SEPA Secure payments using host-to-host

The host-to-host communication allows a merchant to send all the data needed for a KYC of a customer in the background. The customer will not be required to fill in data or manually send proof of identity or proof of address. This flow has the best conversion rate.

Step 1 needs to be finished only once and only if SumSub token sharing is not implemented.

The host-to-host flow for a customer includes the following steps:

Pass KYC for a customer
1. Create SEPA Secure user account
2. Create KYC applicant
3. Upload KYC documents
4. KYC verification
  1. Patching data for a SOFT_KYC_FAILED case
Create an invoice with deposit data
1. Create an invoice
2. Display the invoice with the deposit destination data to the customer
Process a callback on every deposit

Make sure that you control the result of execution of each API request. If one of the requests fails - all the subsequent requests will also fail. Instead, setup a retry mechanism where necessary.

Note, that there the KYC needs to be passed only once. There is no need to trigger the API endpoints before every deposit.

Confirming a transaction

Due to security risks, merchants must use our API endpoint to request transaction details. XGateway is not liable for issues caused by relying only on callback data.

To confirm the callback is valid, please use the API endpoint.

Testing SEPA Secure deposits on Demo environment

Check this page for ways to test the integration.

PreviousSEPA Secure payments using Checkout NextAlternative Payment Methods using Checkout

Last updated 12 days ago