Our Braintree Vault securely stores customer information – including payment method information – so you can safely keep customers on file.

The Vault is used to process payments with our recurring billing feature, and can also be used for non-recurring transactions so your customers don't need to re-enter their information each time they make a purchase from you.

How it worksanchor

When a payment method is stored in the Vault, the information is encrypted by the Braintree gateway and associated with a unique payment method token. This token can be used to create transactions without the PCI compliance burden that comes with handling unencrypted data.

When a customer logs into their account on your site or mobile app, their payment information will already be stored in their account. You can also update, delete, and search for a customer's Vault record once it's stored.


We will never store your customer's CVV in the Vault because it is expressly prohibited by card associations (e.g. Visa, Mastercard).

Exporting Vault recordsanchor

This feature allows you to export the following Vault information into a CSV file:

  • Customers
  • Customers and payment method tokens
  • Customers and addresses

If you'd like to export any Vault records, you can do so in the Control Panel:

  1. Log into the Control Panel
  2. Click on Reports in the navigation bar
  3. Scroll to the Vault section
  4. Next to the option you'd like to export, click the Export button
  5. Select your desired date range
  6. Click the Filter And Download button

Vault exports are limited to 40,000 rows. Some rows may be omitted if the downloaded file is opened in Excel or other spreadsheet programs due to the program's limitations.

Charge shows as recurring on customer statementanchor

Transactions created from the Vault are occasionally passed with an ecommerce indicator (ECI) of recurring, which some banks will display on their customers’ statements – causing confusion for some customers. This indicator doesn’t necessarily mean that the customer will be billed on a recurring basis; it just tells the customer’s bank that a CVV can't be passed with the transaction because it was created from a Vault record. If a customer contacts you with this concern, you can assure them they have not been enrolled in future recurring payments.