Strong Customer Authentication: how to obtain exemptions?
- 3 min read
EXEMPTIONS PROVIDED FOR IN PROTOCOL
In addition to supporting new authentication methods such as 3D Secure 2 and offering Fraud Premium offers to encourage exemptions, Dalenys wants to help affected businesses to anticipate risks. To begin with, some exemptions are provided for in the protocol and do not require any particular action by the different payment actors:
DALENYS’ UNIQUE POSITIONING
For other transactions, Dalenys has a unique market position. In fact, as an Acquirer and a subsidiary of Natixis Payments, Dalenys has a privileged capacity for action, thanks in particular to a 360 ° view of the data and to a unique knowledge of the Issuer data modeling provided by its proximity to BPCE Group. This positioning not only makes it possible to consider exemptions to grant Frictionless, but also to be closer to the decision-makers to advise the merchants.
Dalenys, as Acquiring PSP and subsidiary of the Natixis Payments, has a unique ability to act on the market thanks to a 360 ° vision of data sourced via:
- An access to the result of TRA (Transaction Risk Analysis) based on its internal antifraud rule engine solution
- An access to the device’s data collected from browser or SDK (inapp interaction)
- Mastering the modeling of the Issuer-Acquirer data based on the proximity between Dalenys and BPCE group
- An access to merchant data based on data forwarded by merchant
WHAT TO ANTICIPATE AS A MERCHANT
As of the fourth quarter of 2019, this evolution of protocol will have an impact on companies that sell on the Internet. On the other hand, the latter may be more or less important, depending on the type of purchase concerned, the merchant’s payment workflow (during or after the payment), or the bank used by the final customer.
Dalenys works hand in hand with Natixis Payments to implement as much as possible a workflow without friction, but some parameters are at the initiative of the merchants. In order for them to be fully aware of these imperatives, even though 80% of European merchants do not seem to have taken the measure of these changes, Dalenys has formed its Payment Managers who are required to steer the maneuver for each merchant individually.
Check the data that must (or can be) shared
To enrich the context of the transaction, which will be subject to risk analysis by the Acquirer (TRA – Transaction Risk Analysis) and the issuer (RBA – Risk Based Analysis), and to favor the exemption, the merchant can identify the data—both mandatory and optional— to be sent to the PSP-Acquirer.
Ensure the technical deployment of strong authentication
The Acquirer and the merchant must be able to support the new customer experience provided by the RTS and the transition to version 2.1 of the 3D Secure protocol, as well as the consideration of new data that will be required to finalize the transaction.
Check the positioning of its PSP-Acquirer
Dalenys and its partner NSoftware, for example, have been certified EMVCo on October 16, 2018. This prerequisite is all the more structuring as it is part of Dalenys’ dedicated program for major merchants. Based on collaboration with the issuers, this privileged support encourages a frictionless customer experience through a unique mastery of data modeling, end-to-end TRA processing, and a Premium Fraud Prevention offer.
Discover our special folder to prepare your company to new European requirements and anticipate the impacts on your turnover.