Processing with card tokens

Reducing your PCI compliance scope and risk is as simple as integrating with HelcimPay.js to process online payments, or verify and tokenize credit card details. All payments processed through HelcimPay.js and our other payment tools will create a cardToken that can be used through our Payment API.

How to create a card token

If you intend to process any payments through the Payment API, you will first need to tokenize the customers credit card details and create a cardToken. The cardToken is a secure representation of your customers credit card information, that can be used to process future payments through the Payment API.

We recommend you use HelcimPay.js to verify and tokenize payment details for customers through your website or application. This can be achieved by processing a payment type of purchase, preauth, or verify.

HelcimPay.js will return a cardToken value to you in the transaction response for any of these payment types, that can be stored in your system and used through the Payment API to process future payments without further action from the customer.

HelcimPay.js ensures sensitive credit card details are not passed to your website or server, reducing the security scope and PCI-DSS compliance requirements of your integration.

• Learn more about integrating with HelcimPay.js

Process payments with a card token

Once you have a valid cardToken for a customer, you can process subsequent online payments through our Payment API at any time.

The card token gives you the flexibility to build dynamic payment integrations that can charge customers automatically at agreed times, or through quick and easy customer facing actions within your existing platform.

The cardToken is sent in the cardData object, in lieu of the full credit card details. The following Payment API endpoints accept a cardToken parameter.

• Process Purchase Transaction
• Process Preauth Transaction