As of 14th September 2019, new requirements for authenticating online payments will be introduced in Europe as part of the second Payment Services Directive (PSD2).
Under PSD2, Strong Customer Authentication (SCA) is a new European requirement. Payment providers must use two separate authentication elements to verify an online transaction from the below elements:
- something the customer knows (e.g., password or PIN)
- something the customer has (e.g., phone or hardware token or OTP)
- something the customer is (e.g., fingerprint or face recognition).
Our online checkout solutions are PSD2-compliant with the exception of Native Checkout v1. If you are a Native Checkout v1 user, please see Migrating from Native Checkout v1 for instructions on how to migrate to Native Checkout v2 3DS.
Our POS terminals are PSD2-compliant through the addition of SCA. This means that a customer PIN is request every time transactions add up to a total of £150 or five transactions have been made, whichever comes first. There is nothing to be done on the merchant’s side as all our POS devices have been upgraded automatically.