Pluto Money API integration & OpenFinance data services
Protocol analysis, UPI autopay sync, digital gold and P2P scheme statement APIs for India's micro-savings ecosystem
Connect Pluto Money savings, investments, and UPI autopay flows to your stack — under authorized access
Pluto Money: Auto Investment (com.station91) is a goal-based savings and micro-investment app that auto-debits ₹100–₹1,000+ via UPI autopay from PhonePe, GooglePay, or Paytm and routes funds into four schemes: Pluto Fixed (10–14%), Pluto Plus (10%), Pluto Gold (12% in 24K digital gold), and Smart Savings (10–14% with P2P RBI-certified assets). Each user account is a rich, structured store of financial signals — autopay mandates, transaction history, scheme allocations, gold gram balances, P2P loan exposures, KYC state, and withdrawal events — that enterprise stacks frequently need to mirror or reconcile.
Feature modules — concrete API surfaces for Pluto Money
1. Authentication & session
Phone-number login + OTP, followed by long-lived session tokens. We mirror the app's bind/refresh sequence, persist tokens server-side under your secret store, and surface a clean POST /pluto/auth/start + POST /pluto/auth/verify pair. Used to bootstrap any downstream call without needing the original device.
2. UPI autopay mandate sync
Mirrors the e-mandate flow used to set up recurring debits from PhonePe / GPay / Paytm. Exposes UMN, debit frequency (daily/weekly/monthly), max amount, current status, and last debit timestamp. Use it for reconciling Pluto debits against bank statements or AA-pulled account history.
3. Scheme allocation API
Read-only listing of the user's four schemes — Pluto Fixed, Pluto Plus, Pluto Gold, Smart Savings — plus principal, accrued return, lock-in flag, and projected maturity. Drives wealth dashboards, household-level CFP tools, and tax-prep workflows.
4. Digital gold holdings
Surfaces 24K gold gram balances stored in insured vaults (Augmont partnership), live buy/sell rates, conversion-to-physical eligibility, and per-purchase invoices. Useful for wealth aggregators and Sovereign Gold Bond (SGB) comparison tools.
5. P2P RBI-certified pool exposure
Returns aggregated P2P loan pool exposure, expected yield, and disbursement dates. Mapped to RBI's NBFC-P2P framework so downstream systems can apply concentration limits and category-level risk caps.
6. Withdrawal & instant payout
Triggers and observes withdrawal events. Honours the documented 24-hour minimum holding window, captures instant-payout status (success / pending / failed), and emits webhook events into accounting or notification stacks.
Data available for integration (OpenData inventory)
The table below maps the structured data Pluto Money holds to the most common downstream usage. Volumes and field names come from the public app description, screenshots, and our own protocol analysis — no proprietary or unauthorized values are listed.
| Data type | Source / screen | Granularity | Typical use |
|---|---|---|---|
| UPI autopay mandate | Onboarding · "Setup Autopay" | One row per UMN; status, frequency, max amount | Reconciliation, mandate-migration, treasury reporting |
| Recurring debit transaction | Home · "Transactions" | Per-debit; UTR, scheme, amount, ts | Bookkeeping sync, GST/MIS feeds |
| Scheme allocation | Portfolio · per-scheme card | Principal, return-to-date, lock-in flag | Wealth dashboards, household NAV roll-ups |
| Digital gold balance | Pluto Gold tab | Grams (4 dp), invoice id, vault id | Aggregator portfolio, SGB comparison, tax basis |
| P2P pool exposure | Smart Savings tab | Pool id, allocated amount, yield | Concentration risk, RBI NBFC-P2P limit checks |
| Withdrawal event | "Withdraw Savings" CTA | Amount, IFSC/bank, payout status | Cashflow forecasting, AML monitoring |
| KYC & consent | Profile · KYC step | PAN linkage, KYC stage, consent timestamps | Audit, AA-style consent ledgering |
| Wheel of Savings rewards | Spin · post-transaction | Spin id, cashback, doubled-amount flag | Engagement analytics, marketing attribution |
Typical integration scenarios
Scenario A — Wealth dashboard roll-up
Business context: A neobank wants to show a unified "all goals" view that includes the user's Pluto Money balances next to their bank deposits and mutual-fund SIPs.
