QR+ Master Specification (1.0.0)

This document covers the QR+ system context, Paylink encoding formats and targeted experiences. The implementation of this specification is governed by the following API specifications:

Service Provider Registry API
Payer Service Provider API
Payee Service Provider API

Version History

Version: 1.0.0 (2025-12-04)

Release Candidate 1.0.0-rc-6 approved for publication

System Context

The below diagram shows the relationships and interactions between the QR+ actors and systems:

diagram

The QR+ system coordinates multiple stakeholders to enrich data and initiate payments through existing payment rails. The key actors are:

Actor	Description
Payer	A party that interacts with a Paylink with the intention of making payment. To achieve this, the Payer can present a Payer presented Paylink (PrP) or action a Payee presented Paylink (PeP). For example, presenting a phone based Paylink to a shop assistant (then acting as Presenter) or scanning a printed QR Paylink with a mobile device (then acting as Scanner).
Payee	A party that interacts with a Paylink with the intention of receiving payment. To achieve this, the Payee can action a Payer presented Paylink (PrP) or present a Payee presented Paylink (PeP). For example scanning a consumer presented paylink at a retail POS (then acting as Scanner), or presenting a electronic QR at a vending machine (then acting as Presenter).
Payer Service Provider (PrSP)	A registered organization that executes QR+ enrichment flows on behalf of a Payer. The PrSP can have Paylink Provider capabilities to create new Paylinks and/or Paylink Facilitator capabilities to process 3rd party Paylinks
Payee Service Provider (PeSP)	A registered organization that executes QR+ enrichment flows on behalf of a Payee. The PeSP can have Paylink Provider capabilities to create new Paylinks and/or Paylink Facilitator capabilities to process 3rd party Paylinks
Payment Rail Network	The QR+ Service Provider does pull- and push- payment initiation, but the payment itself is executed through a Payment Rail Network. The Payment Rail is responsible for the authorization, capture, reconciliation, and settlement of the payment.
SARB NPU	The South African Reserve Bank National Payment Utility manages QR+ regulations and infrastructure on behalf of the industry to assure a secure, equitable, and cost-effective network.

A QR+ flow consists out of the following high-level steps:

Paylink creation: A Payer or Payee, acting as Presenter, uses a Paylink Provider's Application to create a new Paylink. The Paylink is customized to the Presenter's use case requirements. It can be short- or long-lived, used for one or multiple transactions, be created for a specific Payer, or be associated to transaction details such as allocation reference and amount. Both PrSPs and PeSPs can fulfil the role of Paylink Providers and/or Paylink Facilitators. Examples:
- An informal vendor creates a Paylink QR code, using a PeSP mobile application, which she prints to accept mobile payments from customers at a farmers' market.
- An online merchant creates a web clickable Paylink to accept payments inside its mobile application.
- A consumer creates a barcode Paylink on a PrSP mobile application to present to a shop attendant's PeSP POI application as payment for goods.
Paylink presentment: The Presenter now presents the Paylink to Scanners for action as kickoff to the QR+ flow. The method of presentment and intended use cases are impacted by the Paylink Presentment Format. Current Presentment Formats include QR code, barcode or numeric string. Again, both Payer or Payee can act as a Presenter depending on the user case. Examples:
- An informal vendor has a printed QR Paylink at her stall.
- An online merchant has a 'pay by Paylink' button in its mobile application.
- A consumer has a barcode on her mobile phone to present to a shop attendant during payment.
Paylink actioning: A different Payer or Payee, now acting as a Scanner, actions the Paylink by acquiring it from the Presenter and submitting it to her Paylink Facilitator (PrSP or PeSP). The mechanism used to action the Paylink depends on the presentment format. Examples:
- A consumer, using a mobile phone camera, can action a QR Paylink and then choose her banking app to facilitate the payment.
- A user can click a 'pay by Paylink' button in a mobile application and choose her banking app to facilitate the payment.
- A shop attendant can scan a barcode, presented by a consumer, by using her point-of-sale barcode scanner.
Paylink submission: The Scanner now submits the Paylink to her Paylink Facilitator for processing. The use case dictates whether the Paylink Facilitator is a PrSP or PeSP. Examples:
- A consumer submits a Paylink to her bank (PrSP) for processing.
- The POI software submits the Paylink to a payment provider (PeSP) for processing.
Paylink resolution: The Paylink Facilitator (PrSP or PeSP depending on the use case) decodes the Paylink and identifies the Paylink Provider by matching the Paylink indicators against lookup data obtained from the SARB NPU QR+ Registry Service. The Paylink Facilitator proceeds to resolve the Paylink against the Service Provider API hosted by the Paylink Provider. Successful resolution results in the initiation of a QR+ Flow by the PeSP.
QR+ Flow execution: Once a QR+ Flow has been established, messaging between the Service Providers facilitate the exchange of data between the Payer and Payee. The PeSP may request Payer loyalty or identity information, or initiate a QR+ Payment Request.
Payment Initiation: A QR+ Flow may perform Payment Initiation against a Payment Rail Network depending on the use case.

