## GET /api/v2/me/preferences

**Get account preferences**

Return the account settings snapshot used by the control panel: localization, security preferences, billing automation, invoice notification delivery, Peppol opt-out state, and generic dashboard/UI preference categories. For renewal invoice grouping, read `billing.separateInvoices.enabled`: `false` means consolidated monthly renewal invoices, while `true` means separate invoices per service or domain. For automatic card payments, read `billing.cardAutoCharge.status` and `billing.cardAutoCharge.enabled`; `configured: true` only means the preference is turned on, and `enabled` is false with `status: "needs_payment_method"` when no saved card exists. `notifications.delivery.overrideEnabled: false` means default delivery is used, so all supported categories are effectively enabled. To add invoice CC recipients before changing billing notification delivery, use `GET/POST /api/v2/billing/payment-methods/contacts`. To check Peppol eligibility, use `GET /api/v2/me/preferences/peppol`.

### Related Endpoints

- `PATCH /api/v2/me/preferences`: Update account preferences
- `GET /api/v2/me/preferences/peppol`: Get Peppol eligibility
- `GET /api/v2/billing/payment-methods/contacts`: List invoice CC recipients

### Headers

- `Accept`: application/json
- `Authorization`: Bearer YOUR_API_KEY
- Required API scope: `read:account`

### Request Example

```bash
curl -X GET "https://cloud.hostup.se/api/v2/me/preferences" \
  -H "Authorization: Bearer YOUR_API_KEY" \
  -H "Accept: application/json"
```

### Response Schema

- `localization` (object, optional)
- `localization.languageCode` (string, required): Preferred control-panel and email language. Example: `en`
  Allowed values: sv, en
- `localization.timezone` (string, required): IANA timezone used for account-facing timestamps. Example: `Europe/Stockholm`
- `notifications` (object, optional)
- `notifications.emailEnabled` (boolean, required): General email notification preference stored in account preferences. Example: `true`
- `notifications.smsEnabled` (boolean, required): General SMS notification preference stored in account preferences. Example: `false`
- `notifications.delivery` (null, required)
- `security` (object, optional)
- `security.bankIdOnlyLogin` (boolean, required): When true, password login is disabled and BankID is required for account login. Example: `false`
- `security.twoFactorEnabled` (boolean, required): Whether TOTP/MFA is enabled for the account. Example: `true`
- `billing` (object, optional)
- `billing.peppol` (object, required)
- `billing.peppol.optedOut` (boolean, required): Whether the account opted out of Peppol e-invoice delivery when eligible. Example: `false`
- `billing.peppol.optOutReason` (string,null, required): Customer-facing opt-out reason when Peppol delivery is disabled by preference. Example: `null`
- `billing.peppol.optedOutAt` (string,null, required): ISO timestamp for the Peppol opt-out preference, or null when not opted out. Example: `null`
- `billing.cardAutoCharge` (null, required)
- `billing.separateInvoices` (null, required)
- `categories` (object, optional)
- `categories.general` (object, required)
- `categories.ui` (object, required)
- `categories.notifications` (object, required)
- `categories.billing` (object, required)
- `categories.dashboard` (object, required)

### Responses

#### 200 - Account preferences.
```json
{
  "localization": {
    "languageCode": "en",
    "timezone": "Europe/Stockholm"
  },
  "notifications": {
    "emailEnabled": true,
    "smsEnabled": false,
    "delivery": {
      "overrideEnabled": true,
      "enabledEmails": [
        "notify_billing",
        "notify_support",
        "notify_services",
        "notify_domains"
      ],
      "billing": {
        "enabled": true,
        "actions": {
          "canToggle": {
            "allowed": false,
            "reason": "Add a billing notification recipient before changing billing email delivery."
          }
        }
      }
    }
  },
  "security": {
    "bankIdOnlyLogin": false,
    "twoFactorEnabled": true
  },
  "billing": {
    "peppol": {
      "optedOut": false,
      "optOutReason": null,
      "optedOutAt": null
    },
    "cardAutoCharge": {
      "enabled": true,
      "label": "Card auto-charge",
      "description": "Automatically charge the saved card when invoices are due.",
      "reason": null,
      "actions": {
        "canToggle": {
          "allowed": true,
          "reason": null
        }
      },
      "method": "card",
      "status": "active",
      "configured": true,
      "hasPaymentMethod": true
    },
    "separateInvoices": {
      "enabled": false,
      "label": "Separate service invoices",
      "description": "Create separate invoices for services instead of grouping them together.",
      "reason": null,
      "actions": {
        "canToggle": {
          "allowed": true,
          "reason": null
        }
      }
    }
  },
  "categories": {
    "general": {},
    "ui": {},
    "notifications": {},
    "billing": {},
    "dashboard": {}
  }
}
```

