{"title":"Tokenization","category":"default","creationDate":1776961627,"content":"<div class=\"additional-info-block output-inline\">\n<div class=\"additional-info-block__body\"><p><img style=\"width: 25px;\" alt=\"\" src=\"\/user\/pages\/reuse\/development-resources\/additional-info-resources\/postman-logo-vertical-orange-2021.svg?decoding=auto&amp;fetchpriority=auto\" \/>&nbsp;&nbsp;<a href=\"https:\/\/www.postman.com\/adyendev\/workspace\/adyen-apis\/collection\/25716737-46ad970e-dc9e-4246-bac2-769c6083e7b5\" target=\"_blank\" rel=\"nofollow noopener noreferrer\" class=\"external-link no-image\">Postman collection<\/a><\/p><p><strong>Implementation examples<\/strong><br \/><img style=\"width: 25px;\" alt=\"\" src=\"\/user\/pages\/reuse\/development-resources\/additional-info-resources\/java-original.svg?decoding=auto&amp;fetchpriority=auto\" \/>&nbsp;&nbsp;<a href=\"https:\/\/github.com\/adyen-examples\/adyen-java-spring-online-payments\/tree\/main\/subscription-example\" target=\"_blank\" rel=\"nofollow noopener noreferrer\" class=\"external-link no-image\">Java Spring<\/a><br \/><img style=\"width: 25px;\" alt=\"\" src=\"\/user\/pages\/reuse\/development-resources\/additional-info-resources\/dot-net-original.svg?decoding=auto&amp;fetchpriority=auto\" \/>&nbsp;&nbsp;<a href=\"https:\/\/github.com\/adyen-examples\/adyen-dotnet-online-payments\/tree\/main\/subscription-example\" target=\"_blank\" rel=\"nofollow noopener noreferrer\" class=\"external-link no-image\">.NET<\/a><br \/><img style=\"width: 25px;\" alt=\"\" src=\"\/user\/pages\/reuse\/development-resources\/additional-info-resources\/nodejs-original.svg?decoding=auto&amp;fetchpriority=auto\" \/>&nbsp;&nbsp;<a href=\"https:\/\/github.com\/adyen-examples\/adyen-node-online-payments\/tree\/main\/subscription-example\" target=\"_blank\" rel=\"nofollow noopener noreferrer\" class=\"external-link no-image\">Node.js<\/a><\/p><\/div><\/div>\n\n<p>Tokenization is the process of replacing sensitive data with a non-sensitive equivalent, called a token. For payments, a token represents the shopper's payment details, such as the <a href=\"\/pt\/get-started-with-adyen\/adyen-glossary\/#card-number-pan\">Primary Account Number (PAN)<\/a>.<\/p>\n<p>If the shopper consents to save their payment details, we store payment details in the Adyen Vault. When the shopper chooses to pay with their saved payment details, you make the payment with a token. Tokens reduce your security risks and lowers your <a href=\"\/pt\/development-resources\/pci-dss-compliance-guide\/\">PCI DSS<\/a> scope.<\/p>\n<p>Tokenize is an <a href=\"\/pt\/uplift\">Adyen Uplift<\/a> module, and it lets you:<\/p>\n<ul>\n<li>Store payment details to offer faster checkout experiences to returning shoppers.<\/li>\n<li>Store payment details for subscription or other non-fixed schedule contracts.<\/li>\n<li>Reduce your <a href=\"\/pt\/development-resources\/pci-dss-compliance-guide\/\">PCI DSS<\/a> scope by letting Adyen handle the sensitive payment data in the Adyen Vault.<\/li>\n<li><a href=\"#enhance\">Enhance your implementation with additional features<\/a> to increase authorization rates and reduce declines due to replaced or expired cards.<\/li>\n<\/ul>\n<h2>Implementation options<\/h2>\n<p>You can choose one of the following <a href=\"\/pt\/online-payments\/build-your-integration\">server-side flows<\/a> to implement tokenization:<\/p>\n<ul>\n<li>\n<p>The <strong>Sessions flow<\/strong> is the simplest way to store payment details. It minimizes your <a href=\"#security-and-compliance\">security requirements<\/a> by creating a secure session that contains all the information needed for our client-side components to securely create and pay with tokens. This implementation qualifies you for the simplest form of PCI validation <a href=\"\/pt\/development-resources\/pci-dss-compliance-guide\/saq-a-eligibility\/\">(SAQ A)<\/a>.