NOTE: Payment Processing DOES NOT form part of QR+ Flow execution

Paylink Formatting

The Paylink format is driven by the Encoding Format (how the Paylink attributes are encoded into the data payload) and the Presentment Format (how the encoded data is presented to the Scanner)

Encoding Formats

The following encoding formats are supported:

URI encoded: A Paylink string encoding format which builds a non-URL, RFC3986 compliant, URI.

Design objectives:

Possess recognizable attributes to distinguish it from URI codes generated for other standards or applications.
Enable extended lifetime Paylinks for sensitive Paylinks and indefinite lifetime links for non sensitive links.
Allows deep linking on mobile devices, but cannot be used for direct web access (e.g. web based guest experiences).
No human reproducibility requirement.
No guest experience. Resist browser use.

diagram

The encoding consists of the following elements:

uri scheme: The URI scheme for QR+ paylinks are qr-plus
anchorDomain: The naming authority of the URI. One value for all Paylinks and used as authority for registration of mobile deep-linking apps. The anchor domain is the domain where the QR+ Registry for this network is hosted.
flowTypeIndicator: Indicator to the flow type. Unreserved URI character string defined by the Registry Service.
spIndicator: Indicator to the registered Paylink Provider who can resolve this Paylink. This encoding-specific indicator is issued by SARB as part of the Service Provider registration process and published by the Registry Service.
- The mapping of spIndicator to the relevant Service Provider API host is managed by the Paylink Registry.
- spIndicator 'xmpl': Reserved for example links. Never in active use.
paylinkValue: A random string of at least 20 characters (RFC3986 'unreserved' characters; RegEx '^[A-Za-z0-9-._~]*$')

Further requirements:

The Paylink Provider MUST enforce Flow Type specific lifespan and quarantine/reuse requirements on the Paylink as prescribed by the Registry Service. (e.g. lifespan of less than 30 minutes for flow type prp-connected).
The generated paylinkValue MUST comply to the PLV Random Number Generation requirements
The encoding MUST only use URI Scheme, naming Authority and Path components as presented above (e.g. no Query or Fragment components).
The URI naming Authority MUST have a host component only (e.g. no Port or User Information)
The URI Path hierarchy MUST be exactly four

Number encoded: A numeric encoding format optimized for human reproducibility.

Design objectives:

Enable high accuracy human reproducibility over voice and consumer keypad in use cases where actioning the Paylink involves manual consumer code verification, typing or copying.
Targeted at Payee Presentment use cases where the Payer application is connected.
Focussed on short Paylink lifespan use cases utilizing a small PLV number space.
No guest experience.

diagram

The encoding consists of the following elements:

First digit: (value 1 through 9) representing the flowTypeIndicator (e.g. 2).
- Value '0': Reserved
- Values published by the Paylink Registry Service
Second and third digits: (value 00 through 99) the spIndicator identifying the registered Paylink Provider, within the Flow Type context, who can resolve this Paylink (e.g. 48).
- Values 00 through 99: Mapping of spIndicator to Paylink Provider API host/url resolved by SARB NPU Paylink Registry.
- Indicator 48: Reserved for example links. Never in active use
Sequence of 9 digits: Representing the random paymentLinkValue (e.g., 439574307).
- Values xxxx74xxx: Reserved for example links. Never in active use
Last digit: The luhnDigit (https://en.wikipedia.org/wiki/Luhn_algorithm), calculated over preceding digits (e.g., 7).

Further requirements:

The Paylink Provider MUST enforce Flow Type specific lifespan and quarantine/reuse requirements on the Paylink as prescribed by the Registry Service.
The 9 digit paylinkValue MUST be generated in compliance of the PLV Random Number Generation requirements
Paylink entry applications MUST perform Luhn checks to detect entry but NOT remove the digit from the Paylink structure.
A separation character (e.g., '-') MUST be used in presentation formats to aid recognition and improve human reproduction accuracy, but implementations MUST NOT require users to enter the separation character.

