An API key lets you connect Omnisend to third-party apps (like custom forms, CRMs, or middleware tools) and pass data back and forth via API.
In this article, you'll learn how to create an API key and configure its permissions.
Before You Begin
When you need an API key: Integrating Omnisend with apps that aren't in our native integrations library (e.g., custom contact forms, Zapier workflows, or developer tools).
What it does: Authorizes external apps to access specific Omnisend data (Contacts, Campaigns, Orders, etc.) based on permissions you set.
Creating an API Key
Step 1. Go to Store Settings → API keys → click Create API key.
Step 2. Type the name of the app you're connecting (e.g., Zapier, Typeform, or your custom integration).
If Omnisend recognizes the app, you'll go through a quick setup wizard instead of creating the key manually.
Step 3. Select API key permissions.
If you were not moved to the app installation step after typing the app's name, proceed with the process and choose the permissions the key should have.
There are a few options you can check. The permissions allow access to the following data:
Campaigns – downloading reports and recipient lists
Contacts – creating, editing, downloading, and deleting contacts
Orders – creating, editing, downloading, and deleting orders
Products – creating, editing, downloading, and deleting products
Carts – creating, editing, downloading, and deleting carts
Events – triggering and retrieving custom events for Automation Workflows
Permissions are created to ensure your API key only passes through the information you want and does not abuse your integration. You can create a different combination of the permissions, for example, a key that has access only to Contacts data and cannot reach Products or Campaigns.
These permissions are helpful when you're integrating Omnisend extensively into your store. See our documentation for more information about API integration.
Step 4. Click Create API key → Copy AI key and use it for your integration.
⚠️ Important: You can't view the key again after closing this screen. If you lose it, generate a new one
Understanding API Key Permissions
Permissions control which Omnisend data the API key can access.
For example, a key with only Contacts access cannot modify Campaigns or Products. This prevents unauthorized access to sensitive data.
You can create multiple keys with different permission sets – for instance, one key for a contact form (Contacts-only) and another for a reporting tool (Campaigns + Orders).
💡 Tip: When integrating Omnisend with complex workflows, review our full API documentation for advanced use cases.
FAQ
How many API keys can I create?
No limit. Create separate keys for each integration to track usage and revoke access if needed.
Can I revoke an API key?
Yes. Go to Store Settings → API Keys, find the key, and click Delete.
Are API keys case-sensitive?
Yes. Copy and paste the key exactly as shown to avoid errors.
If you need help, remember that we are here for you 24/7 at [email protected] and in-app chat.