Resources / FAQ
Frequently asked questions about the Butter Payments solution
General
Butter is in the unique position of being 100% focused on this accidental (involuntary) problem which means our patented platform is built to uniquely leverage insights across multiple banks, cards, geographies and formats and can optimize for hundreds of different parameters an internal team would not have access to. We have never met a customer we could not offer revenue opportunities for.
This is one of the reasons we offer the free Payment Health Analysis - so that your internal team can gauge the value that Butter can offer over what you have in place today and we can go from there.
Importantly, the Butter platform does not replace internal efforts but is an additional tool in your belt that is focused on a very specific element of churn.
We have worked hard to ensure we deploy via pre-built integrations with your payment service provider (PSP). We listen for each and every failed payment and do the work to make sure the valid ones go through.
If you have specific needs that fall outside of our turnkey solution space today, we can almost always minimize work scope to under 20 hours of dedicated engineering time. In most cases, we can be live within 72 hours with zero engineering involvement from your side outside of two 30 minute implementation calls.
Butter has been developed from the beginning to be a turnkey outsourced platform that delivers revenue without a need for our customers to invest resources or have dedicated teams. In many cases we work solely with CFOs, CEOs, or others on the finance or product teams to deliver impressive results simply from access to your PSP. What this means is we can quantify revenue opportunities quickly from analyzing your data, and then deliver those results with no other internal dedicated teams needed...found money (in the sofa!).
Once the revenue tide rises as a result of Butter we have a number of ways to deliver ongoing value for our customers. First we review performance on a quarterly basis to share exactly what current performance is, and the exact value the Butter platform is delivering. In many cases we help our customers increase their performance by sharing insights on things they can do to improve revenue outside of our control.
Butter is also optimizing our AI and machine learning capabilities to get better and better and that shows up in the data. We release major new capabilities roughly once a quarter to help across the board, and give early access to existing customers so they can benefit. Our whole business model is built around making our customers as successful as possible as we only get paid when we deliver.
Like most companies, we do not show all of our customers on our website on purpose but chances are we can quickly find an example similar to your business. It is also true that if for some reason we are not a fit, we will tell you so quickly and directly. If you are still not sure, we are happy to do a payments health analysis for free with no obligation as that will tell us for sure one way or another.
Security
We agree - and accordingly our two step process requires just what we need and only that. For the first step — the Payment Health Analysis — we need access to historical data. You can export it to us or simply share read only access via API. We do not need or touch PII, and data is encrypted end to end in flight and at rest.
Our system is designed with the highest security standards in mind. We've invested in state-of-the-art security infrastructure and best practices to ensure that our customer data remains protected at all times. Regular vulnerability assessments, penetration testing, and continuous monitoring are part of our ongoing commitment to security. Additionally, we've achieved SOC2 Type 2 and PCI Level 2 compliance, ensuring that we meet stringent requirements for securely handling credit card transactions and protecting cardholder data.
From a data privacy perspective, we purposely do not need or access PII. If requested by our customers we are happy to complete BPA forms and are familiar with CCPA and GDPR requirements. Accordingly we can also remove any and all data upon request if needed once we have done our analysis.
Technology
We get it - there are a lot of things tied to whether a payment fails or succeeds. For systems where payment success triggers fulfillment processes we work closely to ensure that as Butter rescues payments quietly and quickly in the background we do so with your time windows in mind as well as ensuring for great customers we can pause if it makes sense vs. canceling.
A big part of Butter’s value is fixing a valid failed payment without the need to notify your end users either over email, sms, or in app. We work to deliver the best end user customer experience; one where the customer is notified only when you really need them to do something which is after we have tried to recover the payment.
We also have integrated with a number of third party and internally developed end user communication systems in this way and are passionate about getting it right. but is an additional tool in your belt that is focused on a very specific element of churn.
We are adding new PSPs and payment methods at a rate of about one a month, so chances are whatever payment method you are using is on our road map including 3DS options and internationally focused PSPs. Please send us a line and we can quickly see how well we might match up to what you need.
Vault
Card tokenization is a security measure that replaces sensitive card information (such as credit card numbers) with a unique token. This token refers to the original card data but does not contain the actual card details. Tokenization enhances security by minimizing the risk of exposing sensitive information in transactions.
Butter's solution tokenizes the card data and stores it in individual compartments, ensuring the flow complies with PCI-DSS regulations. With this functionality, you get access to enhanced data from your users like card type, details on bank, issuer, country, currency, customer profile, and more. As you will only receive the enhanced data, not having access to the card number, your liability doesn't increase. Butter will also leverage this information to improve the machine-learning based models to recover more failed payments.
You have to integrate with Butter to have access to it. There are a few options: adding elements into your checkout page (an embedded iframe) or directly through API. The elements are compatible with popular frontend frameworks like React and are fully customizable from a UI perspective. We also offer native JavaScript implementations that can be tailored to work with any other front-end framework. The direct API is designed to provide access for merchants requiring integrations with mobile applications or backend requirements. Interacting directly with our vaulting API will require providing PCI DSS AOC documentation.
Owning the card tokenization flow using a third party provider allows you to access key information while not exposing or augmenting the liability of your business. By tokenizing card data at checkout, you get access to enhanced information on your user payment profile like what card type the user is inputting (prepaid, debit, credit), if the card is a 'combo' (both credit and debit), if the card can be used for this purchase (domestic, gambling block, express benefit transfer), besides information on network and issuing bank. Additionally, by having your own card tokens, you can route transactions to different payment processors, considering their fees and acceptance rates per BIN.
With Butter's solution, you get access to all data in real-time as your user inputs the card details on the checkout page. You also get to use the same tokens across multiple PSPs, enabling routing strategies best suited for your business. Ultimately, Butter will leverage this data to improve the recovery machine-learning-based model tailored to your account, lifting the revenue from recovered failed payments.
Card tokens are unique per merchant and securely stored individually within Butter's Card Vault solution. The tokens generated for your business will only be used by you.
Each card is encrypted, ensuring that sensitive information is securely compartmentalized. We also utilize UUIDs to reference encrypted cards, minimizing potential risk exposure. Our encryption methods adhere to the highest standards set by the Payment Card Industry Data Security Standard (PCI-DSS). This includes utilizing envelope encryption with AES256-GCM, ensuring robust card data protection. Our system is designed to restrict direct access to underlying credit card information. Butter employees do not have the capability to view or access raw card data, aligning with strict PCI-DSS compliance requirements.
Our solution undergoes rigorous examination by independent certification organizations to validate its security and compliance with PCI-DSS standards. This ensures that our system remains robust and resilient against potential threats.