Developer Discussions

Hi Maya Support Team,

We are integrating Maya Vault tokenization in our application built with Angular (frontend) and Spring Boot (backend). As part of this, we intend to allow users to save their card details securely for future transactions.

To ensure our integration is fully PCI DSS compliant, we would like clarification on the recommended method for collecting and submitting card information to generate a paymentTokenId using the Vault API.

Specifically, we would appreciate your guidance on the following:

What is the PCI DSS-compliant way to collect card details for Vault tokenization?

If we choose to collect card data directly via our frontend form and send it to Maya Vault API from the backend, what additional PCI DSS requirements would we be subject to?

Do you provide a sandbox-compatible PCI-compliant card tokenization SDK specifically for Vault integrations?

We aim to ensure that our implementation adheres to best practices and does not expose us to unnecessary PCI DSS compliance burdens. Please guide.

Thanks!