We value your privacy

We use cookies to enhance your browsing experience, serve personalized ads or content, and analyze our traffic. By clicking "Accept All", you consent to our use of cookies. Read More

Customize Consent Preferences

We use cookies to help you navigate efficiently and perform certain functions. You will find detailed information about all cookies under each consent category below.

The cookies that are categorized as "Necessary" are stored on your browser as they are essential for enabling the basic functionalities of the site. ... 

Always Active

Necessary cookies are required to enable the basic features of this site, such as providing secure log-in or adjusting your consent preferences. These cookies do not store any personally identifiable data.

  • Cookie
    cookieyes-consent
  • Duration
    1 year 1 month
  • Description
    CookieYes sets this cookie to remember users' consent preferences so that their preferences are respected on their subsequent visits to this site. It does not collect or store any personal information of the site visitors.
  • Cookie
    __hssrc
  • Duration
    session
  • Description
    This cookie is set by Hubspot whenever it changes the session cookie. The __hssrc cookie set to 1 indicates that the user has restarted the browser, and if the cookie does not exist, it is assumed to be a new session.
  • Cookie
    __cfruid
  • Duration
    session
  • Description
    Cloudflare sets this cookie to identify trusted web traffic.
  • Cookie
    _GRECAPTCHA
  • Duration
    6 months
  • Description
    This cookie is set by the Google recaptcha service to identify bots to protect the website against malicious spam attacks.
  • Cookie
    rc::a
  • Duration
    Never Expires
  • Description
    This cookie is set by the Google recaptcha service to identify bots to protect the website against malicious spam attacks.
  • Cookie
    rc::f
  • Duration
    Never Expires
  • Description
    This cookie is set by the Google recaptcha service to identify bots to protect the website against malicious spam attacks.
  • Cookie
    rc::c
  • Duration
    session
  • Description
    This cookie is set by the Google recaptcha service to identify bots to protect the website against malicious spam attacks.
  • Cookie
    rc::b
  • Duration
    session
  • Description
    This cookie is set by the Google recaptcha service to identify bots to protect the website against malicious spam attacks.
  • Cookie
    AWSALBCORS
  • Duration
    7 days
  • Description
    Amazon Web Services set this cookie for load balancing.

Functional cookies help perform certain functionalities like sharing the content of the website on social media platforms, collecting feedback, and other third-party features.

  • Cookie
    lang
  • Duration
    session
  • Description
    LinkedIn sets this cookie to remember a user's language setting.
  • Cookie
    bcookie
  • Duration
    1 year
  • Description
    LinkedIn sets this cookie from LinkedIn share buttons and ad tags to recognize browser ID.
  • Cookie
    lidc
  • Duration
    1 day
  • Description
    LinkedIn sets the lidc cookie to facilitate data center selection.
  • Cookie
    __hssc
  • Duration
    1 hour
  • Description
    HubSpot sets this cookie to keep track of sessions and to determine if HubSpot should increment the session number and timestamps in the __hstc cookie.
  • Cookie
    __cf_bm
  • Duration
    1 hour
  • Description
    This cookie, set by Cloudflare, is used to support Cloudflare Bot Management.
  • Cookie
    _help_center_session
  • Duration
    session
  • Description
    No description available.
  • Cookie
    ytidb::LAST_RESULT_ENTRY_KEY
  • Duration
    Never Expires
  • Description
    The cookie ytidb::LAST_RESULT_ENTRY_KEY is used by YouTube to store the last search result entry that was clicked by the user. This information is used to improve the user experience by providing more relevant search results in the future.
  • Cookie
    yt-remote-device-id
  • Duration
    Never Expires
  • Description
    YouTube sets this cookie to store the user's video preferences using embedded YouTube videos.
  • Cookie
    yt-remote-connected-devices
  • Duration
    Never Expires
  • Description
    YouTube sets this cookie to store the user's video preferences using embedded YouTube videos.
  • Cookie
    yt-remote-session-app
  • Duration
    session
  • Description
    The yt-remote-session-app cookie is used by YouTube to store user preferences and information about the interface of the embedded YouTube video player.
  • Cookie
    yt-remote-cast-installed
  • Duration
    session
  • Description
    The yt-remote-cast-installed cookie is used to store the user's video player preferences using embedded YouTube video.
  • Cookie
    yt-remote-session-name
  • Duration
    session
  • Description
    The yt-remote-session-name cookie is used by YouTube to store the user's video player preferences using embedded YouTube video.
  • Cookie
    yt-remote-fast-check-period
  • Duration
    session
  • Description
    The yt-remote-fast-check-period cookie is used by YouTube to store the user's video player preferences for embedded YouTube videos.