Extended number encoded: A numeric encoding format optimized for barcode presentment.

Design objectives:

Possess recognizable attributes to distinguish it from codes generated through other standards or applications.
Allow for high accuracy reading with standard barcode scanning equipment (Code128 format) without the need for additional error correction.
Targeted at Payer Presentment use cases where the Payer application is connected (e.g. PrP-1).
Maximize PLV namespace for medium lifespan Paylinks.
No guest experience.
No human reproducibility requirement.

diagram

The encoding consists of the following elements:

Encoding identifier: The first three characters 'ZA-' defining South African Paylink Encoding
Character 4 - [digit]: (value '1' through '9') representing the flowTypeIndicator (e.g. '2').
- Value '0': Reserved
- Values published by the Paylink Registry Service
Character 5 through 8 - [digits]: (value '0000' through '9999') the spIndicator identifying the registered Paylink Provider who can resolve this Paylink (e.g. '3713').
- Reference data for mapping of spIndicator to the relevant Service Provider API host is managed by the Paylink Registry.
- Paylink Provider '3713': Reserved for example links. Never in active use.
Sequence of 19 characters [digits]: Random paylinkValue (e.g., '9436387216843892349').
- Values 94xxxxxxxxxxxxxxxxxx: Reserved for example links. Never in active use

Further requirements:

The Paylink Provider MUST enforce Flow Type specific lifespan and quarantine/reuse requirements on the Paylink as prescribed by the Registry Service.
The generated paylinkValue MUST comply to the PLV Random Number Generation requirements

Signed CBOR encoded: A cryptographically signed, CBOR (Concise Binary Object Representation) encoding for attested use of a Paylink.

Design objectives:

Enable cryptographic attestation of a Paylink value to improve the security posture in use cases where Paylink integrity is critical e.g. Payer not connected PrP use cases.
Avoid shared-secret based mechanisms requiring secure secret distribution processes.
No guest experience.
No human reproducibility objective.
Size constrained to allow for QR presentment on a consumer smartphone. (320px wide screen)

Below the Concise Data Definition Language (CDDL) specification of the Paylink in Concise Binary Object Representation (CBOR) format

paylink = [
  bstr .cbor payload, 
  signature 
]

payload = (
  kid:bstr .size 16,
  plv:bstr .size 12,
  p:uint .size 2, 
  ts:time,  ; 32bit uint seconds since 1970 - range to 2038
)

signature = bstr .size 64

The encoding consists of the following elements:

kid: The key Id of the cryptographic key used to sign the Paylink. The Paylink Provider must be able to correlate this value to the ECC pubic key and its owner for signature validation.
plv: The Paylink Value of the Paylink (12 byte binary value).
p: The Paylink Provider identifier UINT containing:
- spIndicator: Lowest 12 bits (spIndicator = p mod 4096). Values published by the Paylink Registry.
- flowTypeIndicator: Highest 4 bits (flowTypeIndicator = p div 4096). Values published by the Paylink Registry.
ts: The unix timestamp in seconds since 1970-01-01T00:00:00.000Z when the Paylink was created.
signature: The signature over the CBOR encoded payload block using ECDSA with P-256 curve (ES256)

Further requirements:

The Paylink Provider MUST enforce Flow Type specific lifespan and quarantine/reuse requirements on the Paylink and PLV as prescribed by the Registry Service. (e.g. lifespan of less than 5 minutes for prp-disconnected flow type).
The Paylink MUST be single use and terminated after first resolution even if the payment fails.
The Paylink Provider MUST resolve the Paylink only if the signature is successfully validated.
Paylink lifespan SHOULD be enforced using the generation timestamp.

Presentment Formats

The following presentment formats are supported:

Presentment Format	Description	Example
QR presentment	The Paylink is presented an ISO18004 QR code using 'H' (high) error correction. This is targeted at mobile phone use cases where the Paylink is scanned or presented by consumer devices and the Paylink does not need to be recognized or reproduced by humans. This presentment format MAY also be clickable on presentation devices that support deep linking to Paylink Facilitator Apps
String presentment	The Paylink is presented as a string that requires actioning through human reproduction. String presentment of a Number Encoded Paylink must use a separation character (e.g. '-') to create a 'd{3}-d{4}-d{2}-d{4}' grouping to ease recognition and reproduction
Barcode presentment	The Paylink is presented as a Code128 barcode. Targeted at use cases where scanning is done by legacy barcode readers.
Web click presentment	The Paylink is presented as a web URI that is clickable on a presentation device that support deep linking to Paylink Facilitator Apps.

