Frequently Asked Questions

You have questions? We have answers! Look at our FAQs below. If you don’t find what you’re looking for, feel free to contact us and we’ll get you the answer you need.

How Credit Card Processing Works

What is a Merchant Account?

A merchant account is an intermediary account that captures and holds funds generated from Credit Card and Debit Card Sales. From there, they are released to your business’s bank account.

What Are Payment Processors?

In short, a payment processor is a company that is responsible for managing all kinds of payment transactions except cash, but do supply the technology for merchants to manage their own cash transactions. These transactions include: credit cards, debit cards, ACH payments, and gift card payments. They work with the card brands (Visa, Mastercard, Discover, and AMEX) to supply and authorize settlement services to merchants’ banks so that the merchants can receive their money.

How Credit Card Processing Works: Key Players

Each time a credit or debit card is used there are several processes that must be accomplished to complete the transaction. These processes involve each key player.

 

Credit Card Processing: The Associations

 

Mastercard and VISA are publicly traded organizations whose board is composed of member financial institutions. They provide the branding and network to the issuing banks.
Mastercard and VISA set and enforce rules and regulations governing their bankcard, such as operational procedures, interchange rates and qualification requirements, and the base networks through which all transactions are approved and settled. They create advertising and promotional programs to support their brands and develop new products to serve banks and consumers.

 

Credit Card Processing: The Issuing Bank

 

The issuing bank provides the card to the consumer (cardholder). An issuing bank is a licensed member of Mastercard and/or VISA and can also be an acquirer. An acquirer is a financial institution that processes credit or debit cards on behalf of the merchant.
The issuing bank solicits, screens, and approves the cardholder for a specified credit limit. When the cardholder uses the card, the issuing bank approves or declines the sale, bills the cardholder for charges made to the card, and collects the payments from the cardholder each month.

 

The Cardholder

 

The cardholder uses the credit card given by the issuing bank to purchase goods and services or to obtain cash advances. The cardholder is expected to sign the back of the card and limit its use to only authorized users, stay within the assigned credit limit, and pay the issuing bank all or a minimum amount of the balance by the due date indicated on each monthly statement.

 

The Cardholder

 

The cardholder uses the credit card given by the issuing bank to purchase goods and services or to obtain cash advances. The cardholder is expected to sign the back of the card and limit its use to only authorized users, stay within the assigned credit limit, and pay the issuing bank all or a minimum amount of the balance by the due date indicated on each monthly statement.
The cardholder uses the credit card given by the issuing bank to purchase goods and services or to obtain cash advances. The cardholder is expected to sign the back of the card and limit its use to only authorized users, stay within the assigned credit limit, and pay the issuing bank all or a minimum amount of the balance by the due date indicated on each monthly statement.
The merchant provides goods and/or services to consumers and businesses. Mastercard and VISA require that the merchant be financially responsible and of good repute and adhere to all rules and regulations set forth by the Associations in regard to accepting their cards.
Priority Payments Local requires the merchant adhere to the Merchant Processing Agreement (contract) signed with Priority. The merchant is required to complete a Merchant Application providing information about the ownership, type of business, and method of conducting business. The merchant will also be provided with documents that detail the rates and fees to be paid in conjunction with the merchant account.

 

The Sales Agent

 

The sales agent (who works on a direct sales or ISO model) is the person who originally presents the agreement and pricing to the merchant. The sales agent may also sell or lease/rent payment technology such as credit card processing machines to the merchant. Merchant accounts may be sold by employees of the member bank, a registered agent bank, a registered ISO (Independent Sales Organization), or an MSP (Member Service Provider) working for any of these above. The sales agent must always present him/herself to the merchant showing the relationship to the member bank and not as an employee of Mastercard, VISA or the Member bank.
[Download our free checklist: What to Look for in a Payment Processor]

 

The Processor or Acquirer

 

In order to facilitate the transactions between the merchant and the cardholder, a processor or acquirer is required. The processor may also be referred to as the back-end processor or merchant accounting system. They provide a payment link between all the parties involved in the transaction process. Many processors or acquirers also provide back-office functions such as:

• Customer Service

• Chargeback support

• Risk management and security of card data

• Terminal or PC Software to be used at the Point of Sale (POS)

 

 

The Member Bank

 

Mastercard and VISA require that the financial institution behind the merchant accounts be a primary member of each association. The payment of transactions to the merchant must originate from the member bank. The member bank also acts as the sponsor bank to any agent bank or ISO/MSP relationships so that credit card processing is made possible.
While all the parties mentioned above are required in the transaction process there are other parties that may be involved. These may include the following:
An Independent Sales Organization (ISO)/Member Service Provider (MSP). Mastercard, Visa, and many banks have realized that allowing third parties to sell and/or provide different services will increase the exposure of their product. ISO is the term used by Visa and MSP is the term used by Mastercard. They are, in essence, the same thing but must be registered with each association through a Sponsor Bank.

