Processing payment, in flight

Processing payment online, resolved in milliseconds.

topropay is the orchestration layer that owns the live authorisation moment. Every checkout request lands on one API, smart routing decides which gateway and acquirer to send it to, cascading retries keep approvals high, and a tokenised vault keeps card data off your servers. From the spinner on the page to the line in your ledger, processing the payment runs end to end on one platform.

One authorisation, four stages, sub-second decision

Processing payment online at a glance

  • <150 ms live decision time
  • 300+ methods on one API
  • 40+ markets served
  • 99.99% uptime

The short version

Why processing of payment work belongs on one platform

The moment of authorisation is where payments either work for the business or quietly drain it. A request leaves the checkout, a decision is taken, an acquirer responds, a token is stored, a receipt comes back. If any one of those legs is slow, brittle or tied to a single provider, the consequences land in two places at once — on the conversion rate at the checkout, and on the operations team behind it. Most teams do not notice the cost until they try to add a second gateway or a new market and discover how much of their stack assumes the first one.

topropay collapses that surface into one platform. Cards, wallets and account-to-account arrive on the same API; smart routing decides which gateway and acquirer handle each authorisation; cascading retries fail over soft declines inside the same request; a tokenised vault keeps card data off your servers; one normalised ledger replaces the file-per-provider reconciliation that finance teams usually inherit. Processing payment online stops being a brittle integration and starts behaving like a single, observable discipline. For the engineering team that means one well-typed contract instead of a folder of provider SDKs. For the operations team it means one screen instead of N. And for finance it means one set of numbers to close the month against — the same ones your operators see in real time.

The orchestration layer sits in front of the providers you already use, so you can keep existing acquirer contracts and add new methods as configuration rather than as another engineering project. Routing is rule-driven and editable from the dashboard; new markets light up as soon as the underlying rail does; the live event stream feeds the warehouse, the SIEM and any in-house reporting your finance team already runs. Nothing about processing the payment becomes a black box — every decision is recorded with the data it was made on, so you can audit a single transaction or a whole cohort with the same query.

Key benefits

What changes when processing the payment runs on one layer

Three outcomes show up first when authorisation moves out of a single-gateway setup and onto an orchestration platform.

Approvals where the route matters

When the platform is processing the payment, every authorisation is scored in real time and sent to the gateway most likely to clear it. A soft decline cascades to the next ranked route inside the same request, so a sale that would have been lost at one bank survives at another — without the shopper seeing a retry. On large volumes, that lift compounds into a meaningful gain.

Speed that the checkout actually feels

Processing payment online has a strict latency budget: anything over a second at the checkout drains conversions. The decision engine resolves routing in sub-150 ms inside the same authorisation, and the tokenised capture path keeps round-trips to the bare minimum. Shoppers see a smooth confirmation; you see a higher approval rate.

Operations that scale with the lifecycle

The same orchestration layer carries the transaction from authorisation through capture, settlement and reconciliation. Refunds and chargebacks roll back through the same route. Finance closes the month against one normalised ledger instead of merging a file per provider, so growth never adds another reconciliation chore.

How it works

The processing payment online flow, one rail

Four stages run on the same track. Each one is owned by the platform end to end, so the shopper sees a single result and the operations team sees one consistent story.

  1. Capture

    Cards, wallets and account-to-account inputs are captured inside the PCI DSS vault. Your origin only ever handles tokens, so processing for payment never widens your compliance scope.

  2. Decide

    The routing engine scores every authorisation in milliseconds against approval likelihood, cost, currency and risk, then picks the gateway and acquirer for that specific transaction.

  3. Process

    Processing the payment runs against the chosen route, with 3DS2 / SCA applied where the market requires it. Soft declines cascade to the next ranked acquirer in the same request, transparent to the shopper.

  4. Settle

    Approved authorisations clear through scheme rails and settle on each acquirer's cycle. Every payment, fee, refund and chargeback rolls into a single normalised ledger.

Where it fits

Where processing for payment work earns its keep

The same orchestration layer carries different shapes of business through the same authorisation flow. A few of the patterns the platform sees most often:

Direct-to-consumer brands

Storefronts processing payment online from a global audience face the widest method mix and the strictest latency budget. The unified API surfaces cards, wallets and local rails at the checkout while keeping decisions inside the same authorisation request.

  • Cards + Apple Pay + Google Pay at the same checkout
  • Sub-second decisions on every authorisation
  • Local methods light up per market

Subscriptions and SaaS

Recurring billing is processing payment at scale, with most of the lifecycle running in the background. Vault tokens drive renewals, account-updater logic refreshes saved cards, and cascading retries recover soft declines without dunning the customer.

  • Token-driven renewals
  • Account updater on stored cards
  • Intelligent retry policies

Marketplaces and platforms

Marketplaces add a layer on top: every order is processing payment for one or more sellers. The platform handles split captures, partial refunds and seller payouts through the same connection, so support cases close in one screen instead of three.

  • Split captures and payouts
  • Per-seller reconciliation
  • One screen for support

Travel and high-ticket

Travel and high-ticket merchants process larger baskets in fewer transactions, so each authorisation matters more. Staged captures, multi-currency conversion and redundant acquiring let the team hold and finalise charges without exposing the shopper to a failed attempt.

  • Staged and split captures
  • Multi-currency capture
  • Redundant acquirer failover

Capabilities

Features built around live authorisation

The capabilities below are the load-bearing pieces of processing payment at scale. All of them sit behind the same API and surface in the same dashboard.

