Does Ceven store my Stripe API key?

No. Stripe uses OAuth, not API keys, for this integration. When you click Connect, Stripe redirects you through their consent screen, you authorize Ceven's access, and Stripe issues us a refresh token scoped to the permissions you approved. We store the refresh token encrypted at rest and call Stripe's /oauth/token endpoint to mint short-lived access tokens for each agent call. You can revoke Ceven's access at any time from your Stripe dashboard's Connected Apps page, that immediately invalidates our refresh token without us being able to recover it.

Which Stripe API version does Ceven use?

Ceven pins to the Stripe API version that was current the day you connected, so a new Stripe version doesn't silently change the shape of the data we hand to your workflows. We bump pinned versions on a quarterly cadence with a 30-day deprecation window for affected workflows, and you'll get an in-app notification before any breaking change. If you need an earlier or later version for a specific workflow, set it in the action params, Stripe accepts the version as a request header.

Can Ceven access historical Stripe data, or only events after I connect?

Both. After connect, Ceven backfills the last 12 months of charges, customers, and subscription state into the workflow context so your first prompts have real data to work with. Webhook subscriptions for future events also fire immediately. The backfill respects Stripe's pagination, large accounts (10k+ subscribers) take a few minutes to complete and you'll see a progress indicator in the Integrations page. If you need a longer backfill, run a one-off list-charges workflow with the date range you need.

What happens to running workflows if I disconnect Stripe?

Any workflow that's mid-flight when you disconnect completes its current step using the last-valid access token, then pauses at the next Stripe-dependent step with an 'Integration disconnected' error. The workflow does not silently fail or skip steps, pause + alert is the default. Reconnecting Stripe resumes the workflow from where it paused, with the original prompt and parameters intact. If you don't reconnect within 14 days, the workflow auto-cancels and you'll get a summary of what was and wasn't done.

Does Ceven support Stripe Connect (marketplaces and platforms)?

Yes, with a caveat. The OAuth connect flow above covers a single Stripe account, your own. If you're a marketplace operating Stripe Connect with hundreds or thousands of connected sub-accounts, you'll want to use the platform connect mode, which is on by request. It changes the auth flow to use your platform's secret key and lets agents act on behalf of any connected account via the Stripe-Account header. Email support@ceven.io to enable platform mode for your workspace.

Can I limit which Stripe actions Ceven's agents can use?

Yes. Under Settings → Integrations → Stripe → Permissions, you can allowlist specific actions per agent. The default after connect is read-only on customers, subscriptions, charges, invoices, and disputes, plus write access on refunds, subscription updates, and dispute-evidence uploads. Create-charge and cancel-subscription are off by default for new workspaces because they're irreversible, turn them on explicitly per the agents that need them. Permission changes take effect on the next workflow run; in-flight workflows finish under the old permissions.

How does Ceven handle Stripe's rate limits?

Stripe's live-mode limits are 100 read req/sec and 100 write req/sec per account, with burst tolerances. Ceven batches list operations into the largest page size Stripe allows (100), caches reference data (customers, products) for the duration of a workflow run, and queues write-heavy workflows behind a token bucket sized to your account's actual limit. If you're on Stripe's high-volume tier with custom limits, set the override in Settings → Integrations → Stripe → Advanced so we don't artificially throttle.

Stripe

Pushes every payment, refund, and subscription event into your books as it happens, drafts the customer reply when one is needed, and reconciles payouts against the bank for you.

Get started for free

Try Stripe in Ceven

Ask Ceven anything

Standard

What Ceven does with Stripe

Payments + refunds + disputes mirrored to NetSuite or QuickBooks in real time
Subscription lifecycle automation (trial → paid → past-due → churn)
Dispute evidence packets drafted from transaction history
Payout reconciliation against bank deposits
Dunning response templates by failure code
Tax reporting handoff to your filer (Stripe Tax or external)

Why use Ceven?

One connection, every action
Connect Stripe once and Ceven's agents can run all of its tools. No setup per task and no scripts to maintain.
No glue code, no RPA
Describe the outcome in plain English. Ceven picks the right Stripe calls, fills the params, and handles the result.
Works on your existing stack
Stripe sits next to the rest of your tools, so work flows across all of them in one chat instead of five tabs.
Managed auth, you just build
Ceven handles OAuth, tokens, scopes, and refresh. Your team never copies an API key or babysits a token.

