Customer Management

Create and manage customer records for your organisation. Customers are the end-users you want to perform identity verification, KYC checks, or process payments for.

?? REQUIRES TENANT KEY: Customer endpoints require a tenant-scoped API key with customer permissions. Merchant keys (from the TrustistTransfer app) will not work. Contact Trustist support to request a tenant key.

Overview

Customers are the foundation of your integration with Trustist. Each customer record:

Belongs to your tenant (organisation)
Has a unique ID in ShortGuid format (e.g., 3kTp9j2mN5xR)
Can be associated with multiple onboard sessions and payments
Stores basic personal information (name, address, date of birth)
Can be filtered by optional organisational ID for multi-branch setups

Customer Lifecycle

Typical Customer Journey

Create - Customer record created during signup
Verify - One or more onboard sessions to verify identity/link bank accounts
Transact - Process payments on behalf of the customer
Update - Update customer details as needed (future)
Retrieve - Query customer information at any time

Endpoints

Create a Customer

POST /v1/customers

Required Permissions: create_customer

Request Body

Field	Type	Required	Description
`firstName`	string	Yes*	Customer's first name
`lastName`	string	Yes*	Customer's last name
`emailAddress`	string	Yes	Customer's email address (required for identity verification)
`dateOfBirth`	string	No	ISO date format (YYYY-MM-DD), recommended for identity verification
`address`	object	No	Customer's address (see Address structure below)
`orgId`	string	No	Your internal organisation/branch identifier for filtering

* At least one of firstName or lastName must be provided

Address Structure

Field	Type	Description
`addressLine1`	string	First line of address
`addressLine2`	string	Second line of address (optional)
`city`	string	City or town
`postalCode`	string	Postal/ZIP code
`country`	string	ISO 3166-1 alpha-2 country code (e.g., "GB", "US")

Example Request

{
  "firstName": "Sarah",
  "lastName": "Johnson",
  "emailAddress": "[email protected]",
  "dateOfBirth": "1985-03-15",
  "address": {
    "addressLine1": "123 High Street",
    "addressLine2": "Flat 4B",
    "city": "London",
    "postalCode": "SW1A 1AA",
    "country": "GB"
  },
  "orgId": "branch-001"
}

Example Response

{
  "id": "3kTp9j2mN5xR",
  "tenantId": "a1b2c3d4-e5f6-7890-abcd-ef1234567890",
  "firstName": "Sarah",
  "lastName": "Johnson",
  "emailAddress": "[email protected]",
  "dateOfBirth": "1985-03-15",
  "address": {
    "addressLine1": "123 High Street",
    "addressLine2": "Flat 4B",
    "city": "London",
    "postalCode": "SW1A 1AA",
    "country": "GB"
  },
  "orgId": "branch-001",
  "created": "2025-01-21T14:30:00Z",
  "lastUpdated": "2025-01-21T14:30:00Z"
}

?? ShortGuid Format: The id field uses ShortGuid format, which is a URL-safe base64 encoded GUID. This format is shorter and more readable than standard GUIDs while maintaining uniqueness.

Get a Customer

GET /v1/customers/{id}

Required Permissions: read_customers

Parameters

Parameter	Type	Description
`id`	string	Customer ID (ShortGuid or standard GUID format)

Example Request

GET /v1/customers/3kTp9j2mN5xR
Authorization: HMAC-SHA256 Credential=YOUR_KEY_ID, Signature=...

Example Response

{
  "id": "3kTp9j2mN5xR",
  "tenantId": "a1b2c3d4-e5f6-7890-abcd-ef1234567890",
  "firstName": "Sarah",
  "lastName": "Johnson",
  "emailAddress": "[email protected]",
  "dateOfBirth": "1985-03-15",
  "address": {
    "addressLine1": "123 High Street",
    "addressLine2": "Flat 4B",
    "city": "London",
    "postalCode": "SW1A 1AA",
    "country": "GB"
  },
  "orgId": "branch-001",
  "created": "2025-01-21T14:30:00Z",
  "lastUpdated": "2025-01-21T14:30:00Z"
}

Common Use Cases

1. E-Commerce Customer Signup

// Customer registers for your e-commerce site
const customer = await createCustomer({
  firstName: "John",
  lastName: "Smith",
  emailAddress: "[email protected]",
  address: {
    addressLine1: "456 Main St",
    city: "Manchester",
    postalCode: "M1 1AA",
    country: "GB"
  }
});

// Store customer.id in your database linked to your user account
await db.users.update(userId, { trustistCustomerId: customer.id });

// Later, create payments for this customer
const payment = await createPayment({
  customerId: customer.id,
  amount: 99.99,
  reference: `ORDER-${orderId}`
});

2. Financial Service Onboarding

// Create customer during signup
var customerRequest = new TrustistEcommerceCustomerCreateRequest
{
    FirstName = signupForm.FirstName,
    LastName = signupForm.LastName,
    EmailAddress = signupForm.Email,
    DateOfBirth = signupForm.DateOfBirth,
    Address = new TrustistEcommerceCustomerAddress
    {
        AddressLine1 = signupForm.AddressLine1,
        City = signupForm.City,
        PostalCode = signupForm.PostalCode,
        Country = "GB"
    }
};

var customer = await teClient.Customers.CreateAsync(customerRequest);

// Immediately start identity verification
var sessionRequest = new EcommerceOnboardSessionCreateRequest
{
    CustomerId = customer.Id,
    Options = new EcommerceOnboardSessionOptions
    {
        Identity = new EcommerceIdentityOptions
        {
            IdentityCheck = true,
            AmlExtensiveScreening = true
        },
        Ais = new EcommerceAisOptions
        {
            Balances = true,
            AccountLimit = 1
        }
    }
};

var session = await CreateOnboardSessionAsync(sessionRequest);
// Redirect user to session.OnboardUrl

3. Multi-Branch Organisation

// Branch A creates customer
{
  "firstName": "Alice",
  "lastName": "Brown",
  "emailAddress": "[email protected]",
  "orgId": "branch-london"
}

// Branch B creates customer
{
  "firstName": "Bob",
  "lastName": "Green",
  "emailAddress": "[email protected]",
  "orgId": "branch-manchester"
}

// Later, query customers by orgId
GET /v1/customers?orgId=branch-london

Best Practices

Store Customer IDs: Always store the returned id in your database linked to your user account. This allows you to reuse the customer record for multiple payments/sessions.
Provide Complete Information: Include as much information as possible (especially address and date of birth) for better identity verification results.
Use Org IDs for Multi-Branch: If you have multiple branches or organisations, use orgId to filter and segment customers.
Handle Duplicates: Check your own database before creating customers to avoid duplicates. Trustist does not prevent duplicate customer records.
Email for Notifications: Provide emailAddress to enable email notifications for verification sessions and payment receipts.

Error Responses

Status Code	Error	Description
`400 Bad Request`	Missing required fields	At least one of firstName or lastName must be provided
`400 Bad Request`	email_required	Email address is required
`401 Unauthorized`	Invalid API key	API key is missing, invalid, or missing tenant context
`403 Forbidden`	Insufficient permissions	API key does not have `create_customer` or `read_customers` permission
`404 Not Found`	Customer not found	Customer with specified ID does not exist or belongs to different tenant

Next Steps

Create Onboard Sessions to verify customer identity and link bank accounts
Follow the Quick Start guide for a complete integration workflow
View the API Reference for detailed endpoint documentation