What's New in Payments

UK extends strong customer authentication deadline

Strong customer authentication and coronavirus — Financial Conduct Authority — “In the exceptional circumstances of the Covid crisis, we are giving the industry an additional six months to implement strong customer authentication (SCA) for e-commerce. This will minimise potential disruption to consumers and merchants. The new timeline of 14 September 2021 replaces the 14 March 2021 date.”


What's New in Payments

European payments industry calls for extra six months to implement strong customer authentication

Joint industry letter on SCA delay due to Covid-19 — European Payment Institutions Federation — “It is now clear that the Covid-19 crisis has significantly reduced the capacity available to progress SCA development and implementation… The signatories therefore call on the European Commission and the EBA to consider appropriate additional measures and coordination to assist in the smooth transition to SCA in all EU Member States equally. In the light of Covid-19, this should also include the possibility of an at least additional six months for the market to be fully SCA ready.”






What's New in Payments

Revolut lets customers pre-authenticate their contactless card as they approach the SCA transaction limit

Revolut contactless visa card

UK-based neobank Revolut has implemented a Strong Customer Authentication (SCA) system that lets customers use their mobile banking app to authenticate their contactless card as they get close to reaching the new contactless transaction limit, avoiding the risk of having their card declined when they next attempt to make an in-store purchase... More




What's New in Payments

Merchant payments association calls for 18 month delay on strong customer authentication

EPSM recommends harmonised migration plans on PSD2-SCA — EPSM — “To avoid significant acceptance disruptions, EPSM recommends that all regions should agree an additional timeframe of 18 months for standard applications, as well as up to 36 months for challenging applications, such as those in the travel and hospitality sector. This will deliver an EU-wide harmonised migration approach by the EBA and the 28 national regulators for remote card payments.”


What's New in Payments

EU offers issuers extra time to implement strong customer authentication

Opinion of the European Banking Authority on the elements of strong customer authentication under PSD2 — European Banking Authority — “In order to avoid unintended negative consequences for some payment service users after 14 September 2019, CAs [national competent authorities] may decide to work with PSPs [payment service providers] and relevant stakeholders, including consumers and merchants, to provide limited additional time to allow issuers to migrate to authentication approaches that are compliant with SCA [strong customer authentication].”



What's New in Payments

EBA issues opinion on strong customer authentication requirements under PSD2

Opinion of the European Banking Authority on the implementation of the RTS on SCA and CSC — European Banking Authority — “The regulatory technical standards (RTS) on strong customer authentication (SCA) and common and secure communication (CSC) underpin the new security requirements under PSD2… The EBA has decided to issue an opinion in order to respond to a number of the numerous queries the EBA and competent authorities have received from market participants and aims to provide clarity on the implementation of certain aspects of the RTS that were published.”


What's New in Payments

Mastercard to add biometric security to online transactions in Europe

Mastercard establishes biometrics as the new normal for safer online shopping — Mastercard — “Consumers will have the capability to use biometrics, such as fingerprints or facial recognition, as a way to identify themselves when they shop and pay with Mastercard as of April 2019… This shift to biometrics is part of Mastercard’s new action plan to help banks, retailers and partners to prevent fraud and improve the consumer experience in the new digital environment. It also meets new regulatory requirements around Strong Customer Authentication set out by PSD2 and is aimed at ensuring a smoother consumer experience and reducing unjustified declines.”


What's New in Payments

EU gives payments industry 18 months to implement strong customer authentication

Payment Services Directive (PSD2): Regulatory Technical Standards (RTS) enabling consumers to benefit from safer and more innovative electronic payments — European Commission — “The RTS makes strong customer authentication (SCA) the basis for accessing one’s payment account, as well as for making payments online. This means that to prove their identity users will have to provide at least two separate elements out of these three: something they know (a password or PIN code); something they own (a card, a mobile phone); and something they are (biometrics, eg fingerprint or iris scan)… The use of SCA will become mandatory 18 months after the entry into force of the RTS, ie once the RTS is published in the Official Journal of the EU, scheduled for September 2019.”


What's New in Payments

Amex adds biometric authentication to Safekey 3D Secure platform

American Express supports next generation of digital commerce over internet-connected devices with SafeKey 2.0 rollout — American Express — “SafeKey 2.0, which leverages the EMV 3D Secure 2.0 industry standard, is a global solution that provides an extra layer of security when an American Express card member makes a purchase online at a participating merchant… The updated platform supports authentication methods using biometrics, including fingerprints and facial recognition… In addition, SafeKey 2.0 will support card issuers and merchant acquirers in the European Union as they address the Strong Customer Authentication requirements of the Payment Services Directive 2.0.”




Feed for stories about Strong Customer Authentication (SCA).