Best Practices

Guidelines for performance, security, and data freshness.

Performance

Use pagination (limit) for large datasets
Cache aggregations for frequently accessed data
Use filter parameters (minRating, sentiment, language) for specific queries

Security

Store API keys securely (e.g., env vars)
Use HTTPS in production
Never share API keys publicly

Rate Limiting

The Public API has plan-based monthly rate limits:

STARTER: 300 requests/month
GROWTH: 10,000 requests/month
SCALE: 50,000 requests/month

Limits are reset monthly (on the 1st of the month).

Rate limit information is returned in response headers:

X-RateLimit-Limit - Maximum allowed requests per month
X-RateLimit-Remaining - Remaining requests in the current month
X-RateLimit-Reset - Unix timestamp (seconds) when the limit resets
X-RateLimit-Reset-After - Seconds until reset

When the limit is exceeded, HTTP 429 (Too Many Requests) is returned.

CORS

The Public API supports CORS for all origins (*).

Allowed Methods: GET, OPTIONS
Allowed Headers: Content-Type, x-api-key

Data Freshness

Reviews are automatically synchronized by default
The API provides the latest available data