Built by the community
Navigation
Metrics
Program
Service DeskPricingPoliciesDocument RepositoryLive Ecosystem
Developer Docs
TPP — Open Finance StandardsLFI — Integration GuideAPI SpecsKnowledge BaseRelease Notes & Erratas
NewsGitHub
LFI · Insurance · Data Sharing · API Guide

Encrypted Premiums 4 min read

The Premium field on every insurance policy response is an anyOf of a structured cleartext object or a compact JWE string. Your LFI chooses, per policy, which shape to return. When you return a JWE, the TPP backend MUST NOT decrypt it — the payload is unwrapped only on the customer’s device.

01 When to encrypt

Per-policy LFI choice

Encrypted premiums let your LFI surface commercially sensitive premium values to a customer-present TPP experience without the TPP backend ever holding the cleartext. The decision is per policy and entirely yours — the TPP and the API Hub do not influence it. Both shapes are valid under the OpenAPI spec, so the TPP is required to handle either on every call.

  • Cleartext — appropriate when the premium is non-sensitive or already publicly disclosed (e.g. tariff-based products with published rates).
  • Encrypted (JWE) — appropriate for individually underwritten policies where the premium reflects pricing decisions you do not want exposed in a TPP’s server-side analytics, switching pipelines, or third-party data flows.
Permission still required

The Hub only routes the request with Premium in scope when the consent grants ReadInsurancePremium. If the permission is absent for the relevant sector, omit the Premium field entirely — do not return an empty object or a placeholder JWE.

02 Cleartext shape

AEInsuranceDataSharingPremiumProperties

Populate the structured object directly under the Premium key. All five fields are required by the OpenAPI spec.

cleartext Premiumjson
{
  "Premium": {
    "PremiumAmountExcludingVAT": "950.00",
    "PremiumVATAmount": "47.50",
    "TotalPremiumAmount": "997.50",
    "Currency": "AED",
    "PremiumFrequency": "Annually"
  }
}
FieldTypeDescription
PremiumAmountExcludingVATstring (amount)The Premium Amount excluding any VAT amount.
PremiumVATAmountstring (amount)The Premium VAT amount.
TotalPremiumAmountstring (amount)The total Premium amount including VAT.
Currencystring (ISO 4217)Currency of the premium amounts.
PremiumFrequencyenumThe payment frequency the calculated Premium has been based on.
03 Encrypted shape

AEInsurancePremiumJWE

Encrypt the same structured premium object as a compact JWE and place the resulting string directly under the Premium key — not wrapped in another object.

encrypted Premiumjson
{
  "Premium": "eyJhbGciOiJQQkVTMi1IUzUxMitBMjU2S1ciLCJlbmMiOiJBMjU2R0NNIiwicDJzIjoiNGtBWG..."
}

The JWE mechanism mirrors Bank Data Sharing’s encrypted FinanceRates field — same algorithms, same client-side decryption pattern, same handling obligations on the TPP. The customer-side decryption flow is documented for TPPs at Encrypted Premiums; treat the LFI obligations on this page as the producer-side equivalent.

Do not mix shapes within one response

A single policy response carries exactly one of the two shapes — either the cleartext object or the JWE string. Do not include both keys, do not embed the JWE inside the structured object, and do not return a partially populated structured object alongside a JWE.