What is Prava and what problem does it solve?
Prava is trust and payments infrastructure for AI applications. We provide a data and PCI compliant flow for AI agents to make purchases on behalf of users.
Today, AI apps like ChatGPT, Perplexity, and AI stylists can recommend products but cannot complete purchases. Users get redirected to merchant websites, breaking the experience and killing conversion.
Prava fixes this. We enable AI agents to buy on behalf of users with a single passkey approval. No redirects, no friction, no lost conversions. Bring your own browser automation or use ours.
Who is Prava for?
Prava is built for developers and companies where AI agent has to make a purchase on behalf of a user:
AI shopping assistants and stylists
General purpose AI assistants adding commerce
Travel and booking agents
Food ordering applications
Any AI app that recommends products or services
B2B financial workflows where AI is reconciling & clearing invoices
If your AI shows users things to buy but then sends them elsewhere to complete the purchase, Prava is for you.
What is agentic commerce?
Agentic commerce is AI autonomously discovering, recommending, and completing purchases for users. Instead of AI just answering questions or showing links, it handles transactions end to end with user approval at the final step.
This requires payment infrastructure that connects AI agents to merchant checkout systems. That is what Prava provides.
How does the payment flow work?
Setup (once):
1. User enters card details in your app via our secure iframe
User creates a passkey (Face ID, fingerprint, or security key)
Card is tokenized and stored securely
Purchase (every time):
1. Your AI recommends a product
User taps "Buy" and approves with passkey
Prava generates a scoped token (specific merchant, exact amount, short expiry)
Checkout completes via browser automation (yours or ours)
Merchant charges the user directly
Order confirmation returns to your app
Can I use my own browser automation?
Yes. Prava provides the data and PCI DSS compliant payment flow. You can:
Option 1: Use Prava's browser automation for end-to-end checkout
Option 2: Bring your own browser automation and use Prava only for secure payment token generation
Many AI applications already have sophisticated browser navigation models. Prava fits into your existing stack without forcing you to change how you handle merchant interactions.
What is a scoped payment token?
A scoped token is a secure, single-use payment credential with strict limitations:
Limitation
Example
Specific merchant
Only works at Zara
Exact amount
Only $47.99
Time limit
Expires in 15 minutes
Single use
Cannot be reused
A token generated for "$47.99 black bomber jacket on Zara" cannot be used anywhere else, for any other amount, or after it expires. If intercepted, it is useless.
How do I integrate Prava?
Four steps:
Install our SDK (Node.js, React, Swift, or React Native)
Embed our PCI-compliant card collection iframe
Call our API to generate payment tokens
Trigger checkout when user approves (using our automation or yours)
Most teams complete integration in 2-3 days. Our SDK is easy to use with clear documentation. Onboarding is extremely fast while following fintech compliance requirements.
What SDKs and languages do you support?
Available now:
Backend: Node.js, Python, Java
Frontend: JavaScript, React, React Native
Coming soon:
Flutter
Vue.js
Need something else? Contact us. We add SDKs based on demand.
Where can I find documentation?
SDK and API reference are available at docs.prava.space. After onboarding, we provide all docs and materials for easier integration. Our team is available 24/7 on Slack to help you through the process.
Do I need to be PCI compliant?
No. Prava handles PCI compliance for you.
We are PCI Level 2 certified and use Skyflow's data vault (PCI Level 1). Your application never touches raw card data. You only receive tokenized aliases. Enterprise-grade security without the compliance burden.
How long does integration take?
Days, not weeks. Our SDK requires 4-5 lines of code for integration. Documentation is clear and our team supports you throughout.
Compare this to direct Visa/Mastercard integration which requires months of security reviews, compliance checklists, and dedicated teams. Prava is the fastest way to get started with agentic payments.
Do merchants need to integrate with Prava?
No. Your AI can purchase from any merchant without merchant involvement.
We use the same checkout flow a human would use. The merchant sees a normal Visa or Mastercard transaction. For AI apps wanting faster checkout and higher success rates, we offer direct API partnerships, but it is not required.
What payment methods do you support?
Method
Status
Region
Visa
Live
US, Southeast Asia, Australia
Mastercard
Coming Q1 2026
US
UPI (Delegated)
Coming Q1 2026
India
Klarna (BNPL)
Planned
US, EU
Apple Pay
Planned
Global
Google Pay
Planned
Global
What countries and regions do you support?
Live now:
United States
Southeast Asia (Singapore, Malaysia, Indonesia, Philippines, Thailand, Vietnam)
Australia
Coming soon:
India (via UPI IoT for delegated payments)
Card payments in India are blocked because RBI requires OTP for every transaction, which prevents AI checkout. Our UPI solution works around this limitation.
What merchants can my AI purchase from?
Any merchant accepting Visa or Mastercard. That covers millions of merchants globally.
Is there a minimum transaction size?
No minimum. Prava works for $5 coffee orders and $500 fashion purchases.
Is there a free trial or sandbox?
Yes. Free sandbox is available for any user joining with a business account. You get 1 free try to test the complete flow.
Fill the onboarding form at prava.space/join and schedule a demo at the end for a walkthrough. Email support@prava.space
if you have questions about the demo.
How does user authentication work?
