# PCI-Compliant Tokenization

The Tokenization Component provides a secure, embeddable form for collecting debit
card information. It is an alternative to the [Cards API](/#tag/Cards/operation/createGenericCardToken).
Like the Cards API, the Tokenization Component may be used to process card data for
use when creating a [card account](/#tag/Accounts/operation/createAccount) for a user.
The Component is designed for use in mobile apps (WebView) and web apps (iframe),
and supports robust validation and cross-platform messaging. This guide explains how to
integrate the Tokenization Component in a native application using a WebView.

img
## Notes

- The component is robust to being embedded in a variety of host environments and will use the correct postMessage bridge automatically.
- The form disables the submit button and shows a spinner during submission to prevent duplicate requests.
- The key data (name, address, issuer or BIN (first 6 digits), etc.) is extracted from the submission and included in the response for downstream API use.