Evidence in every response
Findings come back with the page, region, producer version and confidence behind them — enough to render an overlay or store a defensible record, not just a verdict.
A stable, documented API lets a LOS, POS, document platform or internal loan-file system upload documents, start audits, retrieve evidence-backed findings, resolve exceptions and download durable reports — without touching UI internals.
Findings come back with the page, region, producer version and confidence behind them — enough to render an overlay or store a defensible record, not just a verdict.
Retryable uploads and audit starts accept an Idempotency-Key, with explicit conflict detection on replay.
Service-to-service keys carry scoped permissions. A service can start audits and fetch results without the right to override findings.
The same pipeline the console drives, available end-to-end over HTTP. Endpoint paths shown below are illustrative of the documented contract.
# 1 — Upload a document (bytes stay on your hardware) curl -X POST https://your-host/documents \ -H "Authorization: Bearer $API_KEY" \ -H "Idempotency-Key: $(uuidgen)" \ -F "file=@closing_disclosure.pdf" → { "document_id": "doc_9f2a" } # 2 — Start the audit curl -X POST https://your-host/documents/doc_9f2a/audit \ -H "Authorization: Bearer $API_KEY" → { "audit_id": "aud_71c", "status": "running" } # 3 — Read the evidence-backed scorecard GET /audits/aud_71c/scorecard → { "decision": "needs_review", "overall_score": 72 } # 4 — Pull findings with evidence coordinates GET /audits/aud_71c/findings GET /findings/fnd_04/evidence # 5 — Export a durable audit package curl -X POST https://your-host/exports \ -d '{"audit_id":"aud_71c","format":"pdf"}' GET /exports/exp_88/download
{
"key": "svc_los_integration",
"scopes": [
"documents:write",
"audits:write",
"findings:read",
"exports:read"
],
// override & raw model output
// require admin-equivalent scope
"can_override": false
}
Every credential is scoped. Automation gets exactly the reach it needs — and nothing that belongs to a human admin.
Register endpoints with POST /webhooks/endpoints to be notified as audits progress and exceptions resolve — so your systems react without polling.
Who opened a file, when it was viewed, every download and the final decision — captured as an immutable audit trail you can pull over the API (GET /audit-log). When an examiner asks what happened to a document, the record answers.
Build once, trust it. Docutise exposes one stable, documented API contract — no surprise response shapes — that you can generate typed clients from. Every change is checked against that contract before it ships, so the integration you build keeps working.
Request an API key for early access and integrate a local pilot with your stack.