#### 400 - Invalid request. The response body is an RFC 7807 Problem Details document.
```json
{
  "type": "https://developer.hostup.se/errors/invalid_request",
  "title": "Invalid request",
  "status": 400,
  "detail": "The request body failed validation.",
  "code": "invalid_request",
  "instance": "/api/v2/resource",
  "requestId": "req_01hxa3b4c5d6e7f8g9h0j1k2m3",
  "timestamp": "2026-04-27T12:34:56.000Z",
  "errors": [
    {
      "pointer": "/items/0/domainName",
      "detail": "`domainName` is required.",
      "code": "invalid_request"
    }
  ]
}
```

#### 401 - Unauthorized. Authentication is required.
```json
{
  "type": "https://developer.hostup.se/errors/unauthorized",
  "title": "Unauthorized",
  "status": 401,
  "detail": "Authentication is required.",
  "code": "unauthorized",
  "instance": "/api/v2/resource",
  "requestId": "req_01hxa3b4c5d6e7f8g9h0j1k2m3",
  "timestamp": "2026-04-27T12:34:56.000Z"
}
```

#### 403 - Forbidden. The caller lacks a required scope or does not own the resource.
```json
{
  "type": "https://developer.hostup.se/errors/forbidden",
  "title": "Forbidden",
  "status": 403,
  "detail": "The caller lacks a required scope or does not own the resource.",
  "code": "forbidden",
  "instance": "/api/v2/resource",
  "requestId": "req_01hxa3b4c5d6e7f8g9h0j1k2m3",
  "timestamp": "2026-04-27T12:34:56.000Z"
}
```

#### 404 - Not found. The resource does not exist or is not owned by the caller.
```json
{
  "type": "https://developer.hostup.se/errors/not_found",
  "title": "Not found",
  "status": 404,
  "detail": "The requested resource could not be found.",
  "code": "not_found",
  "instance": "/api/v2/resource",
  "requestId": "req_01hxa3b4c5d6e7f8g9h0j1k2m3",
  "timestamp": "2026-04-27T12:34:56.000Z"
}
```

#### 429 - Rate limited. Retry after the limit resets. 429 responses include `Retry-After` seconds plus `X-RateLimit-*` headers.
```json
{
  "type": "https://developer.hostup.se/errors/rate_limit_exceeded",
  "title": "Too many requests",
  "status": 429,
  "detail": "Too many requests. Retry after the limit resets.",
  "code": "rate_limit_exceeded",
  "instance": "/api/v2/resource",
  "requestId": "req_01hxa3b4c5d6e7f8g9h0j1k2m3",
  "timestamp": "2026-04-27T12:34:56.000Z"
}
```

#### 500 - Internal error. Retry later or contact support if the issue persists.
```json
{
  "type": "https://developer.hostup.se/errors/internal_error",
  "title": "Internal server error",
  "status": 500,
  "detail": "An unexpected error occurred. Retry later or contact support if the issue persists.",
  "code": "internal_error",
  "instance": "/api/v2/resource",
  "requestId": "req_01hxa3b4c5d6e7f8g9h0j1k2m3",
  "timestamp": "2026-04-27T12:34:56.000Z"
}
```