Unmasking in tokenization refers to the process of reversing the tokenization procedure to retrieve the original sensitive data from its tokenized form. It is the opposite of tokenization, where sensitive information is replaced with tokens to enhance security and privacy.

Note: To send a request with the authentication token, include the following in headers:

Headers: {"Authorization": "Bearer <AUTH_TOKEN>"}



Request Method: PUT

Request Payload:



token_value (string): The token for which the original value needs to be retrieved.


{"data":[{“token_value”:”2333”,”value”:”George Williams}]}

Response Parameters:

  • token_value (string): The original token that was provided in the request.

  • value (string): The original sensitive data value retrieved from the token.


Authorized Data Access: Unmasking allows authorized personnel to access the original, unmasked data when needed, while still keeping the data protected during other stages of processing or storage.

Note : Unmasking should be performed under strict controls, only by authorized individuals, and in compliance with data protection policies and regulations. Organizations should carefully weigh the benefits and risks of unmasking, based on their specific use cases and security requirements.

Last updated