NOTE: The 'Paylink' branding above will be updated following NPU branding discussions. At time of publication, the branding has not yet been finalized but some QR+ acceptance marking will be present.

Paylink Format to Experience Mapping

The Paylink standard supports specific combinations of encoding and presentment strategies for specific experiences.

	QR presentment	String Presentment	Barcode Presentment	Web click Presentment
URI encoded	PeP-1; PeP-2; PeP-3; PeP-4; PeP-6; PrP-1	-	-	PeP-2; PeP-3; PeP-4; PeP-6;
Number encoded	-	PeP-1; PeP-4; PeP-6	-	-
Extended Number encoded	-	-	PrP-1;	-
Signed CBOR encoded	PrP-2;	-	-	-

PLV Random Number Generation (RND)

The random number generator (RNG) used to generate all PLVs must comply with the requirements specified in NIST SP 800-90A and must use a deterministic random bit generator (DRBG) based on HMAC-SHA256, CTR-AES256, or SHA-256. The entropy source must be validated according to NIST SP 800-90B and provide at least 128 bits of entropy per seed. Implementation must be tested using the NIST Cryptographic Algorithm Validation Program (CAVP) or equivalent statistical test suites. Recognized test suites include (i) Diehard tests (https://en.wikipedia.org/wiki/Diehard_tests) (ii) NIST Statistical Test Suite (https://github.com/arcetri/sts) and (iii) the rngtest utility (https://man.docs.euro-linux.com/EL%209/rng-tools/rngtest.1.en.html)

QR+ Flow Types

The following QR+ flow types are supported:

Flow Type	Description	Supported Encodings
`pep-general`	A Payee Presentment flow for general consumption in low risk applications. Paylinks generated for this flow type MAY have an infinite lifespan although lifespan SHOULD be limited unless required by the use case (e.g. printed, multi-use Paylinks). A quarantine period of 12 months must be observed for all terminated or expired Paylinks.	URI Encoding
`pep-shortcode`	A Payee Presentment flow targeted at use cases which require Paylink actioning through human reproduction. Paylinks generated for this flow type MUST have a lifespan of less than 30 minutes. A quarantine period of 1 month must be observed for all terminated Paylinks.	Number Encoding
`prp-connected`	A Payer Presentment flow for general use when the Payer App is connected and able to provide real time transaction approval. Paylinks generated for this flow MUST have a lifespan of less than 30 minutes. A quarantine period of 1 month must be observed for all terminated Paylinks.	URI Encoding; Extended Number Encoding
`prp-disconnected`	A Payer Presentment flow for use when the Payer App not connected and unable to provide real time transaction approval. PLVs generated and distributed MUST have a lifespan of less than 3 months and on-device generated Paylinks MUST have a lifespan of less than 30 minutes. PLVs generated for this flow MUST be single use (only used in one flow instance irrespective of whether it results in successful payment or now). A quarantine period of 12 months must be observed for all PLVs.	Signed CBOR encoding

Payee Presentment Experiences

The QR+ standard targets the enablement of the following Payee Presentment experiences. This is not intended to be an exhaustive list of all use cases that can be realized, but rather serves as framework to understand and regulate the capabilities it presents.

PeP-1: Merchant Single Use in Physical Proximity

Description

This experience targets a Merchant (Payee) doing an on-screen presentment of a Paylink at a cash register. Once the Consumer (Payer) indicates their intent to pay using QR+, the cashier presents a single use Paylink linked to the current checkout session. The Consumer scans the Paylink with a mobile app. The Paylink may be presented, and link resolved, before the transaction details are available (check-in) or afterwards (immediate payment). When the transaction details are available, the PrSP does a Payment request and the PrSP prompts the Payer to approve the payment. After the payment is executed, both the Merchant (cashier) and the Consumer are notified of the successful payment.

Key Attributes

Payee Presented: The Paylink is presented by the Merchant (Payee) to the Consumer (Payer).
Single Use: The Paylink is linked to one checkout session and expires once payment is received or the session is abandoned.
Allocated: The Paylink can be used by any Payer wanting to make payment for the current checkout session.
Short-Lived: The Paylink has a short lifespan, covering only the duration of the checkout process. The Paylink can be generated speculatively in anticipation of a QR+ payment but must expire if not used.
Payee Connected: The Payee application is connected and able to generate a dynamic Paylink to present at the POI.
Payer Connected: The Payer application is connected and able to submit the Paylink, augment the transaction information, and approve the payment.

