific license key, not individual API requests.

For trial accounts, there is a 2 request/second limit, and after the trial period, this limit increases to 10 requests/second. 

Please get in touch with our support team in case you wish to increase your rate limit.

Timeout logic

We recommend that all client integration codes should be able to cope with timeout responses on their end. 

If a response, either success or error, is not returned within the Timeout settings for the Email/Phone API request then we recommend that the client should accept the transaction by default. The transaction should only be blocked if a response is received from SEON with a state or score trigger indicating that this action should occur. For further information please refer to our whitepaper on dealing with high scores and states.

Webhooks let you set up connections between third party platforms or apps with real time information regarding certain events. When one of those events is triggered, we’ll send a HTTP POST request with JSON payload to the configured webhook URL.

• You can set up the events and webhook URLs in the Admin Panel of your Settings page.

Available events

Update 2021-03-24

New admin features

• Advanced rule management implemented with the ability to duplicate, activate, deactivate multiple rules and copy them from or to your Sandbox account (Scoring Engine).
• Cardholder full name added to Customer connections (Transaction details page / Customer connections).

Update 2021-02-25

New admin features

• Ability to exclude users from rules based on User ID, Email address, Card hash and IP address (Scoring Engine, Customer details and Transaction details page).
• Case-insensitivity added to additional rule parameter settings in Compare and Data match type rules (Scoring Engine).

Service changes

• Optional case-insensitivity in Compare and Data match type rules.

Update 2021-02-17

New admin features

• If condition option added for all aggregates in velocity rules (Scoring Engine).
• Add applied rules to Velocity IF conditions (Scoring Engine).
• Phone score added to Compare rules (Scoring Engine).
• Email score, IP score, Phone score added to Velocity rule Present field and Past field options (Scoring Engine).
• Compare to current value and Compare to historical value options added for velocity conditions (Scoring Engine).
• Advanced time frame option added to Velocity rules to calculate on past time frames (Scoring Engine).
• Comparison of two time frames added to Velocity rules (Scoring Engine).
• Phone country, Item store country, Merchant country, Receiver full name, Item custom fields added to Data match rules (Scoring Engine).
• Enforce two-factor authentication (2FA) for all users option added (Settings page).
• Export function (CSV) added for logs (Logs page).
• Team Activity widget on the Dashboard is now restricted to read permission for logs (Team / Role Groups).
• Login with credentials is now disabled for users using Single sign-on (SSO) authentication.
• IP restriction added to settings (Settings page).
• Warning message added for rule parameter limitations (Scoring Engine).

Update 2021-02-05

Service changes

• IP restriction option added to Service.
• Advanced velocity rule features Service side implementation.
• Async Fraud API v2.0 requests support added.
• New endpoint added for Zapier integration.
• Data match rule applying improvements.
• Rule applying backward compatibility added in Fraud API v2.0 for user_dob sent in custom_fields (Equivalent to User date of birth field, user_dob).
• Case insensitive comparison for data match rules containing User full name, Card holder full name, Shipping full name, Receiver full name.

Update 2021-02-01

New admin features

• Single sign-on (SSO) authentication support added to Admin Panel (Settings page).

Update 2021-01-18

Service changes

• Client Certificate support added for the REST Service.

Update 2020-11-13

New admin features

• Custom fields compatibility added to Velocity rules (Scoring Engine).
• Timezone offset compatibility added to data match rules (Scoring Engine).
• COP - Colombian Pesos - added to currencies (Settings page).
• Option to only train Machine Learning on feedback labels added to Settings (Settings page).
• User full name and DOB (User date of birth) added to Customer connections (Transaction details page / Customer connections).
• IP location and Card country added to Addresses widget (Transaction details page).
• Cookie hash, Browser hash, Card hash added to Lists status popup (Transaction details page).
• HLR and CNAM lookups added to manual queries if the functionality is turned on for the account. These requests have additional fees, please contact us for more details. (Manual page).

Update 2020-09-28

Service changes

• Erase API introduced.