<\/p>\n<\/li>\n<li>\n<p>The <strong>Advanced flow<\/strong> gives you more control over your checkout experience. You use our client-side components, or your own front-end, to collect payment details before sending them to your server to make an API call. It also requires you to manage the data flow and state yourself, offering greater flexibility for complex integrations.<\/p>\n<\/li>\n<\/ul>\n<h2>Recurring payment types<\/h2>\n<p>You can make the following types of recurring payments:<\/p>\n<ul>\n<li><strong>One-click payments<\/strong>: transactions where a returning shopper uses their saved payment details to pay in your website or app for simpler and faster checkout.<\/li>\n<li><strong>Subscriptions<\/strong>: recurring transactions you initiate at regular intervals for a product or a service.<\/li>\n<li><strong>Automatic top-ups and other non-fixed schedule contracts<\/strong>: transactions you initiate at irregular intervals for contracts where payments occur on a non-fixed schedule This includes automatic top-ups when the cardholder's balance drops below a certain amount.<\/li>\n<\/ul>\n<p>The available recurring payment types depend on your server-side flow. If you use the Sessions flow, you must also use the  <a href=\"https:\/\/docs.adyen.com\/api-explorer\/Checkout\/latest\/post\/payments\" class=\"codeLabel  external-link no-image\" target=\"_blank\" rel=\"nofollow noopener noreferrer\">\/payments<\/a> endpoint to make token payments where the shopper is not present, such as subscription payments.<\/p>\n<style>\n.wide { width:230px; }\n<\/style>\n<table>\n<thead>\n<tr>\n<th style=\"text-align: left;\"><div  class=\"wide\">Type<\/div> <th style=\"text-align: center\" colspan=2>Sessions flow<\/th>  <th style=\"text-align: center\" colspan=2>Advanced flow<\/th><\/th>\n<\/tr>\n<\/thead>\n<tbody>\n<tr>\n<td style=\"text-align: left;\"><\/td>\n<td style=\"text-align: center;\">Create&nbsp;a&nbsp;token<\/td>\n<td style=\"text-align: center;\">Make&nbsp;a&nbsp;payment<\/td>\n<td style=\"text-align: center;\">Create&nbsp;a&nbsp;token<\/td>\n<td style=\"text-align: center;\">Make&nbsp;a&nbsp;payment<\/td>\n<\/tr>\n<tr>\n<td style=\"text-align: left;\">One-click payments<\/td>\n<td style=\"text-align: center;\"><img title=\"-white_check_mark-\" alt=\"-white_check_mark-\" class=\"smileys\" src=\"\/user\/data\/smileys\/emoji\/white_check_mark.png\" \/><\/td>\n<td style=\"text-align: center;\"><img title=\"-white_check_mark-\" alt=\"-white_check_mark-\" class=\"smileys\" src=\"\/user\/data\/smileys\/emoji\/white_check_mark.png\" \/><\/td>\n<td style=\"text-align: center;\"><img title=\"-white_check_mark-\" alt=\"-white_check_mark-\" class=\"smileys\" src=\"\/user\/data\/smileys\/emoji\/white_check_mark.png\" \/><\/td>\n<td style=\"text-align: center;\"><img title=\"-white_check_mark-\" alt=\"-white_check_mark-\" class=\"smileys\" src=\"\/user\/data\/smileys\/emoji\/white_check_mark.png\" \/><\/td>\n<\/tr>\n<tr>\n<td style=\"text-align: left;\">Subscriptions<\/td>\n<td style=\"text-align: center;\"><img title=\"-white_check_mark-\" alt=\"-white_check_mark-\" class=\"smileys\" src=\"\/user\/data\/smileys\/emoji\/white_check_mark.png\" \/><\/td>\n<td style=\"text-align: center;\"><img title=\"-x-\" alt=\"-x-\" class=\"smileys\" src=\"\/user\/data\/smileys\/emoji\/x.png\" \/><\/td>\n<td style=\"text-align: center;\"><img title=\"-white_check_mark-\" alt=\"-white_check_mark-\" class=\"smileys\" src=\"\/user\/data\/smileys\/emoji\/white_check_mark.png\" \/><\/td>\n<td style=\"text-align: center;\"><img title=\"-white_check_mark-\" alt=\"-white_check_mark-\" class=\"smileys\" src=\"\/user\/data\/smileys\/emoji\/white_check_mark.png\" \/><\/td>\n<\/tr>\n<tr>\n<td style=\"text-align: left;\">Automatic top-ups and <br> other non-fixed schedule contracts<\/td>\n<td style=\"text-align: center;\"><img