Use Case Diagram

use-case-diagram

Variants

Presentment at Payment Authorization: The Paylink is presented after basket totalization, before payment authorization once all transaction details are known.
Presentment at Item Scanning: The Paylink is presented during item scanning allowing the Consumer to 'check-in' for the session. Identity or loyalty actions can complete prior to the transaction amount being shared via a Payment Request at payment authorization.

Supported Paylink Formats

	QR Presentment	Barcode Presentment	String Presentment	Web Click Presentment
URI Encoded	✓	-	-	-
Number Encoded	-	-	✓	-
Extended Number Encoded	-	-	-	-
Signed CBOR Encoded	-	-	-	-

PeP-2: Merchant Multi Use

Description

This experience targets a Merchant (Payee) presenting a multi-use Paylink for payment in either physical proximity or online scenarios. One Paylink is used for multiple payments from different customers. The Merchant generates the Paylink and publishes it in either printed or static uri format. The Paylink metadata could include reusable transaction details, such as the amount at creation. At check-out, the Merchant presents the Paylink to the Consumer for payment. The Consumer actions the Paylink with a mobile app and may be prompted to augment transaction information (e.g., amount, payment reference) before approving the payment. After payment, the Payer is notified of the successful payment. An attempt must be made to notify the Payee of the payment but the Payee's availability to receive the notification is not essential.

Key Attributes

Payee Presented: The Paylink is presented by the Merchant (Payee) to the Consumer (Payer).
Multi Use: The Payee uses one Paylink to process multiple payments.
Unallocated: The Paylink is generated prior to the payment interaction and the Merchant cannot perform payment allocation based on the Paylink metadata. Allocation must occur through payment reference information provided by the Payer.
Long-Lived: The Paylink can have a long lifespan.
Payee Connected or Not Connected: There is no requirement for the Payee application to be connected. The Payee can choose to not be connected while accepting payments, but will then not receive payment confirmations and will then need to accept the risks around claims of payment by the Payer.
Payer Connected: The Payer application is connected and able to submit the Paylink, augment the transaction information, and approve the payment.

Use Case Diagram

use-case-diagram

Variants

Physical proximity: The Payer is in physical proximity and scans a printed QR with a mobile phone.
Remote: The Payer is presented with the Paylink through a static web page through QR and/or Web Click presentment.

Supported Paylink Formats

	QR Presentment	Barcode Presentment	String Presentment	Web Click Presentment
URI Encoded	✓	-	-	✓ (variant 2)
Number Encoded	-	-	-	-
Extended Number Encoded	-	-	-	-
Signed CBOR Encoded	-	-	-	-

PeP-3: Merchant Single Context, Long Lifespan

Description

This experience targets a Merchant (Payee) presenting a single context Paylink for payment by a Consumer. The single context can be linked to one transaction or to one customer. The proximity can vary: it may be nearby, such as in the case of a restaurant bill, or distant, such as with mail invoicing. When generating the invoice or bill, the Merchant creates a Paylink with metadata referencing payment allocation information. The Paylink is shared with the intended Payer in physical (printed) or electronic (url or pdf) format. Upon receipt of the Paylink, the Consumer actions the paylink and augments and approves the payment.

Key attributes

Payee Presented: The Paylink is presented by the Merchant (Payee) to the Consumer (Payer).
Single or Multi Use: The Paylink may be intended for one or more payments by a known or unknown customer (e.g. printed on bill for restaurant payment => unknown Payers. Printed on utility statement => one or more payments for a known payer).
Allocated: The Paylink is linked to a single context. Either to one payment(or bill) or one customer account.
Medium or Long Lived: The lifetime of the Paylink may be fairly short, as in the case of restaurant payments, or long, as in the case of mailed invoices.
Payee Not Connected: The Payee application must be connected during Paylink generation but is not required to be connected during payment.
Payer Connected: The Payer application is connected and able to submit the Paylink, augment the transaction information, and approve the payment.

Use case diagram

use-case-diagram

Variants

Short lifespan: Near proximity which may allow for short Paylink lifespan.
Long lifespan: The Payer and Payee are not in proximity and requires a long lifespan Paylink.

Supported Paylink Formats

	QR Presentment	Barcode Presentment	String Presentment	Web Click Presentment
URI Encoded	✓	-	-	✓
Number Encoded	-	-	-	-
Extended Number Encoded	-	-	-	-
Signed CBOR Encoded	-	-	-	-

PeP-4: Online Merchant Single Use

Description

This experience targets an Online Merchant generating a single use Paylink for presentment on a website or mobile application for payment at checkout. The PeSP generates a single use Paylink with specific transaction metadata. The Consumer actions the Paylink by either using his camera on a QR code displayed on the PC screen or a button click. The Payer is presented with the transaction for confirmation and approves on the PrSP app.

