PayoutsImplementation Methods

Debit Card Tokenization

This guide is meant to help developers who want to tokenize debit cards for payout flow.

Overview

Debit card tokenization is essential for implementing push-to-card payouts while maintaining PCI DSS compliance. Coinflow provides multiple tokenization methods depending on your platform and compliance requirements.

Note: This guide covers debit card tokenization for push-to-card payouts only. For credit/debit card tokenization for payments, see Implement Credit Card / Debit Card Checkout.

Tokenization Methods

Coinflow offers three approaches to tokenize debit cards, each suited for different use cases:

SDK-Based Tokenization

Recommended

Use the CoinflowCardOnlyInput component to securely collect and tokenize debit card details in your application.

Key Benefits:

  • No PCI compliance requirements
  • Available across all SDKs (React, Vue, Angular, React Native)
  • Automatic card validation and security
API for Mobile Apps

For mobile applications, tokenize debit cards server-to-server without demonstrating PCI compliance.

Key Benefits:

  • No PCI compliance documentation required
  • Server-to-server integration
  • Ideal for native mobile apps (iOS, Android)
API for Web Apps

For web applications requiring server-to-server tokenization. Requires proof of PCI DSS compliance.

Requirements:

  • Valid Attestation of Compliance (AOC) document
  • AOC reviewed by a QSA for service providers
  • Merchant-specific or service provider AOC

AOC Examples:

Choosing the Right Method

Use CaseRecommended MethodPCI Compliance Required
Web applicationsSDK-Based TokenizationNo
Mobile applicationsAPI for Mobile AppsNo
Web apps with existing PCI complianceAPI for Web AppsYes