Bank-debit and open-banking payments network for recurring and one-off collection across 30+ countries
Review by EuropeanStack EditorialUpdated Verified
GoCardless solves the recurring payment failure problem better than any general-purpose payment processor. The Direct Debit-native architecture, Success+ recovery engine, and 30-country bank scheme coverage make it the default choice for subscription businesses optimising for collection reliability over card flexibility. EU compliance is solid through the GoCardless SAS entity, though primary data infrastructure is UK-based — a distinction worth understanding before signing. The pending Mollie acquisition adds a layer of uncertainty, but GoCardless's operational independence continues until regulatory approval.
GoCardless is a London-headquartered fintech specialising in pull-based bank-debit and open-banking payments. Its network covers Direct Debit schemes in 30+ countries — including SEPA (EU), Bacs (UK), ACH (US), BECS (Australia), and Autogiro (Sweden) — enabling businesses to collect one-off and recurring payments directly from bank accounts. Founded in 2011, GoCardless serves 100,000+ businesses including Doctolib, Tripadvisor, and The Guardian. For EU customers, GoCardless SAS operates from Paris under French ACPR regulatory oversight.
Headquarters
London, United Kingdom
Founded
2011
Pricing
EU Data Hosting
No
Employees
501-1000
Pay-as-you-go
Pay-as-you-go
Pay-as-you-go
Contact Sales
Billing: pay-as-you-go
Failed card payments cost subscription businesses more than most finance teams realise. A card expires, a limit is hit, a fraud flag fires — and the revenue that was supposed to arrive doesn't. GoCardless was built to solve a specific version of this problem: by moving recurring payment collection off cards and onto Direct Debit, where the failure rate is structurally lower and the retry logic is smarter.
Founded in London in 2011, GoCardless operates a pull-based payment network covering 30+ countries. The core mechanism is bank debit — businesses collect from customers' bank accounts directly, via SEPA Direct Debit (eurozone), Bacs (UK), ACH (US), BECS (Australia), Autogiro (Sweden), and other national schemes. Over 100,000 businesses use the platform, including Doctolib, Tripadvisor, and The Guardian.
The product has expanded beyond classic Direct Debit. GoCardless Instant Bank Pay uses open-banking infrastructure for real-time one-off payments. Success+ applies machine learning to retry failed payments at the moment most likely to succeed. Protect+ adds fraud detection built on payment intelligence. The platform has evolved from a Direct Debit wrapper into a bank-payment infrastructure layer — while staying deliberately narrow: GoCardless does not process cards.
For EU customers: SEPA Direct Debit is handled through GoCardless SAS, a Paris entity regulated by the French ACPR. European payment processing runs on EEA-hosted servers. UK customers fall under UK GDPR (the UK holds an EU adequacy decision, extended through June 2028).
Card-on-file recurring payments fail for reasons beyond a business's control: expiry, theft replacement, limit changes, and card network fraud flags. The average card-on-file failure rate for subscription businesses runs 5–15% monthly, depending on the customer base. Each failure triggers a dunning workflow — emails, SMS, grace periods — that costs time and damages the customer relationship.
Direct Debit mandates authorise GoCardless to collect from a customer's bank account on specified dates. Bank accounts don't expire. The failure rate for Direct Debit is typically 1–3%. For subscription businesses with large, stable customer bases — utilities, SaaS, membership organisations, insurance — this difference in failure rates compounds meaningfully over a year.
GoCardless handles mandate creation, storage, and management. Customers authorise once via a web flow or paper mandate; subsequent collections are automatic. The mandate can be amended for variable amounts, paused, or cancelled by either party.
Not every Direct Debit failure is permanent — some represent a timing issue. A customer's account had insufficient funds at collection time but would have cleared a day later. Success+ addresses this by analysing payment behaviour patterns and retrying failed payments on the day statistically most likely to succeed for that specific payer.
