PAN Verification API Integration - Complete Developer Guide

PAN (Permanent Account Number) verification is a critical component of KYC processes in India. Whether you are building a lending platform, fintech app, or any financial service, verifying PAN details ensures compliance and reduces fraud.

Table of Contents

What is PAN Verification API?

PAN Verification API allows businesses to instantly verify PAN card details against the Income Tax Department database. The API returns information such as:

  • PAN holder full name
  • PAN status (Active/Inactive/Fake)
  • PAN category (Individual/Company/Firm/Trust)
  • Name match percentage
  • Aadhaar-PAN linking status

Types of PAN Verification

Basic PAN Verification

Verify PAN format and check if it exists in ITD database. Returns name and status.

PAN with Name Match

Verify PAN and match provided name with ITD records. Returns match percentage.

PAN Comprehensive

Full verification including Aadhaar linking status, category, and detailed info.

Use Cases

  • Loan Applications: Verify borrower identity before processing
  • Account Opening: KYC compliance for banks and NBFCs
  • Vendor Onboarding: Verify business PAN for B2B transactions
  • Employee Verification: Background checks during hiring
  • Insurance: Policy issuance and claim processing
  • GST Registration: Validate PAN before GST filing

API Integration Guide

Authentication

The API uses HMAC-SHA256 signature authentication:

Headers Required:
X-API-Key: your_api_key
X-Timestamp: unix_timestamp
X-Signature: hmac_sha256_signature

PHP Example

<?php
$api_key = "your_api_key";
$api_secret = "your_secret";
$timestamp = time();
$endpoint = "/api/v1/pan/verify";

$body = json_encode([
    "pan" => "ABCDE1234F",
    "name" => "Rahul Kumar",
    "consent" => true
]);

// Generate signature
$signature_string = $timestamp . "POST" . $endpoint . $body;
$signature = hash_hmac("sha256", $signature_string, $api_secret);

$ch = curl_init("https://api.vistarkriya.com" . $endpoint);
curl_setopt_array($ch, [
    CURLOPT_RETURNTRANSFER => true,
    CURLOPT_POST => true,
    CURLOPT_POSTFIELDS => $body,
    CURLOPT_HTTPHEADER => [
        "Content-Type: application/json",
        "X-API-Key: " . $api_key,
        "X-Timestamp: " . $timestamp,
        "X-Signature: " . $signature
    ]
]);

$response = curl_exec($ch);
$result = json_decode($response, true);
?>

Python Example

import time, hmac, hashlib, json, requests

api_key = "your_api_key"
api_secret = "your_secret"
timestamp = str(int(time.time()))
endpoint = "/api/v1/pan/verify"

body = json.dumps({
    "pan": "ABCDE1234F",
    "name": "Rahul Kumar",
    "consent": True
})

signature_string = timestamp + "POST" + endpoint + body
signature = hmac.new(
    api_secret.encode(),
    signature_string.encode(),
    hashlib.sha256
).hexdigest()

response = requests.post(
    f"https://api.vistarkriya.com{endpoint}",
    headers={
        "Content-Type": "application/json",
        "X-API-Key": api_key,
        "X-Timestamp": timestamp,
        "X-Signature": signature
    },
    data=body
)

API Response Format

Success Response

{
  "success": true,
  "data": {
    "pan": "ABCDE1234F",
    "name": "RAHUL KUMAR",
    "status": "VALID",
    "category": "INDIVIDUAL",
    "name_match": 98,
    "aadhaar_linked": true,
    "last_updated": "2024-01-15"
  }
}

PAN Status Values

Status Meaning Action
VALID PAN exists and is active Proceed with KYC
INVALID PAN does not exist Reject application
INACTIVE PAN deactivated by ITD Request updated PAN
FAKE Fraudulent PAN detected Flag and report

Compliance Requirements

Important Compliance Points

  • Consent: Obtain explicit consent before verifying PAN
  • Data Storage: Do not store PAN details longer than necessary
  • Audit Trail: Maintain logs of all PAN verifications
  • Encryption: Encrypt PAN data in transit and at rest
  • Access Control: Limit PAN access to authorized personnel only