Supported tools

Every action Ceven's agents can run on Stripe, with when to use it. Items tagged "event" are webhooks Ceven listens for; the rest the agent calls on demand.

write

Create charge

Use this when a workflow needs to bill a customer outside the normal subscription flow, one-off purchases, fixed-fee add-ons, or settlements after a manual quote.

write

Refund charge

Issue a full or partial refund against a prior charge. Common path: dispute resolution, goodwill credits, or canceled-order automations.

read

Get customer

Pull the full customer record by ID or email, payment methods on file, subscription state, and the last 100 charges in one call. Use before refund or escalation flows.

write

Create customer

Provision a new Stripe customer when a deal closes in your CRM, with metadata pre-populated from the opportunity so the first invoice matches the contract terms.

read

List subscriptions

Pull every active, trialing, or past-due subscription, optionally filtered by price ID or customer cohort. Drives renewal-risk reports and dunning-batch builds.

write

Update subscription

Change plan, quantity, or trial end on an active subscription. Use for plan upgrades after a renewal call or pause flows during account holds.

write

Cancel subscription

End a subscription immediately or at period end, optionally prorating the unused balance back to the customer. Required leg of an offboarding workflow.

write

Create invoice

Draft an invoice with line items pulled from a quote or contract. Use for usage-based billing or one-time pro services charges.

read

Get invoice

Fetch a specific invoice's line items, taxes, and PDF URL, used when surfacing a copy into a help-desk reply or attaching to a renewal email.

read

List disputes

Pull every open dispute with reason code, evidence due date, and dispute amount. Drives the dispute-evidence prep workflow.

write

Submit dispute evidence

Upload customer communications, shipping records, and product descriptions to Stripe's dispute response. Auto-populates from the transaction's metadata where possible.

read

List payouts

Pull recent Stripe payouts with arrival date and amount, joined to the underlying balance transactions. Used for payout-to-bank reconciliation.

Search customers

Query Stripe by email, name, or custom metadata field. Used to deduplicate before a new-customer create, or to look up a record from a partial reference.

event

Webhook: invoice.payment_failed

Triggered on a failed recurring charge. Routes into the dunning workflow with the failure code and customer's communication preferences.

event

Webhook: customer.subscription.deleted

Triggered on cancellation. Routes into the offboarding workflow that revokes access, drafts the win-back email, and posts the loss reason into the CRM.

15 actions · scroll to see them all

Workflows that pair Stripe with your other tools

Stripe × NetSuite

How: Controller mirrors every Stripe charge + refund into NetSuite as a journal entry on the same day, killing the month-end reconciliation pile.

Stripe × Salesforce

How: RevOps lead auto-creates the Stripe customer + subscription on Closed-Won, with line items matching the opportunity's products.

Stripe × QuickBooks Online

How: Bookkeeper for a 200-customer SaaS pulls Stripe payouts into QBO as bank deposits with the per-charge breakout already split.

Stripe × Slack

How: Finance ops gets a Slack DM on every new dispute over $500 with the customer's last 90 days of charge history attached.

Connecting Stripe

1
Open Integrations in your Ceven dashboard
From the chat surface, click Settings → Integrations. The library opens; find Stripe in the ERP & Finance category.
2
Click Connect on the Stripe card
A Stripe OAuth window opens in a popup. Ceven asks for read + write access to the standard Stripe resources (charges, customers, subscriptions, invoices, disputes).
3
Sign in to your Stripe account and pick the workspace
If you have multiple Stripe accounts (live and test, or multiple subsidiaries), pick the one Ceven should connect to. You can connect more than one later.
4
Authorize and return
Click Connect my Stripe account. Stripe redirects back to Ceven, the popup closes, and the integration card flips to 'Connected'.
5
Run a sample prompt
Open the chat at /app and try one of the suggested prompts above. The agent should pull live Stripe data, that's your confirmation the connection is live.

Open the Integrations dashboard ›

Limitations and gotchas

Stripe behavior worth knowing before you write a workflow against it.

Test mode and live mode are separate Stripe accounts

Stripe's sk_test_* and sk_live_* keys point at different ledgers, a charge created in test mode never appears in your live dashboard, and webhook endpoints are configured per-mode. Ceven defaults to the live key on connect, but if your finance team uses test mode for QA, make sure the workflow specifies which mode it's targeting in the action params. Mixing the two is the most common source of 'why didn't this charge show up?' tickets and silently breaks reconciliation reports.

Webhook delivery is at-least-once, not exactly-once

Stripe retries failed webhooks with exponential backoff for up to 3 days. If your subscription cancellation workflow doesn't idempotently key on the event ID, you'll occasionally double-revoke access or double-send the win-back email. Ceven dedupes on Stripe's event.id before firing the downstream workflow, but a custom webhook handler that bypasses Ceven should do the same.

Never worry about agent reliability

Ceven runs Stripe like a careful operator, not a black box. Every run is visible, gated where it counts, and built to stop rather than guess.