Variants

PC Experience: When a Payment experience is pursued through a PC browser, a QR presentment format MUST be used. The Payer scans the QR with her mobile and chooses to action it through a PrSP app. A string presentment format MAY be used where the Payer will copy the Paylink to a PrSP App.
Mobile Experience: When a Payment experience is pursued on a Mobile browser or App, a web click presentment format MUST be used. A QR presentment format MAY be used in addition to the web click. The Payer clicks the link on the mobile and chooses to action the Paylink through a PrSP app. A string presentment format MAY be used where the Payer will copy the Paylink to a PrSP App.

Key Attributes

Payee Presented: The Paylink is presented by the Online Merchant (Payee) to the Consumer (Payer) on a website or in a mobile app.
Single Use: The Paylink is linked to one checkout session and expires once payment is received or the session is abandoned.
Allocated: The Paylink can be used by any Payer wanting to make payment for the current checkout session.
Short-Lived: The Paylink has a short lifespan, limited to the duration of the checkout process.
Payee Connected: The Payee application must be connected during payment to get the Paylink from the PeSP.
Payer Connected: The Payer application is connected and able to submit the Paylink and approves the payment.

Use Case Diagrams

use-case-diagram

Supported Paylink Formats

	QR Presentment	Barcode Presentment	String Presentment	Web click Presentment
URI Encoded	✓	-	-	✓
Number Encoded	-	-	✓	-
Extended Number Encoded	-	-	-	-
Signed CBOR Encoded	-	-	-	-

PeP-5: Mobile eCommerce Deeplink - Deprecated: Included in PeP-4

PeP-6: Person-to-Person Payment

Description

This experience targets a person-to-person payment scenario where the Payer (Consumer) and the Payee (Consumer) use their respective mobile applications to facilitate a payment transaction via a Paylink. The process involves generating, scanning, and processing a Paylink to complete the payment.

Key Attributes

Payee Presented: The Paylink is presented by the Payee (Consumer) to the Payer (Consumer).
Single or Multi Use: The Paylink MAY be single use or multi use.
Allocated or Not Allocated: The Paylink may be linked to a specific context (allocation) or have an open context (no allocation)
Short or Long Lived: The Paylink may have an open context and long lifespan or the Payee might prefer to limit the Paylink lifespan for a specific context
Payee Connected for Paylink Generation: The Payee application may be not connected during the Paylink actioning and payment, but has to be connected during Paylink generation. The Payee must accept relevant risks if she chooses to be offline during payment.
Payer Connected: The Payer application is connected and able to submit the Paylink, augment the transaction information, and approve the payment.

Use Case Diagram

use-case-diagram

Variants

Single-context Limited Lifespan Paylink: The Payee generates a Paylink to get a friend to pay her the coffee they just had. Both transaction details and allocation information provided.
Multi-use Paylink: The Payee generates a Paylink with long lifespan which anybody can use to send her money at any time. Payer provides allocation information.

Supported Paylink Formats

	QR Presentment	Barcode Presentment	String Presentment	Web click Presentment
URI Encoded	✓	-	-	✓
Number Encoded	-	-	✓ (variant 1)	✓
Extended Number Encoded	-	-	-	-
Signed CBOR Encoded	-	-	-	-

Payer Presentment Experiences

The QR+ standard targets the enablement of the following Payer Presentment experiences. This is not intended to be an exhaustive list of all use cases that can be realized, but rather serves as framework to understand and regulate the capabilities it presents.

PrP-1: Merchant Single Use Connected

Description

This experience targets a Consumer (Payer) presenting a Paylink during checkout at a cash register. The Consumer presents the Paylink on their personal mobile device which has a live connection with their PrSP (is connected). The Paylink is actioned by the POS attendant during item scanning. After the Paylink is actioned, the Consumer is prompted on their mobile device to approve the payment. After approval is given, both the Merchant (cashier) and the Consumer are notified of the session outcome.

Key Attributes

Payer Presented: The Paylink is presented by the Consumer (Payer) to the Merchant (Payee).
Single Use: The Paylink is linked to one checkout session and expires once payment is received or the session is abandoned.
Allocated: The Paylink is used by one Payer to make payment for the current checkout session.
Short-Lived: The Paylink has a short lifespan covering only the duration of the payment process. The Paylink, and corresponding PLV, is generated only when the Customer intends to use it at a POI.
Payee Connected: The Payee application is connected and able to submit the Paylink for resolution and provide the transaction details.
Payer Connected: The Payer application is connected and able to communicate with the PrSP to generate the Paylink and approve the payment.

