Customers
Agents
- GETList agents
- POSTCreate agent (auto-creates virtual card and policy)
- GETGet agent by ID
- DELDelete agent (cascades to card, policy, tokens)
- PATCHUpdate agent
- POSTFund agent card (adds to wallet balance)
- GETGet agent wallet balance and IBAN
- POSTFreeze agent (also freezes card)
- POSTUnfreeze agent (also unfreezes card)
Agent Tokens
Policies
- GETList standalone policies
- POSTCreate standalone policy template
- DELDelete standalone policy (cannot delete agent-bound policies)
- POSTApply a policy template to an agent
- GETGet the effective policy for an agent
- PATCHUpdate agent policy (API key or dashboard only)
- POSTSimulate a spending intent against an agent's policy
Intents
Cards
- GETList all cards across all agents
- GETList cards for an agent
- POSTIssue additional card for an agent
- GETGet sensitive card data (PAN, CVC). Agent tokens must provide intentId.
- POSTFreeze card
- POSTUnfreeze card
- POSTPermanently close card
- POSTRotate card (close old, issue new with same limits)
- PATCHSet card spend limit
- GETGet effective policy summary with spend stats for a card
Checkout
Transactions
Webhooks
Disputes
GDPR
Merchants
Access Events
Export all personal data (DSGVO Art. 15)
Copy
Ask AI
curl --request GET \
--url https://api.getovra.com/gdpr/export \
--header 'Authorization: Bearer <token>'Copy
Ask AI
{
"exportedAt": "2023-11-07T05:31:56Z",
"ownerId": "<string>",
"dataResidency": "<string>",
"agents": [
"<unknown>"
],
"policies": [
"<unknown>"
],
"intents": [
"<unknown>"
],
"transactions": [
"<unknown>"
],
"ledgerEntries": [
"<unknown>"
],
"cards": [
"<unknown>"
],
"apiKeys": [
"<unknown>"
],
"agentTokens": [
"<unknown>"
],
"consent": {
"ownerId": "<string>",
"termsAcceptedAt": "2023-11-07T05:31:56Z",
"privacyAcceptedAt": "2023-11-07T05:31:56Z",
"marketingOptIn": true,
"updatedAt": "2023-11-07T05:31:56Z"
}
}GDPR
Export all personal data (DSGVO Art. 15)
GET
/
gdpr
/
export
Export all personal data (DSGVO Art. 15)
Copy
Ask AI
curl --request GET \
--url https://api.getovra.com/gdpr/export \
--header 'Authorization: Bearer <token>'Copy
Ask AI
{
"exportedAt": "2023-11-07T05:31:56Z",
"ownerId": "<string>",
"dataResidency": "<string>",
"agents": [
"<unknown>"
],
"policies": [
"<unknown>"
],
"intents": [
"<unknown>"
],
"transactions": [
"<unknown>"
],
"ledgerEntries": [
"<unknown>"
],
"cards": [
"<unknown>"
],
"apiKeys": [
"<unknown>"
],
"agentTokens": [
"<unknown>"
],
"consent": {
"ownerId": "<string>",
"termsAcceptedAt": "2023-11-07T05:31:56Z",
"privacyAcceptedAt": "2023-11-07T05:31:56Z",
"marketingOptIn": true,
"updatedAt": "2023-11-07T05:31:56Z"
}
}Authorizations
API key (sk_...) or Agent token (at_...)
⌘I
Assistant
Responses are generated using AI and may contain mistakes.