Payments API: transaction fails if the cardholder name contains a single quote

Hi community,

we are running into an issue where the transaction fails with error 'Incorrect request format' if the cardholder name contains a single quote (O'Connor for ex.). We are using PHP and the requests are being made via cURL. 

Anyone else encountered this issue? Should we URL encode the value before sending it to the SagePay API?

Looking forward to your response.