Data & APIs: GET /pluto/portfolio returns the four scheme cards (Fixed, Plus, Gold, Smart Savings) with principal, return-to-date, and lock-in flag. The neobank merges this with its Account Aggregator pull of bank balances.
OpenFinance mapping: Each scheme is normalised into the AA's FI_DEPOSIT / FI_INVESTMENT shape so it joins consent-based bank data without schema drift.
Scenario B — Autopay mandate reconciliation
Business context: A finance team needs to confirm that every Pluto debit on the corporate director's bank statement matches a live UMN; rogue debits trigger immediate revocation.
Data & APIs: GET /pluto/mandates returns UMN, frequency, max amount, status; webhook mandate.debited fires per debit and is matched against the bank statement feed.
OpenFinance mapping: Each UMN is treated as the canonical key; bank-side debits are joined on UTR, leveraging NPCI's UPI 2.0 e-mandate fields.
Scenario C — Digital gold & SGB comparison
Business context: A wealth advisor compares a client's 24K digital-gold position on Pluto with Sovereign Gold Bonds before recommending a tax-efficient swap.
Data & APIs: GET /pluto/gold/holdings returns gram balance and weighted-average buy rate; GET /pluto/gold/quote returns live sell rate. Combined with public SGB rates, the advisor scores tax/yield differentials.
OpenFinance mapping: Holdings serialise into a generic commodity_holding primitive consumable by any portfolio engine.
Scenario D — P2P concentration risk monitor
Business context: A family-office tracks total P2P-NBFC exposure across multiple platforms (Pluto Smart Savings, Liquiloans-style platforms, etc.) to stay under RBI's per-investor cap.
Data & APIs: GET /pluto/p2p/exposures returns pool-level allocations; the monitor sums them across platforms and alerts if the cap is approached.
OpenFinance mapping: Pool-level data is folded into a normalized p2p_exposure object aligned with the RBI NBFC-P2P circular's risk fields.
Scenario E — Compliance & AML audit
Business context: A compliance officer reviewing a client's KYC reuses Pluto's already-verified PAN linkage and produces a consent ledger for regulators.
Data & APIs: GET /pluto/kyc returns KYC stage, PAN linkage hash (not the PAN itself), and consent timestamps; the audit tool stores these as an immutable record.
OpenFinance mapping: Consent records mirror the AA's FIU_CONSENT shape, so existing AA tooling can render them without modification.
Technical implementation — sample API snippets
1. Phone-number login (start & verify)
POST /api/v1/pluto/auth/start
Content-Type: application/json
{
"phone": "+91XXXXXXXXXX",
"device_fingerprint": "<sha256>"
}
// 200 OK
{ "session_id": "ses_a1b2", "otp_sent": true, "ttl": 120 }
POST /api/v1/pluto/auth/verify
Authorization: Bearer <PARTNER_KEY>
{
"session_id": "ses_a1b2",
"otp": "482917"
}
// 200 OK
{
"access_token": "eyJhbGciOi...",
"refresh_token": "rtk_...",
"expires_in": 3600,
"kyc_status": "verified"
}
2. Statement query (paged, by scheme)
POST /api/v1/pluto/statement
Content-Type: application/json
Authorization: Bearer <ACCESS_TOKEN>
{
"scheme": "PLUTO_GOLD",
"from_date": "2026-01-01",
"to_date": "2026-04-29",
"page": 1,
"page_size": 50
}
// 200 OK
{
"page": 1,
"total": 124,
"rows": [
{
"ts": "2026-04-28T03:30:11+05:30",
"type": "AUTOPAY_DEBIT",
"amount": 100.00,
"umn": "UPI/MNDT/...",
"utr": "428913001234",
"gold_grams": 0.0114,
"rate": 8771.50
}
]
}
3. Webhook — autopay mandate event
POST https://your-app.example.com/webhooks/pluto
X-Pluto-Signature: t=1714377600,v1=2c4a...
Content-Type: application/json
{
"event": "mandate.debited",
"mandate": {
"umn": "UPI/MNDT/abcd1234",
"frequency": "MONTHLY",
"amount": 1000.00,
"currency": "INR",
"scheme": "PLUTO_FIXED",
"status": "DEBIT_SUCCESS",
"utr": "428913009999",
"ts": "2026-04-29T05:00:00+05:30"
}
}
// Verify HMAC-SHA256 over (timestamp + "." + raw_body)
// Reject if drift > 5 min or signature mismatch.