title=\"-white_check_mark-\" alt=\"-white_check_mark-\" class=\"smileys\" src=\"\/user\/data\/smileys\/emoji\/white_check_mark.png\" \/><\/td>\n<td style=\"text-align: center;\"><img title=\"-x-\" alt=\"-x-\" class=\"smileys\" src=\"\/user\/data\/smileys\/emoji\/x.png\" \/><\/td>\n<td style=\"text-align: center;\"><img title=\"-white_check_mark-\" alt=\"-white_check_mark-\" class=\"smileys\" src=\"\/user\/data\/smileys\/emoji\/white_check_mark.png\" \/><\/td>\n<td style=\"text-align: center;\"><img title=\"-white_check_mark-\" alt=\"-white_check_mark-\" class=\"smileys\" src=\"\/user\/data\/smileys\/emoji\/white_check_mark.png\" \/><\/td>\n<\/tr>\n<\/tbody>\n<\/table>\n<h2>Supported payment methods<\/h2>\n<p>We support tokenization for many card and local payment methods, including <a href=\"\/pt\/payment-methods\/cards\">major card brands<\/a>, <a href=\"\/pt\/payment-methods\/ach-direct-debit\">ACH Direct Debit<\/a>, and <a href=\"\/pt\/payment-methods\/sepa-direct-debit\">SEPA Direct Debit<\/a>.<\/p>\n<p><a href=\"\/pt\/payment-methods\/?features%5B0%5D=recurring\">Our payment methods overview<\/a> shows if each payment method supports recurring payments using tokenization.<\/p>\n<h2>Shopper reference management<\/h2>\n<p>When you store a shopper's payment details, you must store the token with a unique shopper reference. This shopper reference must be unique to each shopper, because we use it to associate the token with the shopper.<\/p>\n<p>By default, shopper references and tokens can only be used with one <a href=\"\/pt\/account\/account-structure\/#merchant-accounts\">merchant account<\/a>. If your company account has multiple merchant accounts, you can enable the Token Groups feature which shares shopper references and their associated tokens between your merchant accounts. Contact our <a href=\"https:\/\/ca-test.adyen.com\/ca\/ca\/contactUs\/support.shtml?form=other\" target=\"_blank\" rel=\"nofollow noopener noreferrer\" class=\"external-link no-image\">Support Team<\/a> to enable the feature.<\/p>\n<h2>Security and compliance<\/h2>\n<p>We use client-side encryption (CSE) and end-to-end encryption to ensure that sensitive data is never exposed. All cryptographic keys are managed in a secure and compliant manner, so that you can focus on processing payments while Adyen handles the security requirements.<\/p>\n<p>If you are not <a href=\"\/pt\/development-resources\/pci-dss-compliance-guide\">fully PCI DSS compliant<\/a>, we recommend that you use Adyen tokens to make payments and limit your PCI scope.<\/p>\n<div class=\"notices yellow\">\n<p>To collect raw card data, you need to be fully PCI DSS compliant. If you are fully PCI DSS compliant, you can either create your own token vault or store raw card data to offer faster checkout options.<\/p>\n<\/div>\n<h2 id=\"enhance\">Enhance your tokenization implementation<\/h2>\n<p>Our solution lets you benefit from additional features to make your tokenization implementation more reliable and robust.<\/p>\n<ul>\n<li><strong>Network tokenization<\/strong>: use secure tokens created and managed directly by card networks. It is independent of the physical card's expiration date, and remains valid even if the card is lost or expires. Adyen automatically requests network tokens for stored cards when possible, and no extra integration is required to use them.<\/li>\n<li><strong>Account Updater<\/strong>: prevent declined payments due to expired or replaced cards. Account Updater automatically updates card details by working in the background with card schemes to get the latest card information.<\/li>\n<li><strong>Forward<\/strong>: forward the payment details you stored with Adyen to a PCI-compliant third party. This lets you use the payment details you have securely stored with Adyen across providers.