reCAPTCHA can help automatically protect your custom payment forms from excessive declines occurring due to card testing, spam, and other fraud. We strongly recommend that you set it up and use it.
Google’s reCAPTCHA works by preventing non-humans from interacting with your page, meaning that an attacker’s automated system will not be able to use your payment form.
To enable invisible reCAPTCHA, register your site with Google choosing the reCAPTCHA v3 type.
After registering you will be redirected to a page where you can retrieve the necessary credentials to enter into your WP Simple Pay Pro settings.
You will find the reCAPTCHA settings near the bottom of the Simple Pay Pro > Settings > General > reCAPTCHA tab.
If you find the Default Score Threshold setting is not reducing card testing, spam, etc., you can switch to the Aggressive setting which will be more stringent in its analysis.
You’ll know things are set up correctly when you visit your website and see Google’s reCAPTCHA privacy and terms overlay in the lower right-hand corner of the page.
reCAPTCHA helps protect your payment forms from card testing, spam, and other fraud. We strongly recommend that you set it up and use it.
Using additional reCAPTCHA implementations
If you have multiple plugins using reCAPTCHA in addition to the WP Simple Pay implementation, such as Contact Form 7 or another payment plugin, please ensure they are set up using reCAPTCHA v3 and the same Site and Secret keys as entered above to avoid any potential conflicts.