The Front-End Network (Platform). This is the network that carries the transaction to and from the point of sale systems (POS systems). The front-end network, or front-end platform, will “auth and capture” the transaction data. First Data owns several platforms that we utilize:

• Omaha

• Nashville

• North (Cardnet)

• Atlanta (BuyPass)

The Back End. This is the processor that submits all the transactions through to the various card associations, prepares the payment to the merchant, and prepares monthly billing statements for the merchants.
The Voice Authorization Center. Each front-end network will provide an 800 number service for the merchant to call if POS system is not functioning or the response to call for voice authorization is given.
The Depository Bank. Each merchant must have a checking account or demand deposit account (DDA) to receive electronic credits and debits for deposits and fees.

 

How Does Credit Card Processing Work?

Each time a credit or debit card is used there are several transaction processes that must be accomplished to complete the transaction. These processes involve each of the players that were previously described. The three processes are authorization, settlement, and billing.

 

Step 1

 

The transaction begins when the cardholder purchases goods or services using a credit card. The merchant must obtain an approval code from the issuing bank that acknowledges that the card is a valid card and the amount of funds requested are available from the cardholder’s line of credit. The transaction for credit card processing can be done as a card-present or card not present transaction.

 

Step 2

 

The POS terminal sends the transaction information through the front-end network to a host computer that will verify the merchant identification number (MID), determine from the card number what type of card, and route the message so that it gets to the correct card association, i.e. MasterCard, Visa, Discover, etc.

 

Step 3

 

Once connected with the correct association, the transaction is routed to the proper issuing bank or their designated stand-in processor for the authorization. The issuer determines whether the credit card transaction can be approved or declined. The issuer will send back one of the following responses:

• Approval Code. This response indicates that the card is valid and has enough funds available to complete the sale. The approval code is recorded on the sales draft. An approval code is not a guarantee of payment.

• Decline. This response indicates that the issuer will not approve the transaction. There could be many reasons for a decline such as the charge may exceed the credit limit or payments are past due on the card, but the reason is not displayed or known to the merchant. The merchant should ask the cardholder for another form of payment. The cardholder should be instructed to contact their bank for specific information regarding the account.

• Pick Up Card. This response is given when the issuer wants the card returned for some reason. The merchant is not required to retain the card – it should only be kept if it can be done so safely. The cardholder should be instructed to contact their bank for specific information regarding the account. If the merchant does keep the card there is generally a reward. The card should be cut lengthwise across the magnetic stripe and sent to the security department of their processor.

• Referral or Call Auth Center. This response indicates that communication other than just an electronic approval is required. The merchant should call the number given by the processor for voice authorizations. The operator may ask for additional information regarding the transaction or the cardholder. An approval code or decline will be given by the operator. If the transaction is approved, it will need to be re-keyed into the POS terminal to be included with the batch.

 

Step 4

 

When the transaction with the issuer response is passed back through the association, a “snapshot” of that transaction is taken. This is important for the purpose of qualifying the transaction later for the proper Interchange category, which in turn affects the merchant’s discount rate and fees paid on that transaction. The association routes the transaction back to the front-end network that may also store the transaction data to be used during the settlement process.

 

Step 5

 

The front-end network returns the transaction, including the response code and a reference number, to the merchant’s POS terminal. If the merchant has an electronic printer, a receipt will print with all the transaction data and a place for the cardholder’s signature. If a manual imprinter is used, the approval code should be included on the sales draft. In a card not present environment, a transaction receipt or sales draft may not be produced but, all the transaction data must be retained by the merchant.
Obtaining the authorization on a card does not guarantee payment or that a chargeback may not be initiated at some later point. This entire process usually takes less than 10 seconds, depending on the front-end network and POS terminal used by the merchant. In order for the merchant to receive payment on these transactions, he/she must now “settle the batch” or “batch out.”

 

What is a payment gateway?

A payment gateway works with your shopping cart to collect payment details from your customers. The gateway securely transmits the card information through our processor and we generate an “approved” or “declined” message in real time. This is how you connect your website, your customer’s payment method and all the involved financial institutions.

Application Process

How do I apply for a merchant account?

Enter your information on the “Apply Now!” form and we will contact you shortly.

How long does the application process take?

It usually takes 24-48 hours to review your application. An underwriter will contact you to discuss your application and take you through the next steps in the set up process.

How do I request more information?
How long before I can start accepting credit cards?

Merchant accounts are generally approved within two business days and merchants can process the next business day.

Can I be approved if I have bad credit or no credit?

We maintain one of the highest approval rates in the industry. With our free application you have nothing to lose.

What types of business are prohibited?

The following types of businesses are prohibited:

• Pornographic /Adult material

• Alcohol, Illegal Drugs, Tobacco, Nicotine

• Drug Paraphernalia

• Firearms and Ammunition Sales

• Collection agencies or firms involved in recovery of past due receivables.

• Online Gambling

• Multi-Layered Marketing Program Sales

• Offshore/Remote IT Tech Support Companies

• Any service providing peripheral support of illegal activities.

Merchant Support

What if I need help with my account?

Customer service representatives are available to serve you 24 hours a day, 7 days a week.