<\/li>\n<\/ul>\n<div class=\"next-steps\" id=\"next-steps\" >\n<a href=\"\/online-payments\/network-tokenization\" class=\"next-steps__step\" style=\"width:29%;\" target=\"_self\"><p class=\"next-steps__body\"><div style=\"text-align: center;\"><p><img style=\"width: 50px;\" alt=\"\" src=\"\/user\/pages\/docs\/02.online-payments\/20.tokenization\/credit-card-lock.svg?decoding=auto&amp;fetchpriority=auto\"><\/p><h6 class=\"next-steps__title\">Network tokenization<\/h6><p>Increase authorization rates with secure tokens from card networks.<\/p><\/div><\/p><\/a><a href=\"\/online-payments\/account-updater\" class=\"next-steps__step\" style=\"width:29%;\" target=\"_self\"><p class=\"next-steps__body\"><div style=\"text-align: center;\"><p><img style=\"width: 50px;\" alt=\"\" src=\"\/user\/pages\/docs\/02.online-payments\/20.tokenization\/account-updater.svg?decoding=auto&amp;fetchpriority=auto\"><\/p><h6 class=\"next-steps__title\">Account updater<\/h6><p>Automatically update expired or replaced card details in your vault.<\/p><\/div><\/p><\/a><a href=\"\/online-payments\/tokenization\/forward-payment-details\" class=\"next-steps__step\" style=\"width:29%;\" target=\"_self\"><p class=\"next-steps__body\"><div style=\"text-align: center;\"><p><img style=\"width: 50px;\" alt=\"\" src=\"\/user\/pages\/docs\/02.online-payments\/20.tokenization\/pay-by-link-plane.svg?decoding=auto&amp;fetchpriority=auto\"><\/p><h6 class=\"next-steps__title\">Forward<\/h6><p>Forward payment details you stored in the Adyen Vault to third parties.<\/p><\/div><\/p><\/a><\/div>\n\n<h2>Next steps<\/h2>\n<div class=\"next-steps\" id=\"next-steps\" >\n<a href=\"\/online-payments\/tokenization\/create-tokens\" class=\"next-steps__step\" style=\"width:45%;\" target=\"_self\"><p class=\"next-steps__body\"><div style=\"text-align: center;\"><p><img style=\"width: 50px;\" alt=\"\" src=\"\/user\/pages\/docs\/02.online-payments\/20.tokenization\/token.svg?decoding=auto&amp;fetchpriority=auto\"><\/p><h6 class=\"next-steps__title\">Create tokens<\/h6><p>Create tokens to store your shopper's payment details for recurring payments.<\/p><\/div><\/p><\/a><a href=\"\/online-payments\/tokenization\/make-token-payments\" class=\"next-steps__step\" style=\"width:45%;\" target=\"_self\"><p class=\"next-steps__body\"><div style=\"text-align: center;\"><p><img style=\"width: 50px;\" alt=\"\" src=\"\/user\/pages\/docs\/02.online-payments\/20.tokenization\/api-only.svg?decoding=auto&amp;fetchpriority=auto\"><\/p><h6 class=\"next-steps__title\">Make token payments<\/h6><p>Make one-click, subscription, or unscheduled card-on-file payments with the tokens you created.<\/p><\/div><\/p><\/a><\/div>\n","url":"https:\/\/docs.adyen.com\/pt\/online-payments\/tokenization","articleFields":{"description":"Store payment details for recurring payments with our Tokenization feature.","id":"39949022","type":"page","_expandable":{"operations":""},"status":"current","feedback_component":true,"filters_component":false,"search_tags":["recurring payments","recurring"],"page_id":"c9bfa889-0c2a-40ae-8a9f-1e5fbed54686","parameters":{"api_explorer_shortcode":"[api=\"Checkout\/sessions\" inlineCode=\"false\" t=\"Try it in our API Explorer.\"]","logo_1":"![](\/reuse\/development-resources\/additional-info-resources\/java-original.svg?resize=25)","example_1":"[Java Spring](https:\/\/github.com\/adyen-examples\/adyen-java-spring-online-payments\/tree\/main\/subscription-example)","logo_2":"![](\/reuse\/development-resources\/additional-info-resources\/dot-net-original.svg?resize=25)","example_2":"[.NET](https:\/\/github.com\/adyen-examples\/adyen-dotnet-online-payments\/tree\/main\/subscription-example)","logo_3":"![](\/reuse\/development-resources\/additional-info-resources\/nodejs-original.svg?resize=25)","example_3":"[Node.js](https:\/\/github.com\/adyen-examples\/adyen-node-online-payments\/tree\/main\/subscription-example)"},"decision_tree":"[]"},"algolia":{"url":"https:\/\/docs.adyen.com\/pt\/online-payments\/tokenization","title":"Tokenization","content":"\n&nbsp;&nbsp;Postman collectionImplementation examples&nbsp;&nbsp;Java Spring&nbsp;&nbsp;.NET&nbsp;&nbsp;Node.js\n\nTokenization is the process of replacing sensitive data with a non-sensitive equivalent, called a token. For payments, a token represents the shopper's payment details, such as the Primary Account Number (PAN).