Update 2020-09-07

New admin features

• Lists page custom expiration days support added.
• WebGL vendor added to filters.

Update 2020-08-24

Service changes

• Self-Exclusion API DELETE request introduced.

Update 2020-08-13

New admin features

• Manual page added for Intelligence tool users.

Update 2020-06-16

Service changes

• Fraud API v2.0 has been released.
• hlr_details and cnam_lookup optional query string parameters were added to Phone API. Requests with these parameters have additional fees, please contact us for more details.
• custom_fields (formerly used as user_label) support added to Lists.
• Case insensitivity added to user_name, user_fullname, user_city, user_region, user_street values in velocity rules.
• Email Verification API introduced.
• custom_fields (formerly used as user_label), amount_in_eur fields are now supported in velocity rules.

Data field mapping from Fraud API v1.0 to v2.0:

• proxy_score -> ip_details/score
• ip_details/ip_country -> ip_details/country
• ip_details/ip_state_prov -> ip_details/state_prov
• ip_details/ip_city -> ip_details/city
• ip_details/ip_latitude -> ip_details/latitude
• ip_details/ip_longitude -> ip_details/longitude
• ip_details/ip_isp_name -> ip_details/isp_name
• ip_details/ip_timezone_offset -> ip_details/timezone_offset
• email_details/email_score -> email_details/score
• email_details/email_exists -> email_details/deliverable
• email_details/disposable -> email_details/domain_details/disposable
• email_details/free -> email_details/domain_details/free
• email_details/domain_exists -> email_details/domain_details/website_exists
• email_details/email_domain_details -> email_details/domain_details
• email_details/email_domain_details/domain -> email_details/domain_details/domain
• email_details/email_domain_details/suffix -> email_details/domain_details/tld
• email_details/email_domain_details/created -> email_details/domain_details/created
• email_details/email_domain_details/updated -> email_details/domain_details/updated
• email_details/email_domain_details/registered -> email_details/domain_details/registered
• email_details/email_account_details -> email_details/account_details
• email_details/email_account_details/facebook_exists -> email_details/account_details/facebook/registered
• email_details/email_account_details/facebook_profile -> email_details/account_details/facebook/url
• email_details/email_account_details/facebook_name -> email_details/account_details/facebook/name
• email_details/email_account_details/facebook_photo -> email_details/account_details/facebook/photo
• email_details/email_account_details/google_exists -> email_details/account_details/google/registered
• email_details/email_account_details/google_profile -> removed
• email_details/email_account_details/google_name -> removed
• email_details/email_account_details/google_photo -> email_details/account_details/google/photo
• email_details/email_account_details/apple_exists -> email_details/account_details/apple/registered
• email_details/email_account_details/twitter_exists -> email_details/account_details/twitter/registered
• email_details/email_account_details/microsoft_exists -> email_details/account_details/microsoft/registered
• email_details/email_account_details/yahoo_exists -> email_details/account_details/yahoo/registered
• email_details/email_account_details/ebay_exists -> email_details/account_details/ebay/registered
• email_details/email_account_details/gravatar_exists -> email_details/account_details/gravatar/registered
• email_details/email_account_details/instagram_exists -> email_details/account_details/instagram/registered
• email_details/email_account_details/spotify_exists -> email_details/account_details/spotify/registered
• email_details/email_account_details/tumblr_exists -> email_details/account_details/tumblr/registered
• email_details/email_account_details/linkedin_exists -> email_details/account_details/linkedin/registered
• email_details/email_account_details/weibo_exists -> email_details/account_details/weibo/registered
• email_details/email_account_details/vk_exists -> removed
• email_details/email_account_details/haveibeenpwned_exists -> email_details/breach_details/haveibeenpwned_listed
• email_details/email_account_details/number_of_breaches -> email_details/breach_details/number_of_breaches
• email_details/email_account_details/first_breach -> email_details/breach_details/first_breach
• phone_details/phone_number -> phone_details/number
• phone_details/phone_is_valid -> phone_details/valid
• phone_details/phone_is_possible -> removed
• phone_details/phone_type -> phone_details/type
• phone_details/phone_country -> phone_details/country
• phone_details/phone_carrier -> phone_details/carrier

Update 2020-04-08

Service changes

• flags_timeframe_days, exclude, timeout query string parameters added to Email API, Phone API and IP API.
• Username - User full name and Email - User full name similarity calculation updated in Compare rules.
• Email, user name, user address hash similarity support added to Velocity rules.
• user_label field support added to data match rules.