Fundings

When do my transactions get funded?

Usually within two business days after you close your batch.

How do I get my money?

There are four steps to receiving your money:

 

Step 1 – Initiating the transaction to verify that a card is active and within the approved spending limit:

• Retail and/or restaurant merchants swipe the credit card through a point-of-sale terminal (i.e., card is physically present).

• Mail order/telephone order merchants enter the card identifiers the customer has provided by mail, telephone or fax (i.e., the card is not present).

• Internet environment-Customer provides your Web site with card identifiers (i.e., card is not present).

 

Step 2 – Real-time authorizing, which reduces chargebacks and catches card-entry errors:

• Credit card number is entered.

• Terminal or software transmits the credit card number and expiration date and sales total.

• Data is transmitted to customer’s credit card-issuing bank.

• Customer’s issuing bank approves or declines the transaction.

 

Step 3 – Completing the transaction:

• Merchant’s terminal or software transmits transaction details in a batch at the close of the business day.

• The transactions are forwarded to each credit card company, which redirects the transactions to appropriate banks.

• Bank debits credit cardholder’s account.

 

Step 4 – Receiving your funds:

• Your bank account is then credited with the appropriate dollar amount, usually within two business days.

Equipment

I'm not sure what terminal, equipment or software is best for my business?

Please consult your USProPay representative regarding the various options available.

Security & Compliance

What is your privacy policy?

Click to review our Privacy Policy?

What is PCI DSS?

The Payment Card Industry (PCI) Data Security Standards (DSS) is a set of requirements for enhancing payment account data security. These standards were developed by the PCI Security Standards Council, which was founded by American Express, Discover Financial Services, JCB International, MasterCard Worldwide and Visa, Inc., to facilitate industry-wide adoption of consistent data security measures on a global basis.

I have never heard of PCI Compliance before, is this new?

No. Merchants have been advised to take the PCI self-assessment and be compliant for the past few years. The framework of the PCI data security standards has existed in different forms for some time now and continues to evolve. You may be more familiar with the payment brands programs that promote the implementation of the PCI DSS.

• MasterCard®: Site Data Protection (SDP) program

• Visa®: Cardholder Information Security Program (CISP)

• Discover® Network: Discover Information Security & Compliance (DISC)

• American Express®: Data Security Operating Policy

What am I required to do to certify my account is PCI compliant?

The minimum requirement is that you complete a PCI DSS self-assessment questionnaire on an annual basis. If you electronically store cardholder information or if your processing systems have any internet connectivity, a quarterly scan by an approved scanning vendor is also required.

I only process a few hundred dollars a month. Does my merchant account still need to be PCI Compliant?

Yes, all merchants, whether small or large, need to be PCI compliant. The payment brands have collectively adopted PCI DSS as the requirement for organizations that process, store or transmit payment cardholder data. Inherent in having a merchant account is the ability to handle cardholder data.

I'm a seasonal merchant that only processes three months out of the year. Does my merchant account still need to be PCI Compliant?

Yes, all merchants, whether small or large, need to be PCI compliant. The payment brands have collectively adopted PCI DSS as the requirement for organizations that process, store or transmit payment cardholder data. Inherent in having a merchant account is the ability to handle cardholder data.

I'm already using a "PCI compliant" terminal/gateway. Why do I have to have my account certified for PCI compliance?

The PCI Security Standards Council has various requirements programs. The Payment Application Data Security Standards (PA-DSS) is a set of requirement to help software vendors and others develop secure payment applications that do not store prohibited data such as full magnetic stripe, CVV2 or PIN data, and ensure their payment applications support compliance with the PCI DSS.

Use of a terminal/gateway that runs PA-DSS certified software is one of many components that are evaluated in the assessment of an account’s PCI DSS compliance.

What is an approved scanning vendor?

An approved scanning vendor is an organization that validates adherence to certain DSS requirements by performing vulnerability scans of a merchant’s internet-facing systems.

Is there a fee for becoming PCI compliant each year?

Yes, but if you have already become PCI compliant, then you will not have to pay any additional fees for the calendar year.

Will I be provided with anything that I can display to my customers showing that I am a PCI compliant merchant?

Yes. Upon completion of your PCI certification, you will receive a certificate of compliance, and if requested, a logo to display on your website.

Can I choose not to certify for PCI Compliance?

MasterCard and Visa require all acquirers to report on the PCI Compliance of their merchants. If you choose not to complete the self-assessment questionnaire you may overlook certain data security practices that minimize your risk of a security breach. In the event that your business is compromised, you may be subject to fines of up to $500,000 per payment brand. These fines would be in addition to the expenses and fraudulent transactions resulting from the breach.

How long is the PCI compliance certification valid?

The PCI compliance certificate is valid for one year from the date the certificate is issued. You are required to complete the PCI DSS self-assessment questionnaire on an annual basis. In some cases, we will perform a network scan annual, quarterly or monthly depending on how you process.

Have a Different Question?

Email us anytime

Or call — 888 788 2221