Analytical cookies are used to understand how visitors interact with the website. These cookies help provide information on metrics such as the number of visitors, bounce rate, traffic source, etc.

  • Cookie
    li_gc
  • Duration
    6 months
  • Description
    No description
  • Cookie
    debug
  • Duration
    Never Expires
  • Description
    No description available.
  • Cookie
    ajs_user_id
  • Duration
    Never Expires
  • Description
    This cookie is set by Segment to help track visitor usage, events, target marketing, and also measure application performance and stability.
  • Cookie
    ajs_anonymous_id
  • Duration
    Never Expires
  • Description
    This cookie is set by Segment to count the number of people who visit a certain site by tracking if they have visited before.
  • Cookie
    __hstc
  • Duration
    6 months
  • Description
    This is the main cookie set by Hubspot, for tracking visitors. It contains the domain, initial timestamp (first visit), last timestamp (last visit), current timestamp (this visit), and session number (increments for each subsequent session).
  • Cookie
    hubspotutk
  • Duration
    6 months
  • Description
    HubSpot sets this cookie to keep track of the visitors to the website. This cookie is passed to HubSpot on form submission and used when deduplicating contacts.
  • Cookie
    _gcl_au
  • Duration
    3 months
  • Description
    Provided by Google Tag Manager to experiment advertisement efficiency of websites using their services.
  • Cookie
    _ga
  • Duration
    1 year 1 month 4 days
  • Description
    The _ga cookie, installed by Google Analytics, calculates visitor, session and campaign data and also keeps track of site usage for the site's analytics report. The cookie stores information anonymously and assigns a randomly generated number to recognize unique visitors.
  • Cookie
    _gid
  • Duration
    1 day
  • Description
    Installed by Google Analytics, _gid cookie stores information on how visitors use a website, while also creating an analytics report of the website's performance. Some of the data that are collected include the number of visitors, their source, and the pages they visit anonymously.
  • Cookie
    __tld__
  • Duration
    session
  • Description
    No description
  • Cookie
    state
  • Duration
    15 minutes
  • Description
    No description available.
  • Cookie
    oauth2_authentication_csrf_insecure
  • Duration
    session
  • Description
    No description
  • Cookie
    _zendesk_shared_session
  • Duration
    session
  • Description
    No description available.
  • Cookie
    _zendesk_session
  • Duration
    session
  • Description
    No description available.
  • Cookie
    _zendesk_authenticated
  • Duration
    past
  • Description
    No description
  • Cookie
    _hjTLDTest
  • Duration
    session
  • Description
    To determine the most generic cookie path that has to be used instead of the page hostname, Hotjar sets the _hjTLDTest cookie to store different URL substring alternatives until it fails.
  • Cookie
    _ga_*
  • Duration
    1 year 1 month 4 days
  • Description
    Google Analytics sets this cookie to store and count page views.
  • Cookie
    _gat_UA-*
  • Duration
    1 minute
  • Description
    Google Analytics sets this cookie for user behaviour tracking.
  • Cookie
    _gh_sess
  • Duration
    session
  • Description
    GitHub sets this cookie for temporary application and framework state between pages like what step the user is on in a multiple step form.
  • Cookie
    cb_group_id
  • Duration
    1 year
  • Description
    Clearbit sets this cookie to track page views and traits for Clearbit.
  • Cookie
    cb_anonymous_id
  • Duration
    1 year
  • Description
    Clearbit sets this cookie to track page views and traits for Clearbit.
  • Cookie
    _hjSessionUser_*
  • Duration
    1 year
  • Description
    Hotjar sets this cookie to ensure data from subsequent visits to the same site is attributed to the same user ID, which persists in the Hotjar User ID, which is unique to that site.
  • Cookie
    _hjSession_*
  • Duration
    1 hour
  • Description
    Hotjar sets this cookie to ensure data from subsequent visits to the same site is attributed to the same user ID, which persists in the Hotjar User ID, which is unique to that site.
  • Cookie
    CLID
  • Duration
    1 year
  • Description
    Microsoft Clarity set this cookie to store information about how visitors interact with the website. The cookie helps to provide an analysis report. The data collection includes the number of visitors, where they visit the website, and the pages visited.
  • Cookie
    _clck
  • Duration
    1 year
  • Description
    Microsoft Clarity sets this cookie to retain the browser's Clarity User ID and settings exclusive to that website. This guarantees that actions taken during subsequent visits to the same website will be linked to the same user ID.
  • Cookie
    _clsk
  • Duration
    1 day
  • Description
    Microsoft Clarity sets this cookie to store and consolidate a user's pageviews into a single session recording.
  • Cookie
    SM
  • Duration
    session
  • Description
    Microsoft Clarity cookie set this cookie for synchronizing the MUID across Microsoft domains.
  • Cookie
    MR
  • Duration
    7 days 1 minute
  • Description
    This cookie, set by Bing, is used to collect user information for analytics purposes.

