API Credentials Required: Before making any KYC lookup, you must have your API key and secret configured.
You can retrieve your credentials from the API & Webhook settings page.
The KYC Flow
Running a KYC lookup in Sigma is straightforward: 1. Get Your API Credentials Retrieve yourapiKey and apiSecret from My Account → API & Webhooks in the Sigma dashboard. These headers are required on every request.
See how to get your API credentials →
2. Choose a Lookup Type
Sigma KYC supports three lookup types depending on what you need to verify:
| Lookup | Endpoint | When to use |
|---|---|---|
| BVN Search | POST /api/v1/kyc/bvn | Verify an individual using their Bank Verification Number |
| NIN Search | POST /api/v1/kyc/nin | Verify an individual using their National Identification Number |
| CAC Search | POST /api/v1/kyc/cac | Verify a business using its CAC registration number |
idNumber field. For CAC, send the rcNumber, companyName, and companyType fields.
4. Parse the Response
The API returns verified data from government databases including personal details, contact information, photos, and (for CAC) affiliated persons such as directors and shareholders.
Authentication
All KYC requests require two custom headers:| Header | Description |
|---|---|
apiKey | Your API key |
apiSecret | Your API secret |
Environments
KYC is available in both sandbox and production environments. The sandbox returns static responses for testing at no cost. Production performs real lookups and consumes wallet balance. See the Environments page for base URLs.Prerequisites
Before making your first KYC lookup, make sure you have:- An active Sigma account
- API key and secret configured in API & Webhook settings
- Wallet balance loaded (for production requests)
BVN Search
Look up individual identity using a BVN.
NIN Search
Look up individual identity using a NIN.
CAC Search
Look up business registration using a CAC number.