GoCardless reports Success+ recovers up to 70% of payments that would otherwise fail permanently. For a business collecting £500,000/month in Direct Debits with a 3% failure rate, that recovery translates to roughly £10,500/month that would otherwise be written off after the dunning cycle expired. Success+ is included in the Advanced plan (1.25%+£0.20/transaction in the UK).
Instant Bank Pay is GoCardless's open-banking product for one-off payments. Instead of entering card details, the payer authenticates with their bank and approves a payment directly — the funds reach the merchant account typically within seconds, using the bank's own payment rails rather than a card network.
Use cases: first payments from new Direct Debit customers (collect immediately, then set up the mandate), ad hoc charges alongside a recurring subscription, deposits and top-ups. Available in the UK and an expanding set of EU countries. Variable Recurring Payments (VRP) extends this to open-banking-authorised recurring collection with flexible amounts — relevant for utilities and other variable-billing businesses.
Protect+ is GoCardless's fraud detection layer, included in the Pro plan. It analyses payer behaviour, mandate patterns, and payment intelligence to identify fraudulent payers before collection. Unlike card fraud prevention — which typically flags individual transactions — Protect+ targets mandate fraud: bad actors who set up authorisations with no intention to honour them.
The module includes chargeback challenge support, helping businesses contest fraudulent mandate claims with documentation GoCardless assembles from its payment data. For businesses processing high volumes of SEPA or Bacs collections from consumer accounts, the fraud protection adds meaningful financial protection.
GoCardless offers 350+ pre-built integrations. Accounting: Xero, QuickBooks, Sage. CRM: Salesforce, HubSpot. Billing and subscription: Chargebee, Recurly, Zuora. Automation: Zapier, Make. The REST API is comprehensive and well-documented, with webhooks for all payment lifecycle events — mandate created, payment submitted, payment collected, payment failed, refund processed.
Libraries are available in Ruby, Python, PHP, Java, .NET, and JavaScript. The API documentation is among the better-produced in the fintech space — examples are realistic rather than toy snippets, and the webhook event model is clearly specified.
GoCardless charges per transaction with no setup fees or monthly costs on Standard and Advanced plans. Pricing differs between UK/domestic and international transactions.
UK pricing (GBP):
EU/SEPA pricing (EUR, via GoCardless SAS): Euro transactions are billed through the Paris-based GoCardless SAS entity, starting at 1% + €0.20 per transaction on Standard with a capped structure similar to the UK rates. Exact euro caps and international rates are published on GoCardless's EU pricing page and vary slightly by market.
The cap structure matters for subscription businesses collecting from higher-paying customers — a £500/month software subscription costs £4 in processing on Standard, not £5. A £5,000/month B2B invoice costs the same £4 capped fee.
Optional add-ons: business name on bank statements (£50/month), fully custom checkout branding (£150/month, not available on Standard). Custom plan pricing is volume-negotiated for businesses above £1m annual revenue, with monthly invoicing and dedicated account management.
GoCardless is primarily a UK company — registered with the FCA, headquartered in London, and subject to UK GDPR. For EU customers, the relevant entity is GoCardless SAS, based in Paris and regulated by the French ACPR. SEPA Direct Debit and EU payment processing runs through this entity, on servers hosted in the EEA.
UK GDPR and EU GDPR are currently aligned in substance. The UK holds a European Commission adequacy decision extended to June 2028, meaning personal data can flow from the EU to GoCardless's UK operations without additional safeguards. Businesses with strict EU data residency requirements should note that GoCardless's primary data infrastructure is UK-based — the EEA hosting applies to European payment processing specifically, not all customer data.
GoCardless holds ISO 27001 certification, is PCI DSS compliant, and supports Strong Customer Authentication (SCA) as required under PSD2. GDPR Data Protection Addendums are available for merchant agreements.