Update 2020-02-17

New admin features

• Phone number flagging support added to Phone widget.
• Dropdown selector added for Device type and IP type (Scoring Engine, Filters).
• Custom URLs is now recognised as links on widgets (User labels, Order details / Details URL).
• Self exclusion rules moved into a separate Exclude rules category.

Update 2020-01-13

New admin features

• State conflict settings added (Settings page).
• Batch test maximum number of records increased to 30 000 (Manual Page / Batch Test).
• Phone API runner added to Phone widget (Transaction details page / Customer details page).
• IP and Phone widget updated (Transaction details page / Customer details page).
• Action type, Phone type, IP timezone offset, Timezone offset filters improved (Transactions / Filters, Customers / Filters)
• Public proxy, VPN data fields added to Scoring Engine (Scoring Engine).
• Phone API v1.0 data fields added to Scoring Engine (Scoring Engine).
• Bulk selection added to Activity (Transaction details page / Activity).
• Card country code data field renamed to Card country, Card country removed from Admin Panel (All pages).

Update 2019-11-22

New admin features

• Phone API statistics added to user menu and Billing Details (Billing Details).
• Transaction list export limit increased to 30 000 records (Transactions / Exports).
• Quick filter for address hashes added (Transaction details page).

Update 2019-11-13

Service changes

• IP API v1.0 added to Service.
• Optional query string parameters added to Phone API and IP API.

Update 2019-10-30

New admin features

• Applied rule notification added (My Account / Notifications).
• Modify score by velocity value function added to Scoring Engine (Scoring Engine).
• Multiple distinct values support added to Velocity rules (Scoring Engine).
• Additional ordering added to New risky transactions (Workbench / New Risky Transactions).
• Warning added if session arrived later than the transaction (Transaction details page).
• Rule tester accuracy calculation improved (Rule edit page).
• View on Google link removed from Email widget, since Google+ was shut down (Transaction details page).
• Deleted rules got labelled on Applied Rule Statistics (Scoring Engine / Dashboard).
• Separate user id sequencing for customers added (Team).

Update 2019-10-18

Service changes

• Phone API v1.0 added to Service.

Update 2019-10-09

New admin features

• Scoring Engine page updated. Rule categorizing and filtering added, new Applied Rule Statistics widget introduced on Scoring Engine Dashboard (Scoring Engine).
• Default rule configuration added to Scoring Engine (Scoring Engine / Default Rules).

Update 2019-09-30

Service changes

• Multiply and divide functions removed from Scoring Engine.
• Modify score by velocity value function added.
• Multiple distinct values support added to Velocity rules.
• Phone number input validation added.
• Using Domain update date when Domain creation date not available.

Update 2019-09-10

Service changes

• Default rules got configurable.
• Missing user_id generated from user_name or email address.
• Separate rule id sequencing for customers added.
• Lowercase country code support added.
• API request field length validation added. The maximum length of all request parameters is 100 characters, except 64 characters for session_id.

Update 2019-08-15

New admin features

• Previous months view added to Billing Details page (Billing Details).
• Merchants page added (Merchants).
• New device fingerprinting fields added to Admin Panel, device widget updated.
• New action types added to Filters, Scoring Engine.
• Previously sent User label field options added to Filters, Scoring Engine.
• Canceled invoices got highlighted (Billing Details).
• Optional payment mode statistics added to Dashboard.
• Currency dropdown added to Filters, Scoring Engine.
• Sandbox restriction added to user options (Team).
• Hiding all email_account_details information on Admin Panel optionally.
• Public keys added to profile information (My Account page).