\nIf the shopper consents to save their payment details, we store payment details in the Adyen Vault. When the shopper chooses to pay with their saved payment details, you make the payment with a token. Tokens reduce your security risks and lowers your PCI DSS scope.\nTokenize is an Adyen Uplift module, and it lets you:\n\nStore payment details to offer faster checkout experiences to returning shoppers.\nStore payment details for subscription or other non-fixed schedule contracts.\nReduce your PCI DSS scope by letting Adyen handle the sensitive payment data in the Adyen Vault.\nEnhance your implementation with additional features to increase authorization rates and reduce declines due to replaced or expired cards.\n\nImplementation options\nYou can choose one of the following server-side flows to implement tokenization:\n\n\nThe Sessions flow is the simplest way to store payment details. It minimizes your security requirements by creating a secure session that contains all the information needed for our client-side components to securely create and pay with tokens. This implementation qualifies you for the simplest form of PCI validation (SAQ A).\n\n\nThe Advanced flow gives you more control over your checkout experience. You use our client-side components, or your own front-end, to collect payment details before sending them to your server to make an API call. It also requires you to manage the data flow and state yourself, offering greater flexibility for complex integrations.\n\n\nRecurring payment types\nYou can make the following types of recurring payments:\n\nOne-click payments: transactions where a returning shopper uses their saved payment details to pay in your website or app for simpler and faster checkout.\nSubscriptions: recurring transactions you initiate at regular intervals for a product or a service.\nAutomatic top-ups and other non-fixed schedule contracts: transactions you initiate at irregular intervals for contracts where payments occur on a non-fixed schedule This includes automatic top-ups when the cardholder's balance drops below a certain amount.\n\nThe available recurring payment types depend on your server-side flow. If you use the Sessions flow, you must also use the  \/payments endpoint to make token payments where the shopper is not present, such as subscription payments.\n\n.wide { width:230px; }\n\n\n\n\nType Sessions flow  Advanced flow\n\n\n\n\n\nCreate&nbsp;a&nbsp;token\nMake&nbsp;a&nbsp;payment\nCreate&nbsp;a&nbsp;token\nMake&nbsp;a&nbsp;payment\n\n\nOne-click payments\n\n\n\n\n\n\nSubscriptions\n\n\n\n\n\n\nAutomatic top-ups and  other non-fixed schedule contracts\n\n\n\n\n\n\n\nSupported payment methods\nWe support tokenization for many card and local payment methods, including major card brands, ACH Direct Debit, and SEPA Direct Debit.\nOur payment methods overview shows if each payment method supports recurring payments using tokenization.\nShopper reference management\nWhen you store a shopper's payment details, you must store the token with a unique shopper reference. This shopper reference must be unique to each shopper, because we use it to associate the token with the shopper.\nBy default, shopper references and tokens can only be used with one merchant account. If your company account has multiple merchant accounts, you can enable the Token Groups feature which shares shopper references and their associated tokens between your merchant accounts. Contact our Support Team to enable the feature.