Create an OTP consent form using your IYS Panel. Once the form is ready, submit it to IYS for approval.
2
Obtain IYS Approval
After IYS approves the form, it will be ready for use in API calls. The form ID provided by IYS will serve as the formId value in your requests.
3
Send the Consent Form to the User
Send an email or SMS to the user containing the OTP code. Use the API endpoint https://restapi.netmera.com/via/consent to share the code with the user.
4
Confirm API is used to submit the OTP
The user enters the OTP code they received. Use the API endpoint https://restapi.netmera.com/via/confirm to submit the OTP.
5
Confirmation Information Sent to the User
The user will receive a confirmation via email or SMS, detailing the permissions they selected and the status of their submission.
6
Consent Data Saved in Netmera
Netmera automatically saves the user’s permissions in the Netmera Panel. Synchronization occurs every 10 minutes to ensure the latest user preferences are reflected.
Consent Requests with OTP
1
Start the Consent Process
The process for obtaining ETK and/or KVKK begins by using the consent method. A consent request is sent to the recipient, which includes:
"Aydınlatma Metni" and "Onay Metni"
One-time password (OTP) for verification.
A requestId, which serves as a reference ID for the operation.
2
Recipient's Response
The recipient grants consent by responding with the OTP to the service provider. This confirms their approval for ETK and/or KVKK.
3
Verification
The confirm method is used to verify the OTP by submitting the recipient's OTP and the associated requestId.
4
Consent Finalization
If the provided OTP matches the one sent to the recipient:
ETK consent is recorded on behalf of the brand(s).
KVKK consent is recorded on behalf of the service provider.
5
Netmera Consent Update
After the consent is successfully validated, the recipient's ETK approval, including EMAIL/SMS notification preferences, is saved in the Netmera system.
ETK Consent Parameters
Parameter
Type
Description
Required
consentTypes
Array of Objects
Includes the consent type details.
Yes
title
String
Type of consent (e.g., ETK).
Yes
types
Array of Strings
Specifies the communication channel(s) through which the approval is requested.["ARAMA"] for phone calls
["MESAJ"] for messages
["ARAMA", "MESAJ"] for both
["EPOSTA"] for email
Yes
recipientType
String
Type of recipient (BIREYSEL or TACIR).
Yes
formId
String
ID of the form sent to the recipient.
Yes
recipient
String
Recipient's phone number or email address.
Yes
verificationType
String
Specifies the approval method (SMS or email OTP). For SMS, it is SMS_OTP, and for email, it is EPOSTA_OTP.
Yes
referenceID
String
This identifier is used to create or update user records in the Netmera system.
Yes
Sample ETK Requests
Notes:
Replace your_rest_api_key with your actual REST API key.
Ensure formId corresponds to a valid form ID from the IYS Web VIA Management portal.
Modify recipient with the actual recipient’s email or phone number based on your use case.
In case of a failed request, the response will include the following fields:
message (String): The error message that describes the issue with the request.
code (String): The error code from the IYS system indicating the specific issue.
value (String) (This field may return the invalid value depending on the type of error, or it may be omitted): The invalid value that caused the error.
Invalid ETK SMS OTP Request
Case:formId does not match the expected type for the given verificationType.
In case of a failed request, the response will include the following fields:
message (String): The error message that describes the issue with the request.
code (String): The error code from the IYS system indicating the specific issue.
value (String) (This field may return the invalid value depending on the type of error, or it may be omitted): The invalid value that caused the error.
Invalid KVK SMS OTP
Case: The recipientIdNumber field contains an improperly formatted ID number.
In case of a failed request, the response will include the following fields:
message (String): The error message that describes the issue with the request.
code (String): The error code from the IYS system indicating the specific issue.
value (String) (This field may return the invalid value depending on the type of error, or it may be omitted): The invalid value that caused the error.
