CVV-less payments allow customers to complete transactions using saved card details without entering the Card Verification Value (CVV). This enhances the user experience by streamlining the checkout process while maintaining transaction security through tokenisation and other protective measures. CVV-less payments are supported for tokenised transactions using Visa, Mastercard, RuPay, American Express (Amex), and Diners Club cards.

Benefits and security considerations

  • Broader network support: Available across Visa, Mastercard, Amex, RuPay, and Diners networks.
  • Higher conversion and success rates: CVV-less payments for tokenised cards typically improve success rates by 5% or more.
  • Enabled from day 0: Enabled by default across all networks for tokenised cards from day 0.
  • CVV-less indicator: Saved cards display a No CVV Required label during checkout on the Cashfree Checkout. Alt text
  • Faster checkout and reduced friction: Customers do not need to remember or enter CVV details for saved cards.
  • Secure and compliant: Transactions are protected by tokenisation, OTP validation, 3D Secure authentication, and real-time risk checks. Fully compliant with PCI DSS, RBI regulations, and card network guidelines.

Using CVV-less payments with Cashfree Payment Gateway

CVV-less payments integrate seamlessly with Cashfree’s infrastructure. Depending on your integration method, minimal changes may be required.

For merchants on seamless API integration

For saved card transactions across supported networks, the [card_cvv] field is optional by default. To enable CVV-less payments, exclude this field from your payment request. Sample API request (Order Pay) 
curl --request POST \
  --url https://sandbox.cashfree.com/pg/orders/sessions \
  --header 'Content-Type: application/json' \
  --header 'x-api-version: <x-api-version>' \
  --data '{
  "payment_session_id": "session__CvcEmNKDkmERQrxnx39ibhJ3Ii034pjc8ZVxf3qcgEXCWlgDDlHRgz2XYZCqpajDQSXMMtCusPgOIxYP2LZx0-05p39gC2Vgmq1RAj--gcn",
  "payment_method": {
    "card": {
      "channel": "link",
      "card_number": "4111111111111111",
      "card_expiry_mm": "03",
      "card_expiry_yy": "26",
      "cryptogram": "AQBBBBBBZatIlaIAmWKSghwBBBB=",
      "card_cvv": "900",  // Optional
      "token_requestor_id": "22457512314",
      "card_display": "3243"
    }
  }
}'
For more details, refer to the Order Pay API documentation. Update your checkout UI Update your checkout interface to stop collecting CVV for saved card payments.
  • For tokenised cards on Visa, Mastercard, Amex, RuPay, and Diners, remove the [card_cvv] field from the card object.
Note: CVV input is optional only for tokenised card transactions, that is, transactions attempted through a saved card. For guest users making payments, CVV input remains mandatory.

For merchants using Cashfree Checkout UI

CVV-less payments are enabled by default for all saved card transactions across supported networks. No additional configuration is required.

Frequently asked questions