Checkout

The Checkout model allows you to collect payment details from your payer through an interaction hosted and displayed by the ARC Pay Gateway. With this model of integration, you never see or handle payment details directly because these are collected by the hosted payment interface and submitted directly from the payer's browser to the ARC Pay Gateway.

Checkout can be implemented as, either:

  • An embedded page - An embedded component within your existing merchant website.
  • A Hosted PaymentPage - A web page hosted and displayed by the ARC Pay Gateway.
Key Benefits
  • Checkout is simple and quick to integrate.
  • You do not need to handle or store any payment details, thereby lowering PCI compliance costs.
  • You can use the theme offered by your payment service provider to display your Checkout interface. This allows you to leverage the brand of your payment service provider. A strong brand reduces payer's reticence to provide payment details.
  • You can customize the content of the Checkout interface to display your business information.
  • If you have subscribed to notifications, you can choose to receive those if the payment is successful.
  • Checkout is WCAG (Web Content Accessibility Guidelines) 2.0 Level AA compliant.
Information Flow

The payment flow for the Checkout model is illustrated below.

Hosted Checkout Integration Model

  1. The payer initiates the payment process for goods and services at your shop site. In response, your application submits a JavaScript request with the required data to the ARC Pay Gateway to display the chosen payment interface: an Embedded Page or Hosted PaymentPage.
  2. The payer is presented with the payment interface. The display contents (like your business information and order details), as well as other aspects of the payment interface, are controlled by the data in your request.

    The payer enters the required information, and clicks "Pay".

    The ARC Pay Gateway collects and verifies the payment details and processes the payment.

    • If you are configured for a browser payment service such as PayPal , or a digital wallet service, these services display as a payment option alongside other card options. If the payer chooses to pay using one of these services,the payer will be redirected to the service provider's website to select the payment details.
    • If you are configured for the 3-D Secure Service, by default your payer will be prompted to authenticate before performing the payment. You can choose to bypass the authentication, see Bypass Security Features.
  3. If the payment is successful, the payer can obtain the payment details from one of these sources:

    • A ARC Pay Gateway-hosted receipt (in the embedded page or on a hosted page). This is the default behavior.
    • Your shop site.
    • Email notifications. You must subscribe to payer notifications to implement this.

If the payment is unsuccessful, Checkout displays the result, allowing the payer to retry the transaction with different payment details.

Hosted Session

Choose the Hosted Session model if you want control over the layout and styling of your payment page, while reducing PCI compliance costs. The Hosted Session JavaScript client library enables you to collect sensitive payment details from the payer in payment form fields, sourced from and controlled by ARC Pay Gateway. The gateway collects the payment details in a payment session and temporarily stores them for later use. You can then include a payment session in place of payment details in the transaction request to process a payment.

Key Benefits
  • Hosted Session is simple and quick to integrate.
  • You do not need to collect, store, or process any sensitive payment details thereby lowering PCI-compliance costs.
  • You maintain control over the styles and layout of your payment page.
  • You can customize the payer experience to suit your business.
Information Flow

The payment flow for the Hosted Session model is illustrated below.

Hosted Session Integration Model
  1. The payer initiates the payment process for goods and services at your shop site.
  2. The payer can choose to provide payments details using a credit/debit card, digital wallet, gift card, or make an ACH payment.

    • Your payment page: Payment details are collected in form fields embedded in iFrames hosted by the ARC Pay Gateway.
    • Digital wallet: Card details are securely collected from the wallet interaction and sent to the ARC Pay Gateway.
  3. The ARC Pay Gateway collects the payments details in a payment session, which you can use in any operation referencing a session.

Direct Payment

If you need full control over the transaction, wish to manage your own payment pages or collect payment details, you must use the Direct Payment model. The payment details are sent directly to the ARC Pay Gateway to process the transaction. This merchant-managed model requires you to manage the security associated with collecting the payer's payment details in your application thereby increasing PCI compliance costs.

Key Benefits
  • Provides full control on the entire payment experience. You have the flexibility to customize your payment solution.
  • Integrates with any application, website, call centre, billing, Interactive Voice Response (IVR)
  • Allows you to communicate directly to the ARC Pay Gateway and then receive a real-time response to the API call. This is a synchronous connection and the payer does not leave your application, which means your session is not broken with the payer.
  • Supports advanced ARC Pay Gateway operations such as captures, refunds, voids, and queries where the payer is not directly involved.
Information Flow

The information flow for Direct Payment is illustrated below:

Direct Payment Integration Model

  1. A payer decides to make a purchase and provides their card details directly to your application or website. You may choose to combine collected card details with details stored on a previously stored token. See Multiple Sources of Card Details.
  2. Your application or website formulates the transaction request and sends it using an HTTPS POST or PUT over the Internet to the ARC Pay Gateway via webServices Integration.

    Depending on your business needs, you may pass additional fields in the transaction request. See Additional Functionality.

    Before performing the payment transaction, you can submit a rate quote request for dynamic currency conversion (DCC) to retrieve the payer's currency and the order amount in that currency.
    At this stage, you can also authenticate the payer using the
    EMV 3-D Secure Authentication
    . Note that if the payer accepts the DCC offer, then you must provide the DCC information in the authentication request.
  3. The ARC Pay Gateway passes the transaction to your acquiring bank for processing.
  4. The acquirer returns a response and the ARC Pay Gateway generates a transaction response and passes it to your application or website, in response to your API call. The transaction response indicates if the transaction was successful, and also includes other response data.
  5. Your application or website displays a receipt or other confirmation or error page based on the result of the transaction.

Copyright © 2023 Airlines Reporting Corporation (ARC)