Efficiently collecting and securely saving your customers' card details is crucial for seamless transactions. However, achieving this requires compliance with PCI DSS standards. Below is a guide to understanding the process and requirements based on your method of card collection.



Check this article to know more about PCI DSS Certification and Requirements.

If You Are Using Your Own Form to Save Card Details

  • Required Certification: You must be certified to a minimum of SAQ-D Merchant level, as card details will be processed and stored by your system.

  • After receiving the card details from your payment page, you are required to send a payment request using the transaction API, hence you will need to include the card details within the payment request.



If You Are Using PayTabs' Managed Form

  • Required Certification: A minimum of SAQ A-EP Merchant level certification is necessary, as card details are not handled by your system. However, the payment page will still be displayed on your website.

  • After receiving the payment token details from your payment page, you must send a payment request using the transaction API, hence you will need to include the token details within the payment request.



By following these guidelines, you can securely collect and save your customers' card details while ensuring compliance with PCI DSS standards to build trust and safeguard customer data.