Introduction & FAQ

Thank you for installing blackthorn | payments!

Blackthorn | Payments brings Stripe to Salesforce, in a fully native package. We've built additional features and business logic on top of the integration to deliver the most advanced payment platform for Salesforce.

You can process:

  • Credit and debit cards
  • ACH with micro deposit verification or Plaid (coming soon)

It is built in a way that you can do everything that Stripe offers, without leaving Salesforce.

Feature highlights:

  • FREE, unlimited licenses (there is no catch!)
  • Refunds and Partial Refunds
  • Scheduled transaction processing with automated reattempt logic for failed processing
  • Connect multiple Stripe accounts
  • Historical data sync (migration by button click)
  • Webhooks (real-time bi-directional sync between Stripe and Salesforce)

Salesforce editions supported: Enterprise, Unlimited, Performance, Developer, (App Cloud)


What is Stripe?

Stripe is "A suite of APIs that powers commerce for businesses of all sizes." Stripe is not to be confused with Square, the in-person point-of-sale solution, rather Stripe is purpose built for enterprise back-end payment processing. Think, PayPal, or CyberSource but with modern, much easier to use APIs.

What is ACH?

Automated Clearing House. Think of ACH as a direct bank transfer. It is not instant like a wire transfer as there is a small delay in the processing time. Blackthorn | payments will soon support ACH with micro-deposit verification. More on blackthorn | payments ACH once it's supported. Additional information on Stripe ACH here.

What is Plaid?

Plaid is a company that built a series of integrations that enables applications to connect with users' bank accounts instantly instead of waiting multiple days with the traditional ACH micro-deposit verification process. blackthorn | payments is targeting to support Plaid instant verification by the end of 2016.

blackthorn | payments work with other payment gateways besides Stripe?

For now, blackthorn | payments only works with Stripe. If you currently use a different gateway, you can contact the gateway and ask them to transfer your data to Stripe. They will do this without you having to interact with the data, which keeps you and the data PCI compliant. blackthorn | payments's button click data migration process can then sync all of your new credit card tokens, customers, and past transactions into Salesforce from this gateway to gateway migration. The team can help you get a better rate with Stripe if your transaction volume is over Stripe's minimum rate threshold for discounts (in the US, this is $80k/m). Non-profit pricing starts at 2.2% (in the US).

Can I process payments in currencies other than USD?

Yes! blackthorn | payments supports any currencies Stripe supports. The full list is here.

What is PCI Compliance?

From the PCI Compliance Guide:
"The Payment Card Industry Data Security Standard (PCI DSS) is a set of requirements designed to ensure that ALL companies that process, store or transmit credit card information maintain a secure environment. Essentially any merchant that has a Merchant ID (MID)." "The PCI Security Standards Council is a global open body formed to develop, enhance, disseminate and assist with the understanding of security standards for payment account security."

Do I need to be PCI compliant?

Yes. Anyone involved with the processing, transmission, or storage of credit card data must comply with the PCI Data Security Standards (PCI DSS). Stripe makes it easy to be in compliance. Simply by installing and using blackthorn | payments as designed, you attain reduced scope PCI compliance out of the box, becoming fully PCI compliant by taking the Self-Assessment Questionnaire, which Stripe automatically creates for you, and you won’t need to undergo a PCI audit.

Salesforce has stringent security standards and Stripe is PCI compliant. PCI compliance is shrinking the footprint of where a Cardholder's data is located throughout an organization. Blackthorn | payments does not store card or ACH details, it only stores the Card ID, which is a unique ID generated by Stripe. blackthorn | payments also complies with Stripe's usage requirements of utilizing TLS with either Checkout or Stripe.js.

If you need to provide someone else with an Attestation of Compliance (AOC), and/or you are asked to fill in a PCI DSS Self-Assessment Questionnaire (SAQ), then Stripe will already have you covered! Just go to your Stripe security settings and click on “View completed document”. They will have pre-filled the documents for you.

What's Next