Integrating Barclays US: cards, savings, FICO

The same username that opens a Barclays co-branded credit card also opens an Online Savings or CD account at Barclays Bank Delaware — one credential, two distinct backend systems. That is the whole integration problem in one sentence. A cardholder sees statements, a transaction ledger, a Spend Analyzer rollup, a rewards balance and a FICO® Score; a saver sees deposit balances, CD interest disbursements, and scheduled or recurring external transfers. We map both sides and hand back source code that reads them under the account holder's consent.

Bottom line: this is a multi-product portal behind a single set of credentials, not a single feed. The route that works today is consent-based access against a real account. We build to that and design around the split between the cards platform and the deposit platform from the first commit.

Data the app holds per cardholder and saver

Each row below is a surface the app actually presents to its users, named the way Barclays names it where the listing and help center make that clear.

Data domain	Where it originates in the app	Granularity	What an integrator does with it
Card transactions	Credit-card account view	Per-posting: date, merchant, amount, status	Spend ledgers, reconciliation, expense feeds
Statements	Statements section (app or web), APR shown on the monthly statement	Per statement period, downloadable document plus line items	Statement archival, APR and balance tracking
Spend Analyzer	Card spending tool	Category rollups over a period	Mirror or compare against your own categorization
FICO® Score	Free credit-score feature	Single score, TransUnion-sourced, refreshed roughly monthly	Score monitoring, change alerts, lending signals
Rewards balance	Rewards view on co-branded cards	Current balance and redemption history where shown	Loyalty reconciliation, redemption automation
Online Savings / CD	Barclays Bank Delaware deposit platform	Balances, rate tier, CD interest disbursement schedule	Cash-position sync, treasury and savings dashboards
External transfers	Linked-account transfer flow	Scheduled, recurring, one-off; pending vs verified states	Movement tracking, payout and funding automation
Account & beneficiary profile	Profile / beneficiary update screens	Holder details, linked external accounts, beneficiaries	KYC-adjacent enrichment, relationship mapping

Getting at that data: the route we'd run

Three routes genuinely apply here. We state which one we would recommend and why, not all of them as equals.

1 — User-consented authorized interface integration

The account holder consents; we work the app and web client traffic under that authorization and implement the login, session and read calls as code. Reachable: everything the user sees — card transactions, statements, FICO®, Spend Analyzer, deposit balances, transfer state. Effort is moderate; durability is good as long as a re-check catches front-end redesigns. This is the route we recommend, because it reaches both the cards platform and the Barclays Bank Delaware deposit platform with one consent design and does not depend on a regime whose scope is currently in flux.

2 — User-consented aggregator connectivity

Barclays - Bank (US) is already listed read-only in Plaid's institution coverage, per its public connection guide. That path is fast to stand up and gives consented balances, transaction history and holder information, but it is read-only and narrower than the full portal — no Spend Analyzer rollups, no statement documents, no transfer-state machine. Useful as a fast first slice or a fallback if a deeper read needs staging.

3 — Native export

Statements are downloadable from the app and web. Where a workflow only needs periodic statement documents, scripted retrieval of those exports is the lowest-effort option and survives most front-end change. It is a complement, not a substitute, for routes 1 and 2.

Access, the consenting account and any sandbox are arranged with you during onboarding — that setup is part of the engagement, handled by us, not something you clear before we start.

A login-and-statement call, sketched

Illustrative pseudo-code for route 1, reflecting the session-plus-MFA shape a US bank client of this kind uses. Exact field names and the MFA step are confirmed during the build against a consenting account.

# 1. Authenticate: username/password then step-up (OTP / device challenge)
session = client.post("/auth/login", json={
    "username": USER, "password": SECRET, "deviceId": DEVICE
})
if session.json().get("status") == "MFA_REQUIRED":
    client.post("/auth/mfa", json={
        "challengeId": session.json()["challengeId"],
        "code": otp_code            # supplied by the consenting holder
    })
# session cookie now bound to the client; no credential is stored

# 2. Enumerate products this consent actually unlocks
products = client.get("/customer/accounts").json()["accounts"]
#   -> may be card-only, deposit-only, or both — do not assume

# 3. Statement period list for a card account
stmts = client.get(f"/cards/{acct_id}/statements",
                    params={"from": "2025-01", "to": "2025-12"}).json()

for s in stmts["periods"]:
    doc = client.get(s["documentUrl"])           # PDF / structured doc
    txns = client.get(f"/cards/{acct_id}/statements/{s['id']}/transactions").json()
    store(normalize(txns))                        # -> unified schema

# 4. Slow-moving fields polled on their own cadence
fico = client.get("/credit/fico-score").json()   # TransUnion-sourced, ~monthly

# Error handling: 401 -> re-auth + re-consent; 429 -> backoff;
# 409 on a pending external transfer -> poll the verify state machine