Use Case Diagram

use-case-diagram

Variants

Presentment at Payment Authorization: The Paylink is presented after basket totalization, before payment authorization once all transaction details are known.
Presentment at Item Scanning: The Paylink is presented during item scanning allowing the Consumer to 'check-in' for the session. Identity or loyalty requests can be processed prior to payment.

Supported Paylink Formats

	QR Presentment	Barcode Presentment	String Presentment	Web click Presentment
URI Encoded	-	-	-	-
Number Encoded	-	-	-	-
Extended Number Encoded	-	✓	-	-
Signed CBOR Encoded	-	-	-	-

PrP-2: Merchant Single Use Not Connected

Description

This experience targets a Consumer (Payer) presenting a Paylink during checkout at a cash register. The Consumer presents the Paylink on their personal mobile device which does NOT have a live connection with their PrSP at that time. The Consumer presents the Paylink as payment approval after till point total calculation and payment selection. The Paylink is actioned by the POS attendant at payment authorization only (not as check-in). The Consumer is NOT prompted on their mobile device, for transaction approval after the Paylink is actioned. The Merchant submits the Paylink and transaction details to the PeSP for processing. Both Consumer and Merchant is notified of flow outcome although the Consumer might only receive the notice once their connection has be reestablished.

Key Attributes

Payer Presented: The Paylink is presented by the Consumer (Payer) to the Merchant (Payee).
Single Use: The Paylink is generated on the Consumer device and includes a generation timestamp in addition to an offline PLV. Each PLV is only used once and the Paylink expires if not used within a reasonable time.
Allocated: The Paylink is used by one Payer wanting to make payment for the current checkout session.
Short-Lived: The Paylink has a short lifespan covering only the duration of the payment process. The Paylink is generated on the mobile device only when the Customer intends to use it at a POI.
Payee Connected: The Payee application is connected and able to submit the Paylink and transaction details.
Payer Not Connected: The Payer application is not connected but able to generate the Paylink on the mobile device using a PLV that has been acquired from the PrSP earlier. The Payer is therefor unable to give real time payment approval to the PrSP.

Use Case Diagram

use-case-diagram

Variants

None

Supported Paylink Formats

	QR Presentment	Barcode Presentment	String Presentment	Web click Presentment
URI Encoded	-	-	-	-
Number Encoded	-	-	-	-
Extended Number Encoded	-	-	-	-
Signed CBOR Encoded	✓	-	-	-

