← All posts
6 min read

How Digital Payments Work: Authorization, Clearing, and Settlement

#technology#payments#fintech#real-world-systems
📑 On this page

A card or wallet payment can look instant.

Behind the screen, several organizations exchange messages about identity, available funds, risk, fees, and final money movement.

A digital payment is a multi-party state machine: immediate authorization is not the same as final settlement.

Systems must handle timeout, duplicate requests, reversal, refund, and dispute across days or months.

A concrete example: buying a product

A customer presses Pay.

The merchant:

  1. creates a payment attempt,
  2. sends protected payment information to a gateway or processor,
  3. routes an authorization through the payment network,
  4. receives approval,
  5. confirms the order,
  6. later submits the transaction for clearing,
  7. receives settlement minus fees.

The immediate success screen appears before final inter-institution money movement.

The participants

Common card-payment participants include:

  • cardholder,
  • merchant,
  • gateway,
  • processor,
  • acquirer serving the merchant,
  • card network,
  • issuer serving the cardholder.

Some providers combine several roles.

Payment instrument

The instrument may be:

  • card,
  • bank account,
  • stored wallet balance,
  • real-time transfer,
  • mobile wallet,
  • or buy-now-pay-later account.

Each uses different rails, timing, authentication, reversibility, and fees.

Tokenization

Merchants can avoid handling raw card numbers by using a provider-hosted field or wallet.

The provider returns a token representing the instrument within a defined scope.

Tokenization reduces exposure, but merchant systems still need secure identity, authorization, and integration.

Authorization request

Authorization asks whether the issuer approves the attempted amount.

The request can include:

  • merchant,
  • amount,
  • currency,
  • card or token,
  • authentication result,
  • and risk data.

The issuer evaluates account status, funds or credit, fraud, and policy.

Approval

Approval often places a hold or records a promise against available funds.

It does not necessarily transfer final money immediately. The authorization can expire, be adjusted, reversed, or never captured.

Hotels and fuel stations may authorize an estimate before the final amount is known.

Decline

Declines can result from:

  • insufficient funds,
  • suspected fraud,
  • expired instrument,
  • incorrect details,
  • account restriction,
  • issuer unavailability,
  • or policy.

Messages shown to customers should be useful without exposing fraud logic attackers can optimize against.

Strong customer authentication

Some transactions require an additional challenge:

  • bank app approval,
  • passkey,
  • one-time code,
  • or biometric confirmation.

Risk-based systems may allow low-risk transactions without visible challenge.

Authentication proves the payer more strongly but does not eliminate merchant fraud or disputes.

Capture

Capture tells the payment system to complete an authorized charge.

A merchant may:

  • authorize and capture immediately,
  • authorize at order and capture at shipment,
  • capture partially,
  • or cancel the authorization.

Business workflow should prevent capture for unavailable goods.

Clearing

Clearing exchanges finalized transaction details and calculates obligations among parties.

It includes:

  • amount,
  • fees,
  • currency conversion,
  • and reconciliation records.

Batch and network processes can occur after customer interaction.

Currency conversion

When card, merchant, and settlement currencies differ, several rates and fees may apply.

The merchant may offer its own converted price, or the issuer may convert later. Store the presented currency and amount clearly, preserve the rate source where required, and avoid assuming an authorization amount equals the final statement amount in every cross-border case.

Ledgers

Payment systems should record money movement in an auditable ledger rather than derive truth only from mutable status fields.

Entries can represent authorization, capture, fee, refund, dispute, and payout. Balanced accounting entries make reconciliation and correction traceable without editing financial history invisibly.

Settlement

Settlement moves net funds among financial institutions and eventually to the merchant account.

Timing depends on rail, geography, weekends, risk, and provider policy.

Merchant dashboards may show pending, available, and paid-out balances separately.

Idempotency

A payment request can time out after approval.

Retries must reuse an idempotency key so the provider returns the original result instead of charging again.

The merchant should query status when outcome remains uncertain.

Payment state machine

Possible states include:

  • created,
  • requires authentication,
  • authorized,
  • captured,
  • settled,
  • failed,
  • canceled,
  • refunded,
  • disputed.

Not every transition is allowed. Store provider identifiers and event versions.

Webhooks

Final status may arrive asynchronously through a webhook.

Webhook consumers should:

  • verify signature,
  • handle duplicates,
  • tolerate reordering,
  • fetch authoritative status when needed,
  • and acknowledge quickly.

The customer's browser is not a reliable source of final payment truth.

Refunds

A refund is a new reverse money flow after capture.

It may take days to appear. Partial refunds and multiple refund attempts need unique identifiers and amount limits.

Canceling an uncaptured authorization is different from refunding a settled payment.

Reversals

If an authorization should not be captured, a reversal releases the hold sooner.

Timeouts and partial failures can leave holds that expire later. Reconciliation identifies authorizations with no matching order outcome.

Chargebacks and disputes

A cardholder can dispute a transaction.

The merchant may submit evidence. The network applies rules and deadlines, and funds can be withdrawn.

Fraud prevention and clear customer communication reduce disputes but cannot remove them entirely.

Fraud controls

Signals include:

  • device,
  • account history,
  • location,
  • velocity,
  • merchant,
  • amount,
  • and behavior.

Controls balance fraud loss against false declines that reject legitimate customers.

PCI and data scope

Handling cardholder data creates security and compliance obligations.

Hosted payment components and tokenization can reduce scope. They do not remove responsibility for scripts, access, integration, and secure checkout pages.

Minimize stored sensitive payment data.

Reconciliation

Merchants compare:

  • orders,
  • payment attempts,
  • provider transactions,
  • fees,
  • refunds,
  • disputes,
  • and bank payouts.

Reconciliation finds missing, duplicate, or mismatched state that real-time APIs did not resolve.

Knowledge check

  1. How do authorization and settlement differ?
  2. What does tokenization reduce?
  3. Why must payment retries use one idempotency key?
  4. How does a reversal differ from a refund?
  5. Why is reconciliation necessary after real-time processing?

The one idea to remember

Digital payments coordinate merchants, processors, networks, and financial institutions through authentication, authorization, capture, clearing, and settlement. Treat payment as a durable asynchronous state machine with idempotency, webhooks, reconciliation, refunds, and disputes.