Best Practices

  • Validate Format First: Check PAN format (AAAAA9999A) before API call
  • Cache Results: Cache verification results for 24 hours to reduce costs
  • Handle Errors: Implement proper error handling for API failures
  • Name Matching: Use fuzzy matching for name verification (threshold 80%+)
  • Batch Processing: Use bulk API for verifying multiple PANs

PAN Format Validation

Before calling the API, validate PAN format using regex:

// PHP
$pattern = "/^[A-Z]{5}[0-9]{4}[A-Z]{1}$/";
if (preg_match($pattern, $pan)) {
    // Valid format, proceed with API
}

# Python
import re
pattern = r"^[A-Z]{5}[0-9]{4}[A-Z]{1}$"
if re.match(pattern, pan):
    # Valid format, proceed with API

Start Verifying PAN Today

Get API access with sandbox environment for testing.

Get API Access

FAQs

Q: How accurate is PAN verification?

A: The API fetches data directly from ITD database, ensuring 100% accuracy.

Q: What is the response time?

A: Average response time is under 2 seconds.

Q: Can I verify company PAN?

A: Yes, the API supports Individual, Company, Firm, Trust, and other PAN types.

For integration support, contact hello@vistarkriya.com.


Originally published at: PAN Verification API Integration - Complete Developer Guide

Comments

Post a Comment

Popular posts from this blog

Credit Bureau API Integration: Access CIBIL, Experian, CRIF & Equifax Reports Without OTP

If you are a DSA agent, NBFC, or fintech company looking to automate credit assessment, integrating a Credit Bureau API is the most efficient solution. This guide covers everything you need to know about fetching credit reports from all four RBI-registered bureaus through a single API integration. Table of Contents What is Credit Bureau API Four Credit Bureaus in India No-OTP vs OTP-Based Credit Checks API Integration Guide Understanding Credit Score Ranges Industry Use Cases Compliance Requirements Getting Started What is Credit Bureau API? A Credit Bureau API is a programmatic interface that enables businesses to fetch credit reports and credit scores directly from RBI-registered Credit Information Companies (CICs). Instead of logging into multiple bureau portals and manually checking each report, you can retrieve comprehensive credit data with a single API call. The API returns structured data including credit score, payment history, active loans, credit utilizatio...
Read more

Personal Finance Guide for Indians: Budgeting, Saving & Investment Tips 2026

Managing personal finances effectively is the foundation of financial freedom. Whether you are a salaried employee, business owner, or freelancer, understanding how to budget, save, and invest your money can transform your financial future. This comprehensive guide covers everything you need to know about personal finance in India. Why Personal Finance Matters Personal finance is not just about saving money - it is about making your money work for you. Here is why it matters: 72% Indians live paycheck to paycheck 23% Have emergency fund for 3+ months 15% Invest in stock market 40% Have no retirement planning The 50/30/20 Budgeting Rule The simplest and most effective budgeting method for beginners is the 50/30/20 rule : 50% Needs Rent, food, utilities, EMIs, insurance, transport 30% Wants Entertainment, dining out, shopping, hobbies 20% Savings Emergency fund, investments, retirement Example: Monthly Budget for Rs 50,000 Salary Cate...
Read more

White Label Digital Office for DSA and Financial Services

In today competitive financial services market, having your own branded digital platform is no longer optional - it is essential. A White Label Digital Office allows you to launch a fully functional fintech platform under your own brand without building technology from scratch. Table of Contents What is White Label Digital Office? Benefits for Your Business Key Features Who Needs This? How It Works Pricing Models Getting Started What is White Label Digital Office? A White Label Digital Office is a ready-made software platform that you can rebrand and offer to your clients as your own product. Instead of spending months building technology, you get a complete solution with your logo, colors, and domain. Think of it like this: You get the engine, chassis, and all components ready - you just add your brand paint and start driving. Benefits for Your Business Launch in Days Go live in 3-7 days instead of 6-12 months of development. Save 90% Costs No development t...
Read more