Update 2019-08-05

Machine learning changes

• ML rule names converted to human-readable format.

Update 2019-07-26

Service changes

• Hiding email_account_details optionally.
• Gift (boolean) and Gift message (boolean) input fields validation added to Service.

Update 2019-07-19

Machine learning changes

• New device fingerprinting fields added to Machine learning algorithm.

Update 2019-07-11

Service changes

• New device fingerprinting fields added to Scoring Engine.

Update 2019-06-21

Service changes

• Does not contain operator added to Compare rules.
• New action types added to service: add_item_to_cart, remove_item_from_cart, add_promotion, create_content, account_logout, submit_Review, update_content, verification
• Count current transaction option added to Scoring Engine.

New admin features

• Count current transaction option added to Velocity and User behavior rules (Scoring Engine).

Update 2019-06-13

New admin features

• Sandbox environment option implemented.
• Notification enabled for all user types.

Update 2019-05-16

Service changes

• Percentage comparison added to Scoring Engine.

New admin features

• Percentage comparison added to Velocity rules (Scoring Engine).

Update 2019-05-10

New admin features

• Manual page UI updated (Manual page).
• Team activity widget added to Dashboard (Dashboard).
• LinkedIn profile link added to Email widget (Transaction details page).
• Ability to add multiple billing emails (Billing details page).

Update 2019-04-25

New admin features

• Exclude customer feature added (Transaction details page).
• Logging extended with direct links (Logs page).

Update 2019-03-29

New admin features

• Workbench page added.
• New supported currencies: KZT, VND, BYN, UAH, AZN, BTC, ETH, BCH, XRP, LTC, USDT.

Update 2019-03-18

New admin features

• Separate commenting added to Notes widget (Transaction details page).

Update 2019-02-14

New admin features

• New data field added to Scoring Engine called “Missing device details” (Scoring Engine).
• Profile pictures added to team members (Team).
• Affected transactions and affected amount added to machine learning complex rules (Scoring Engine / Machine learning).

Update 2019-01-24

New admin features

• Role groups added to Team with customizable roles and permissions (Team / Role groups).
• Readable names and numbering added to user devices (Activity tab).
• Dropdown selector added to country data fields (Transactions / Filters, Scoring Engine).

Update 2018-12-21

Service changes

• Count of numbers and count of numbers in a row added to email handle / username analysis.
• Disposable email check for subdomains.

New admin features

• Quick search added to transaction list (Transactions page).
• Readable names and numbering added to user devices in Devices & OS widget (Transaction details page).
• Count of numbers and count of numbers in a row in email handle / username added to filters (Transactions page).
• Count of numbers and count of numbers in a row in email handle / username added to Scoring Engine (Scoring Engine).

Update 2018-11-20

Service changes

• Turn on machine learning rules over a certain accuracy.

New admin features

• Filters for machine learning rules (Scoring Engine / Machine learning).
• Set accuracy to auto deploy machine learning rules (Settings page).
• State change with label selection (Transactions page).
• First seen value added to Identity widget (Transaction details page).
• Machine learning rule details design update (Scoring Engine / Machine learning).

Update 2018-10-15

New admin features

• User specific notification settings (My account / Notifications).
• Base currency added to every currency dropdown.

Update 2018-09-25

Service changes

• Default IP expiration time added to service.

New admin features

• Email handle / username analysis added to widgets (Transaction details page).
• Email handle / username analysis added to filters (Transactions page).
• Action type, rule type filter added to machine learning rules (Scoring Engine / Machine learning).
• Rule export functionality added (Scoring Engine).

Update 2018-09-14

Service changes

• Lists API added to service. It is able to blacklist/normal/whitelist all data fields.
• Email handle, username, full name similarity and analysis added to Scoring Engine.
• JavaScript boolean field removed from request. No longer needed in requests. Backward compatibility provided.

New admin features

• Email handle, username, full name similarity and analysis added to Filters (Transactions / Filters).
• Base currency added to currency selectors.

