Customer Vault

Secure storage and tokenization of customer payment information

Customer Vault is NMI's secure storage solution that tokenizes and stores customer payment card data on our PCI-compliant servers, keeping sensitive information completely outside your merchant environment. This enables you to serve recurring customers effortlessly by simply referencing their unique customer vault ID instead of handling raw payment details.

The tokenization process works by converting sensitive card information into secure tokens that are stored exclusively on NMI's infrastructure. Your application receives a customer vault ID that serves as a secure reference for future transactions, eliminating the need to collect or store payment information locally. This approach dramatically simplifies your PCI DSS compliance requirements while providing a frictionless experience for subscription billing and recurring payment scenarios.

The vault system offers complete customer lifecycle management, from initial enrollment to ongoing account updates and transaction processing. You can process one-time purchases, set up automated recurring billing, schedule future payments, and manage customer profiles—all while maintaining enterprise-grade security standards and minimizing your compliance burden.

Key Benefits

  • Secure Storage Card data is tokenized and stored securely on NMI servers

  • Recurring Billing Easily serve recurring customers with vault ID references

  • Easy Management Add, update, and delete customer information easily


How it works

  1. Customer card data, billing, and shipping information are stored in the vault
  2. Storage can occur during a sale or as a separate action independent of transactions
  3. The stored entry is tokenized and referenced using a unique customer vault ID
  4. For future charges, use the vault ID instead of standard credit card or ACH fields
  5. NMI automatically decrypts the data and processes using the information designated by the ID
  6. Storage supports both raw payment details and our payment acceptance component

📘

PCI Compliant Storage

Sensitive payment data is stored securely on NMI's servers. When referenced by a customer vault ID, this data never touches your server, significantly reducing your PCI DSS compliance scope.