# Getting Started

PIS keeps it consistent and simple across all API resources, as all HTTP requests to the API are required to contain the following:

**Secret-Key** must always be included in the request header. PIS uses it in locating your account and authorizing your request. An error will be returned if:

1. You do not include your Secret-Key in the header request.
2. The Secret-Key is incorrect or outdated (when replaced by a regenerated key, perhaps due to compromise).
3. The Content-Type is not supported.

Requests and responses are sent and served in JSON respectively, as the content type will always be **application/json**.