Before we dive into the nook and cranny of payment processing, let's understand few important terms that we will encounter along the way.
Most definitions available on the internet are riddled with jargon, so this is an effort to shred the terminology down into readily understandable chunks.
Let's get right down to it.
If you're a business owner looking to accept payments that are made using credit and debit cards then you'd be categorized as a merchant.
The bank that acquires(hence acquiring) or accepts credit and debit card payments on your behalf. Essentially the middle-man between card brands like Visa and your business bank account.
It's an account with the acquiring bank that enables you to accept card payments and hold processed funds. The way you get one is by entering into an agreement with the bank in question.
When a customer buys something using a credit or debit card, a check is done to -
Then, the charge amount is deducted from the customer's bank account.
But, you don't have access to the funds yet.
Wait. What's happening here?
A charge has been made and the money hasn't even hit your merchant account yet.
In this step, the money that was deducted and held during the authorization, is moved to the processor that forwards it to your merchant account.
If a transaction has gone through successfully and a refund is requested by a customer, and the funds haven't been processed yet.
Issuing a refund isn't the only option available.
Instead, you can choose to void the payment transaction, which will stop the funds from being transferred from the customer's account.
Similarly, you can void the refund transaction itself.
It's your customer's bank. The bank that issues(hence issuing) payments to the acquiring bank on behalf of your customers.
It's a network of banks. All major card brands like American Express, Visa, MasterCard e.t.c are card associations.
A payment processor handles the technology which connects the acquiring bank with the issuing bank. Thus making transactions between you and your customers possible, in a matter of few seconds.
There are two types of payment processors -
A Front-end processor verifies the card information with the issuing bank and card associations, then performs additional checks to ensure that the transaction is safeguarded from fraud and identity theft, and finally captures funds as per the charge amount.
Once the payment is authorized and captured by a front-end processor, it's accepted by a back-end processor which moves the funds from the issuing bank to the acquiring bank.
As a service, a payment gateway connects your website with payment processors and your merchant account.
First off, it sends out card information to a payment processor.
In the next step, based on the result of processing, i.e whether the transaction is either approved or declined, it collects this response from the processor and then delivers it on your website.
For each transaction that's approved, declined or refunded, you'll be paying two types of fees.
The first one would be a percentage of each transaction, paid to the acquiring bank, it's called the 'Discount Rate' or 'Processing Rate'.
The second one is a flat fee, known as 'Transaction Fee', which is charged whenever your payment gateway sends or receives information to or from the payment processor
If you accept card payments, online or offline, PCI Compliance is mandatory. The compliance - PCI DSS (Data Security Standard) acts as a set of rules aimed at curbing payment card fraud, the compliance requirements vary based on the size of your business.
It's maintained by PCI Security Standards Council, which is an alliance formed by the collaboration of Visa, MasterCard, Discover, JCB, and American Express, a collective effort to reduce global data security breaches.
If you sell a product or service on a subscription basis and your customers are required to pay at set intervals, let's say every month, a pre-determined recurring charge is applied on customers' cards whenever a subscription is up for renewal, and that's a recurring payment.
Tokenization is a process in which a surrogate of your customer's card is used to process payments.
Let's see how tokenization works, as soon as a customer submits card information to make a payment, the information is sent to a secure vault, and a token is generated, which acts as a substitute for customer's card information. This token is used to process card payments and thus the actual card information remains safe.
Subscribe to receive new chapters as soon as they're published