DocumentationAPI Reference
API ChangelogOpenAPI SpecStatus


Security is at the core of our culture and we have operated from a security-first mentality from day one.

Persona's security philosophy follows three principles:

  • Building defense-in-depth against external threats
  • Protecting against human error
  • Guarding against misuse of insider access

For more information about our security measures, see our Security Statement or contact us.

Domains and IP addresses

API access IP restrictions

If you are calling our external API with static IP addresses and want an additional layer of security beyond API key based authorization, you can restrict the IPs that Persona accepts requests from. To add IP addresses to the allowlist, visit the API Key Configuration section within the Persona dashboard.

Webhook and Workflow requests

The full list of IP addresses that webhook and workflow requests may come from is:


New IP Addresses

On March 6, 2024, Persona will expand our public IP addresses for traffic from webhooks and workflows. The changes are:

  • Add to Germany.
  • Add India.
  • Add,,,,,, to United States.

These additions are already reflected in the lists below.



United States