There are dozens of Payment Gateway options for WooCommerce.
What is a payment gateway?
A payment gateway in WooCommerce terms is a WordPress plugin for WooCommerce that allows customers to pay for goods and services using a payment system such as PayPal or Stripe.
- All require an account with the Payment Gateway company.
- Each has terms and fees set by the Payment Gateway company, which is separate from the WooCommerce extension subscription. Contact the Payment Gateway company directly, with questions about account requirements, terms and fees.
- Some have multiple options based on different account types, transaction types or redirect methods, such as PayPal and CyberSource.
Comparison charts for PayPal and CyberSource.
How to choose a payment gateway
When selecting and setting up up a Payment Gateway, it’s important to consider:
- Cost
- Location
- Security
- Redirect: Customer is forwarded to the Payment Gateway site to process payment, then redirected back to your site to complete checkout.
- Direct: Customer purchases and pays directly on your site, requiring an SSL certificate as part of PCI Compliance.
- Support for WooCommerce Subscriptions (if applicable)
If you’d like to read more about payment gateway security, check out our WooCommerce site and data security FAQ.
Cost
Startup and ongoing costs are different for each payment gateway and can consist of:
- Purchase of the payment gateway, if not free
- Signup fee charged by the payment gateway company/processor
- Monthly/yearly subscription fees
- Transaction fees
Location
Shop location and currency are factors. A payment gateway company/processor may only serve merchants based in certain countries. If it only supports U.S. dollars and accepts U.S. shop owners, shop owners in Canada and Europe cannot use it.
However, customers from all over the world can use the gateway to check out and pay. More info at: What to Consider about Payments when Selling Internationally and How to Choose a Payment Gateway
Security
Shop owners accepting payments have a responsibility to protect sensitive customer information, such as email addresses, shipping addresses and billing information.
To do this, most payment gateways require an SSL certificate. This encrypts communications between your site and customers, and your site and the payment processor. More info at: SSL FAQ.
Other steps to secure your site are covered by the Payment Card Industry Data Security Standard (PCI-DSS), which apply to anyone storing, processing or transmitting credit card data. More info at: PCI-DSS compliance and WooCommerce.
Support for Subscriptions
Should you wish to sell Subscriptions (separate purchase), you must choose a payment gateway that supports manual or automatic recurring payments. More info at: Subscription payment methods and gateways.
How many do I need?
You need at least one payment method to collect payment on your site.
- One: Only having one way for customers to pay is a risk, as payment gateways can encounter down time or another unforeseen issue.
- Two: Offering different payment options increases the possibility that customers can always check out and complete payment.
Too many payment gateways can overwhelm customers with choice and make your site administration more complex. Choose according to shop requirements and business needs.
Here’s an example of two payment gateways on the checkout page:
Free vs. Premium
Our WooCommerce plugin gives you several free payment options to use, called Core Payment Options. Should you wish to use something different, you can select and purchase a Premium gateway.
Core gateways (free)
Payment gateways and options included in WooCommerce for *free are listed at: Core Payment Options.
*PayPal and Stripe charge fees and require you to set up an account. WooCommerce.com charges you nothing.
Premium gateways
Paid payment options available: Premium Payment Gateway extensions. In the left sidebar, search by Direct, form, iFrame, Offsite (Indirect) or Country.
Payment gateways and the GDPR
If selling to customers in Europe, the European General Data Protection Regulation (GDPR) framework should be part of your decision on which payment gateway to choose. For more information on the GDPR and its concerns for user privacy, see: WooCommerce and the GDPR.
Customer information collected during checkout depends on the payment gateway. If you’re working with a manual payment gateway such as BACS, your site won’t process the payment itself, since you will check your bank account, independently of your site. Other payment gateways, such as Stripe or PayPal, require information to be passed from your site to that payment processor. It’s up to you to choose a reliable processor, as well as consider the impact on customer data.
- Be aware of what information is being sent
- Inform customers on what happens to their data
- Understand what the payment processor does with that information
For example, the WooCommerce Stripe plugin sends certain customer information to Stripe (see Stripe documentation for specifics). You need to disclose this process in your site’s Privacy Policy.
Any payment gateway you choose should have information about how to handle customer data. Check the payment processor’s website to learn more about their privacy policies and GDPR.
For more information on how payment gateways apply GDPR, see: Privacy Considerations when Using Official Payments Extensions.