Performance cookies are used to understand and analyze the key performance indexes of the website which helps in delivering a better user experience for the visitors.

  • Cookie
    figma.ref
  • Duration
    session
  • Description
    No description
  • Cookie
    figma.session
  • Duration
    1 month 9 days
  • Description
    No description available.
  • Cookie
    _uetsid
  • Duration
    1 day
  • Description
    Bing Ads sets this cookie to engage with a user that has previously visited the website.
  • Cookie
    _uetvid
  • Duration
    1 year 24 days
  • Description
    Bing Ads sets this cookie to engage with a user that has previously visited the website.
  • Cookie
    SRM_B
  • Duration
    1 year 24 days 1 minute
  • Description
    Used by Microsoft Advertising as a unique ID for visitors.

Advertisement cookies are used to provide visitors with customized advertisements based on the pages you visited previously and to analyze the effectiveness of the ad campaigns.

  • Cookie
    IDE
  • Duration
    1 year 24 days
  • Description
    Google DoubleClick IDE cookies are used to store information about how the user uses the website to present them with relevant ads and according to the user profile.
  • Cookie
    test_cookie
  • Duration
    15 minutes
  • Description
    The test_cookie is set by doubleclick.net and is used to determine if the user's browser supports cookies.
  • Cookie
    MUID
  • Duration
    1 year 24 days
  • Description
    Bing sets this cookie to recognise unique web browsers visiting Microsoft sites. This cookie is used for advertising, site analytics, and other operations.
  • Cookie
    YSC
  • Duration
    session
  • Description
    Youtube sets this cookie to track the views of embedded videos on Youtube pages.
  • Cookie
    VISITOR_INFO1_LIVE
  • Duration
    6 months
  • Description
    YouTube sets this cookie to measure bandwidth, determining whether the user gets the new or old player interface.
  • Cookie
    yt.innertube::requests
  • Duration
    Never Expires
  • Description
    YouTube sets this cookie to register a unique ID to store data on what videos from YouTube the user has seen.
  • Cookie
    yt.innertube::nextId
  • Duration
    Never Expires
  • Description
    YouTube sets this cookie to register a unique ID to store data on what videos from YouTube the user has seen.
  • Cookie
    VISITOR_PRIVACY_METADATA
  • Duration
    6 months
  • Description
    YouTube sets this cookie to store the user's cookie consent state for the current domain.
  • Cookie
    cb_user_id
  • Duration
    1 year
  • Description
    Clearbit sets this cookie to collect data on visitors. This information is used to assign visitors into segments, making website advertising more relevant.
  • Cookie
    ANONCHK
  • Duration
    11 minutes
  • Description
    The ANONCHK cookie, set by Bing, is used to store a user's session ID and verify ads' clicks on the Bing search engine. The cookie helps in reporting and personalization as well.
  • Cookie
    NID
  • Duration
    6 months
  • Description
    Google sets the cookie for advertising purposes; to limit the number of times the user sees an ad, to unwanted mute ads, and to measure the effectiveness of ads.

Other uncategorized cookies are those that are being analyzed and have not been classified into a category as yet.

