Link Search Menu Expand Document

What are Tenants?

Everything starts with a Tenant in your Basis Theory account. This is an isolated environment where your Tokens and Applications are defined, managed, and stored. Data is not shared between Tenants, but you’re allowed to create as many Tenants as you’d like within Basis Theory. You can use multiple Tenants to isolate different domains of data, and to support your Software Development Life Cycle (SDLC).

How It Works

To create a new Tenant, you’ll need to login to your Basis Theory Account and click on the Tenant name you are currently logged in to. Click on “Create new Tenant” from the dropdown to create a new Tenant:

You are now able to create a blank new Tenant, by entering a Tenant name:

From here, you’ll be able to create new Applications which will allow you to authenticate and be granted authorization to create new Token data and integrations.

Common Use Cases

Software Development Life Cycle Tenants

In software development lifecycles, companies typically create separate and identical systems that isolate each type of environment. For example, developers and teams create Production environments to house their actual customer data and multiple non-Production environments to enable fast and quick development of their applications without worrying about breaking their Production systems. Basis Theory allows you to create these logical separations of data by creating a new Tenant for each environment:

Separating Business Unit data

Many large enterprise and corporate organizations have multiple business units or properties which have different data needs. Some business units won’t want other parts of the organization to have access to their data. Creating a Tenant for each business unit enables your organization to allow to isolate or share access to their data by granting an Application to other units within the organization.

Tenant Settings

Deduplicating Tokens

You’re able to deduplicate Tokens on creation via a Tenant setting and when creating a Token. When we find that fingerprint, impact_level, and classification of an incoming Token match another, we consider the incoming Token to be a duplicate. In the case of any duplicates we’ll return the existing Token instead of creating a new one. Setting deduplicate_token on the request will override any settings at the Tenant level.


Can I share a Tenant’s Tokens between multiple systems?

Yes, you can use different Applications and Permissions to allow your systems to integrate directly with the same Tenant.

Can I invite other people to join my tenant?

Yes, new members can be invited to an existing Tenant through the “Members” tab in the Portal. Managing Tenant Members can also be done directly through the API.