Users register a passkey during card setup:
iPhone: Face ID or Touch ID
Android: Fingerprint or face unlock
Desktop: Device biometrics or security key
Every purchase requires biometric approval. The AI cannot initiate payment without explicit user consent.
Can AI overspend or make unauthorized purchases?
No. Three layers protect users:
Biometric approval: Every transaction requires passkey verification
Scoped tokens: Tokens work only for the exact merchant and amount approved
No card access: AI never sees raw card details, only single-use tokens
Your AI recommends. Your user approves. Prava executes. That sequence never changes.
Is it safe to let AI buy things for me?
Yes. With Prava:
You approve every purchase with Face ID or fingerprint
Tokens only work for exactly what you approved
Tokens expire quickly and cannot be reused
You can revoke access anytime
Standard card protections (chargebacks, disputes) still apply
Think of it like handing a friend your card for one specific purchase, except the "card" self-destructs immediately after use.
What data does Prava store?
We follow data minimization principles:
Card data: Stored in Skyflow vault (PCI Level 1). We never see raw card numbers.
Shipping info: Encrypted, used only for checkout automation
Transaction logs: Order IDs, timestamps, amounts. No card details.
We store only what is needed to complete transactions.
How do refunds work?
Users contact the merchant directly for refunds, just like any normal purchase. Since payment goes directly from user to merchant (we are not the merchant of record), refunds follow standard processes.
How do chargebacks and disputes work?
Standard Visa/Mastercard dispute processes apply. Users contact their bank to initiate a chargeback. Because transactions are direct (user to merchant), there is no intermediary complication.
This is simpler than merchant-of-record models where the payment provider must handle reconciliation between multiple parties.
How is Prava different from Stripe?
Stripe's agent commerce protocol only works with Stripe merchants, roughly 20% of e-commerce. Whereas, Prava creates universal tokens that AI can use to make payments on any payment processor: Stripe, Adyen, Checkout.com, Razorpay, or proprietary stacks.
We are an orchestration layer that works across all payment providers.
How is Prava different from merchant-of-record solutions?
Merchant-of-record (MOR) solutions charge your user, then pay the merchant separately. This creates:
Double-charge appearance on bank statements
Complex dispute resolution
Fee absorption by the MOR provider
Reconciliation burden for refunds
With Prava, payment goes directly from user to merchant. Cleaner statements, simpler disputes, no intermediary holding funds.
Why not integrate with Visa/Mastercard directly?
You can, but it requires:
100+ page compliance checklists
Months of security reviews
Dedicated compliance teams
Ongoing audit requirements
Technical expertise in card network protocols
Whereas, Prava's integration requires 4 lines of code and takes minutes t0 set up. We take care of compliance, integrations, updates and any new product development in agentic payments. We've already done the hard work with global card networks. You get the benefits without the overhead.
Where can I find API documentation?
SDK and API reference are available at docs.prava.space. This helps you understand how it works before onboarding.
After onboarding, we provide complete documentation and materials for easier integration. Our team is available 24/7 on Slack to support you.
Do you have a sandbox environment?
Yes. Free sandbox is available for users. You can fill this form and our team will reach out to you with next steps.
If you schedule a demo call, we will help you setup the sandbox and get started.
Before going live in production, you'll have to successfully run the full flow in sandbox.
What is Prava's Playground?
We have built an easy to use Sandbox Playground, which even a non-dev user can run to experience end to end agentic payments flow.
Steps to try Playground:
Signup on Playground with a business email, you get 3 free tries to test the e2e flow
Click on "Start"
Sandbox will be setup by itself and an app will start in sandbox environment.
Choose on any of the options on app screen to experience agentic payments
Follow the steps to understand:
a. Card tokenization
b. Payment token generation
c. Checkout automation
d. Webhooks and callbacksIf you face any issues with the Playground, feel free to reach out to us at: support@prava.space
What AI models does Prava work with?
Prava is model-agnostic. We work with applications built on:
OpenAI (GPT-4, GPT-4o, o1)
Anthropic (Claude) - our partner
Google (Gemini)
Open-source models (Llama, Mistral)
Any other LLM
The payment layer is separate from your AI stack. If your app can call an API, it can use Prava.
How do you handle product variants like size and color?
Your AI application passes product details (URL, variant ID, size, color) to Prava. Our automation selects the correct options during checkout.
For complex product data handling, we recommend pairing with catalog providers like Rye who specialize in product normalization across merchants.
What support do you offer?
Documentation: SDK and API reference at docs.prava.space
24/7 Slack support: Direct channel with our engineering team
Integration help: We will pair-program your first integration if needed
Demo walkthrough: Schedule at the end of the onboarding form
Email support: support@prava.space for questions
How fast is onboarding?
Extremely fast while following fintech compliance requirements. Most teams complete integration in 2-3 days. Our SDK is easy to use with clear documentation.
How do I get started?
Sign up at Playground or fill the onboarding form
Schedule a demo at the end of the form for a walkthrough
Get sandbox credentials or API keys
Review Docs
Integrate SDK (most teams: 2-3 days)
Go live with 24/7 Slack support from our team
Have a question not covered here? Email us at support@prava.space. We typically respond within 12 hours.