Pending acquisition note: Mollie (Netherlands) announced in December 2025 that it would acquire GoCardless for approximately $1.1 billion. As of mid-2026, the transaction has not closed and is pending regulatory approval, expected in the second half of 2026. If completed, GoCardless would sit within a Dutch-headquartered European payments group — a structural change that would improve the EU sovereignty picture materially. Until closure, GoCardless operates independently under existing UK/French regulatory frameworks.
Subscription and recurring billing businesses — SaaS, membership organisations, utilities, insurance, media — where payment failure rates and dunning overhead cost real money. Direct Debit has structurally lower failure rates than card-on-file, and Success+ narrows the gap further.
Businesses collecting via SEPA who want a dedicated bank-debit specialist rather than a generic payment processor's SEPA module. GoCardless SAS provides a regulated EU entity, EEA-hosted processing, and a Direct Debit-native product built around the mandate lifecycle.
Finance and accounting teams who value clean bank reconciliation. Direct Debit payments appear as bank transfers with full reference data, which integrates cleanly into Xero, Sage, and QuickBooks without the card network reconciliation overhead.
GoCardless is the wrong choice if you need card acceptance — it processes no cards. Stripe, Adyen, or Mollie are the right complement for card payments alongside GoCardless for bank debits. For businesses that need a single payment provider covering cards, wallets, and bank transfers, GoCardless requires a second integration.
GoCardless solves the recurring payment failure problem better than any general-purpose payment processor. The Direct Debit-native architecture, Success+ recovery engine, and 30-country bank scheme coverage make it the default choice for subscription businesses optimising for collection reliability over card flexibility. EU compliance is solid through the GoCardless SAS entity, though primary data infrastructure is UK-based — a distinction worth understanding before signing. The pending Mollie acquisition adds a layer of uncertainty, but GoCardless's operational independence continues until regulatory approval.
Yes. EU SEPA payments are processed through GoCardless SAS, a Paris-based entity regulated by the French ACPR and subject to EU GDPR. EEA payment processing runs on EEA-hosted servers. GoCardless also holds ISO 27001 certification and is PCI DSS compliant. UK customer data falls under UK GDPR, with an EU adequacy decision covering data flows from the EU to the UK through June 2028.
GoCardless does one thing Stripe cannot replicate structurally: Direct Debit. Stripe processes cards, bank transfers, and local payment methods, and its revenue recovery tools are improving. GoCardless's Direct Debit failure rate (typically 1–3%) is significantly lower than Stripe's card-on-file failure rate (5–15%), and Success+ recovers a further 70% of what does fail. For subscription businesses where most customers pay by bank debit, GoCardless wins on collection reliability; Stripe wins on payment method breadth.
Standard covers core Direct Debit collection at 1%+20p per transaction. Advanced adds Success+ (intelligent payment retry) and Verified Mandates (instant bank account verification) for 1.25%+20p. Pro adds GoCardless Protect+ (fraud detection and chargeback challenges) for 1.4%+20p. All plans include Instant Bank Pay, 350+ integrations, and 24/7 support. None charge a monthly fee.
GoCardless has committed to service continuity throughout the transition. The integration will be phased, and customers should not expect forced migration to Mollie's platform. If the acquisition completes, GoCardless customers would gain access to Mollie's card payment capabilities — potentially addressing the single biggest gap in the current GoCardless offering. Until regulatory approval, GoCardless operates independently.
Yes. Variable Recurring Payments (VRP) allow businesses to collect open-banking-authorised payments where the amount varies per collection, without requiring a new customer authentication each time. This is distinct from classic Direct Debit mandates. VRP is available in the UK and selected European markets, and is most relevant for utilities, energy suppliers, and other businesses with genuinely variable billing amounts.
Enterprise payment platform powering the world's leading brands
Alternative to Apple Pay, Google Pay, Stripe
Peer-to-peer international money transfers with competitive exchange rates
Alternative to Western Union, Paypal
Buy now, pay later and smooth checkout experiences for e-commerce