image path:

What is Client Side Encryption?

Client Side Encryption (CSE) is an integration method on the Worldwide Payment Gateway (WPG) that can potentially reduce your PCI DSS  burden.

CSE encrypts cardholder data at the point of payment, resulting in only encrypted data passing through your servers.

The cardholder data is encrypted in the browser (or App) so it cannot be read, and the encrypted data is sent to your server. You then submit the encrypted data with your payment request to Worldpay, we decrypt it and send it on for authorization.
  • The shopper enters their cardholder data and submits their payment. As the payment is submitted, it is encrypted using CSE
  • When you receive the payment, you create an XML order containing the encrypted information and send it to Worldpay
  • When Worldpay receive the order, we decrypt it using a private key. The information is then passed on for processing
  • Once a response is received, Worldpay pass the response back to you

​To learn more about how it works, contact your Relationship Manager or see the Client Side Encryption part of the XML API Integration Guide.