If a callbackUrl was provided when creating the verification, PCI Booking will send a POST request to that URL when the session reaches a terminal state (Verified, NotVerified, Failed, or Expired).
Your endpoint must be publicly accessible and should return a 2xx HTTP status code to acknowledge receipt.
📘 Callback payload mirrors the status responseThe body of the callback POST uses the same structure as the Get Verification Status response.
📘 MetadataThe
metadatafield in the callback payload will contain the value provided in the original Create request, making it easy to correlate the notification with your own internal records.
Callback Payload
| Field | Type | Description |
|---|---|---|
verifyId | string | The unique ID of the verification session. |
status | string | The terminal status. Possible values: Verified, NotVerified, Failed, Expired. |
completedAt | datetime | The UTC datetime at which the session reached its terminal status. |
metadata | string | The metadata string provided in the original request. Returns null if not provided. |
{
"verifyId": "xLoat3F385vvFRbgI2usOeuXKXQoB8kv",
"status": "Verified",
"completedAt": "2026-03-15T18:47:10Z",
"metadata": "MY-REFERENCE_098"
}