For AI agents: a documentation index is available at the root level at /llms.txt and /llms-full.txt. Append /llms.txt to any URL for a page-level index, or .md for the markdown version of any page.
Dashboard
GuidesAPI ReferenceSDKs
GuidesAPI ReferenceSDKs
  • Get Started
    • Overview and Solutions
    • Choose an Integration
    • Quickstart
    • Branding Guidelines
    • Get Support
  • Accept Payments
    • Instant Payments
    • Trustly Pay
    • Recurring Payments
    • Scan and Pay
    • Remember Me
    • Payment Integration Checklist
  • Send Money
    • Send Payouts Using Online Banking
    • Send Payouts Using Account Information
    • International Transfers
  • Retrieve Data
    • Verify Accounts Using Online Banking
    • Verify Accounts Using Micro-Deposits
    • Retrieve Bank and User Information
    • Tokenize Bank Information
    • Trustly ID
    • Insights Data
  • Core Concepts
    • Key Concepts
    • The Establish Data Object
    • Transactions and Transaction IDs
    • Tokens and Account Security
    • Redirect URLs and Return Flow
    • Webhooks and Events
    • Content Strings
  • API Fundamentals
    • Authentication and OAuth
    • Secure Requests and Signature Validation
    • Idempotency
    • Testing
    • Status codes and type definitions
  • Manage Your Integration
    • Go-Live Checklist
    • Merchant Portal
    • Reports and Reconciliation
    • Refresh Bank Authorization
    • Override Risk Declines
    • VIP Tiers
    • Financial Institution Status
Dashboard
Products
PaymentsDataPayouts
Company
AboutCareersContact Sales

Terms of Use | Privacy Policy | © 2026 Trustly, Inc.

Developer-friendly docs for your API
GitHub|Contact Support|Business Help Center|Merchant Portal
Terms of Use|Privacy Policy|© 2026 Trustly, Inc.
Developer-friendly docs for your API
LogoLogo
North AmericaEurope
North AmericaEurope
On this page
  • Tokenization workflow
  • Initiate a tokenization request
  • Request example
  • Understand the response
  • Response example
  • Error and score definitions
Retrieve Data

Tokenize bank information

|View as Markdown|Open in Claude|
Was this page helpful?
Previous

Retrieve bank and user information

Next

Verify identity with Trustly ID

Built with

Use tokenization to securely convert your customer’s sensitive Automated Clearing House (ACH) bank information (routing and account numbers) into a unique, non-sensitive token.

This is the recommended approach for storing payment details. Tokenization helps you comply with National Automated Clearing House Association (NACHA) account validation requirements and significantly reduces the need to store sensitive data, lowering your compliance burden.

After Trustly tokenizes an account, you use the resulting token for all future payments and verification checks.

To tokenize an account, you complete the following actions:

  • Data collection: Collect the customer’s Account Number and Routing Number in your user interface.
  • Data transfer: Pass the sensitive data to the POST /accounts/tokenize endpoint. You can optionally include verifyAccount=true to validate the account simultaneously.
  • Account tokenization: Trustly tokenizes the account and performs the requested verification check.
  • Token return: Trustly returns a unique account token and any optional verification data in the API response.
  • Token storage: Update your records, store the token and discard the raw, sensitive account numbers.

Tokenization workflow

The following table describes the tokenization workflow steps.

Workflow StepActionDescription
AData collected from CustomerThe customer enters their Account Number and Routing Number into the merchant’s UI.
BPOST /accounts/tokenizeThe Merchant Backend sends the raw ACH data to the Trustly tokenize API endpoint.
CToken returned to MerchantTrustly returns a unique Account Token and optional verification results to the Merchant Backend.
DToken stored / Data discardedThe merchant discards the sensitive ACH data and securely stores the non-sensitive Account Token for future transactions.

Initiate a tokenization request

To initiate a tokenization request, send a POST request to the /accounts/tokenize endpoint with the following required inputs in the request body.

ParameterRequired/OptionalDescription
merchantIdRequiredYour unique Trustly merchant identifier.
account.accountNumberRequiredThe account number entered by the sender.
account.routingNumberRequiredThe routing number entered by the sender.

You can optionally pass in more information, such as customer details, or use the query parameter ?verifyAccount=true to perform account validation. For a full list of request fields, see the Tokenize Account API.

Request example

This example requests tokenization and optional verification (?verifyAccount=true).

1// POST https://{environment}[.trustly.com/api/v1/accounts/tokenize?verifyAccount=true](https://.trustly.com/api/v1/accounts/tokenize?verifyAccount=true)
2
3{
4  "merchantId": "1002463580",
5  "account": {
6    "accountNumber": "123456575",
7    "routingNumber": "124003116",
8    "type": 1
9  }
10}

Understand the response

Upon success, Trustly echoes the information submitted and adds the following key fields:

FieldDescription
tokenThe account token. This is the non-sensitive string you must store for all future payments.
verification.verifiedtrue if Trustly verified the account; false otherwise.
verification.typeThe verification method used. This is 3 (Database) in this use case.
verification.scoreA risk score between 0 and 10.
verification.thirdPartyScoreA third-party risk score between 0 and 999, returned if a third-party service was used for verification.
verification.verificationDateThe date and time Trustly completed or updated the verification.

Response example

1{
2  "account": {
3    "type": 1,
4    "accountNumber": "123456575",
5    "routingNumber": "124003116",
6    "verification": {
7      "verified": false,
8      "type": 3,
9      "score": 4,
10      "thirdPartyScore": 400,
11      "verificationDate": 1556740304129
12    },
13    "token": "K11612346575"
14  }
15}

Error and score definitions

See the Status Codes Reference for score definitions (FCRA and Non-FCRA) and API status and error codes.