OnCharge
Request Access
Now accepting merchant applications

Stop Chargebacks.
Protect Revenue.
Grow Fearlessly.

OnCharge is the payment security layer for WooCommerce merchants. We block fraud before checkout, defend disputes automatically, and keep your processing account safe — so you can focus on selling.

Request Access See How It Works
99.8%
Fraud block rate
<200ms
Risk decision time
70%
Chargeback reduction
24/7
Monitoring

The Problem

Online merchants lose billions to fraud and chargebacks every year

If you sell online, you know the pain. Every fraudulent order, every disputed charge, and every terminated account costs real money.

Chargebacks drain your revenue

Every chargeback costs you the sale, a fee, and reputation damage with your processor. Enough of them and your account gets shut down.

Fraud tools are fragmented

You're juggling separate tools for IP checks, email validation, phone verification, and chargeback alerts. None of them talk to each other.

High-risk means high fees

Processors punish businesses in certain industries with inflated rates, rolling reserves, and sudden account terminations.

Bot traffic wastes resources

Automated attacks test stolen cards on your checkout, causing declines, chargebacks, and a flood of fake orders.

The Solution

One platform to prevent fraud, fight chargebacks, and protect your business

OnCharge sits between your WooCommerce store and the payment processor, catching threats at every stage of the transaction lifecycle.

Pre-checkout fraud screening

Block threats before they ever reach the payment form. IP intelligence, email validation, phone verification, and bot detection run in under 200ms.

Secure hosted checkout

Card data never touches your server. Tokenized fields inside a CSP-locked iframe keep you out of PCI scope.

Automated chargeback defense

Ethoca and Verifi alerts intercept disputes before they become chargebacks. When disputes arrive, evidence packets are assembled and submitted automatically.

Step-up verification

When risk is elevated, SMS OTP and additional identity checks kick in automatically. Legitimate customers pass in seconds.

Continuous compliance monitoring

Daily scans check your site for TLS issues, missing security headers, and suspicious scripts. Findings are delivered as actionable alerts.

Real-time merchant portal

Transactions, disputes, refunds, analytics, support tickets, and API key management. Everything in one place.

Architecture

How OnCharge Works

Your WooCommerce store never talks to the payment processor directly. OnCharge handles everything server-to-server.

WooCommerceYour StorePlugin calls APIOnChargeRisk EngineSession ManagementChargeback DefenseServer-to-serverPayment ProcessorAdyenembeds iframewebhookscallback to Woo

No direct PSP integration

Install a WooCommerce plugin. OnCharge handles all payment processor communication.

Secure hosted checkout

Card data is captured in a CSP-locked iframe using tokenized fields. PCI scope stays minimal.

HMAC-verified at every step

Every API call, webhook, and callback is cryptographically signed and verified.

Why Switch

Before vs. After OnCharge

Without OnCharge

  • Chargebacks hit your account with no warning
  • Fraudulent orders ship before detection
  • Separate tools for fraud, disputes, and compliance
  • Processor threatens termination at high dispute ratios
  • Manual evidence gathering for every dispute
  • No visibility into why chargebacks happen

With OnCharge

  • Ethoca & Verifi alerts intercept disputes early
  • Fraud blocked before the payment form loads
  • One platform for prevention, defense, and compliance
  • Chargeback ratio stays well below processor thresholds
  • Evidence packets assembled and submitted automatically
  • Full analytics on fraud patterns and dispute trends

Industries We Serve

Built for businesses that need real fraud protection

We work with merchants across industries who process $150k+ per month and need enterprise-grade payment security without enterprise complexity.

E-commerce & Retail

Online stores selling physical and digital goods through WooCommerce.

SaaS & Digital Services

Subscription platforms, digital downloads, and online services.

High-Ticket & Luxury

Jewelry, electronics, designer goods, and premium products.

Health & Wellness

Supplements, nutraceuticals, fitness programs, and wellness products.

Travel & Events

Booking platforms, ticketing, travel agencies, and event management.

Professional Services

Consulting, legal, coaching, and other high-value service businesses.

Getting Started

Live in minutes, not months

No complex integration. No code changes to your theme. Install the plugin, enter your keys, and you're protected.

1

Apply & get approved

Submit your business documents through our merchant portal. Automated screening and manual review typically complete in 2-3 days.

