Checkout keys and cashier keys
Cardflo utilizes Checkout Keys and Cashier Keys to provide secure and flexible integration options for merchants. Checkout Keys manage payment session initiation and customer data collection, while Cashier Keys facilitate server-side transaction processing. This separation ensures PCI compliance and robust security for all payment flows.
What you get.
- Securely initiate payment sessions with Checkout Keys
- Process server-side transactions using Cashier Keys
- Maintain PCI compliance by isolating sensitive data
- Integrate with various frontend and backend frameworks
- Control access levels for different integration points
- Enhance security for customer payment data handling
Common questions.
What is the difference between a Checkout Key and a Cashier Key?
A Checkout Key is used on the frontend to initiate a payment session and securely collect customer payment data. A Cashier Key is used on your server-side to finalize the transaction, send payment requests, and manage refunds, ensuring sensitive operations remain server-controlled.
How do these keys contribute to PCI compliance?
By separating the keys, Cardflo helps merchants maintain PCI compliance. Checkout Keys handle customer data collection in a secure, tokenized manner, while Cashier Keys, used server-side, prevent sensitive card data from directly touching your servers, reducing your PCI scope.
Can I use both Checkout and Cashier Keys in my integration?
Yes, using both Checkout and Cashier Keys is the recommended and most secure integration approach for Cardflo. This combination provides a robust framework for handling both frontend customer interactions and backend transaction processing, optimising security and functionality.
Related features.
Ready for velocity?
Tell us about your business. We'll match you with the right acquiring partners and the right route, typically inside a week.