Update 2018-09-04

Service changes

• VKontakte added to Email API response and Scoring Engine.

New admin features

• Email handle, username, full name similarity and analysis added to widgets (Transaction details page).
• VKontakte result added to Email widget (Transaction details page).
• VKontakte added to Scoring Engine (Scoring Engine / Rule).

Update 2018-08-07

Service changes

• Automatic billing implemented.
• Automatic boarding process implemented.
• New fields added to Scoring Engine: Shipping method, Discount code, IP latitude, IP longitude, Card issuer, Card country, Phone possible, Email exists, Email disposable, Email free, Have I been pwned? exists, Data breaches, First breach, Domain suffix, Domain registered, Domain creation date, Domain updated, Tor, HTTP proxy, Web proxy, Open ports, IP blacklist names, IP blacklist number, Datacenters, Plugin names, Logged in social sites, DNS IP Country, DNS IP ISP, WebRTC count, Transaction amount (exchanged).

New admin features

• Rule history added to Scoring Engine (Scoring Engine / Rule).
• Currency selector added to statistics (Transactions / Statistics).
• Locale settings added to format dates and numbers (Settings page).
• Billing details added to Admin Panel (Billing page).

Update 2018-06-15

Service changes

• Transaction amounts are now saved in the account’s default currency too.

New admin features

• Ability to modify list columns (Transactions page).
• Set default currency for the admin interface (Settings page).
• Filter for exchanged transaction amount based on the default currency (Transactions page).

Update 2018-06-01

Service changes

• Heuristic rules inspect all data fields.
• Automatically turn on heuristic rules over a certain accuracy.

New admin features

• Instant Google search added to Email widget (Transaction details page).
• Downloadable User Guide and Product Features documents added to support page (Support page).

Update 2018-04-26

Service changes

• Ability to label multiple transactions at the same time.

New admin features

• Ability to turn off flagging feature (Settings page).
• Airline specific widgets added to Transaction details page (Transaction details page).
• Action type filtering added to rule list (Scoring Engine / Custom rules).
• Transaction list page update with viewed, not-viewed-yet sign (Transactions page).
• Registration score added to Identity widget (Transaction details page).

Update 2018-04-10

Service changes

• Machine learning rule generation added to Scoring Engine.
• Automatic flagging option for blacklisted values.
• The ‘ip_connection_type’ attribute was removed from API response.

New admin features

• Rule tester added to Rule editor (Scoring Engine / Rule).
• Auto flag blacklisted values option added (Settings page).
• Admin Panel tutorial added (Tutorial menu).
• Multiple row selection added (Transactions, Customers, Rules)

Update 2018-03-20

Service changes

• “type” attribute added to device_details Object. If the request is sent through one of our SDKs, the device_details object changes accordingly.
• Heuristic rules added to Scoring Engine.
• Flagged values added to Scoring Engine.
• Scoring Engine compare type rules now can handle IP ranges.

New admin features

• New “Raw data” tab added in order to inspect API requests and responses (Transaction Detials page).
• Customer Connections multiple datapoint selection added (Transaction Details page).
• Machine learning settings added in order to set bad and negative labels and heuristic rule data points (Settings page).
• Machine learning tab added to scoring engine (Scoring Engine page).

Update 2018-02-28

Service changes

• Flagging feature added.

New admin features

• Email address, IP address and Browser Hash can be flagged from the Admin Panel (Transaction Detials page).
• Flagged as suspicious page added (Lists page).

Update 2018-02-09

Service changes

• IPv6 support added to Fraud and Proxy API.

New admin features

• Blacklist page filter added (Lists page).
• Quick filter added to blacklist page (Lists page).
• Customer Status widget impoved with comments and expiration date options (Transaction Detials page).
• Lockable filters to transaction and customer filtering (Transaction page, Customers page).

Update 2017-11-20

Service changes

• The way of authentication has been changed, from now on header authentication is used. Our deprecated version of authentication (POST payload) is also available until 28th of February 2018.
• js_ip, js_ip_country, js_ip_isp has been added to device_details in Fraud API response. JS IP is the user’s IP address where the session data is coming from.

