Pre-Authorized Direct Debit through online forms
This might be a cross-over between stackoverflow and money.stackexchange but I am wondering about the rules and regs of setting up a Pre-Authorized Direct Debit (PAD) through an online form.
Say I already have a payment processing provider that handles the actual transactions through a code library for me. (I'm a programmer so will be writing this myself)
What would be the minimum legally required information a form would have to support to authorize such a payment?
By this I mean for example: They fill out their banking information, name, address etc for the PAD, and then what else? Do they need specific terms & conditions, do I need disclaimer text? Does all the info need to be stored in the DB for Anti-Money Laundering purposes, and does it need to be authorized with an electronic signature (or just a checkbox)?
Please feel free to close as off-topic if it's too much of a cross-over with programming. However the topic should have some relevance as all PADs online or offline need regulatory oversight.
Many Thanks
(1)1 Comments
Sorted by latest first Latest Oldest Best
Don't.
Until you're 100% sure you know exactly what you're doing you shouldn't be doing this.
Things to consider:
Compliance: Do you adhere to all laws and regulations regarding transmission and storage of banking data.
Security: Do you have all the security under your control and are you an expert in security ?
Cost: If everything goes perfectly and you never have a problem. How much money do you save vs. buying a solution off the shelf ? (What happens if something does go wrong, despite the fact that you're an expert in security and do everything in compliance to all the laws and regulations ?)
To answer the question:
You don't need to agree to T&C. You do need to make it extremely obvious that they're about to give you money. You don't need a specific disclaimer.
You do not need to store this information. Please don't. Money goes from their bank account to your bank account. You can see it on your bank statements and everything is already documented.
If you need to draw recurring payments you likely need to store all the information you gathered. Would be good if you could just make the payment provider do this, but they likely won't. Make sure you use strong encryption on every field in the database that you store.
You don't need a signature.
Terms of Use Privacy policy Contact About Cancellation policy © freshhoot.com2026 All Rights reserved.