Legal policy

API Terms of Use

Rules for developers, CBS integrations, API credentials, rate limits, and audit requirements.

Plain-language public reference. Last updated June 2026. Institution contracts, regulator instructions, and applicable law may impose additional requirements.

Privacy CA Privacy Terms Data Preferences NBE Compliance

API rules

Authorized use only; no credential sharing, scraping, data resale, or unauthorized borrower lookups.
API clients must comply with rate limits, security requirements, audit requirements, and incident reporting duties.
Integrations must preserve consent evidence, inquiry purpose, user attribution, and audit IDs.

Compliance contact

For privacy, data-subject, institutional compliance, or regulator requests, contact compliance@duruj.io.