# Support source: https://developer.mastercard.com/riskrecon-api/documentation/support/index.md ## FAQ {#faq} Any RiskRecon customer or alliance partner has access to the RiskRecon API. You may use either of these emails to contact a Mastercard representative: * If you are an existing customer and have a support question, reach out to [RiskRecon customer care](mailto:support@riskrecon.com). * If you are a new customer, reach out to your [Mastercard representative](mailto:sales@riskrecon.com). RiskRecon offers free trials. Please check out the [RiskRecon website](https://www.riskrecon.com/) to sign up or reach out to a [Mastercard representative](mailto:sales@riskrecon.com). If you have access to the RiskRecon portal and have been granted System Admin privileges, then you can generate an API key and start using the API endpoints. An API key can be generated within the **System Administration** page of the RiskRecon web portal. If you have any trouble please contact [RiskRecon customer care](mailto:support@riskrecon.com). Click [here](https://auth.riskrecon.com/users/sign_in) to log into the RiskRecon portal. If you are an SSO customer, you may be redirected to your SSO provider. Here are a couple of troubling shooting steps to follow: * Check API key expiration. * Verify that the user who created the API key is not deactivated. The user must remain active in order for the key to remain active. If these steps don't resolve your issue then please contact [RiskRecon customer care](mailto:support@riskrecon.com). The sandbox APIs are built on a static sample portfolio. Using the sandbox, you will be able to retrieve example data, but you won't be able to change the sandbox portfolio by adding or deleting TOEs, or setting internal names or IDs. In special cases, a production-like instance of your portfolio can be built for testing purposes by reaching out to the [RiskRecon customer care](mailto:support@riskrecon.com) or your [Mastercard representative](mailto:sales@riskrecon.com). The `Delete TOE` route is the only route with limitations as only 10 TOEs can be requested for deletion per day. There are no other requests with rate limits. The average response time for API requests is 181.4 ms. The `Delete TOE` endpoint has a request limit of 10 TOEs per day. Otherwise, there are no API requests with rate limits. RiskRecon uses OAuth 2.0 to authenticate and authorize API calls that you make. OAuth 2.0 is an authorization protocol that approves interactions between various entities required to make API calls. Learn more about it [here](https://developer.mastercard.com/riskrecon-api/documentation/api-basics/index.md). ## Get Help {#get-help} Contact us [here](mailto:support@riskrecon.com) for technical support.