What lands at the end of the build

Tied to the surfaces above, not a generic checklist:

An OpenAPI/Swagger spec covering login, MFA step-up, account enumeration, card transactions, statement retrieval, FICO® read and deposit-balance read.
A protocol and auth-flow report: the session/cookie chain, the MFA challenge, token lifetime, and the re-consent trigger when a session is rejected.
Runnable source for the key endpoints in Python or Node.js, including the external-transfer pending/verified state machine.
A normalized schema that reconciles card transactions and the Spend Analyzer categories, plus deposit and CD interest records.
Automated tests against a consenting account and interface documentation a maintainer can pick up cold.
Compliance and data-retention guidance written for consented financial data — consent records, logging, data minimization.

Engineering specifics we plan around

These are things we account for and handle, not conditions you have to satisfy first.

The shared-credential split. A Barclays card login and a Barclays Online Savings/CD login can be the same username yet route to different backends — the cards portal versus the Barclays Bank Delaware deposit platform. We probe which product set a given consent unlocks and build the client so a card-only or deposit-only account does not look like a failure.
FICO® cadence. The score is TransUnion-derived and refreshes roughly monthly with an email trigger, per the Barclays US help center. We treat it as a periodic field and align the poll to that cadence, so a feed consumer never reads a stale score as a defect.
External-transfer verification. Linking an external account uses micro-deposit test deposits — two amounts under a dollar that settle in two to three business days, per the Barclays Online Savings FAQ. We model transfer setup as an async state machine with an explicit pending/verified gate rather than a single synchronous call.
Two front ends, maintained apart. The cards client and the banking client change independently. We keep a contract check running so either side's redesign surfaces in maintenance before it reaches the data feed.

Pricing

Source code for the Barclays US integration starts at $300, invoiced only after delivery once you have run it against your own consenting account and are satisfied. That is the first model. The second is a pay-per-call hosted API: we run the integration, you call our endpoints and pay only for the calls you make, with no upfront fee. Either way the first runnable deliverable is back within one to two weeks. Tell us the app and what you need from its data on the contact page and we set up access and scope with you from there.

Where this data lands in practice

A personal-finance app pulls a consenting user's card transactions and Online Savings balance into one net-worth view, refreshing the FICO® Score on its monthly cadence.
An expense platform mirrors the Spend Analyzer categories against its own rules to flag mis-categorized business spend on a co-branded travel card.
A treasury tool tracks CD interest disbursements and scheduled external transfers to forecast cash position across linked accounts.
A lending workflow reads the TransUnion-sourced FICO® signal and statement history under consent to pre-qualify an existing Barclays customer.

Screens we mapped against

Public Play Store screenshots used while sketching the surfaces above. Select one to enlarge.

Questions integrators ask about Barclays US

Does one consent cover both the Barclays credit card side and the Online Savings/CD side?

Not automatically. A Barclays credit-card login and a Barclays Online Savings or CD login can share the same username, but they sit on different backend systems — the cards portal and the banking.us.barclays deposit platform. A single consenting session may surface only the products that credential is enrolled in, so we detect which product set a given consent unlocks rather than assuming it reaches everything.

How fresh is the FICO Score you can read from the app?

It is slow-moving. Per Barclays' US help center the FICO Score is derived from a TransUnion credit report and refreshes roughly monthly, with an email alert when it changes — not a value you can poll for daily movement. We model it as a periodic field and align the sync to that cadence so downstream consumers do not treat a stale score as a fault.

What does the Spend Analyzer give an integrator that raw card transactions do not?

The Spend Analyzer is a categorized rollup of card spending the app computes for the user. Raw statement transactions are the underlying ledger. We can deliver either: the normalized transaction stream as the source of truth, the app's own category buckets mirrored, or both side by side so your reconciliation can compare them.

We already have a consenting Barclays US account — what happens first?

You give us the app name and what you want out of its data. Access and the consenting account are set up with you during onboarding, the build runs against that account, and the first runnable deliverable is back within one to two weeks.

How this brief was put together

Checked in May 2026 against the app's Play Store listing, the Barclays US help center and Online Savings FAQ, public aggregator coverage for Barclays - Bank (US), and the CFPB's current rule-reconsideration page. Sources opened:

Mapping reviewed for the OpenBanking Studio integration desk, May 2026.

App profile — Barclays US

Barclays US is the US mobile banking app published under package com.barclaycardus (per its Google Play listing), serving Barclays co-branded credit cards and Barclays Bank Delaware Online Savings and CD accounts. It offers biometric login, digital-wallet provisioning (Google Pay, Samsung Pay), customizable notifications, direct deposit, online transfers between linked accounts, card lock, statement access, a Spend Analyzer, a rewards view and a free FICO® Score sourced from TransUnion. FICO is a registered trademark of Fair Isaac Corporation.