OnCharge
Start Application
Now accepting merchant applications

Stop Chargebacks.
Protect Revenue.
Grow Fearlessly.

OnCharge is the payment security layer for WooCommerce merchants. We block fraud before checkout, defend disputes automatically, and keep your processing account safe — so you can focus on selling.

Start Application See How It Works
99.8%
Fraud block rate
<200ms
Risk decision time
70%
Chargeback reduction
24/7
Monitoring

The Problem

Online merchants lose billions to fraud and chargebacks every year

If you sell online, you know the pain. Every fraudulent order, every disputed charge, and every terminated account costs real money.

Chargebacks drain your revenue

Every chargeback costs you the sale, a fee, and reputation damage with your processor. Enough of them and your account gets shut down.

Fraud tools are fragmented

You're juggling separate tools for IP checks, email validation, phone verification, and chargeback alerts. None of them talk to each other.

High-risk means high fees

Processors punish businesses in certain industries with inflated rates, rolling reserves, and sudden account terminations.

Bot traffic wastes resources

Automated attacks test stolen cards on your checkout, causing declines, chargebacks, and a flood of fake orders.

The Solution

One platform to prevent fraud, fight chargebacks, and protect your business

OnCharge sits between your WooCommerce store and the payment processor, catching threats at every stage of the transaction lifecycle.

Pre-checkout fraud screening

Block threats before they ever reach the payment form. IP intelligence, email validation, phone verification, and bot detection run in under 200ms.

Secure hosted checkout

Card data never touches your server. Tokenized fields inside a CSP-locked iframe keep you out of PCI scope.

Automated chargeback defense

Ethoca and Verifi alerts intercept disputes before they become chargebacks. When disputes arrive, evidence packets are assembled and submitted automatically.

Step-up verification

When risk is elevated, SMS OTP and additional identity checks kick in automatically. Legitimate customers pass in seconds.

Continuous compliance monitoring

Daily scans check your site for TLS issues, missing security headers, and suspicious scripts. Findings are delivered as actionable alerts.

Real-time merchant portal

Transactions, disputes, refunds, analytics, support tickets, and API key management. Everything in one place.

Architecture

How OnCharge Works

Your WooCommerce store never talks to the payment processor directly. OnCharge handles everything server-to-server.

WooCommerceYour StorePlugin calls APIOnChargeRisk EngineSession ManagementChargeback DefenseServer-to-serverPayment ProcessorProcessorembeds iframewebhookscallback to Woo

No direct PSP integration

Install a WooCommerce plugin. OnCharge handles all payment processor communication.

Secure hosted checkout

Card data is captured in a CSP-locked iframe using tokenized fields. PCI scope stays minimal.

HMAC-verified at every step

Every API call, webhook, and callback is cryptographically signed and verified.

Why Switch

Before vs. After OnCharge

Without OnCharge

  • Chargebacks hit your account with no warning
  • Fraudulent orders ship before detection
  • Separate tools for fraud, disputes, and compliance
  • Processor threatens termination at high dispute ratios
  • Manual evidence gathering for every dispute
  • No visibility into why chargebacks happen

With OnCharge

  • Ethoca & Verifi alerts intercept disputes early
  • Fraud blocked before the payment form loads
  • One platform for prevention, defense, and compliance
  • Chargeback ratio stays well below processor thresholds
  • Evidence packets assembled and submitted automatically
  • Full analytics on fraud patterns and dispute trends

Industries We Serve

Built for businesses that need real fraud protection

We work with merchants across industries who process $150k+ per month and need enterprise-grade payment security without enterprise complexity.

E-commerce & Retail

Online stores selling physical and digital goods through WooCommerce.

SaaS & Digital Services

Subscription platforms, digital downloads, and online services.

High-Ticket & Luxury

Jewelry, electronics, designer goods, and premium products.

Health & Wellness

Supplements, nutraceuticals, fitness programs, and wellness products.

Travel & Events

Booking platforms, ticketing, travel agencies, and event management.

Professional Services

Consulting, legal, coaching, and other high-value service businesses.

Eligibility

Business eligibility

OnCharge supports most mainstream ecommerce and service businesses. Some categories require additional review. We do not support prohibited categories.

Supported industries

These categories are fully supported with standard onboarding. No additional documentation or reserves required.

E-commerce & online retail SaaS & digital services Subscription platforms Digital downloads & media Online courses & education Coaching & consulting Professional services Marketing agencies Web design & development IT services & managed hosting Fitness & wellness programs Gyms & membership sites Food & beverage (non-alcohol) Meal kits & delivery services Home & garden products Furniture & home decor Pet supplies & services Automotive parts & accessories Electronics & consumer tech Mobile accessories Fashion & apparel Beauty & cosmetics Sporting goods & outdoor gear Toys & games Books, music & entertainment Office supplies & equipment Print-on-demand & custom merch Photography & videography Event planning & services Cleaning & home services Landscaping & maintenance Moving & storage services Legal services Accounting & bookkeeping Real estate services Property management software Nonprofit donations (501c3) Religious organizations B2B wholesale & distribution Industrial supplies (non-hazardous) Printing & signage Agricultural products & supplies

And many more. If your business is not listed above, apply and we'll review it during onboarding.

