When you interface with the Payeezy.JS integration method, you never touch or save consumer’s credit card details. This diminishes the PCI burden on your end reducing your infrastructure costs, audit risks and many undesirable things while giving you complete control of check out process.
The process involves your web infrastructure serving up payment pages that fully control the checkout process. Once the consumer is ready to check out, has entered and confirmed their credit card information, and has hit the “pay” button, a Payeezy.js <script> tag included on the page intercepts the form and asynchronously posts the credit card details to our servers.
This call uses JSONP over https passing in a unique API key and identifier. Upon either authorization approval or a straight GetToken method, we will return a token and Payeezy.js will save the token information (instead of CC details) in a hidden form field on the checkout page and submit it your server. Your server will then submit the token to Payeezy to complete the transaction using the appropriate server side library via an API call using HMAC authentication over HTTPS.
Bottom line? This is the simplest, most secure and most flexible way to integrate your checkout pages with our payment capabilities.
Here’s why:
- You’ll have complete control over the look and feel of your checkout and payment pages as well as the entire checkout process.
- Throughout the entire process, you’ll never touch consumers’ credit card data.
- Interactions with our servers are highly secured, preventing “man in the middle” attacks.
- Consumers’ card data is tokenized, providing further protection of credit card data during the transaction.
