The API Report CardAPI Index
PaySimple

PaySimple API

Service-business billing & recurring payments SaaS (EverCommerce-owned) · paysimple.com

PaySimple documents a self-serve REST payments API with a sandbox, HMAC-signed webhooks, and a .NET SDK. Two generations (API 4 and API 5) coexist with different feature sets, so full integrations touch both. Auth is a long-lived plaintext API key; there is no OAuth.

Last verified: July 2026Financial Services
API GRADE
A
VERIFIED JUL 2026

SCORECARD

ExistenceGOODPublic REST payments API at documentation.paysimple.com with two coexisting versions, API 4 and API 5.
AccessGOODSelf-serve for merchants; production keys arrive by encrypted email at onboarding. Reseller tier needs partnership approval.
CoverageGOODCustomers, card and ACH vault tokens, one-time and recurring payments, schedules, invoices, and hosted links.
AuthPOORAuth is a long-lived plaintext API key in a basic header, delivered by encrypted email; no OAuth, no scopes, no rotation tooling.
Docs & DXGOODSandbox, HMAC-signed webhooks, PaySimpleJS tokenization, a .NET SDK, and a Postman collection.
StabilityGOODAPI 4 and API 5 are both live and maintained; feature sets differ, so complete integrations span versions.
MORE FROM THE REPORT CARD
Supergood: PaySimple shipped a real API. Most vendors don't; we ship near-native APIs for the rest.

Frequently asked questions

PaySimple scores A on the API Report Card. PaySimple documents a self-serve REST payments API with a sandbox, HMAC-signed webhooks, and a .NET SDK. Two generations (API 4 and API 5) coexist with different feature sets, so full integrations touch both. Auth is a long-lived plaintext API key; there is no OAuth.

Tried to integrate with PaySimple?
SOURCES
Two coexisting API generations (API 4 legacy + API 5 beta) with non-overlapping feature sets, integrators are explicitly told 'you may need to access both' to ship a complete integration documentation.paysimple.com
Authentication uses a long-lived API key passed as plaintext (not Base64) in a `basic` header tied to the merchant account, no OAuth, no scopes, no per-integration key rotation documentation.paysimple.com
3D Secure authentication is gated to Stripe-routed processing only, not native to PaySimple's own processing rails, so SCA-required transactions force a parallel integration documentation.paysimple.com
Webhook retry SLA is hardcoded (1 retry per hour for 72 hours, then dropped) with no documented dead-letter queue, exponential backoff, or public replay endpoint for missed events documentation.paysimple.com
Production API credentials are issued only via encrypted email at merchant onboarding, no developer self-signup, no sandbox-to-prod credential pipeline for partners documentation.paysimple.com
Reseller-tier endpoints require a separate `reseller` auth header and partnership approval rather than standard scoped OAuth tokens documentation.paysimple.com
Documentation references hosted-payment-link, vault, and recurring-billing features but does not publish concrete per-minute / per-hour rate limits, making capacity planning for bulk imports and recurring-batch days unpredictable documentation.paysimple.com
Customers report being charged $85/month for ACH subscription plans for two-plus years after they stopped using the service, with refund requests refused bbb.org
Recurring $90.90/month PCI Non-Compliance fees continue to bill for a year-plus after multiple PaySimple reps confirm the account is closed bbb.org
Monthly PCI non-compliance fees ($4.95-$39.95) charged for years with no clear explanation of what the fee is or how to clear it cardpaymentoptions.com
Equipment leases routed through a third-party leasing company are non-cancellable for 48 months regardless of whether the PaySimple merchant account is closed cardpaymentoptions.com
Customer service is phone-and-voicemail only with reports of 10+ unreturned calls and dozens of unanswered emails when trying to cancel or resolve billing disputes bbb.org
Frozen funds and unexpected merchant account closures with limited recourse, consistent with broader bank-sponsored merchant-processing complaint patterns cardpaymentoptions.com
Inability to accept international cards out of the box; merchants discover this only after underwriting completes cardpaymentoptions.com
Google Maps rating of 2.4/5 across user reviews despite an A+ BBB rating, indicating a sustained gap between the company's compliance posture and merchant experience bbb.org