Best Practices

API Key Security

• Never commit keys
• Store in environment variables
• Rotate regularly
• Revoke if compromised

Error Handling

• Handle 400/401/403/429/500
• Retry with backoff where appropriate

Validation

• Validate phone numbers and payloads before sending

Performance

• Use bulk endpoints and throttle batches
• Avoid unnecessary special characters in SMS

Monitoring

• Track usage, quota, success/failure
• Set alerts for low quota