See smart routing & cascading
  • Unified API One REST integration covers every connected gateway, acquirer and method.
  • Smart routing Per-authorisation scoring picks the route most likely to approve at the lowest cost.
  • Cascading retries Mid-request failover keeps approval rates high without the shopper noticing.
  • Tokenisation vault PCI DSS Level 1 vault holds card data; you only handle tokens.
  • 3DS2 and SCA Selective authentication keeps cards compliant and friction low.
  • Real-time webhooks Signed events stream into your warehouse, SIEM or ops tooling.
  • Multi-currency settlement Settlement currency is a policy choice, not a gateway constraint.
  • Normalised ledger Settlements, fees, refunds and chargebacks reconcile in a single export.

Industry relevance

Sectors that move processing onto the platform

Each sector leans on a different part of the lifecycle, but the shape of processing payment stays the same: take the request, route it, clear it, account for it.

  • Retail & DTC
  • Subscriptions
  • Marketplaces
  • Travel & hospitality
  • Ticketing & events
  • Financial services
  • Gaming & entertainment
  • PSPs & resellers

Beyond the headline categories, the platform serves the long tail — agencies, ISVs and payment service providers that resell capacity to their own customers under their own brand. Whatever the shape of the business, the authorisation flow is what holds revenue together, and giving it a single owner is what turns a stack of integrations into one operation.

Trust & compliance

Signals your CISO, finance and CSM will recognise

The platform carries the regulated work — vault, attestations, audit logs — so processing payment online stays compliant by default and your team inherits the controls rather than rebuilding them.

  • PCI DSS Level 1 Service-provider posture with annual on-site assessment and quarterly ASV scans.
  • PSD2 / SCA aligned 3DS2 in the authorisation path so European card flows stay compliant by default.
  • EU data residency Processing inside the agreed region, with audit-grade event logs exposed in the dashboard.
  • Redundant acquiring Automatic failover across acquirers keeps authorisations live through outages and peaks.
  • Tokenisation throughout Saved cards become network-aware tokens; raw PANs never leave the vault.
  • Operational logging Every operator action is scoped, signed and exported for finance and risk teams.

For the deeper PCI posture see the payment card industry PCI compliance page; for the reconciliation engine that closes the books each month see reconciliation & reporting.

Common questions

Frequently asked questions about processing payment

What does 'processing payment' actually mean here?

Processing payment is the moment a shopper's transaction is authorised and routed to a clearing acquirer — the live, in-flight step between the checkout and the merchant account. Most people use it as a shorthand for the entire authorisation flow: card capture, scoring, routing, 3DS2 where needed, and the response back to the page. topropay handles every part of that flow on one connection, so you do not stitch together a separate engine per gateway.

How is processing payment online different from a traditional payment terminal flow?

Processing payment online happens entirely in software — there is no physical terminal swiping a card, just an HTTPS request from a checkout page or app. That changes two things. First, latency is judged on a stricter budget because the shopper is watching a spinner. Second, the compliance work shifts to keeping cards out of your own servers, which is why the platform captures into a tokenised vault rather than letting card data touch your origin.

How long does processing the payment usually take?

On a typical card authorisation, processing the payment end-to-end resolves in well under a second. The routing decision runs in milliseconds inside the same request; the bank-side authorisation usually responds within a few hundred milliseconds; tokenisation and capture cost a few more. The full round-trip the shopper experiences is short enough to feel like a single page action, not a multi-step wait.

What is happening behind the scenes when you are processing for payment routing?

Processing for payment routing means scoring every authorisation against a set of signals — historical approval rate per BIN and acquirer, currency, cost per cleared payment, risk profile, market — and picking the gateway most likely to clear at the lowest cost. The decision is made per transaction, not per merchant configuration, so two payments from the same checkout can take different routes depending on what the data says.

How is processing of payment data kept compliant?

Processing of payment data — the cardholder data itself — happens inside a PCI DSS Level 1 vault. Your systems handle tokens that refer to the vaulted card, not the card number itself. That keeps your own PCI scope at the lightest applicable form (usually SAQ A) and ensures the regulated work — vault hardening, key management, scheme attestations — sits on the platform's side.

Can I keep my existing acquirers when I move processing onto topropay?

Yes. topropay is an orchestration layer, not a closed gateway. You point your existing acquirers and PSPs at the unified API; the platform adds smart routing, the vault and reconciliation on top. Pricing and contracts stay as they are, and you can add or remove providers later without re-integrating your downstream tools.

What happens if an acquirer goes down while processing payment online?

Cascading retries kick in. When the chosen route returns a soft decline or fails to respond, the engine fails over to the next ranked acquirer inside the same authorisation request. The shopper does not see a failed attempt — they see one approval or one final decline — so processing payment online stays resilient through individual provider outages.

Is the platform suitable for high-volume merchants?

Yes. Per-transaction routing, cascading retries and redundant acquiring are designed for merchants and payment service providers handling serious volume across many markets and schemes. The same lifecycle runs whether you clear a few thousand or several million transactions a day; the routing policy is what scales with the business.

How long does it take to start processing payments through the platform?

Most teams go live within days. The integration is one API plus prebuilt checkout components if you want them. Existing acquirers can stay in place; you switch on additional providers and methods from the dashboard as configuration. Engineering effort drops sharply because there is one well-typed contract instead of a folder of provider SDKs.

Can the platform handle alternative payment methods beyond cards?

Yes. Cards, digital wallets (Apple Pay, Google Pay), account-to-account, SEPA, ACH and many regional methods sit behind the same API. The routing engine treats each rail as a route, so a checkout can offer the methods buyers in each market prefer without changing how processing payment works under the hood.

Talk to payments engineers

Move processing payment online onto one rail.

Book a routing review. We map your current providers, surface where authorisations and payment processing time leak today, and scope a single-API rollout that adds the methods and markets you are missing — without renegotiating the acquirer contracts you already hold.