Bancassurance & Partner Portal — Host-to-Host Integration

Purpose of Host-to-Host

• Embed insurance sales journeys inside bank/partner channels via secure H2H + SSO.
• Share product catalogs, rating, eligibility, and offers tailored to the partner’s segment.
• Exchange quotes, applications, policy issuance, and payment status in real time.

Core Data Objects

• Partner Profile: partnerId, channel type (branch/app/web), capabilities, callback URLs
• Catalog & Offers: products, coverages, riders, eligibility, partner-specific bundles
• Lead & Application: leadId, applicationId, parties, risks, KYC status, consent
• Quote & Policy: quoteId, premium breakdown, policyNo, documents
• Payments: method (auto-debit, card, virtual account), status, reconciliation keys
• Incentives & Reporting: performance metrics, payouts (if applicable)
• Events: leadCreated, quoteGenerated, applicationSubmitted, policyIssued, paymentReceived

Example API Endpoints

Sample Embedded-SSO (OIDC) Flow

GET /partners/auth/sso?client_id=BANK-APP&redirect_uri=https://bank.app/callback&scope=openid profile email&state=xyz

Reference Flows

Security & Controls

• mTLS for server-to-server; OAuth2/OIDC for SSO; short-lived JWTs.
• Consent & privacy management; PII encryption and masking.
• Idempotency keys, replay protection, rate limiting.
• Granular RBAC (partner scope); audit for every document & action.

Monitoring & Audit

• Correlation-ID from app → portal → PAS/Rating/Payments.
• Dashboards: conversion, drop-off points, payment failures.
• Comprehensive audit of SSO sessions and consent changes.

What You Get

• Partner onboarding kit (OpenAPI + OIDC docs, mock server, Postman).
• Reference UI snippets for embedded journeys (web/app).
• Mapping templates for leads, quotes, applications, and payments.
• Reconciliation reports & sample BI dashboard.
• Annual maintenance incl. change requests; on-prem or cloud.