webinarsbreadcrumb separatorcomplete-guide-to-payment-hub-solutions-chapter-2

Clarity Venture's CEO Chris Reddick and Vice-President of Sales and Marketing Ron Halversen continue their talk about ExpressPay and how it delivers an advanced payment hub solution.

Part 2 of a 5-part series (Return to Part 1)

CHRIS: We talked about a few of the things that a payment portal does, but maybe you can elaborate on some of the other features. 
 
RON: Yeah, sure. We'll just break it down to just the bits and pieces. So the main thing here, you've got this customer portal, right? So I have this place where I could go—it's like I want to go sign up for autopay, right? I mean, I think all of us have ever done it. We've done it for our utilities with the house., every time we buy a car, we have to log into the portal, we sign up for Autopay Right Auto Debit or whatever you want to call it. That's what this is, right? I have this nice little customer portal. I can go sign up for ExpressPay.

what is hipaa

RON: The main reason for that is, now that the card’s on file, I can have that token. And with that token now made available, I can do all kinds of stuff. There's basically four main features or components of the solution, right? First one is the customer portal solution, and that's where they can sign up for ExpressPay.

what is hipaa

RON: The second one that we haven't even talked about yet is the invoicing. So for example, if I turn around and the eCommerce solution or phone, fax, or email order that comes in doesn't have the ability for the end-user to have an invoice and I have to start manually producing an email and invoices out. Well, this hub has invoicing built in, so now I could batch process the credit card in the ERP, send up and capture that payment, and at the same time pop an invoice in. And or if the client is on payment terms, I can pop the invoice. They can log into the ExpressPay portal and pay an invoice. 

Now, from a self-service perspective, they can search for the history of all their invoices, including B2B invoices. They can make invoice payments, they can see any receipts from refunds that have been made back to their card. So ExpressPay registration, invoicing, there's a virtual terminal element...you mentioned a minute ago about being able to connect to a POS if someone was out at an event. If they didn't have that manual POS record on hand, then the other thing they might have is an iPad. So at least they could bring up the iPad and have a virtual terminal where they can type in the card number and capture the payment via virtual terminals. So it allows for that virtual terminal. 

what is hipaa

RON: Then, obviously, it provides that fourth element, which is the capture of funds. Whether it's refunds, a batch processing of manufactured orders going out in bulk, or simply monthly subscription. Or it’s six weeks later and we’ve manufactured the car, we're shipping the car, so we need to capture the funds at the time of shipment. Whatever you want, you can capture the funds. So that's the four main basic features of the payment hub solution

CHRIS: Yeah, that sounds really powerful. You know, one of the things that I think a lot of folks at this point might be asking is, given that this is payment information, it's really secure, sensitive data. How is this architected so that it's secure? And then obviously, for most of our clients and most folks that we work with, they need to customize things over time. So shall we talk a little bit about architecture? 
 
RON: You're obviously our rocket scientist out here, so I'm going to turn this one over to you and let you dive in and talk about the architectural components that make it up, and then the security. And you might even want to throw in some of the security options that different clients might have as to where the solution is hosted, things like that. 
 
CHRIS: Absolutely. Yeah, it is true that I've done some actual rocket science. And this—although this isn't rocket science—we've put together a really robust enterprise eCommerce architecture here.   

what is hipaa

CHRIS: The fundamental behind the payment portal and the payment hub system is, it's really made up of two components. The first is our customer portal, which is driven from our enterprise eCommerce platform. We've essentially selected modules that make sense as a payment portal, as a customer self-service portal, a payment hub, as we call it. And this system, at its core, is PCI-DSS compliant. We tokenize the data—the payment information—so that it's PCI-compliant wallet and allows the customers to do some of the things that you mentioned: being able to view and pay invoices, orders and refunds, deal with subscriptions, and even see subscription renewal dates, manage their address and their billing information, etc. These are things that are really powerful.  

The reason that we have all of these is because we are leveraging a bigger platform, and we've narrowed the scope of it to be able to be a simple, off-the-shelf solution. But keep in mind, there's a powerful engine behind this with our eCommerce platform.  

The other piece that we've brought in is our connector. Our connector is architected as an integration platform. The integration platform can operate in different physical locations. So this can physically sit behind an internal firewall as an on-prem deployment. It can sit in a Cloud deployment that's behind a secure Cloud infrastructure. It can operate as a hybrid model, where we have an agent that's on-site behind a firewall that’s securely and very myopically sharing only what's necessary to our hybrid Cloud instance from the internal systems that we're integrating to. 
 
There are a lot of different catering aspects that we can implement for your particular business. Fundamentally, the standard solution that we see quite often is that we're using our integration platform, which we call Clarity Connect, and our eCommerce platform. These are married together to deliver a turnkey solution that's very secure. 
 
Again, we tokenize the data, and there's a lot more detail we can share on tokenization, maybe in another talk. But the summary, the way I would convey it to you, is that all of this sensitive data, this PCI-DSS card payment information, is never stored in our infrastructure, in our database. It's never persisted into our database. It goes straight to the payment gateway and they provide us with a token, as Ron was referring to earlier.  

This is great because we're putting all the sensitive data into bank-level or higher encryption, and then we're getting back a token. Then we're using your specific payment gateway account that we're integrating to in order to get access to this tokenized account by using the token as a key. And so this is really powerful. This is the fundamental of how PCI-DSS compliance operates today.  

So you're getting—and this is what I think is so powerful—you're getting this eCommerce platform that's an enterprise eCommerce platform, and an integration platform that's an enterprise integration platform bundled into one solution, that we refer to as our payment hub. 
 
RON: Yeah, that I love that. And when I'm doing demos for people, a lot of times I talk about the PCI-compliant wallet and they don't really understand what that means. They understand there's something about security there, but they don't understand. And so to [describe it in] one sentence: we don't store credit card numbers. 
 
It's [like] a Dewey Decimal System for a book. The credit card is the book. And we have a little card that says, “Hey, we're going to refer to that card as Chris’s card number one, two, three, four. And so all we store is the expiration date, one, two, three, four, and that this is Chris’s card. 
 
So if anybody came to hack or steal, if a disgruntled employee tried to hack this database, it doesn't matter to us because we don't have any credit card numbers, CVV numbers, we don't have any of those elements to put together. So [the information isn’t there where] somebody could steal and take an identity or steal someone's credit card. 
 
CHRIS: And these aspects of the platform are really born out of going through hundreds and hundreds of these implementations and validating, in production, with literally millions of different transactions that we've processed, making sure that they're secure and valid.  

 

Get A Complimentary Discovery Session

Whether you work with us or not, we want you informed. Let us help you pinpoint what aspects of payment hubs would be best for your customers.

Schedule A Demo
Lorem ipsum dolorem

Continue to Part 3 to find out why ease of use is so important.

Recent Search

HIPAA Compliance AngularJS Web Development ERP Sage Integrations Microsoft Dynamics Xamarin Framework Comparison Essential Website Features

Top Searches

B2B Supply Chain Management WooCommerce Integrations Catalog Product Tags Top B2B eCommerce Challenges Epic Integrations Optimizing Mobile Apps