Skip to content
PrivaBaseBeta
FeaturesPricingCompareGuidesBlogGlossaryTools
Log InStart Free

DEVELOPER RESOURCES

PrivaBase API Documentation

Integrate privacy compliance, data mapping, consent management, and automated workflows directly into your applications with our comprehensive REST API.

Get API KeyQuick Start Guide

API Overview

RESTful API

Standard HTTP methods (GET, POST, PUT, DELETE) with JSON request and response bodies

API Key Authentication

Secure API key authentication with role-based permissions and rate limiting

Real-time Webhooks

Real-time notifications for compliance events, DSR status changes, and risk updates

Base URLs

Production:https://api.privabase.com/v1
Sandbox:https://sandbox-api.privabase.com/v1

Quick Start Guide

1

Get API Key

Generate an API key in your dashboard settings

2

Choose Environment

Use sandbox for testing or production for live data

3

Make First Request

Test authentication with a simple GET request

4

Handle Responses

Process JSON responses and handle errors properly

Authentication Example

curl -X GET "https://api.privabase.com/v1/account" \
  -H "Authorization: Bearer YOUR_API_KEY" \
  -H "Content-Type: application/json"

Expected Response:

{
  "id": "acc_123456789",
  "name": "Your Company",
  "plan": "professional",
  "status": "active"
}

API Categories

Data Mapping

Discover and map personal data across your systems

GET /api/v1/data-sources
POST /api/v1/data-discovery
GET /api/v1/data-map

Consent Management

Manage consent records and preferences

POST /api/v1/consent
GET /api/v1/consent/records
DELETE /api/v1/consent

Data Subject Requests

Process access, deletion, and portability requests

POST /api/v1/dsr
GET /api/v1/dsr/status
PUT /api/v1/dsr/response

Risk Assessment

Create and manage privacy risk assessments

POST /api/v1/risk-assessments
GET /api/v1/risks
PUT /api/v1/risks/{id}

Compliance Monitoring

Monitor compliance status and generate reports

GET /api/v1/compliance/status
GET /api/v1/reports
POST /api/v1/audits

Webhooks

Real-time notifications for compliance events

POST /api/v1/webhooks
GET /api/v1/webhooks
PUT /api/v1/webhooks/{id}

Common API Examples

Submit a Data Subject Request

Create a new DSR for access, deletion, or portability requests.

Request
POST /api/v1/dsr
Content-Type: application/json
Authorization: Bearer YOUR_API_KEY

{
  "type": "access",
  "subject_email": "user@example.com",
  "subject_name": "John Doe",
  "description": "Request for data access",
  "due_date": "2026-03-18T00:00:00Z"
}
Response200 OK
{
  "id": "dsr_123456789",
  "status": "pending",
  "type": "access",
  "subject_email": "user@example.com",
  "created_at": "2026-02-16T12:00:00Z",
  "due_date": "2026-03-18T00:00:00Z",
  "estimated_completion": "2026-02-25T12:00:00Z"
}

Record User Consent

Store consent records for GDPR and CCPA compliance.

Request
POST /api/v1/consent
Content-Type: application/json
Authorization: Bearer YOUR_API_KEY

{
  "user_id": "user_123456789",
  "consent_types": [
    "marketing",
    "analytics",
    "essential"
  ],
  "granted": true,
  "timestamp": "2026-02-16T12:00:00Z",
  "ip_address": "192.168.1.100",
  "user_agent": "Mozilla/5.0..."
}
Response201 Created
{
  "id": "consent_123456789",
  "user_id": "user_123456789",
  "status": "recorded",
  "consent_types": [
    "marketing",
    "analytics", 
    "essential"
  ],
  "granted": true,
  "recorded_at": "2026-02-16T12:00:00Z"
}

Check Compliance Status

Get real-time compliance scores and framework status.

Request
GET /api/v1/compliance/status
Authorization: Bearer YOUR_API_KEY
Response200 OK
{
  "overall_score": 92,
  "frameworks": {
    "gdpr": {
      "score": 94,
      "status": "compliant",
      "last_assessment": "2026-02-15T10:00:00Z"
    },
    "ccpa": {
      "score": 89,
      "status": "mostly_compliant", 
      "last_assessment": "2026-02-15T10:00:00Z"
    }
  },
  "active_dsrs": 3,
  "risk_level": "low"
}

Rate Limits

Starter Plan:1,000 requests/hour
Professional Plan:10,000 requests/hour
Enterprise Plan:100,000 requests/hour

Rate limit information is included in response headers: X-RateLimit-Limit, X-RateLimit-Remaining, X-RateLimit-Reset

Error Responses

400 Bad Request:Invalid request format
401 Unauthorized:Invalid API key
403 Forbidden:Insufficient permissions
429 Too Many Requests:Rate limit exceeded
500 Internal Error:Server-side issue

SDKs and Libraries

JavaScript/Node.js

Official SDK for JavaScript and Node.js applications

npm install @privabase/js-sdk
Documentation

Python

Official Python SDK with async support

pip install privabase-python
Documentation

PHP

Composer package for PHP applications

composer require privabase/php-sdk
Documentation

Need Help with Integration?

Our developer support team is here to help you integrate PrivaBase APIs into your applications. Get technical support, code examples, and integration guidance.

Contact Developer SupportGet API Access
PrivaBaseBeta

Automated privacy compliance for modern teams.

Product

  • Features
  • Pricing
  • Privacy Policy Generator
  • Compare

Resources

  • GDPR Guide
  • HIPAA Guide
  • CCPA Guide
  • UK GDPR Guide
  • Privacy Glossary
  • Blog

Legal

  • Terms of Service
  • Privacy Policy
  • Your Privacy Choices
  • Do Not Sell My Personal Information
  • Cookie Policy
  • DPA
  • Subprocessors

Company

  • Security
  • Data Requests
  • Accessibility
  • Contact
  • API Docs
  • Status

Your Privacy Rights

You have the right to know what personal data we collect, request its deletion, opt out of data sales or sharing, and exercise these rights without discrimination. To submit a privacy request, email privacy@privabase.com or visit our Data Request page.

Data Protection Officer

For GDPR inquiries or data protection concerns, contact our DPO at dpo@privabase.com. Spoon Seller LLC · 110 Coliseum Crossing #5392, Hampton, VA 23666

© 2026 Spoon Seller LLC. All rights reserved.
TermsPrivacyDo Not Sell My InfoData Requests