We recommend that our platforms follow our best practices so that they can get the greatest benefit from our products and so that they can provide the optimal experience to their end-users.
Storing or transmitting card information will require you to be PCI DSS (Payment Card Industry Data Security Standard) compliant. PCI requirements are information security (InfoSec) standards for organizations handling cards from the major card networks. Using our Card UI will help you to avoid taking on these stringent requirements on your own.
If you are using our card issuance product for virtual cards without using our Card UI, you will need to be compliant with the PCI standards. Noncompliance could result in compromised card data, fines from the card networks, and potential termination from using our service.
After you create a new card, please make sure you set limits for POS withdrawals (
pos_withdrawal_limit) and ATM withdrawals (
atm_withdrawal_limit), as well as specify if foreign transactions are allowed (
allow_foreign_transactions) with our Update Preferences API call. Not doing so could result in negative user experience.
We recommend that you subscribe to webhooks to stay updated on card transactions and other changes.