Deutsch English (CA) English (GB) English (NZ) English (US) Español Français

Did this answer your question?

Thank you, your ticket has been marked as resolved!

If you have any further questions, please reply via your recent email from us or alternatively submit a new request to our Support team here.

Dismiss

Sorry we couldn't solve your issue here! Your original request has been received and we'll get back to you as soon as possible.

Dismiss

Articles in this section

Chat with us

Can't find what
you're looking for?

GoBot can help you answer your
questions, but first we need to
know how you use GoCardless.

Instant Bank Pay payment page requirements

The following is a guide to building custom payment pages for merchants using GoCardless Advanced or GoCardless Pro, and for partners.

If the payer is also setting up a recurring payment (using Bacs Direct Debit in the UK) the payment pages must also incorporate the Bacs requirements.

Please note: For Instant Bank Pay not all pages are customisable.

 

What are payment pages?

To create consent and initiate an instant bank payment from your customer’s account, GoCardless defines payment pages to ensure the correct data is captured and played back to the payer in an efficient, compliant manner.

Customers using GoCardless Advanced or GoCardless Pro have the option to use GoCardless’ own payment pages, or to build their own custom payment pages via the add-on feature Custom checkout experience and payer notifications which comes with an additional monthly fee. 

Our partners can opt to build and use custom payment pages as well. This will enable merchants who are using GoCardless through their app to offer their payers a consistent branding experience.

Custom payment pages must be approved by GoCardless before being implemented.

How to build custom payment pages

There are 5 steps to ensure compliance with legal and regulatory requirements, the Open Banking technical requirements and GoCardless processes:

  1. HTTPS hosted payment pages

  2. Information entry

  3. Payment information summary 

  4. Confirmation page

  5. Confirmation email 

  6. Submit payment pages to GoCardless for approval

1. HTTPS hosted payment pages

To ensure payers’ details are safely transmitted, your website must be configured to only accept secure (SSL - minimum of SHA-256 SSL support TLS.1 or TLS1.2) connections.

2. Information entry page (customisable)

This is the sign-up page for your product / services, and is used to capture the payer’s details required to initiate an Instant Bank Payment.

There are 2 compulsory elements to this page.

Display the following fields (pre-populated)

  1. Payment Amount and Currency (GBP for UK implementations) 

  2. Merchant Payee Account Name 

  3. Merchant Payee Account Identification details (e.g. account number and sort code) 

  4. Payment Reference - This is optional but it is good practice to be populated for a payment

Payer enters their account details by either:

Selecting their bank from a list; and 

  • Populating their account name, and account number and sort code

    Or 

  • Confirming their bank/account details if they have already been provided

3. Payment information summary (not customisable)

This page is to allow payers to view and verify their details before submitting them.

The following will be displayed:

  1. Payment Amount and Currency (GBP for UK implementations)

  2. Merchant Payee Account Name

  3. Payment Reference (pre populated if provided on previous screen)

  4. If previously captured the payer’s bank name and account details should be displayed (these can be masked). 

  5. If payer’s bank details will be captured in the flow between payer and their bank, then only their bank name needs to be displayed.

4. Payer Confirmation page (not customisable)

This page provides the means by which the payer consents to the initiation of the transaction. It is a regulatory requirement to communicate information clearly to the payer when obtaining consent in order to initiate the payment.

The following will be displayed:

  1. Request consent from the payer in a clear, specific and straightforward manner.

  2. Footer text naming GoCardless, sharing the terms that apply, and disclosing the GoCardless privacy notice.

  3. Text to read ‘We work with a company called GoCardless. They help us process your payment, which involves some of your personal data. By continuing, you agree to their terms of use and understand their privacy notice.’

  4. Page footer to be a minimum of 14px font size

  5. Page footer to be either directly above or directly below the continue, or next button, or QR code

  6. Page footer must also be present in mobile versions

Why is the page footer a requirement?

This upfront notice ensures compliance with data protection law. GoCardless, our merchants, and our partners could be in violation of this law if the notice is not included. You can read more here.

What if I can’t include the footer?

If the suggested footer isn’t technically possible, at a minimum you must include the following reference to GoCardless in your website privacy notice:

We use GoCardless to process your Direct Debit payments. More information on how GoCardless processes your personal data and your data protection rights, including your right to object, is available at gocardless.com/legal/privacy/

5. Confirmation email - Sent by GoCardless and included for completeness

The following confirmation email will be sent to the customer by GoCardless and there is no requirement for Merchants or Partners to build anything.

The email from GoCardless is a scheme requirement, and will:

Display the information received from the payer’s bank (this may include:)

  1. The unique identifier assigned to the payment instruction by the payer’s bank

  2. The payment status (and status update date & time)

  3. Confirmation of successful payment initiation

  4. The date of receipt of the payment order

6. GoCardless approval of payment pages

Example templates of your payment pages must be sent to GoCardless for approval prior to your go-live date, we recommend that you arrange this with 2 weeks notice to ensure sufficient time for our review and implementing any subsequent changes. Once you have written approval from GoCardless, you may implement the payment pages.

To test your payment pages, you can sign up here for a sandbox account.

What if I’m a partner?

When creating a new partner app and going through our technical certification process, you’ll be able to submit custom payment pages for approval through our partner portal.

Related articles