Compliance & privacy
Every integration we ship for Pluto Money runs under an explicit user-authorization boundary and aligns with the regulations relevant to Indian micro-investment apps:
- RBI Account Aggregator (AA) framework — consent-driven data flow modelled after the FIU/FIP roles, with per-purpose consent and time-bound access. Over 4 million AA consents have been issued since 2023, and our pipelines mirror those consent fields one-to-one.
- NPCI UPI 2.0 e-mandate rules — autopay flows respect the regulated processing window introduced by NPCI on 1 August 2025 and the per-mandate amount caps. We never bypass mandate revocation.
- RBI NBFC-P2P circular — P2P exposure data is aggregated at pool level and tagged with category limits so downstream systems can enforce per-investor caps automatically.
- Digital Personal Data Protection Act (DPDP), 2023 — data minimization, purpose limitation, and breach-notification expectations are wired into our consent ledger and retention defaults.
- KYC / PAN handling — PAN is stored only as a one-way hash on our side; full PAN never leaves the original consent boundary.
NDAs, data-retention windows, and right-to-erasure flows are configured per client during scope confirmation.
Data flow / architecture
The reference pipeline is intentionally small — three or four nodes — so it slots into existing fintech stacks without forcing infrastructure changes:
- Client side — Pluto Money mobile app or our authorized API client holds the session token and originates calls.
- Ingestion / API gateway — our hosted endpoints (or your self-hosted deployment) handle auth, rate limiting, and signature verification; webhook deliveries are HMAC-signed.
- Storage — partitioned by user_id and event_date; encrypted at rest; PAN/UMN/UTR fields are tokenized.
- Analytics / API output — REST + webhook fan-out into your wealth dashboard, accounting system, AML monitor, or BI warehouse.
Market positioning & user profile
Pluto Money targets Indian retail savers — typically 22–40 years old, salaried or freelance, comfortable with UPI but new to mutual funds — who want auto-debited, goal-based savings starting at ₹100. The app is marketed primarily on Android in India, with an iOS build available in the UAE App Store, and the description explicitly positions it as an alternative to apps like InvesTap. Integration buyers tend to be B2B fintech players: neobanks looking to embed savings, wealth advisors building unified household views, and corporate finance teams reconciling employee-side recurring debits. Because Pluto's value sits at the intersection of UPI autopay, digital gold, and P2P RBI-certified pools, partners frequently need a single API surface that spans all three asset classes — which is exactly what our delivery covers.
Screenshots
Tap any thumbnail to view the full-size screenshot. These visuals reflect the in-app surfaces — autopay setup, scheme cards, the Wheel of Savings — that map directly to the data inventory above.
Similar apps & integration landscape
Buyers who care about Pluto Money data almost always care about the rest of the Indian micro-savings stack. The apps below are part of the same ecosystem; we list them so customers searching for any of these can also see how a unified, OpenFinance-style integration covers them. We do not rank or critique these apps — they are simply neighbours in the same data landscape.
Round-up digital gold savings app. Holds gold-gram balances and round-up event histories — teams that integrate Pluto Money often want a unified gold-grams export across both platforms.
Micro-SIP app starting at ₹1, with regional language coverage. Stores SIP mandates and digital-gold positions, frequently joined with Pluto data in household wealth dashboards.
Spare-change mutual-fund and FD app. Its transaction-rounding records pair naturally with Pluto's autopay debits when building a single "automatic savings" report.
Goal-based digital-gold savings via UPI autopay (PhonePe, BHIM, Paytm). Same UMN-driven mandate pattern as Pluto, so reconciliation logic ports cleanly.
Spare-change investment platform that holds rounded-up balances before sweeping them into chosen instruments — relevant when modelling pre-investment "carts" alongside Pluto allocations.
Game-based saving with two pots: Fello Flo and digital gold. Teams that consume Pluto's gold-balance API frequently want the same shape from Fello for like-for-like dashboards.
AI-driven daily savings with goal-based micro-saving and expense tracking. Its goal-state data complements Pluto's scheme-allocation feed in financial-wellness products.
Neobank with "FIT Rules" auto-savings (e.g. save on each Swiggy order). Often integrated alongside Pluto when building unified bank-plus-savings views.
