Your questions answered

Before you contact us with an Open Banking API query, check our list of frequently asked questions to see if the answer is here. If you can’t find what you’re looking for, feel free to use our Contact us form and we'll come back to you. 

Nationwide provides the following Open Banking APIs

Discovery and Application Registration

  • GET /.well-known
  • POST /register

Security

  • GET /authorize
  • POST /token

Account and Transaction

  • POST /account-requests
  • DELETE /account-requests/{AccountRequestId}
  • GET /accounts
  • GET /accounts/{AccountId}
  • GET /accounts/{AccountId}/balances
  • GET /accounts/{AccountId}/beneficiaries
  • GET /accounts/{AccountId}/direct-debits
  • GET /accounts/{AccountId}/standing-orders
  • GET /accounts/{AccountId}/transactions
  • GET /accounts/{AccountId}/product

Payment

  • POST /payments
  • POST /payment-submissions
  • GET /payment-submissions/{PaymentSubmissionId}

See our ‘Open Banking API’ page for further details.

Supporting information is available for each group of APIs we provide. See our ‘Open Banking API’ page for specific details on decisions we have made when implementing our APIs which is available for the topics below:

Supporting information for registration and security:


  • Client ID & secret
  • Transport layer security mutual authentication (TLS MA)
  • Support of algorithms
  • Security authorisation expiry & new intents
  • Deleting intents
  • Token validity periods
  • Exception codes

Supporting information for Account and Transaction API:


  • AISP Data Request
  • Pagination
  • API Call Limits
  • Re-authentication

Supporting information for Payment API:


  • Payment type supported
  • FP scheme limitations
  • Payment currency and values
  • Time to execute post payment confirmation
  • Payment execution timeouts
  • Payment status enquiry

Everything you need to know can be found on our Getting started page. 

APIs return standard HTTP codes. Those used within Nationwide Open Banking APIs are:

  • 400 (Bad Request) 
  • 404 (Not Found)
  • 403 (Forbidden)
  • 429 (Too Many Requests)
  • 503 (Services unavailable or too busy)

For full details refer to the detailed API specifications available on the central industry Open Banking website

  • As per UK Finance’s ‘Guidance on Screen Scraping and Expected Market Behaviours’, it is possible to identify your organisation to us as an Account Information Service Provider or Payment Initiation Service Provider by submitting the contact us form. Per this guidance, this should include details of your IP address and Trading name in the ‘How can we help you’ box. This does not need to be undertaken if you have onboarded with us to use our Open Banking APIs, and should only be used if you are using screen scraping to access member account transactions.
  • If you are FCA registered and enrolled on the Open Banking Directory, read the guidance on Getting Started.