Every action is logged

See exactly what the agent did in Stripe, when, and why. The trail is built for sign off, not guesswork.

It pauses, it never guesses

If Stripe is unreachable or a step is unclear, the agent stops and asks instead of plowing ahead and making a mess.

Approvals where they matter

Gate any write behind a human OK. Nothing irreversible happens in Stripe without someone saying yes first.

Least privilege by default

Ceven asks Stripe for read scopes first and only the writes a workflow needs. Revoke the whole grant any time.

Frequently asked questions

Does Ceven store my Stripe API key?: No. Stripe uses OAuth, not API keys, for this integration. When you click Connect, Stripe redirects you through their consent screen, you authorize Ceven's access, and Stripe issues us a refresh token scoped to the permissions you approved. We store the refresh token encrypted at rest and call Stripe's /oauth/token endpoint to mint short-lived access tokens for each agent call. You can revoke Ceven's access at any time from your Stripe dashboard's Connected Apps page, that immediately invalidates our refresh token without us being able to recover it.
Which Stripe API version does Ceven use?: Ceven pins to the Stripe API version that was current the day you connected, so a new Stripe version doesn't silently change the shape of the data we hand to your workflows. We bump pinned versions on a quarterly cadence with a 30-day deprecation window for affected workflows, and you'll get an in-app notification before any breaking change. If you need an earlier or later version for a specific workflow, set it in the action params, Stripe accepts the version as a request header.
Can Ceven access historical Stripe data, or only events after I connect?: Both. After connect, Ceven backfills the last 12 months of charges, customers, and subscription state into the workflow context so your first prompts have real data to work with. Webhook subscriptions for future events also fire immediately. The backfill respects Stripe's pagination, large accounts (10k+ subscribers) take a few minutes to complete and you'll see a progress indicator in the Integrations page. If you need a longer backfill, run a one-off list-charges workflow with the date range you need.
What happens to running workflows if I disconnect Stripe?: Any workflow that's mid-flight when you disconnect completes its current step using the last-valid access token, then pauses at the next Stripe-dependent step with an 'Integration disconnected' error. The workflow does not silently fail or skip steps, pause + alert is the default. Reconnecting Stripe resumes the workflow from where it paused, with the original prompt and parameters intact. If you don't reconnect within 14 days, the workflow auto-cancels and you'll get a summary of what was and wasn't done.
Does Ceven support Stripe Connect (marketplaces and platforms)?: Yes, with a caveat. The OAuth connect flow above covers a single Stripe account, your own. If you're a marketplace operating Stripe Connect with hundreds or thousands of connected sub-accounts, you'll want to use the platform connect mode, which is on by request. It changes the auth flow to use your platform's secret key and lets agents act on behalf of any connected account via the Stripe-Account header. Email support@ceven.io to enable platform mode for your workspace.
Can I limit which Stripe actions Ceven's agents can use?: Yes. Under Settings → Integrations → Stripe → Permissions, you can allowlist specific actions per agent. The default after connect is read-only on customers, subscriptions, charges, invoices, and disputes, plus write access on refunds, subscription updates, and dispute-evidence uploads. Create-charge and cancel-subscription are off by default for new workspaces because they're irreversible, turn them on explicitly per the agents that need them. Permission changes take effect on the next workflow run; in-flight workflows finish under the old permissions.
How does Ceven handle Stripe's rate limits?: Stripe's live-mode limits are 100 read req/sec and 100 write req/sec per account, with burst tolerances. Ceven batches list operations into the largest page size Stripe allows (100), caches reference data (customers, products) for the duration of a workflow run, and queues write-heavy workflows behind a token bucket sized to your account's actual limit. If you're on Stripe's high-volume tier with custom limits, set the override in Settings → Integrations → Stripe → Advanced so we don't artificially throttle.

When Stripe is not the right fit

Stripe is overkill if your revenue model is ACH-only enterprise invoicing with net-60 terms, most of that flow lives outside Stripe in NetSuite or Sage Intacct's billing module, and forcing it through Stripe creates duplicate records the controller then has to chase. Stripe shines on subscription, marketplace, and transactional revenue where the card-on-file and dispute machinery actually earn their fee.

More ERP & Finance integrations

NetSuite

SAP

Oracle ERP Cloud

Microsoft Dynamics 365

Sage Intacct

QuickBooks Online

Alternatives to Stripe

Other tools that solve a similar problem. Ceven supports these too, so you can switch or run more than one at once.

adyenbraintreeSquare

Setting up Stripe? Email support@ceven.io with your tenant ID, or security@ceven.io for security questions.

Try Ceven on your stack

Start for free