Welcome to Tomba Docs! Create a free Tomba account and gain instant access to 400+ million contacts!

Tomba

The Tomba API provides programmatic access to email discovery, verification, enrichment, and company intelligence workflows. Find professional emails, validate deliverability, retrieve sources, and automate prospecting at scale using simple REST endpoints.

Getting Started

To begin, send authenticated requests using your API credentials in the request headers. Start with domain search or email finder, then verify addresses and enrich contacts as needed for your workflow.

Code
curl -X GET 'https://api.tomba.io/v1/email-finder?domain=tomba.io&first_name=emily&last_name=harris' \
  -H "X-Tomba-Key: your_api_key" \
  -H "X-Tomba-Secret: your_api_secret"

Rate Limits

Plan	Requests/min	Burst
Free	60	10
Pro	600	50
Enterprise	Custom	Custom

Rate limit details are documented at Rate Limits. If you need higher throughput, upgrade your plan.

Rate Limit Headers

Each API response includes these headers:

X-RateLimit-Limit: Total requests allowed in the current window (example: 15)
X-RateLimit-Remaining: Requests left in the current window (example: 14)
X-RateLimit-Reset: Seconds until the limit resets (example: 1)

When X-RateLimit-Remaining reaches 0, the next request returns 429 Too Many Requests until the reset window expires.

Authentication

All endpoints require both authentication headers: X-Tomba-Key and X-Tomba-Secret. Requests without valid credentials return unauthorized errors.

Versioning

The current stable API base URL is https://api.tomba.io/v1. Backward-compatible improvements may be released without changing the major version path.

Support

For questions, troubleshooting, or integration help, contact support at info@tomba.io or visit the documentation at https://docs.tomba.io.