2 min read
Record the choices
curl -s -X POST https://api.credicorp.co.uk/public/v1/consent \
-H 'Content-Type: application/json' \
-d '{
"email": "[email protected]",
"purposes": { "marketing_email": true, "marketing_sms": false },
"source": "partner-widget"
}'Consent is stored per purpose so you can honour a user who wants product updates but not SMS. The response echoes the stored record with a server timestamp you can log for your own audit trail.
Capture it at the source
Record consent at the exact moment it is given — the same form that submits the enquiry — and pass a meaningful source so you can trace where each consent originated.
Frequently asked questions
Do I need consent to submit an enquiry?
You need a lawful basis to process the enquiry itself; separate marketing consent is what this endpoint records. Keep the two decisions distinct on your form.
Can a user change their mind later?
Yes. Record the updated choices with another call; the latest record for a given email is authoritative, and the history is retained for audit.
Related reading

Quickstart: submit a business-finance enquiry
POST /public/v1/enquiries is how a website or partner hands a lead into Credicorp. Post the company and…
Read →
Quickstart: use idempotency keys on write requests
An Idempotency-Key header makes a POST safe to retry. Generate one UUID per logical operation, send it with…
Read →
Quickstart: handle Credicorp API error responses
Every Credicorp API error uses the same envelope: { error: { type, code, message, request_id } }. Branch on…
Read →Funding for UK limited companies
Credicorp lends to your company, not to you personally — short-term working capital with no personal guarantee. See what your business could access.