PaymentsJournal
SUBSCRIBE
  • Analysts Coverage
  • Truth In Data
  • Podcasts
  • Videos
  • Industry Opinions
  • News
  • Resources
No Result
View All Result
PaymentsJournal
  • Analysts Coverage
  • Truth In Data
  • Podcasts
  • Videos
  • Industry Opinions
  • News
  • Resources
No Result
View All Result
PaymentsJournal
No Result
View All Result

What Steps Do Merchants Need to Take Now to Ensure Compliance with SCA in Time for the Enforcement Deadline?

Natasja Bolton by Natasja Bolton
August 7, 2020
in Compliance and Regulation, Featured Content, Industry Opinions, Merchant
0
What Steps Do Merchants Need to Take Now to Ensure Compliance with SCA in Time for the Enforcement Deadline?

What Steps Do Merchants Need to Take Now to Ensure Compliance with SCA in Time for the Enforcement Deadline?

3
SHARES
0
VIEWS
Share on FacebookShare on TwitterShare on LinkedIn

With the deadline extension to PSD2’s Strong Customer Authentication (SCA) well underway, there are steps that merchants must take so they can support SCA across their online and mobile commerce channels as SCA starts to be enforced by Account Servicing Payment Service Providers (ASPSPs) and card issuers. While card acquirers do have a big role to play in helping merchants get ready, the merchants are ultimately responsible for the readiness of their own payment acceptance methods and systems.

What do merchants need to do?

There is relief in knowing that the industry is actively trying to avoid negatively impacting customers as a result of the rollout of the European Banking Authority (EBA)’s Regulatory Technical Standards (RTS) and its mandated requirement of SCA for remote electronic payment transactions. Merchants need to take action now to make sure they also are not negatively impacted; they need to be able to support SCA to minimise ASPSP/issuer declines of transactions. While the revised SCA enforcement deadline for these regulated firms is 31st December 2020 (pushed back even further to 14th September 2021 in the UK), merchants need to be aware and take advantage of the fact that card issuer SCA is also being driven by card scheme mandates. 

One of the reasons the original September 2019 SCA enforcement deadline was postponed was that in summer 2019 many EEA card issuers were still not ready to support 3D Secure 2 (EMV 3DS).  Now however, the card schemes have aligned their mandates with the revised SCA deadline to ensure EEA issuers are ready well in advance of December 2020.  Both Visa and Mastercard’s EMV 3DS issuer mandates have now passed for all regions except Visa U.S (August 2020). 

For merchants this means that, if they implement EMV 3DS solutions for all online channels (including mcommerce and in-app payments), they can immediately commence making EMV 3DS authentication attempts to the card issuer and benefit from the fraud liability shift.  Merchants should note that, until the US EMV 3DS activation mandate passes, they will need to be able to fall back to 3D Secure 1 authentication to get fraud liability shift from a US issuer that still only supports 3D Secure 1.

Merchants need to remain (or get) engaged with their Payment Service Provider (PSP).  Merchants need to make sure they have implemented support for EMV 3DS and, if they offer direct from account payment methods, support integration with the ASPSP’s SCA method.  Merchants should also discuss with their PSP how they can best take advantage of SCA exemptions – such as the Transactional Risk Analysis (TRA) exemption where there may be an option to and a benefit in the merchant taking on risk analysis from their acquirer (‘delegated authority’). 

Merchants may want to consider performing their own risk/fraud monitoring before submitting transactions as this helps minimise the number of fraud attempts being passed to the acquirer and issuers, helping to keep fraud rates low. Working with the acquirer to minimise fraud can help maximise the number of transactions for which the acquirer can apply the TRA SCA exemption.   Acquirers with the lowest overall fraud rate can apply the TRA Exemption for the highest value transactions, for example an acquirer with a reference fraud rate 0.01% and below can apply for the TRA exemption for transactions up to €500.

Given the potential impact of SCA on the consumer’s checkout experience and the potential for SCA to increase the rate of cart abandonment, merchants should consider whether their payments model could be amended to allow them and their customers to take advantage of the recurring payments SCA exemption or the fact that merchant-initiated transactions (MIT) are out of scope. 

For example, once an agreement for future payments is established with the customer (using SCA), all subsequent payments under that agreement are triggered by the merchant and flagged as MIT.  There is no need for SCA and no risk of abandonment as the merchant has already established the consumer commitment to purchase.

Merchants can also learn from industry developments and watch out for the availability of trusted beneficiary whitelisting to consumers. Issuer SCA implementations will start to offer the consumer the choice to whitelist the merchant as a Trusted Beneficiary (e.g. as a checkbox option during the authentication step).  Acquirers may be able to register their merchants on Visa’s Trusted Listing programme which may help them get on their customers’ Trusted Beneficiary whitelist.  Once whitelisted, subsequent consumer payments to the whitelisted merchant are exempt from SCA; although the ASPSP/issuer still has the right to require SCA.

Tags: EMVMasterCardPSD2SCAVisa
3
SHARES
0
VIEWS
Share on FacebookShare on TwitterShare on LinkedIn

    Analyst Coverage, Payments Data, and News Delivered Daily

    Sign up for the PaymentsJournal Newsletter to get exclusive insight and data from Javelin Strategy & Research analysts and industry professionals.

    Must Reads

    Online Grocery Sales Efforts Take A Giant (Stores) Step Forward

    Did Payments Innovation Kill Brick-and-Mortar?

    October 2, 2023
    open-banking Data-Sharing as a Solution to Cash Flow Issues standa

    Disjointed Open-Banking System in U.S. Leaves Opening for Permissioned Data Providers

    September 29, 2023
    FedNow

    FedNow Could Mean a Renaissance for Smaller Financial Institutions

    September 28, 2023
    Best Merchant Practices for Dealing with Supply Chain Disruption

    Nearly Half of Merchant Data is Probably Wrong. Here’s Why it Matters.

    September 27, 2023
    Mitigation of P2P Fraud Begins with Education

    Mitigation of P2P Fraud Begins with Education

    September 26, 2023
    digital payments

    Mass A2A Payment Adoption in The U.S. Contingent on Compelling USP

    September 25, 2023
    Samsung trackable cashless payments mobile

    The Synergy Between Cashless Payments and Seamless Mobile Coverage

    September 22, 2023
    The Power of AI and How its Transforming the Financial Landscape

    The Power of AI and How It’s Transforming the Financial Landscape

    September 21, 2023

    Linkedin-in Twitter

    Advertise With Us | About Us | Terms of Use | Privacy Policy | Subscribe
    ©2023 PaymentsJournal.com

    • Analysts Coverage
    • Truth In Data
    • Podcasts
    • Videos
    Menu
    • Analysts Coverage
    • Truth In Data
    • Podcasts
    • Videos
    • Industry Opinions
    • Recent News
    • Resources
    Menu
    • Industry Opinions
    • Recent News
    • Resources
    • Analysts Coverage
    • Truth In Data
    • Podcasts
    • Industry Opinions
    • Faster Payments
    • News
    • Jobs
    • Events
    No Result
    View All Result