  • Cookie
    _cfuvid
  • Duration
    session
  • Description
    Calendly sets this cookie to track users across sessions to optimize user experience by maintaining session consistency and providing personalized services
  • Cookie
    SNID
  • Duration
    1 year 1 month 4 days
  • Description
    This cookie is set by the Google. This cookie is used by the map which helps visitors to identify and reach the facility.
  • Cookie
    _octo
  • Duration
    1 year
  • Description
    No description available.
  • Cookie
    logged_in
  • Duration
    1 year
  • Description
    No description available.
  • Cookie
    __Secure-ROLLOUT_TOKEN
  • Duration
    6 months
  • Description
    Description is currently not available.
  • Cookie
    dd_anonymous_id
  • Duration
    1 year
  • Description
    Description is currently not available.
  • Cookie
    __cflb
  • Duration
    7 hours
  • Description
    This cookie is used by Cloudflare for load balancing.
  • Cookie
    _pk_id.5.eba3
  • Duration
    1 year 1 month
  • Description
    Description is currently not available.
  • Cookie
    _pk_ses.5.eba3
  • Duration
    1 hour
  • Description
    Description is currently not available.
  • Cookie
    __vdpl
  • Duration
    session
  • Description
    Description is currently not available.
  • Cookie
    token
  • Duration
    session
  • Description
    No description available.
  • Cookie
    MSPTC
  • Duration
    1 year 24 days
  • Description
    Description is currently not available.
  • Cookie
    pfjs%3Acookies
  • Duration
    1 year
  • Description
    Description is currently not available.
  • Cookie
    Source
  • Duration
    session
  • Description
    No description available.
  • Cookie
    AWSALBTGCORS
  • Duration
    7 days
  • Description
    No description available.
  • Cookie
    __Host-figma.did
  • Duration
    1 year
  • Description
    Description is currently not available.
  • Cookie
    _hjCookieTest
  • Duration
    session
  • Description
    No description available.
  • Cookie
    __figma.embed.test.cookie__
  • Duration
    session
  • Description
    Description is currently not available.
  • Cookie
    cb%3Atest
  • Duration
    1 year
  • Description
    Description is currently not available.
  • Cookie
    _zendesk_cookie
  • Duration
    1 year
  • Description
    Description is currently not available.
Skip to main content

View sensitive information

Prepare to view sensitive information​

The cardUrl available in the card query leads to a website that displays the card with its design and its sensitive hidden information.

Consider integrating it into your product with an iframe or a webview. This URL is available for one hour after you query it. After one hour, renew the query to get another cardUrl.

Information not visible

If information fails to become visible despite having the appropriate permissions, it may remain hidden due to regulatory restrictions based on your location.

View virtual card numbers​

To make online payments you usually need to provide the card numbers, the expiration date, and the CVC. All of this data is considered sensitive and is not directly available through the Web Banking interface or the API.

  1. When the Account member wants to display sensitive information, you must call the viewCardNumbers mutation which returns a consent.
  2. Replace $YOUR_CARD_ID with your card ID, and $YOUR_REDIRECT_URL with the URL you want to redirect the user to after viewing the card numbers.
  3. Make sure you are authenticated with a user access token using the name of the card's account member.
  4. Then a consentUrl is returned which invites the user to start the Strong Customer Authentication with Swan. You need to open a native pop-up to display the consentUrl. This URL will redirect the user to a page with the card numbers displayed with the card design.

Mutation​

Open in API Explorer 
mutation ViewSensitiveInfo {
  viewCardNumbers(
    input: {
      cardId: "$YOUR_CARD_ID"
      consentRedirectUrl: "$YOUR_REDIRECT_URL"
    }
  ) {
    ... on ViewCardNumbersSuccessPayload {
      __typename
      consent {
        consentUrl
        id
      }
    }
  }
}

Payload​

{
  "data": {
    "viewCardNumbers": {
      "__typename": "ViewCardNumbersSuccessPayload",
      "consent": {
        "consentUrl": "$YOUR_CONSENT_URL",
        "id": "$YOUR_CONSENT_ID"
      }
    }
  }
}

After the consent is accepted, the card's sensitive information is displayed for five minutes. The link to view the information is also valid for five minutes; the user can close and reopen the link anytime within those five minutes.

The user can click to copy any of the sensitive information to their clipboard. After they're done with the card info, they can click okay to be redirected to the redirectUrl set up during the viewCardNumbers mutation.

Swan card with information masked and revealed