Restricted (additional review required)

  • Travel agencies & tour operators
  • Ticket agencies & event sales
  • Crowdfunding platforms
  • Alcohol (where permitted; 21+ delivery)
  • Pharmaceuticals & medical devices (requires LegitScript)
  • Healthcare & veterinary services
  • High-value goods (jewelry, watches, precious metals)
  • Art dealers, galleries & auctions
  • Drop shipping (fulfillment requirements apply)
  • Political / social campaigning
  • VPN / cloud storage / file-sharing
  • Nutraceuticals & supplements (non-CBD)
  • Dating & matchmaking (non-adult)
  • Cruise lines

Restricted categories require additional documentation, reserves, or enhanced monitoring. Apply and our team will guide you through the requirements.

Prohibited (not supported)

  • Illegal products or services
  • Counterfeit goods or IP infringement
  • Weapons, ammunition, explosives
  • Illegal drugs and drug paraphernalia
  • Adult entertainment & explicit content
  • Pyramid schemes, scams, “get rich quick”
  • Ransom / extortion services
  • Unlicensed gambling (all US gambling)
  • Money laundering / sanctioned entities
  • CBD, hemp, kava kava, regulated nutraceuticals
  • Hazardous materials (B2C)
  • Tobacco, vaping, e-cigarettes (online)
  • Research chemicals & peptides (B2C)
  • Binary options / payday loans
  • Shell banks / bearer share entities

We do not support any category prohibited by our processing partners or applicable law.

For details, see our processor restricted & prohibited list during onboarding.

Crypto Payments

Accept Cryptocurrency

Accept any supported cryptocurrency and get paid out in USD to your US bank account. No crypto custody required — we handle conversion and settlement.

20+ Cryptocurrencies

Bitcoin, Ethereum, USDT, USDC, Litecoin, Solana, and more. Your customers choose their preferred crypto at checkout.

USD Settlement

Crypto payments are automatically converted to USD and settled to your US bank account via ACH.

No Custody Risk

OnCharge handles all crypto operations. You never hold, store, or manage cryptocurrency directly.

KYT Compliance

Every transaction is screened for compliance. Know Your Transaction (KYT) checks run automatically before confirmation.

US merchants only · USD bank payout

Getting Started

Live in minutes, not months

No complex integration. No code changes to your theme. Install the plugin, enter your keys, and you're protected.

1

Apply & get approved

Submit your business documents through our merchant portal. Automated screening and manual review typically complete in 2-3 days.

2

Install the plugin

Upload the WooCommerce plugin to your WordPress site. Works with both Classic and Blocks checkout out of the box.

3

Enter your credentials

Paste your Store ID, API Key, and API Secret from the OnCharge dashboard into the plugin settings. That's it.

4

Start processing

The secure checkout iframe loads automatically. Fraud screening, chargeback defense, and compliance monitoring are active from day one.

POST /v1/checkout/sessions
// The plugin handles this automatically.
// Here's what happens under the hood:

const session = await fetch(
  'https://api.oncharge.io/v1/checkout/sessions',
  {
    method: 'POST',
    headers: {
      'X-Oncharge-Key': storeApiKey,
      'X-Oncharge-Timestamp': timestamp,
      'X-Oncharge-Signature': hmacSig,
    },
    body: JSON.stringify({
      amount: 9999,
      currency: 'USD',
      reference: 'order-42',
      return_url: returnUrl,
    }),
  }
);

// Response:
// {
//   "session_id": "cs_abc123...",
//   "iframe_url": "/checkout/cs_abc123...",
//   "expires_at": "2026-02-07T12:00:00Z"
// }

Documentation

Complete docs for integration, operations, and scale

Build, launch, and operate OnCharge with implementation guides, API contracts, risk policy references, webhook patterns, and security runbooks in one place.

WooCommerce Integration

Install and configure the plugin for Classic + Blocks checkout, callbacks, troubleshooting, and go-live validation.

Open WooCommerce docs

API Reference

Create checkout sessions, verify status, process refunds, submit disputes, and manage keys with signed API requests.

Read API reference

Risk Engine & Policy

Learn risk scoring inputs, decision outcomes, velocity checks, global blocklist usage, and policy tuning guidance.

Explore risk docs

Webhooks & Security

Implement HMAC verification, replay protection, idempotent handlers, and resilient webhook processing patterns.

