Learn how to manage user consent on payment forms, including configuring consent capture for various payment methods and ensuring compliance with regulations.

Zuora’s Hosted Payment Form (HPF) provides configurable, regulation-aligned consent capture for cards, digital wallets, and bank transfers/direct debits. The feature ensures end users see the appropriate authorization text, can review merchant-provided consent or mandate language, and can accept or decline consent before a payment method is stored for future use. Admins can enable consent per payment method and by region, customize text and labels, and preview changes before publishing.

• An authorization disclosure is always shown on the form (text is editable; it cannot be turned off).
• A consent checkbox can be displayed on relevant payment methods; selecting it will trigger the storage of that payment method while leaving it unselected will not.

On each payment form, consent is configured for each of the following payment method group:

• Cards

• Wallets (for example, Apple Pay, Google Pay, PayPal)

• Bank transfers / direct debits (for example, ACH, SEPA, PAD, BACS)

Zuora displays the controls you are responsible for the consent management to ensure that it complies with card network rules, wallet-specific policies, and each direct debit scheme’s requirements.