Update 2017-11-09

Service changes

• Added support for blacklisting/whitelisting multiple user ID-s with one API request.
• Since Yahoo no longer supports creation date information, we removed the attribute from our API response.
• Weibo has been added to our Email API.
• Device timezone format has been changed in our API response (“timezone”: “+2:00”).
• The fraud_score, email_score and proxy_score format has changed to number in our API response.

New admin features

• Quick blacklisting/whitelisting in the new Customer status pop-up (Transaction Detials page).
• Applied velocity rule details can be seen in the Applied rules widget (Transaction Detials page).
• Filtering tool has been updated (Transactions).

Update 2017-10-06

API request changes

• From now on you can call our Fraud API’s label parameters with: “true”, true, 1, “1”, false, “false”,0,“0”. Parameters: label_email, label_address, label_fingerprints, label_ip, label_phone.

Data point name changes

• fonts_as_string -> font_names
• logged_in_social_sites -> social_sites

Response format changes

• webrtc_ips, logged_in_social_sites, social_sites are now in JSON format.

Device details timezone

• Device Fingerprinting: Released version v2.0 of our agent JS / Device Fingerprint modul, extended with browser based social media data.

New admin features

• Email notification option from now allows you to notify you in certain events (My account / Notifications).
• Scoring Engine update with new grouping, AND/OR operators function (Scoring Engine).
• Instant chat support (Every page bottom right corner).
• Webhook function for transaction state changes (Settings / Webhook settings).
• New customer status widget for better data point blacklisting (Transaction Details page).
• Qucik filter button added to every data point for faster search (Transaction Details page).

New config object for Fraud API

• run_email_api field in input is deprecated for v2.0, Email API should be set in config object (set email_api: true).
• IP API won’t be executed by default, need to set explicitly in config object. (set ip_api: true).
• Device fingerprint won’t be enabled by default, need to set explicitly in config object. (set device_fingerprinting: true).
• Phone API is supported for Fraud API. (set phone_api: true).

Session Handling

• Instead of the session_id you need to send the encrypted payload returned by the SDK (supported by JS Agent v4, iOS SDK 3.0.0, Android SDK 3.0.0). The session_id parameter is still required for the configuration, the change affects the data that you need to send in the Fraud API request related to the Device Fingerprint module.
• The previous SDK versions are still supported with the session_id field, but we highly recommend to migrate the Device Fingerprint module.
• The public key is no longer necessary with the latest SDK versions.
• You must set device_fingerprinting: true in the config object to enable the feature.

Keep in mind the following input fields were renamed in Fraud API v2.0:

• user_label -> custom_fields
• item_user_label -> item_custom_fields
• user_order_memo -> order_memo

Response changes: Please find the full data field mapping from Fraud API v1.0 to v2.0 here.

device_details Object with iOS SDK v1.0

JSON Attributes	Type	Expand all
type	string
session_id	string
device_udid	string
ios_version	string
ip_address	string
app_platform_type	string
device_adid	string
wifi_mac_address	string
network_config	string
battery_level	string
device_orientation	string
file_system_size	string
physical_memory	string
cpu_type	string
cpu_count	integer
cpu_speed	string
accessories_number	string
has_proximity_sensor	boolean
screen_brightness	string
screen_resolution	string
ios_device_name	string
kernel_version	string
icloud_ubiquity_token	string
local_language	string
currency_code	string
system_uptime	string

device_details Object with Android SDK v1.0

JSON Attributes	Type	Expand all
type	string
device_id	string
android_id	string
device_name	string
build_id	string
build_device	string
build_manufacture	string
build_time	date
network_name	string
is_plugged_in	boolean
android_version	string
build_number	string
kernel_version	string
locale_country_code	string
wifi_mac_address	string
session_id	string
cpu_type	string
cpu_count	integer
cpu_speed	string
cpu_hash	string
system_uptime	time
ip_address	string
has_proximity_sensor	boolean
physical_memory	string
locale_language	string