See webhook docs

What the documentation covers

Architecture overview: Woo -> OnCharge API -> processor (server-to-server)

Hosted checkout iframe flow with tokenized card fields and callback lifecycle

Fraud prevention stack: IP intelligence, email + phone checks, bot mitigation, OTP

Dispute defense workflows: Ethoca, Verifi, evidence packet automation, dispute APIs

Crypto acceptance and USD settlement guidance for supported merchant profiles

Operational runbooks for onboarding, compliance scans, secret rotation, and incidents

Includes quickstart paths for plugin installs plus deep references for API and operations teams.

Open Documentation Index

Security

Defense-in-depth across checkout, APIs, webhooks, and operations

Security is designed into every layer: request authentication, payment data isolation, strict browser controls, key lifecycle management, audit visibility, and continuous monitoring.

Cryptographic API Authentication

Merchant API calls use HMAC-SHA256 signatures across method, path, timestamp, and payload hash with replay window enforcement.

Webhook Integrity Controls

Inbound processor events are HMAC-verified, deduplicated, and acknowledged quickly before durable asynchronous processing.

Checkout Isolation Model

PSP-secured fields live in hosted iframes so raw PAN/CVV never touches merchant or OnCharge application servers.

Strict Browser Security Posture

Checkout pages use restrictive CSP, strict frame ancestors, referrer constraints, and hardened security headers by default.

Session and Token Hardening

Checkout sessions are time-limited, scoped, signed, and validated with nonce/origin checks during postMessage interactions.

Key Management and Rotation

Operational key rotation supports overlap windows so credentials can be rolled without downtime or broken merchant traffic.

Auditability and Traceability

Security-sensitive actions, authentication events, and operational admin changes are captured in immutable audit trails.

Continuous Compliance Monitoring

Automated scans detect TLS/certificate drift, missing headers, and suspicious storefront script changes with actionable alerts.

Data and Access Controls

Dashboard access uses scoped auth controls, database isolation policies, and least-privilege patterns for sensitive operations.

OnCharge is designed to minimize PCI scope (SAQ A iframe model) and strengthen merchant payment security posture.

Partner Program

Earn by Referring Merchants

Know ecommerce businesses that need better payment processing? Join our referral agent program and earn ongoing commissions on the processing volume of every merchant you refer.

$

Recurring Commissions

Earn 0.05% to 1.0% of your referred merchants' processing volume, every month.

Agent Dashboard

Track referrals, commissions, and payouts in real time with your own portal.

No Cap on Earnings

No limits. Earn as long as your referred merchants stay active on the platform.

Learn More & Apply

FAQ

Frequently Asked Questions

What platforms do you support?

OnCharge currently supports WooCommerce for WordPress. Both Classic and Blocks checkout are fully supported. Magento and Shopify integrations are on our roadmap.

What are the volume requirements?

We work with businesses processing $150,000 or more per month. This ensures we can provide the level of fraud prevention, chargeback defense, and dedicated support that our merchants need.

How does pricing work?

Pricing is based on your monthly processing volume and risk profile. We charge a small per-transaction fee with no setup costs, monthly minimums, or long-term contracts. Contact us for a custom quote.

Do I need to be PCI compliant?

OnCharge reduces your PCI scope significantly. Card data is captured entirely within PSP-provided secured fields inside our hosted iframe. Raw card numbers never touch your server or ours. You still need SAQ A compliance, which is the simplest tier.

How long does onboarding take?

Most merchants are approved within 2-3 business days. You'll submit your business documents, our automated screening runs compliance checks, and an underwriter reviews your application. Once approved, integration takes minutes.

What payment processors do you work with?

OnCharge integrates with multiple tier-1 payment processors, giving our merchants access to 250+ payment methods across 30+ countries. Our multi-processor architecture ensures reliability and optimal routing for every transaction.

Can I keep my existing payment processor?

OnCharge acts as a payment layer between your WooCommerce store and the processor. When you onboard with us, we set up your merchant account with our processor partner. This ensures full control over fraud prevention and chargeback management.

What happens if I get a chargeback?

First, our Ethoca and Verifi integrations intercept many disputes before they become chargebacks by auto-refunding within the alert window. For disputes that do arrive, we automatically assemble evidence packets with transaction data, delivery proof, and customer verification records, then submit them through the dispute API.

Is there a contract or commitment?

No long-term contracts. OnCharge operates on a month-to-month basis. You can cancel at any time with 30 days notice.

How do crypto payments work?

When a customer selects "Pay with Cryptocurrency" at checkout, they choose their preferred crypto (BTC, ETH, USDT, etc.) and are shown a deposit address and QR code. Once the blockchain transaction is confirmed, the payment is automatically converted to USD and settled to your US bank account via ACH. You never hold or manage crypto directly.

How do I get started?

Click "Request Access" to submit your application. You'll need your business documents (Articles of Organization, EIN, bank statements, processing statements, and a legal opinion letter). Our team will review your application and get back to you within 2-3 business days.

Ready to protect your revenue?

Join merchants who have reduced chargebacks by up to 70%. Apply now if you process $150k+ per month.

Start Application Read the Documentation

No setup fees. No long-term contracts. Cancel anytime.