Lending and digital-gold savings platform. Its gold and credit data sits naturally next to Pluto's P2P pool exposure when running concentration-risk monitors.
Goal-based saver allowing investments in digital gold and mutual funds. Common neighbour of Pluto Money in household wealth roll-ups.
What we deliver
Deliverables checklist
- OpenAPI / Swagger spec covering auth, mandate, statement, gold, P2P, withdrawal endpoints
- Protocol & auth flow report (OTP login, token refresh, signature scheme)
- Runnable Python and Node.js source modules with unit tests
- HMAC-signed webhook receiver template plus replay-protection example
- Compliance brief covering AA, UPI 2.0 e-mandate, RBI NBFC-P2P, and DPDP 2023 alignment
- Postman collection and curl recipes for every endpoint
Engagement workflow
- Scope confirmation — pick the modules you actually need (e.g. mandate sync only, or full portfolio).
- Protocol analysis & API design (2–5 business days).
- Build & internal validation (3–8 business days).
- Documentation, sample clients, and test cases (1–2 business days).
- Typical first delivery: 5–15 business days, depending on third-party approvals.
About us & contact
About our studio
We are an independent technical studio specialising in App interface integration and authorized API integration. Our engineers come from banks, payment gateways, protocol-analysis labs, and cloud infrastructure teams, and have shipped Indian-fintech integrations for years. We understand UPI 2.0, NPCI, RBI, and the Account Aggregator framework, and we ship end-to-end financial APIs under explicit privacy and compliance constraints.
- Coverage across payments, digital banking, insurtech, and cross-border clearing
- Enterprise API gateways, signature schemes, and security reviews
- Custom Python / Node.js / Go SDKs and test harnesses
- End-to-end pipeline: protocol analysis → build → validation → compliance
- Source code delivery from $300 — runnable API source plus full documentation; pay after delivery upon satisfaction
- Pay-per-call API billing — access our hosted endpoints, pay only for the calls you make, no upfront cost
Contact
For quotes, sandbox access, or to submit your target app and requirements, open our contact page:
We respond on the same business day in most cases. NDAs are available on request before any code or protocol material is exchanged.
FAQ
What do you need from me to start?
Do you handle compliance review?
How is data secured in transit and at rest?
Can I switch from source-code delivery to pay-per-call later?
Long-tail keywords this page targets
- Pluto Money API integration India
- UPI autopay mandate export OpenFinance
- Digital gold holdings statement API
- P2P RBI-certified scheme data extraction
- Account Aggregator-aligned micro-savings sync
📱 Original app overview (appendix)
Pluto Money: Auto Investment (package com.station91) is an Indian goal-based savings and micro-investment app. Users mention financial goals and a monthly savings amount; Pluto Money smartly auto-invests the amount into the savings scheme of their choice to help beat inflation and target a positive return. The app is marketed as one of India's safest smart savings apps and an alternative to apps like InvesTap.
Schemes offered:
- Pluto Fixed — 10–14% return; minimum investment ₹1,000; varying lock-in periods.
- Pluto Plus — 10% return; minimum investment ₹500; no lock-in period.
- Pluto Gold — 12% average return; minimum investment ₹100; no lock-in period; 24K digital gold.
- Smart Savings — 10–14% returns; minimum investment ₹100; no lock-in; P2P RBI-certified P2P assets.
Onboarding flow:
- Login with phone number to create a Pluto account.
- Set up UPI autopay from PhonePe, GooglePay, or Paytm.
- Pluto saves money daily or monthly into the chosen scheme.
- Tap "Withdraw Savings" for instant payout to the bank account.
Wheel of Savings: Each transaction earns a spin on the in-app Wheel of Savings, with chances to double the saved amount or win cashback.
Eligibility & KYC: Any Indian citizen aged 18+ with a bank account and a UPI provider can sign up. KYC verification is required before saving begins.
Withdrawals: No minimum lock-in beyond a 24-hour holding window after investment; balance can be withdrawn instantly to the linked bank account.
Digital gold partner: Storage in insured vaults via established gold partners (e.g. Augmont), with 24K purity and the option to convert to physical gold.
P2P: Pool funds from individual investors and allocate to RBI-aligned NBFC-P2P-style loans/projects on the platform.
Mission: Make saving and investing fun and rewarding for everyone.