Rate Limiting
Designed to keep your integrations smooth, secure, and scalable.
Our API is designed to be flexible and support high-volume applications. We do not use a traditional rate limit based on a specific number of requests per minute or hour. Instead, our system focuses on managing concurrency and ensuring platform stability and security.
Please review the following guidelines to ensure a smooth integration.
Rate Limit Summary
| Resource | Limit | Notes |
|---|---|---|
| General API calls | No request-per-minute limit | Governed by the simultaneous connection limit. |
| Simultaneous Connections | ~ Several hundred | Action: Contact us to whitelist your static IP for high-burst traffic. |
| Payment Declines | 30 per day | Action: Contact your account manager to request an increase. |
| Payment Link Creation | 100 per 5 minutes | This limit is fixed and cannot be changed. |
Simultaneous Connections
The primary factor governing your API access is the number of simultaneous (or concurrent) connections. A simultaneous connection is an API request that has been sent to our servers and is still awaiting a response.
While you can make thousands of requests sequentially, sending an excessive number of requests at the exact same moment (e.g., hundreds of asynchronous calls in a burst) can trigger our automated security protocols.
- Throttling: If excessive concurrent connections are detected, your API requests will be slowed down.
- Shunning (IP Blocking): If the high volume continues, your IP address may be temporarily blocked from making further requests. You will likely receive an HTTP
429 Too Many Requestsstatus code.
High-Volume Traffic & IP Whitelisting
If your application is expected to generate high-burst traffic or requires more than a couple hundred concurrent open connections, we strongly recommend whitelisting your static IP address(es).
Whitelisting prevents your legitimate traffic from being flagged as malicious and ensures smooth, uninterrupted service. Please contact your account manager or our support team to initiate the whitelisting process.
Endpoint-Specific Limits
Certain endpoints have their own specific limits related to business logic and security. These operate independently of the simultaneous connection limit.
Payment Decline Limit
To prevent fraudulent activity like card testing, our payment processing endpoints have a default limit on failed transactions.
- Limit: 30 declined transactions per day.
- To request an increase to this limit, please contact your account manager.
Payment Link Creation Limit
The endpoint for creating payment links (/link2pay) has a fixed rate limit to ensure security and performance.
- Limit: 100 requests per 5-minute interval.
- Note: For security reasons, this limit is fixed and cannot be increased.
Updated 26 days ago