This article has multiple issues. Please help improve it or discuss these issues on the talk page. (Learn how and when to remove these template messages)(Learn how and when to remove this template message)
A payment processor is a company (often a third party) appointed by a merchant to handle transactions from various channels such as credit cards and debit cards for merchant acquiring banks. They are usually broken down into two types: front-end and back-end.
Front-end processors have connections to various card associations and supply authorization and settlement services to the merchant banks' merchants. Back-end processors accept settlements from front-end processors and, via The Federal Reserve Bank for example, move the money from the issuing bank to the merchant bank.
In an operation that will usually take a few seconds, the payment processor will both check the details received by forwarding them to the respective card's issuing bank or card association for verification, and also carry out a series of anti-fraud measures against the transaction.
Additional parameters, including the card's country of issue and its previous payment history, are also used to gauge the probability of the transaction being approved.
Once the payment processor has received confirmation that the credit card details have been verified, the information will be relayed back via the payment gateway to the merchant, who will then complete the payment transaction. If verification is denied by the card association, the payment processor will relay the information to the merchant, who will then decline the transaction.
In the 16th century, paper currency became a way to trade commodity resources, like tobacco leaves stored in a warehouse. A producer would deposit their crop with the depot, and the depot-keeper would give a bearer-demand note to the depositor which he could trade on the open market for other goods and services.
Due to the many regulatory requirements levied on businesses, the modern payment processor is usually partnered with merchants through a concept known as software-as-a-service (SaaS). SaaS payment processors offer a single, regulatory-compliant electronic portal that enables a merchant to scan checks (often called remote deposit capture or RDC), process single and recurring credit card payments (without the merchant storing the card data at the merchant site), process single and recurring ACH and cash transactions, process remittances and Web payments. These cloud-based features occur regardless of origination through the payment processor's integrated receivables management platform. This results in cost reductions, accelerated time-to-market, and improved transaction processing quality.
Transaction processing quality
Electronic payments are highly susceptible to fraud and abuse. Liability for misuse of credit card data can expose the merchant to significant financial loss if they were to attempt to manage such risks on their own. One way to lower this cost and liability exposure is to segment the transaction of the sale from the payment of the amount due. Many merchants offer subscription services, which require payment from a customer every month. SaaS payment processors relieve the responsibility of the management of recurring payments from the merchant and maintain safe and secure the payment information, passing back to the merchant a payment "token" or unique placeholder for the card data. Through Tokenization, merchants are able to use this token to process charges, perform refunds, or void transactions without ever storing the payment card data, which can help to make the merchant system PCI-compliant. Another method of protecting payment card data is Point to Point Encryption, which encrypts cardholder data so that clear text payment information is not accessible within the merchant's system in the event of a data breach. Some payment processors also specialize in high-risk processing for industries that are subject to frequent chargebacks, such as adult video distribution.
The typical network architecture for modern online payment systems is a chain of service providers, each providing unique value to the payment transaction, and each adding cost to the transaction: merchant ↔ point-of-sale (PoS) software as a service (SaaS) ↔ aggregator ↔ credit card network ↔ bank. The merchant can be a brick-and-mortar outlet or an online outlet. The PoS SaaS provider is usually a smaller company that provides customer support to the merchant and is the receiver of the merchant's transactions. The PoS provider represents the aggregator to merchants. The PoS provider transaction volumes are small compared to the aggregator transaction volumes, so a direct connection to the major credit card networks is not warranted, because of the low traffic. Additionally, the merchant does not handle enough traffic to warrant a direct connection to the aggregator. In this way, scope and responsibilities are divided among the various business partners to easily manage the technical issues that arise.
- "Banks Blind To Many Cyberattacks, Research Says". PYMNTS. Retrieved 11 December 2017.
- staff, 3DSI. "Credit Card Tokenization 101 — And Why it's Better than Encryption". www.3dsi.com. Retrieved 2016-03-30.
- "P2PE: Point to Point Encryption for PCI Compliant Payments". Bluefin Payment Systems. Retrieved 2016-03-30.