To strengthen PCI compliance on Profiler Version 9, you can now use the Stripe system to manage all tokenisation (handling) of client credit cards. This means no client card data touches your Profiler system.
To optionally enable this function (for Stripe) users, go to Setup > Generic Parameters > Regular Payment Settings and tick “Use Stripe Forms (PCI) for card entry“
And scroll to the bottom and click Save Changes. Immediately this will take effect, with a number of user interface changes
Update Payment Account
In your Setup > Payments > Accounts + Gateways you will need to update your Stripe gateway and add the pk_xxxxx value from your stripe API to the username field (as per the screenshot below)
For further information about getting the keys from Stripe and the general setup refer to this KB here
Regular Payments
When setting up a clients regular payment (or subscription/membership) that is set for automatic payments, you will see the below screenshot.
You can simply enter the card details into the field and click Save Changes (as per normal), immediately you will get any feedback if the card is invalid (screenshot below)
Should the card be correct, you will have it save like normal, however, you will notice the card number is not stored – a token will be stored. Stripe is now storing the card, and this is a “pointer” to the card.
It operates completely the same, however the card is not stored in your system. Clicking Pay Now will work as normal.
Standard Payment Entry
When doing a standard payment entry for a client with Stripe Credit Card, you will enter all your details in the same and the source codes etc, however you will notice a slight interface difference when entering the credit card number. (screenshot below)
Upon entering the card number and details, click Payment Gateway the difference here you will notice, initially you will get in the Gateway Response field:
Should be payment fail, you will get the reason for failure in the Gateway Response
Should be payment be successful, you will now no longer have to click on the Create Payment button, Profiler will just complete the transaction allowing you to move onto the next payment.
Portal Update
If you allow clients to update their payment details using the card update portal, the interface will change slightly for the user
The Card Details field will operate the same as the regular payments interface mentioned early in this article. The client can update their card details, and behind the scenes a token will be made and created and allocated to the client.