\nSecurity and compliance\nWe use client-side encryption (CSE) and end-to-end encryption to ensure that sensitive data is never exposed. All cryptographic keys are managed in a secure and compliant manner, so that you can focus on processing payments while Adyen handles the security requirements.\nIf you are not fully PCI DSS compliant, we recommend that you use Adyen tokens to make payments and limit your PCI scope.\n\nTo collect raw card data, you need to be fully PCI DSS compliant. If you are fully PCI DSS compliant, you can either create your own token vault or store raw card data to offer faster checkout options.\n\nEnhance your tokenization implementation\nOur solution lets you benefit from additional features to make your tokenization implementation more reliable and robust.\n\nNetwork tokenization: use secure tokens created and managed directly by card networks. It is independent of the physical card's expiration date, and remains valid even if the card is lost or expires. Adyen automatically requests network tokens for stored cards when possible, and no extra integration is required to use them.\nAccount Updater: prevent declined payments due to expired or replaced cards. Account Updater automatically updates card details by working in the background with card schemes to get the latest card information.\nForward: forward the payment details you stored with Adyen to a PCI-compliant third party. This lets you use the payment details you have securely stored with Adyen across providers.\n\n\nNetwork tokenizationIncrease authorization rates with secure tokens from card networks.Account updaterAutomatically update expired or replaced card details in your vault.ForwardForward payment details you stored in the Adyen Vault to third parties.\n\nNext steps\n\nCreate tokensCreate tokens to store your shopper's payment details for recurring payments.Make token paymentsMake one-click, subscription, or unscheduled card-on-file payments with the tokens you created.\n","type":"page","locale":"pt","boost":18,"hierarchy":{"lvl0":"Home","lvl1":"Online payments","lvl2":"Tokenization"},"hierarchy_url":{"lvl0":"https:\/\/docs.adyen.com\/pt","lvl1":"https:\/\/docs.adyen.com\/pt\/online-payments","lvl2":"\/pt\/online-payments\/tokenization"},"levels":3,"category":"Online Payments","category_color":"green","tags":["recurring payments","recurring"]},"articleFiles":{"account-updater.svg":"<img style=\"width: 50px;\" alt=\"\" src=\"https:\/\/docs.adyen.com\/user\/pages\/docs\/02.online-payments\/20.tokenization\/account-updater.svg?decoding=auto&amp;fetchpriority=auto\" \/>","api-only.svg":"<img style=\"width: 50px;\" alt=\"\" src=\"https:\/\/docs.adyen.com\/user\/pages\/docs\/02.online-payments\/20.tokenization\/api-only.svg?decoding=auto&amp;fetchpriority=auto\" \/>","credit-card-lock.svg":"<img style=\"width: 50px;\" alt=\"\" src=\"https:\/\/docs.adyen.com\/user\/pages\/docs\/02.online-payments\/20.tokenization\/credit-card-lock.svg?decoding=auto&amp;fetchpriority=auto\" \/>","optimize.svg":"<img alt=\"\" src=\"https:\/\/docs.adyen.com\/user\/pages\/docs\/02.online-payments\/20.tokenization\/optimize.svg\" \/>","pay-by-link-plane.svg":"<img style=\"width: 50px;\" alt=\"\" src=\"https:\/\/docs.adyen.com\/user\/pages\/docs\/02.online-payments\/20.tokenization\/pay-by-link-plane.svg?decoding=auto&amp;fetchpriority=auto\" \/>","token.svg":"<img style=\"width: 50px;\" alt=\"\" src=\"https:\/\/docs.adyen.com\/user\/pages\/docs\/02.online-payments\/20.tokenization\/token.svg?decoding=auto&amp;fetchpriority=auto\" \/>","wallet.svg":"<img alt=\"\" src=\"https:\/\/docs.adyen.com\/user\/pages\/docs\/02.online-payments\/20.tokenization\/wallet.svg\" \/>","web.svg":"<img alt=\"\" src=\"https:\/\/docs.adyen.com\/user\/pages\/docs\/02.online-payments\/20.tokenization\/web.svg\" \/>"}}