Besides making the world a better place, mobile apps are also designed to give their vendors some tangible gains. And with around one third of global users opting for digital payments, adding such a functionality to a mobile app is a sure way to reach the goal. However, if you want to compel your users to buy your offerings, their experience should be as lucid and seamless as possible.
Modern mobile payment systems make this task easier, but before choosing one you should understand how they all work.
In our new article, we’ve explained how mobile payments are organized and which things to consider while integrating them with your app.
Check it out and start getting an edge with the right mobile payment solution.
Introduction of Google Wallet in 2011 inspired a gradual decline of traditional heavy leather wallets.
It's no longer OK for mobile apps to use one tunnel for card-based transactions. To reach a wider audience of progressive users, one should also accept other payment types like digital wallets, Automated Clearing House (ACH) payments, and cryptocurrencies.
However, integration of mobile payments functionality into a mobile app is more than just adding a new app screen and writing a bunch of code.
Read our article to find out what things to consider while adding mobile payments to your app.
Mobile payment gateway
A mobile payment gateway is a front-end technology that authorizes a transfer of funds between a user’s payment portal (mobile phone) and the merchant acquiring bank. One can think of it in the same way as of a traditional Point of Sale (POS) terminal.
At checkout, the gateway transfers the cardholder information to the issuing bank to verify the request. The data is further handled by a payment processor at which one has a merchant account, although some processors have their own gateways. At this stage, the bank will either approve or reject the payment with the corresponding message appearing on the end user’s mobile screen.
The payment gateway is actually an API you integrate to make a request for charging a customer's card. Most reputable payment platforms provide an API that works with the backend language of your mobile app. Using this API, the app can talk to the payment platform. Typically, the integration can be done within one working day.
The data traffic that goes through a gateway is transferred privately and always enciphered. If the payment information was transmitted right to the processor (without a gateway stage) it could be easily interpreted. This would allow an intruder to make fraudulent transactions.
The integration strategy depends on the types of goods being offered to the customers. Typically, there are two options you can have:
- Virtual goods (in-app purchases). Both Apple and Google take a 30 percent off any transaction that is made within your mobile app for in-app purchases. For this reason, both OSes do not allow using any third-party payment services and provide the developers with their specialized StoreKIt framework and In-App Billing API for iOS and Android respectively. The purchases are made in AppStore or Google Play via Apple or Gmail accounts that users are already supposed to have.
- Physical goods and services. When it comes to the goods and services outside of the app, both Apple and Google recommend using third-party mobile payment gateway providers. However, a platform will charge a percentage of the transaction as a fee. The most common figure is 2.9 percent.
How to choose a payment solution
According to the annual Mobile Payments & Fraud 2018 report, merchants that provide mobile payment capabilities in their apps offer a wide range of payment methods. However, 2018 sees a gradual shift from standard credit and debit cards to PayPal, mobile wallets, ACH or bank transfer payments, prepaid cards and cryptocurrencies.
The top two consideration when choosing a payment method are:
- How well it integrates with your payment platform and bank account.
In fact, most of the well-known payment platforms support the popular mobile payment solutions like Apple Pay, Google Pay, PayPal, Samsung Pay as well as ACH and traditional swipe cards. For cryptocurrency adopters, there will be probably a need to turn to specialized payment gateways. Yet, such payment giants as Paypal (through Braintree) and Shopify do allow their customers to pay with bitcoin, while Stripe has officially stopped its support.
- How secure payment data is.
“The biggest fear of corporates and consumers is that transactions will not be processed properly, that their bank access details might be compromised and that their data and therefore their money may be stolen. This is why the focus on data and data security is the key to the future," Chris Skinner, Digital Bank: Strategies to launch or become a digital bank.
Today, mobile payment providers have a set of security measures to stick to. Most of them never store raw cardholder information without tokenizing or encrypting it.
Tokenization is a process of substituting sensitive information like the PAN (primary account number) with an algorithmically generated non-sensitive counterpart called a token to prevent credit card fraud. It means that during the payment processing the actual card data is never exposed.
Tokenization is mathematically irreversible unless you get access to the original key used to generate a token. Even if the system is hacked, all the fraudster will see is a bunch of randomized devalued symbols.
Encryption transforms the data into a form unreadable by anyone without a secret decryption key. Its purpose is to ensure privacy by keeping the information hidden from anyone for whom it is not intended, even those who can see the encrypted data.
Both practices decrease the number of systems allowed to see the customer’s data, thus reducing the scope of PCI Compliance. However, neither Apple Pay nor Google Pay does adhere to the standard. Therefore, they need to be integrated with the PCI-compliant payment platform, like PayPal’s Braintree or Stripe and the issuing bank must be PCI compliant.
Integrating payments to a mobile app may seem not a big thing as reputable payment systems provide well-built APIs. Yet, being aware of the industry nuances can help to avoid unwanted risks related to the security considerations and technology deployment.
Rate this article
I expected and demanded a lot of you at Belitsoft company, but you exceeded my expectations. You acted pro-actively, challenged me at the right moments. Thanks!
CEO at Ticken B.V. (Netherlands)
We have been working for over 10 years and they have become our long-term technology partner. Any software development, programming, or design needs we have had, Belitsoft company has always been able to handle this for us.
СEO at ElearningForce International (United States, Denmark)
They use their knowledge and skills to program the product, and then completed a series of quality assurance tests. We were working in an agile way with them. Belitsoft performed very well throughout our project. We are definitely looking at Belitsoft as a long-term partner.
Service Delivery Director at Crimson (United Kingdom)
I highly recommend Belitsoft for website design and development. We were up against a tight deadline to launch the project. The work was delivered on time and within budget! I will continue working with Belitsoft as a valued partner for our web development!
Program Administrator at UC Berkeley (United States)
We have worked with Belitsoft team over the past few years on projects involving much customized programming work. They are knowledgeable and are able to complete tasks on schedule, meeting our technical requirements. We would recommend them to anyone who is in need of custom programming work.
Main Partner at Hathway Tech (United States)
Belitsoft company is able to make changes instantly. One of our internal engineers has commented about how clean their code is. Belitsoft seems to know what they're doing, which I appreciate.
Co-Founder at HOWCAST MEDIA (United States)
It was a great pleasure working with Belitsoft. Software Development Company. New requirements and adjustments were implemented fast and precisely. We can recommend Belitsoft and are looking forward to start a follow-up project.
Deputy Head of Division at Fraunhofer FIT (Germany)
Belitsoft company has been able to provide senior developers with the skills to support back end, native mobile and web applications. We continue today to augment our existing staff with great developers from Belitsoft.
CEO at Apollo Matrix (United States)
Belitsoft company delivered dedicated development team for our products and technical specialists for our clients time to time custom development needs. We highly recommend that you use this company if you want the same benefits.
Managing Director at Key2Know A/S in 2012 (Denmark)
We approached BelITsoft with a concept, and they were able to convert it into a multi-platform software solution. Their team members are skilled, agile and attached to their work, all of which paid dividends as our software grew in complexity.
COO at Regenerative Medicine LLC (United States)
Having worked with Belitsoft as a service provider, I must say that I'm very pleased with the company's policy. Belitsoft guarantees first-class service through efficient management, great expertise, and a systematic approach to business.. I would strongly recommend Belitsoft's services to anyone wanting to get the right IT products in the right place at the right time.
CEO at Moblers (Israel)
If you are looking for a true partnership Belitsoft company might be the best choice for you. They have proven to be most reliable, polite and professional. The team managed to adapt to changing requirements and to provide me with best solutions. I strongly recommend Belisoft.
Director at ShowCast Limited (Germany)