An iframe (short for inline frame) is an HTML element that allows an external webpage to be embedded in your own webpage. Although convenient, these iframes have inherent security issues that we have to consider.
Recurly is required to maintain a strict level of PCI compliance, and we hold to high security standards in all we do. For this reason, Recurly does not allow the use of iframes to load our secure Hosted Payment pages or Hosted Account Management pages.
To use our Hosted Pages, you will need to use the URL that Recurly provides. In the case of new signups, you can configure a Plan's return URL to send visitors back to your website after successful signup.