2

Install the plugin

Upload the WooCommerce plugin to your WordPress site. Works with both Classic and Blocks checkout out of the box.

3

Enter your credentials

Paste your Store ID, API Key, and API Secret from the OnCharge dashboard into the plugin settings. That's it.

4

Start processing

The secure checkout iframe loads automatically. Fraud screening, chargeback defense, and compliance monitoring are active from day one.

POST /v1/checkout/sessions
// The plugin handles this automatically.
// Here's what happens under the hood:

const session = await fetch(
  'https://api.oncharge.io/v1/checkout/sessions',
  {
    method: 'POST',
    headers: {
      'X-Oncharge-Key': storeApiKey,
      'X-Oncharge-Timestamp': timestamp,
      'X-Oncharge-Signature': hmacSig,
    },
    body: JSON.stringify({
      amount: 9999,
      currency: 'USD',
      reference: 'order-42',
      return_url: returnUrl,
    }),
  }
);

// Response:
// {
//   "session_id": "cs_abc123...",
//   "iframe_url": "/checkout/cs_abc123...",
//   "expires_at": "2026-02-07T12:00:00Z"
// }

Security

Built with security-first architecture

Every integration point is authenticated, signed, and monitored. Your customers' data and your business are protected at every layer.

HMAC-SHA256 Authentication

Every API call is signed with a timestamp, method, path, and body hash. 5-minute replay window prevents reuse.

Content Security Policy

Checkout iframes use restrictive CSP with per-store domain allowlists. No wildcard origins, ever.

Webhook Verification

Inbound webhooks from payment processors are HMAC-verified with timing-safe comparison.

PCI-Aware Design

Card data stays within PSP-provided secured fields. Raw card numbers never touch OnCharge or merchant servers.

Key Rotation

API keys rotate without downtime. A 14-day grace window ensures seamless transitions.

Immutable Audit Logs

Key rotations, blocklist changes, admin actions, and security events are logged for compliance review.

FAQ

Frequently Asked Questions

What platforms do you support?

OnCharge currently supports WooCommerce for WordPress. Both Classic and Blocks checkout are fully supported. Magento and Shopify integrations are on our roadmap.

What are the volume requirements?

We work with businesses processing $150,000 or more per month. This ensures we can provide the level of fraud prevention, chargeback defense, and dedicated support that our merchants need.

How does pricing work?

Pricing is based on your monthly processing volume and risk profile. We charge a small per-transaction fee with no setup costs, monthly minimums, or long-term contracts. Contact us for a custom quote.

Do I need to be PCI compliant?

OnCharge reduces your PCI scope significantly. Card data is captured entirely within PSP-provided secured fields inside our hosted iframe. Raw card numbers never touch your server or ours. You still need SAQ A compliance, which is the simplest tier.

How long does onboarding take?

Most merchants are approved within 2-3 business days. You'll submit your business documents, our automated screening runs compliance checks, and an underwriter reviews your application. Once approved, integration takes minutes.

What payment processors do you work with?

We currently process through Adyen, which gives our merchants access to 250+ payment methods across 30+ countries. We're adding Stripe and NMI in upcoming releases.

Can I keep my existing payment processor?

OnCharge acts as a payment layer between your WooCommerce store and the processor. When you onboard with us, we set up your merchant account with our processor partner. This ensures full control over fraud prevention and chargeback management.

What happens if I get a chargeback?

First, our Ethoca and Verifi integrations intercept many disputes before they become chargebacks by auto-refunding within the alert window. For disputes that do arrive, we automatically assemble evidence packets with transaction data, delivery proof, and customer verification records, then submit them through the dispute API.

Is there a contract or commitment?

No long-term contracts. OnCharge operates on a month-to-month basis. You can cancel at any time with 30 days notice.

How do I get started?

Click "Request Access" to submit your application. You'll need your business documents (Articles of Organization, EIN, bank statements, processing statements, and a legal opinion letter). Our team will review your application and get back to you within 2-3 business days.

Ready to protect your revenue?

Join merchants who have reduced chargebacks by up to 70%. Apply now if you process $150k+ per month.

Request Access Read the Documentation

No setup fees. No long-term contracts. Cancel anytime.