Why is full identity disclosure often unnecessary for eligibility?

Most eligibility checks only need to know whether someone qualifies, not who they are in full detail. For example, a ticketing system usually needs to know that a pass is valid, not the holder's full address history. A privacy-preserving API returns a binary decision instead of exposing raw identity attributes.

How does a binary eligibility API reduce data exposure?

By returning a simple yes/no decision and an optional token, the API keeps raw inputs and underlying signals within the verification layer. Your application sees only the decision it needs to continue the flow, which reduces the PII surface area across your stack.

What can I do with the token returned by the API?

The token is a short-lived credential that proves an eligibility decision was made. You can attach it to tickets, session state, or downstream calls. Systems can verify the token with AffixIO without re-exposing raw personal data.

How is this different from traditional identity verification APIs?

Traditional identity APIs often return detailed profiles or documents that your systems have to store and protect. AffixIO focuses on binary decisions and proof. It tells you whether a condition is met and gives you a way to prove that decision later, without storing unnecessary raw data.

Eligibility API

Privacy-Preserving Eligibility Verification API

Confirm whether someone is eligible for access, tickets or benefits without dragging raw personal data through every service. AffixIO returns a binary decision and an optional token you can attach to your own flows.

See an eligibility check request Learn about binary verification

Built for teams that want to minimise PII while still making high-trust decisions.

Eligibility verification path Privacy-first

🧾

Input / identifier

ticket, claim, user handle

request

⚙

AffixIO verification logic

rules, proofs, privacy controls

evaluate

✓

Binary result

eligible: true/false

yes/no

🎟

Expiring token

prove decision without raw data

token

Problem

Eligibility checks leak more data than they need

Many access and benefit flows collect far more personal data than the decision requires. This increases your compliance surface without improving the quality of your eligibility rules.

The result is duplicated PII in multiple systems, complex retention policies and higher risk when something goes wrong.

Concrete example

Checking benefit eligibility without oversharing

A program needs to know whether someone is eligible for a travel subsidy. The decision depends on income band and residency status, but your application only needs to know whether to apply the discount.

With AffixIO, the underlying data can be evaluated inside the verification layer. Your system receives a binary answer and an optional token to attach to the ticket or booking, without storing the raw income or address data.

How it works

From input to binary decision and token

1. Send only the inputs required for the decision

The API accepts identifiers or minimal attributes needed for the rule set, such as a hashed user ID, program ID, and context.

2. Evaluate rules and proofs inside AffixIO

AffixIO applies configured rules, checks proofs, and determines whether the conditions are met. Where possible, evaluation can be stateless and based on cryptographic proofs rather than stored records.

3. Return a yes/no decision plus optional token

The response contains a simple eligible flag, optional reason codes, and a short-lived token that can be attached to tickets, passes or sessions.

4. Verify tokens without re-exposing raw data

Other systems can verify the token with AffixIO to prove that an eligibility check was performed, without re-sending the original PII. This supports binary eligibility models described in Binary Eligibility Verification Without Storing Personal Data.

Minimise PII in your own systems

Get clear, binary decisions

Prove decisions later with tokens

Align with modern privacy expectations

Architecture

Input → verification logic → yes/no → expiring token

The architecture below shows the main components of a privacy-preserving eligibility flow. It can be used for tickets, access control, benefits or any other binary eligibility question.

Eligibility verification architecture Binary & private

🧾

Client / service

sends minimal input

request

⚙

AffixIO decision logic

rules, proofs, policies

evaluate

✓

Binary eligibility

eligible true/false

yes/no

🎟

Expiring token

used across systems

proof

Code example

Eligibility check request returning yes/no and token

The example below shows a simple HTTP request to a privacy-preserving eligibility endpoint and how to use the response in your application.

POST /eligibility/check JSON / TypeScript

// Request
POST https://api.affix-io.com/eligibility/check
Authorization: Bearer AFFIXIO_API_KEY
Content-Type: application/json

{
  "program_id": "travel-subsidy-v1",
  "subject_id": "user-12345-hash",
  "context": {
    "route": "CITY-A_CITY-B",
    "channel": "web",
    "request_id": "req_01H..."
  }
}

// Response
{
  "eligible": true,
  "reason": "within_income_band",
  "token": "elig_eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9...",
  "expires_at": "2026-03-16T12:00:00Z"
}

// Application usage (TypeScript)
const res = await fetch('/api/eligibility/check', { /* proxy to AffixIO */ });
const body = await res.json();

if (!body.eligible) {
  showIneligibleMessage(body.reason);
} else {
  applySubsidyToBasket();
  attachEligibilityToken(body.token);
}

For more on yes/no-only patterns that avoid local data storage, see Binary Eligibility Verification Without Storing Personal Data.

FAQ

Questions about privacy-preserving eligibility verification

What kinds of use cases fit a binary eligibility API?

Typical examples include ticket validity, benefit programs, access tiers, age checks, discount eligibility and feature flags for regulated functionality. Anywhere your downstream system only needs a yes/no answer is a good candidate.

Can I still run complex rules if I only get a yes/no back?

Yes. The complexity lives in AffixIO's rule engine and proof logic. Your application sees the outcome and, optionally, a small set of reason codes for analytics and UX.

How does this relate to binary eligibility verification pages?

This page focuses on the API buyers view. For a deeper conceptual overview of yes/no-only models and data minimisation, see Binary Eligibility Verification Without Storing Personal Data.

Can eligibility checks work offline as well?

Yes. Eligibility tokens can be pre-issued and verified offline at the edge, then synced later. The same patterns used in our offline payment pages can be applied to offline eligibility and access control.

Next step

Bring binary, privacy-first eligibility into your stack

AffixIO's eligibility API is built for teams that want clear decisions and strong privacy. It fits naturally alongside our payment and access control layers.

Talk to us about eligibility APIs