CVV-less Flow for Card Payments
Save customer card details as tokens and enable CVV-less payment flows for customers via Razorpay.
You can offer CVV-less payments for saved cards and let your customers complete a payment without the card CVV. CVV-less card payments are simple, fast and secure, and do not require the customers to remember the CVV. Offering CVV-less saved card flows to your customers can increase the conversion rate by 4%.
We encourage the businesses to remove the CVV box on the checkout page. If you are live on Razorpay Standard Checkout, the UI changes reflect automatically. The customer can choose their saved cards as their preferred payment option and experience a faster transaction.
CVV-less payments on RuPay and Mastercard CVV-less are on-demand features. Reach out to our
The CVV field is optional by default for saved card payments on Visa and Amex. To implement this change, you can skip passing the CVV field in the payment request to this field to Razorpay.
This change is applicable for all Visa, Amex, MasterCard and Rupay saved payments. For saved or saved payments on these cards, you can skip passing the CVV completely.
CVV-less flow is supported for tokenised payments on all major networks: Visa, Mastercard, RuPay and Amex.
CVV-less flow will be automatically enabled for Visa and American Express cards on Razorpay Standard Checkout.
If you are integrated with Razorpay’s Custom Checkout/S2S APIs, you need not pass CVV to Razorpay for tokenised payments mandatorily. You should make changes in your integration to:
- Not collect CVV from customers.
- Not pass CVV to Razorpay.
In this case, Juspay must send CVV-less card payments via Razorpay. We recommend you reach out to your Juspay POC.
7. CVV validation was a mandatory step until now. Does this feature compromise my customer’s security?
The new RBI guidelines for the Card on File Tokenization (CoFT) process ensures enhanced card security. Your customer’s card details are securely encrypted and stored, with access to only card networks and issuing banks. Considering this, Visa and Amex have made CVV validation optional for tokenised cards. This change is 100% compliant with all RBI regulations about card security.
Tokenisation is the process by which the original card number / Primary Account Number (PAN) is replaced with a surrogate value called a token. Razorpay’s RBI-compliant TokenHQ solution allows cardholders to tokenise their cards and securely process transactions through the tokenised cards. To know more about TokenHQ, reach out to our
CVV-less flows are applicable to all tokenised transactions under Visa, Mastercard, Amex and RuPay, irrespective of the payment amount.
One of the ways cardholder authenticity and security are maintained for CVV-less transactions is via their consent and authorisation to save their card in the first place. Other tokenised cards still need to maintain cardholder security by mandating the CVV.
Was this page helpful?