Setup guide V1 - 6 of 12

Connect Stripe

Unlock payment failure detection, dunning emails, and accurate MRR from Stripe.

Step 4

What you get

DropFix works without Stripe, but Stripe unlocks payment failure detection, automatic dunning emails, and accurate MRR data pulled directly from your billing system.

Without Stripe

Payment failures are found manually

With Stripe

Payment failure signal fires within minutes

Without Stripe

MRR is whatever you pass in identify()

With Stripe

MRR is pulled directly from Stripe

Without Stripe

Trial dates are whatever you pass in identify()

With Stripe

Trial dates are read directly from Stripe

Without Stripe

Failed payment emails are manual

With Stripe

3-email dunning sequence fires automatically

Without Stripe	With Stripe
Payment failures are found manually	Payment failure signal fires within minutes
MRR is whatever you pass in identify()	MRR is pulled directly from Stripe
Trial dates are whatever you pass in identify()	Trial dates are read directly from Stripe
Failed payment emails are manual	3-email dunning sequence fires automatically

5 minutes to connect. No code, no OAuth, no admin permissions required. Read-only by design — DropFix can never charge cards, refund payments, or modify any data in your Stripe account.

Why we ask for this

DropFix detects 10 churn signals automatically. Two of them — Payment failed and Subscription lapsed — need a live feed from your Stripe account so we can tell you the moment an invoice fails or a customer cancels.

To do that safely, we use Stripe's safest credential type: a Restricted API Key. Unlike a regular secret key, a restricted key is scoped to specific resources and specific permissions. The key you'll create for DropFix has only Read access on Customers, Subscriptions, Invoices, Charges, and Payment Intents — nothing else. It physically cannot move money or change data.

Step 1 — Open your Stripe dashboard

1Go to dashboard.stripe.com and sign in with your Stripe credentials.
2In the top-right corner, make sure the Live mode toggle is enabled. The key you generate must be a rk_live_… key, not a test key.
3If you're just trialling DropFix and don't have live Stripe yet, a rk_test_… key works the same way.

Step 2 — Go to the API Keys page

1In Stripe's left sidebar, click Developers.
2Click API keys.
3Scroll down to the section labeled Restricted keys (below 'Standard keys').

Step 3 — Create a new restricted key

1Click + Create restricted key.
2Name: enter 'DropFix (read-only)' so you can recognise it later when reviewing your keys.
3Permissions: set each of these to Read, leave everything else as None — Customers, Subscriptions, Invoices, Charges, Payment Intents. (Disputes → Read is optional but recommended.)
4Click Create key at the bottom of the page.

Read-only, by design

A Restricted Key is the safest credential Stripe offers. With the permissions above, DropFix can only read billing data. It cannot charge cards, refund payments, or modify your customers — even if our database leaked.

Step 4 — Copy the key

Stripe will show you the new key. It starts with rk_live_. Click Reveal live key, then Copy.

Stripe only shows the key once

If you lose it or accidentally close the dialog, just delete the key and create a new one — no harm done.

Step 5 — Paste it into DropFix

1In DropFix, open Settings → Integrations.
2Find the Stripe card.
3Paste your key (starting with rk_live_) into the input field.
4Click Connect Stripe.

DropFix will immediately validate the key (one API call to confirm it works) and start pulling your last 30 days of customer + subscription data so you have signals to look at right away.

Step 6 — Verify it's working

Within 1 minute of connecting, you should see:

1Your Total users tracked counter increase to match your Stripe customer count.
2Any failed payments from the last 30 days appear as Payment failed signals on the dashboard.
3Any lapsed subscriptions appear as Subscription lapsed signals.
4Going forward, DropFix polls your Stripe account every 5 minutes for new events.

How to revoke access

Anytime you want to stop sharing data with DropFix:

1In Stripe dashboard → Developers → API keys → Restricted keys.
2Find your DropFix (read-only) key.
3Click the ⋯ menu → Delete.

Within 5 minutes, every DropFix call to your Stripe account will fail with 401 and we'll stop receiving any data from your account. You can also disconnect from DropFix's side in Settings → Integrations (this clears the encrypted key from our database immediately).

Frequently asked

Is this safe?

Yes. Stripe Restricted Keys are designed exactly for this — analytics tools that need to read your data without ever touching it. The key has read-only scope. Even if someone stole DropFix's database (we encrypt it at rest, but hypothetically), they could not use this key to charge cards, refund anything, or move money in any direction.

Can I see what DropFix is reading?

Yes. In your Stripe dashboard → Developers → Logs, you can see every single API call made with this key. You'll see a small batch of calls every 5 minutes (typically 2–4 calls per poll: list invoices, list subscriptions, etc.).

Will this affect my Stripe pricing or rate limits?

No. Stripe API reads are free and don't count toward any transaction fees. Polling every 5 minutes uses a tiny fraction of Stripe's rate limit (100 requests per second).

Do I need to set up webhooks too?

No. DropFix polls every 5 minutes, which is more than fast enough for churn detection — you don't need millisecond-fresh signals for retention.

I'm on a Stripe test account, can I still use this?

Yes. Generate a rk_test_… key from Stripe's test mode (toggle in the top-right of your dashboard). It works the same way. When you go live, replace it with a rk_live_… key.

What if I paste a secret key (sk_live_…) by mistake?

It will technically work, but DropFix shows a warning and asks you to replace it with a restricted key. Secret keys grant full write access to your Stripe account, which we don't need and shouldn't hold. Restricted keys are strictly safer.