Last updated June 30, 2026
A card authorization is the client giving you permission to use their card to pay a supplier. The form encrypts the card details and stores them as a token, which you can reveal to run through your supplier (cruise line, hotel, tour operator, etc.) when you submit the booking. JourneyFuse does not run the actual card charge — the supplier does that on their end.
All card authorizations across your trips live under Invoices & Cards → Card Authorizations in the sidebar. The list is grouped by status:
Use the search bar to find an authorization by client, trip, or the card's last four digits.
There are two ways to start a new authorization:
Either way, specify:
This generates a unique, shareable link.
Share the card authorization link with your traveler. They'll see a secure form asking for:
All card data is encrypted by Evervault before it leaves the browser — your agency never sees or stores raw card numbers.
Once the traveler submits:
At this point the card is ready to use. To actually run the card, open the authorization and click Reveal Card to see the full number, expiry, and CVV — then enter those into your supplier's booking system. The client's card will only be charged when the supplier processes it.
You don't need to do anything for the happy path — the authorization stays valid for the access duration you set and the card details remain available to reveal whenever you submit the booking.
| Status | What it means |
|---|---|
| Pending | Created but the traveler hasn't submitted yet |
| Authorized | Card details collected and ready to use with your supplier |
| Charged | You have marked the authorization as processed by the supplier |
| Declined | The supplier declined the card when you ran it |
| Expired | Authorization window has passed |
| Revoked | You manually cancelled the authorization |
When the client submits the form, the authorization moves to Authorized. JourneyFuse also creates a payment record on the invoice for tracking, so the invoice reflects that the client has provided payment. The card itself has not been charged at this point.
When you run the card through your supplier's booking system and the charge goes through, click Mark as Charged to update the status. If the supplier declines the card, click Mark as Declined so the invoice can be re-collected.
The system will not double-create payment records on the invoice when you mark as charged, so it's safe to click after the supplier has processed the card.
You can revoke any pending or authorized card auth at any time. This immediately destroys the encrypted card data and prevents future charges.
When a client opens their authorization link, here is the exact flow they go through:
The card is never transmitted in plaintext. Neither JourneyFuse nor your agency ever sees or stores the raw card number.
The authorization agreement your client signs covers two things:
When you have a Terms & Conditions URL configured (see below), a direct link to your agency's terms appears inside the agreement text, right where the client reads it before signing. This is critical for chargeback defense: card networks specifically look for evidence that the cardholder agreed to the cancellation and refund policy at the time of booking.
Go to Settings → Agency → Terms & Conditions and paste the URL to your agency's terms and conditions page.
Once set, your T&C link appears directly in the authorization agreement text. Clients see it, click through to read it, and agree to it as part of authorizing their card. This single step materially strengthens your position if a chargeback is ever filed — the signed authorization becomes evidence that the cardholder agreed to your cancellation and refund policy before any payment was processed.
If you don't have a Terms & Conditions page yet, consider creating a simple one on your agency website covering your booking terms, deposit conditions, and cancellation/refund policy. Even a one-page PDF hosted publicly works.
Every card authorization captures a permanent audit trail at the moment the client submits:
| Evidence | What is recorded |
|---|---|
| Signer name | The full name the client typed as their electronic signature |
| Date and time | The exact timestamp of submission |
| IP address | The IP address the authorization was submitted from |
| Authorization statement | The exact text of the agreement the client agreed to, preserved as it appeared at submission |
This audit trail is immutable — it cannot be altered after the fact.
To access the evidence for a specific authorization:
When a chargeback is filed, you present this receipt as evidence that the cardholder explicitly authorized the charge, agreed to your cancellation and refund policy, and signed electronically with their name, date, and IP address recorded.
Divide invoices among trip travelers, send individual payment links, and track each person's balance.
A monthly sweep that catches every trip with an open balance — including balances added after final payment — and optionally sends clients a recurring balance statement.
Create invoices from trips, track payment status, and manage overdue balances across your client bookings.