CVM (Cardholder Verification Method) refers to the security procedure used to verify that the person presenting a payment card is the legitimate owner. Common CVMs include entering a PIN (Personal Identification Number), providing a signature, or using biometric authentication (FaceID/TouchID) on a mobile device (CDCVM - Consumer Device Cardholder Verification Method). FAQs: Why do some [...]

Authorization is the process where a payment processor contacts the issuing bank to verify that a customer's credit card is valid and has sufficient funds to cover a specific transaction amount. When authorized, the funds are reserved (held) but not yet transferred to the merchant until the transaction is "captured." FAQs: What is the difference [...]

A Restricted Key is a type of API key that allows for granular permission control. Instead of giving an app full access to your account (like a Secret Key does), you can generate a Restricted Key that only has permission to "Write Charges" or "Read Customers," significantly reducing security risks if the key is ever [...]

A Publishable Key is an API credential designed to be used safely in publicly accessible code, such as the JavaScript on a checkout page or within a mobile app's frontend. Its primary function is to "tokenize" sensitive card data—turning card numbers into a secure token that can be sent to the backend—without exposing the ability [...]

A Secret Key is a server-side API credential provided by Stripe that grants full access to your account’s sensitive data and functionality, such as creating charges, issuing refunds, and modifying account settings. In apps like Charge for Stripe, this key is used securely in the background to execute your commands. It must remain confidential and [...]

A Virtual Terminal is a web-based interface (or a feature within an app like Charge for Stripe) that allows merchants to manually enter a customer's credit card details to process a payment. This is also known as a MOTO (Mail Order / Telephone Order) transaction and is used when the customer and their card are [...]

Tap to Pay on Android allows merchants to accept contactless payments directly on their compatible Android smartphone or tablet without needing any external card readers or hardware dongles. It utilizes the device's built-in NFC (Near Field Communication) technology to read contactless cards and mobile wallets securely. FAQs: Which devices support Tap to Pay on Android?Generally, [...]

Tap to Pay on iPhone is a capability that turns an iPhone into a contactless payment terminal. It allows merchants to accept payments from contactless credit cards, debit cards, and digital wallets (like Apple Pay) by simply having the customer tap their card or device against the merchant's iPhone. No additional hardware or Bluetooth readers [...]

Stripe Radar is a fraud detection and prevention tool built directly into the Stripe payment flow. It uses machine learning trained on data from billions of global transactions to assign risk scores to every payment. Radar can automatically block suspicious payments, trigger 3D Secure verification, or flag transactions for manual review. FAQs: Is Stripe Radar [...]

A Retrieval Request is a preliminary inquiry initiated by a card issuer asking for more details about a transaction on behalf of a cardholder. It is often a precursor to a formal dispute (chargeback). At this stage, no money has been withdrawn from the merchant, but it serves as a warning to provide information to [...]