Virtual card — a real Visa or Mastercard, per agent

Frequently asked questions

Can I give my AI agent a credit card?

Yes — AgentWallet issues a real Visa or Mastercard for every agent through our card issuer. Cards are accepted at any merchant on the network and are scoped per-agent with per-call caps, MCC allowlists, geofencing and anomaly auto-freeze.

Is the card a real Visa or Mastercard?

Yes. We issue real network cards (not virtual proxies on top of a single corporate card) so they are accepted everywhere Visa or Mastercard is accepted, including 3DS-challenged merchants and recurring subscriptions.

Does the agent ever see the card number?

No. The PAN lives in a PCI DSS Level 1 vault. The model and the agent runtime only ever receive a tokenized handle that can be exchanged for an authorization at the issuer — never the raw card number, expiry or CVV.

How do MCC allowlists work?

Every Mastercard/Visa transaction carries a Merchant Category Code. AgentWallet enforces a per-card allowlist (e.g. 'cloud SaaS only' or 'travel + dining only') at authorization time — a transaction in a blocked category is declined before it ever reaches your ledger.

Can I issue a single-use card per purchase?

Yes. Set the card to single-use mode and AgentWallet issues a fresh token per swipe that auto-burns after the first authorization — the cleanest model for high-risk merchants and one-shot purchases.

What happens if the agent's card is compromised?

The token is revoked instantly via the issuer API; the underlying PAN is never exposed so no rotation is needed. Anomaly auto-freeze (5× baseline spike, unusual MCC, geofence breach) pauses the card automatically and pings the Principal.

Can the agent receive a refund to the same card?

Yes. Refunds land on the same agent wallet, indexed by the same trace ID as the original authorization, so you have a clean reconciliation across the original spend, the dispute (if any) and the refund.