Overview
StablePay provides a complete KYC solution that verifies user identity and bank account ownership. This guide explains the verification flow.
KYC Requirements
Before users can receive INR payouts, they must complete:
| Verification | Required | Purpose |
|---|
| Aadhaar (DigiLocker) | Yes | Government ID, address proof |
| PAN | Yes | Tax identity, name verification |
| Bank Account | Yes | Payout destination verification |
| Face Liveness | Yes | Anti-fraud, identity confirmation |
| UPI | No (Optional) | Alternative payout verification |
Verification Flow
Use our KYC APIs to build a custom verification experience in your application.
Step 1: Aadhaar via DigiLocker (Required)
curl -X POST https://api.stablepay.global/v2/users/{userId}/kyc/digilocker/init \
-H "Authorization: Bearer YOUR_API_KEY"
{
"success": true,
"data": {
"redirectUrl": "https://digilocker-sdk.surepass.io/...",
"sessionId": "dgl_abc123",
"expiresAt": "2025-01-05T10:30:00Z"
}
}
curl https://api.stablepay.global/v2/users/{userId}/kyc/digilocker/status \
-H "Authorization: Bearer YOUR_API_KEY"
curl -X POST https://api.stablepay.global/v2/users/{userId}/kyc/pan/verify \
-H "Authorization: Bearer YOUR_API_KEY" \
-H "Content-Type: application/json" \
-d '{"panNumber": "ABCDE1234F"}'
curl -X POST https://api.stablepay.global/v2/users/{userId}/kyc/bank/verify \
-H "Authorization: Bearer YOUR_API_KEY" \
-H "Content-Type: application/json" \
-d '{
"accountNumber": "1234567890",
"ifsc": "HDFC0001234",
"accountHolderName": "Rahul Kumar"
}'
curl -X POST https://api.stablepay.global/v2/users/{userId}/kyc/face/init \
-H "Authorization: Bearer YOUR_API_KEY"
{
"success": true,
"data": {
"sessionId": "face_session_123",
"url": "https://kyc-sdk.surepass.io/face-liveness?token=...",
"expiresIn": 600
}
}
curl -X POST https://api.stablepay.global/v2/users/{userId}/kyc/upi/verify \
-H "Authorization: Bearer YOUR_API_KEY" \
-H "Content-Type: application/json" \
-d '{"upiId": "rahul.kumar@upi"}'
KYC Status
Check KYC status at any time:
curl https://api.stablepay.global/v2/users/{userId} \
-H "Authorization: Bearer YOUR_API_KEY"
{
"success": true,
"data": {
"user": {
"id": "usr_abc123",
"name": "Rahul Kumar"
},
"kyc": {
"level": "verified",
"status": "verified",
"pan": {
"verified": true,
"verifiedAt": "2025-01-05T10:00:00Z",
"maskedNumber": "XXXX1234F"
},
"aadhaar": {
"verified": true,
"verifiedAt": "2025-01-05T10:05:00Z",
"maskedNumber": "XXXX XXXX 1234"
},
"face": {
"verified": true,
"verifiedAt": "2025-01-05T10:07:00Z"
},
"bank": {
"verified": true,
"verifiedAt": "2025-01-05T10:10:00Z",
"ifsc": "HDFC0001234",
"bankName": "HDFC Bank"
}
}
}
}
KYC Status Values
| Status | Meaning |
|---|
pending | No verification started |
in_progress | At least one verification completed |
verified | All required verifications complete |
failed | Verification failed (fraud/mismatch) |
KYC Levels
| Level | Requirements | Can Transact |
|---|
none | No verification completed | No |
basic | Aadhaar (DigiLocker) + PAN + Bank | Yes |
enhanced | Basic + Face Liveness + UPI (reserved for future) | Yes |
Name Matching
We perform fuzzy name matching across all documents:
- PAN name vs Aadhaar name
- Aadhaar name vs Bank account name
- Minimum 80% match required
Transactions will fail if bank account name doesn’t match KYC name.
Error Handling
Common KYC errors:
| Error Code | Description | Resolution |
|---|
PAN_INVALID | Invalid PAN format | Check 10-character alphanumeric format |
PAN_NOT_FOUND | PAN not in government DB | Verify PAN is active |
AADHAAR_OTP_EXPIRED | DigiLocker session expired | Restart Aadhaar flow |
BANK_PENNY_DROP_FAILED | Bank transfer failed | Check account number/IFSC |
NAME_MISMATCH | Names don’t match | Contact support |
Webhooks
You’ll receive webhooks for KYC status changes:
{
"event": "user.kyc_updated",
"timestamp": "2025-01-05T10:15:00Z",
"data": {
"userId": "usr_abc123",
"kyc": {
"level": "basic",
"status": "verified"
}
}
}
