What's New in Payments

Revolut lets customers pre-authenticate their contactless card as they approach the SCA transaction limit

Revolut contactless visa card

UK-based neobank Revolut has implemented a Strong Customer Authentication (SCA) system that lets customers use their mobile banking app to authenticate their contactless card as they get close to reaching the new contactless transaction limit, avoiding the risk of having their card declined when they next attempt to make an in-store purchase... More




What's New in Payments

Merchant payments association calls for 18 month delay on strong customer authentication

EPSM recommends harmonised migration plans on PSD2-SCA — EPSM — “To avoid significant acceptance disruptions, EPSM recommends that all regions should agree an additional timeframe of 18 months for standard applications, as well as up to 36 months for challenging applications, such as those in the travel and hospitality sector. This will deliver an EU-wide harmonised migration approach by the EBA and the 28 national regulators for remote card payments.”


What's New in Payments

EU offers issuers extra time to implement strong customer authentication

Opinion of the European Banking Authority on the elements of strong customer authentication under PSD2 — European Banking Authority — “In order to avoid unintended negative consequences for some payment service users after 14 September 2019, CAs [national competent authorities] may decide to work with PSPs [payment service providers] and relevant stakeholders, including consumers and merchants, to provide limited additional time to allow issuers to migrate to authentication approaches that are compliant with SCA [strong customer authentication].”



What's New in Payments

EBA issues opinion on strong customer authentication requirements under PSD2

Opinion of the European Banking Authority on the implementation of the RTS on SCA and CSC — European Banking Authority — “The regulatory technical standards (RTS) on strong customer authentication (SCA) and common and secure communication (CSC) underpin the new security requirements under PSD2… The EBA has decided to issue an opinion in order to respond to a number of the numerous queries the EBA and competent authorities have received from market participants and aims to provide clarity on the implementation of certain aspects of the RTS that were published.”


What's New in Payments

Mastercard to add biometric security to online transactions in Europe

Mastercard establishes biometrics as the new normal for safer online shopping — Mastercard — “Consumers will have the capability to use biometrics, such as fingerprints or facial recognition, as a way to identify themselves when they shop and pay with Mastercard as of April 2019… This shift to biometrics is part of Mastercard’s new action plan to help banks, retailers and partners to prevent fraud and improve the consumer experience in the new digital environment. It also meets new regulatory requirements around Strong Customer Authentication set out by PSD2 and is aimed at ensuring a smoother consumer experience and reducing unjustified declines.”


What's New in Payments

EU gives payments industry 18 months to implement strong customer authentication

Payment Services Directive (PSD2): Regulatory Technical Standards (RTS) enabling consumers to benefit from safer and more innovative electronic payments — European Commission — “The RTS makes strong customer authentication (SCA) the basis for accessing one’s payment account, as well as for making payments online. This means that to prove their identity users will have to provide at least two separate elements out of these three: something they know (a password or PIN code); something they own (a card, a mobile phone); and something they are (biometrics, eg fingerprint or iris scan)… The use of SCA will become mandatory 18 months after the entry into force of the RTS, ie once the RTS is published in the Official Journal of the EU, scheduled for September 2019.”


What's New in Payments

Amex adds biometric authentication to Safekey 3D Secure platform

American Express supports next generation of digital commerce over internet-connected devices with SafeKey 2.0 rollout — American Express — “SafeKey 2.0, which leverages the EMV 3D Secure 2.0 industry standard, is a global solution that provides an extra layer of security when an American Express card member makes a purchase online at a participating merchant… The updated platform supports authentication methods using biometrics, including fingerprints and facial recognition… In addition, SafeKey 2.0 will support card issuers and merchant acquirers in the European Union as they address the Strong Customer Authentication requirements of the Payment Services Directive 2.0.”