What Is a Payment Gateway?

A payment gateway is the technology that connects your business to the financial networks that authorize and process card and digital payments. Think of it as the digital equivalent of a card reader — it securely transmits payment data between your customer, your bank, and the card networks (Visa, Mastercard, etc.).

Whether you're running an eCommerce store or a brick-and-mortar shop, a payment gateway is the critical piece of infrastructure that makes accepting payments possible.

How a Transaction Actually Works

When a customer pays, a lot happens in just a few seconds. Here's the step-by-step flow:

  1. Customer submits payment: The customer enters card details at checkout or taps their card/phone at a terminal.
  2. Data encryption: The gateway encrypts the payment data to protect it in transit.
  3. Authorization request: The encrypted data is sent to the payment processor, which forwards it to the card network (e.g., Visa).
  4. Issuing bank approval: The card network contacts the customer's bank to check for sufficient funds and fraud signals.
  5. Response returned: The bank sends an approved or declined response back through the network to the gateway.
  6. Settlement: Approved funds are batched and transferred to your merchant account, typically within 1–2 business days.

Hosted vs. Integrated Gateways

Payment gateways generally come in two flavors, each with trade-offs:

TypeHow It WorksBest For
Hosted Gateway Customer is redirected to the gateway's payment page Small businesses wanting minimal PCI scope
Integrated Gateway Payment form lives on your site via API/SDK Businesses wanting full control of the checkout experience
Self-Hosted Gateway You host and manage the payment infrastructure Large enterprises with dedicated technical teams

Key Features to Look For

  • Security & PCI Compliance: Ensure the gateway is PCI DSS Level 1 certified and supports tokenization.
  • Supported Payment Methods: Beyond cards, look for support for digital wallets (Apple Pay, Google Pay), bank transfers, and BNPL options.
  • Developer APIs: Clean, well-documented APIs reduce integration time significantly.
  • Pricing Structure: Compare flat-rate, interchange-plus, and tiered pricing models to find what suits your volume.
  • Fraud Detection: Built-in tools like 3D Secure, AVS checks, and machine learning fraud scoring add crucial protection.
  • Global Reach: If you sell internationally, check currency support and local payment method availability.

Common Fees to Understand

Payment gateway pricing can be complex. Here are the key fee types you'll encounter:

  • Transaction fee: A percentage (and sometimes a flat fee) per successful transaction.
  • Monthly/setup fee: Some gateways charge a recurring fee for access.
  • Chargeback fee: A fee applied when a customer disputes a transaction.
  • International fee: Additional charges for cross-border transactions.

Choosing the Right Gateway

There's no single best payment gateway — the right choice depends on your business model, transaction volume, technical resources, and geographic reach. A subscription SaaS company has very different needs from a one-off eCommerce retailer or a marketplace platform.

Focus on total cost of ownership, not just the headline transaction rate. Factor in developer time, chargeback rates, fraud losses, and support quality when making your decision.