Glossary

Term	Description
Acceptance Option	A payload specifying a payment rail supported by a Payee for payment. (Option Payload)
Anchor Domain	The common domain used for all Paylink web URIs, allowing deep linking through officially registered mobile applications.
Authorization Authority	An entity, managed on the QR+ Registry, which represents a Service Provider IdP that issues bearer tokens to authenticate API calls. A Service Provider manages Authorization Authorities according to their governance and security policies.
Extended Number Encoded Paylink	A 27-character alphanumeric Paylink format (ZA-FTI-SPII-PLV) optimized for Code128 barcode scanning with extended PLV namespace for medium lifespan experiences.
Facilitated Experience	The experience where the Scanner uses a Paylink Facilitator Application to start a QR+ Flow.
Flow	A Flow is the set of actions executed between a PrSP and PeSP as part of one QR+ session.
Flow Record	An audit trail record, created by both PrSP and PeSP, capturing all Service Provider Interactions exchanged as part of a unique Flow.
Flow Session	A time-bound session that tracks the lifecycle of a Flow with states OPEN, TERMINATED, or EXPIRED. A PrSP only process PeSP Requests while a Flow Session is OPEN.
Flow Tracker	A structured object within Service Provider Interactions containing Flow identifiers and Message Sequence Numbers to coordinate and track messages within a Flow.
Flow Type	A classification of QR+ Flows which govern use case requirements, Paylink lifespan constraints, supported encodings, and security requirements (e.g., pep-general, pep-shortcode, prp-connected, prp-disconnected). Service Providers are licensed for individual Flow Types.
Flow Type Indicator	An encoding-specific identifier that indicates which Flow Type is being used (e.g., 'general' representing the pep-general Flow Type in URI encoded Paylinks and '1' representing the prp-shortcode Flow TYpe in number encoded Paylinks).
Identity Request	A QR+ Request for Payer identity information initiated by the PeSP on behalf of the Payee.
Loyalty Request	A QR+ Request for Payer loyalty membership information initiated by the PeSP on behalf of the Payee.
Message Sequence Number	An incrementing counter maintained by each Service Provider to track the ordering and uniqueness of messages sent within a Flow. Used for audit, idempotency and replay detection.
Number Encoded Paylink	A 13-digit numeric Paylink format (FTI-SPII-PLV-Luhn) optimized for human reproduction via voice or manual keypad entry with built-in error detection.
Payee (actor)	A party who interacts with a Paylink with the intention of receiving payment. The Payee can be either a Scanner or a Presenter depending on the use case.
Payee Service Provider (PeSP)	A registered organization that executes QR+ enrichment flows on behalf of a Payee. The PeSP may deploy Paylink Provider and/or Paylink Facilitator functionality depending on its supported experiences.
Payer (actor)	A party who interacts with a Paylink with intention to pay. The Payer can be either a Scanner or a Presenter depending on the use case.
Payer Service Provider (PrSP)	A registered organization that executes QR+ enrichment flows on behalf of a Payer. The PrSP may deploy Paylink Provider and/or Paylink Facilitator functionality depending on its supported experiences.
Paylink	A structured identifier, encoded and presented in various formats, used by Payers and Payees to initiate a financial interaction.
Paylink actioning	The Scanner scanning the Paylink and submitting it to its Service Provider for processing.
Paylink Encoding Format	A Paylink Encoding Format is a specific way the Paylink attributes are encoded. For example, URI encoded format.
Paylink Facilitator (role)	A PrSP or PeSP organization registered to process Paylinks for Scanners.
Paylink generation	An exchange between the Presenter (Payee or Payer) and the Service Provider (PeSP or PrSP) to generate a new Paylink.
Paylink presentment	The Presenter presenting the Paylink to the Scanner for scanning.
Paylink Presentment Format	A Paylink presentment format specifies the technology used to present the Paylink for scanning. For example, QR code, Barcode and web click.
Paylink Provider (role)	A PrSP or PeSP registered to create Paylinks for Presenters.
Paylink Quarantine Period	The period, after a Paylink has been cancelled, during which the PLV must not be used for a new Paylink.
Paylink resolution	The Paylink Facilitator presenting the Paylink to the Paylink Provider to initiate a QR+ flow.
Paylink Value (PLV)	The cryptographically secure random identifier component within a Paylink that uniquely identifies a specific Paylink instance.
Payment Confirmation	A rail-specific payload passed by the PrSP to the PeSP confirming successful initiation of a Push Payment, without claiming settlement status.
Payment Conclusion	A rail-specific payload passed by the PeSP to the PrSP to provide its view on the outcome of a Payment Request.
Payment Delegation	A rail-specific payload passed by the PrSP to the PeSP containing Pull Payment credentials and transaction details, delegating payment initiation to the PeSP.
Payment Request	A QR+ Request for payment initiated by the PeSP on behalf of the Payee.
Presenter (role)	A Payer or Payee who presents a Paylink to a Scanner party to action. The Presenter interacts with her Service Provider to create the Paylink according to her requirements.
Pull Payment	A payment mechanism that is initiated by a PeSP.
Push Payment	A payment mechanism that is initiated by a PrSP.
QR+ Flow Orchestration	The process of coordinating actions between the PrSP, PeSP, Payer and Payee to achieve a successful transaction outcome.
QR+ Registry Service	A service operated by SARB NPU to enable service discovery of registered Service Providers and Services.
QR+ Service Provider	An organization registered to take part in QR+ flows on behalf of Payers and/or Payees.
Scanner (role)	A party who actions a Paylink by submitting it to their chosen Paylink Facilitator.
Service Provider Indicator	An encoding-specific identifier, assigned by SARB to a registered Service Provider, which allows all Service Providers to identify them as the creator of a Paylink.
Service Provider Interaction	A request and response exchange between a PrSP and a PeSP during a Flow, captured for audit trail, Flow analysis, and idempotency purposes.
Signed CBOR Encoded Paylink	A cryptographically signed Concise Binary Object Representation (CBOR) Paylink format using ECDSA signatures for high-security use cases requiring cryptographic attestation.
URI Encoded Paylink	A non-URL, RFC3986-compliant URI format for Paylinks (`qr-plus://<anchor domain>/v1/<flowTypeIndicator>/<spIndicator>/<plv>`) supporting deep linking and extended lifespans.