To ensure high levels of service for all users of the Checkout.com platform we apply usage limits to our APIs. Unless otherwise stated, limits are applied at an account level, irrespective of the authentication credentials used. We may occasionally adjust limits to prevent system abuse.
Concurrent rate limits restrict the maximum number of simultaneous requests-per-second (RPS) you can make to our APIs. Our standard limits are as follows:
HTTP GET operations used to retrieve data/resources
Get payment details
HTTP POST/PUT/DELETE operations used to create or update data/resources
Submit dispute evidence
Rate limits are calculated across all APIs. For example, when sending 50 write operations per second to our payments API, a further 50 write operations per second can be used on any API.
When you hit a rate limit you will receive a HTTP 429 response. The request can then be safely retried. To avoid frequently hitting the rate limit we recommend retrying using an incremental backoff with jitter.
If our standard limits are not sufficient for your needs, please contact your Account Manager to discuss your requirements.
We understand that our customers may want to load test their systems to cover increased throughput scenarios such as key sales events. Our Sandbox environments are provided to test the functional aspects of your integration and we generally discourage load testing as we apply lower rate limits.
Instead we recommend simulating requests to Checkout.com with a reasonable level of latency applied. If this is not an option, for example, due to complex integrations we can arrange for specific load testing windows or dedicated Sandbox environments where applicable. Please contact your Account Manager for more information.