Card Tokenization

Why you need Card Tokenization?

First, we need to talk about PCI DSS.

PCI DSS stands for Payment Card Industry Data Security Standard. It provides a baseline of technical and operational requirements designed to protect payment account data. By adhering to PCI DSS compliance, businesses can safeguard sensitive data from potential data breaches, thereby preventing severe harm to the business and its customers.

CAUTION

Unless you are PCI-DSS certified, we DO NOT recommend handling raw card information on your servers in any case. This includes processing, logging or storing them. Instead, you can utilize our card tokenization API.

You can learn more about PCI DSS from the official website.

What is Card Tokenization?

Card Tokenization provides a way for you to send card details securely and directly from your client-side to Beam's server in exchange for a card token. This card token does not contain any sensitive information found on the card which means that you can process or store them in your server without the risk of violating the PCI-DSS compliance.

Here is an example of how to integrate card tokenization in credit card payment process:

Please refer to API Reference for more details of each API endpoint in this flow.