Are You Compliant? B2B Credit Card Processing Fact Check

Merchant compliance with various credit card processing rules maximizes profits while mitigating risk. This is especially true for business to business companies. But that task is getting harder and harder with the onslaught of new rules, and virtually impossible if not using a sophisticated cloud solution to help manage compliance.

b2b visa stored credentialIf your B2B company stores credit cards, there’s a pretty good chance you’re not compliant. For example, Visa’s 2017 Stored Credential Transaction framework (PDF download from Visa) outlines merchant responsibilities to obtain customer consent as well as storing credit cards, using stored credentials (token), and managing stored tokens. Failure to comply with Authorization rules, for example preauthorization and final settlement do not match, has far-reaching consequences including higher interchange rates (the bulk of credit card processing fees), penalty fees and new chargeback risks. With so many new rules across multiple card brands that vary based on business and transaction type how can a business quickly ascertain if they’re compliant?

Quick tips to validate compliance:

  1. Is cardholder authentication performed when a new card is stored? When the cardholder data is entered and submitted, the issuer responds with an approval or declined message. A small charge is not an acceptable practice to submit transaction for approval; instead a zero dollar authorization request for authentication is submitted. If authentication is via 3-D Secure -Verified by Visa, MasterCard Secure Code, whereby the customer self-authenticates vs merchant initiating, reduced rates may apply. Under the new rules, two transactions occur at the time a card is stored. Compliant answer is yes.
  2. Is a transaction receipt delivered to customer when you store a credit card? This will be either for an amount or a zero dollar authorization. When stored credit card credential (token) is created, a transaction receipt is generated with the approval or decline and other mandatory fields. Compliant answer is yes.
  3. Does the receipt include “RECURRING” or “REPEAT SALE” for token transactions? Compliant answer is yes.
  4. Review merchant statements, usually the last 1-2 pages with the heading “pending interchange” or “fees” section. Do you see EIRF, STANDARD (STD), or DATA RATE I? Compliant answer is no.
  5. Can you produce documentation of customer consent to store their card (including with 3rd party service) and how it will be used?

If you’re not in compliance, your payment gateway is the most likely culprit, followed by ERP or other software integration limitation. I can fix that.

Reference: Links for all Card brands.

Need help getting compliant?

Call Christine Speedy, , for simple solutions to complex payment transaction problems, 954-942-0483, 9-5 ET. CenPOS authorized reseller based out of South Florida and NY. CenPOS is an integrated commerce technology platform driving innovative, omnichannel solutions tailored to meet a merchant’s market needs. Providing a single point of integration, the CenPOS platform combines payment, commerce and value-added functionality enabling merchants to transform their commerce experience, eliminate the need to manage complex integrations, reduce the burden of accepting payments and create deeper customer relationships.

ACH eCheck and Online Payments Solution

Do you need eCheck services due to mail service disruption from recent disasters like Hurricane Irma and Harvey? Or do you just want to boost cash flow and get paid faster? Online payment solutions are quick, easy, and relatively cheap to implement. Using a third party solution vs bank can be cheaper and provides flexibility to change financial services partners without creating customer friction.

Why use a hosted pay page to accept eChecks?

A payment gateway hosted pay page enables customers to passively pay bills online 24/7 via a secure web page. Payment types may include credit cards, Paypal, ACH (echeck), wire and other methods. Because it’s hosted by a 3rd party PCI level 1 certified service provider, PCI Compliance burden is reduced for merchants that want to accept more than eChecks.

online payments echeckA hosted pay page empowers customers to make secure payments online.

Hosted Pay Page Implementation options:

  1. Direct customers to 3rd party payment gateway custom URL- no change to business web site needed. Just email or text the link.
  2. Link from business web site to 3rd party payment gateway custom URL by updating. Html and pay now graphical button available.
  3. Embed the secure payment object on business web site via iframe html. Customers never leave merchant web site, and even though payment is accepted on the 3rd party web site, an SSL certificate is strongly recommended.

There are other ways to collect ACH and eCheck payments remotely, including our alternative service that enables businesses to push out payment requests via via email or text. This method is proven to increase loyalty as well as reduce time to collect payment and is available for an additional fee. It’s available both integrated or standalone.

eCheck Hosted Pay Page Vendor Selection:

The two key methods to process eChecks are FTP direct to the business bank and 3rd party check processor (Web Payments). With FTP, money is in the bank account when the batch is delivered. With traditional eCheck services money is delivered typically in 2-3 business days. In either case, a payment gateway or technology solution secures the data transmission and facilitates compliance with eCheck processing rules.

Vendor selection checklist- which do you need and which would be nice?

  • ACH with guarantee
  • ACH, no guarantee needed
  • Tokenization for quick repeat payments (no need to enter banking info each time, just select the account)
  • Accounting integration
  • Hosted pay page
  • Other payment types supported
  • Text payment request capability
  • Email payment request capability
  • Hosted pay page (only, no text or email)

Managing Costs with Online Payments:

If you’re just accepting eChecks, you’ll be surprised at just how cheap the service is. If also accepting credit cards, the hosted payment solution selected directly impacts the cost of credit card processing. For example, our solution with Smart Rate Selector automatically optimizes the transaction to qualify for the lowest rate. Compliance with rules are complex and few payment gateways have a solution to comply with every situation. With the right implementation, the cost of card not present transactions are often exactly the same as card present, and can be lower than if employees key enter transactions into a virtual terminal.

Free Hosted Pay Page Info:

  • Quick and easy to set up
  • Optional customer registration to store payment data for repeat purchases
  • Echeck / ACH directly to your bank overnight in most cases
  • Optional ACH with guarantee additional fee
  • If applicable, works with your existing merchant services account
  • Month to month service

Christine Speedy, CenPOS authorized reseller, 954-942-0483 is based out of South Florida and NY. CenPOS is a merchant-centric, end-to-end payments engine that drives enterprise-class solutions for businesses, saving them time and money, while improving their customer engagement. CenPOS secure, cloud-based solution optimizes acceptance for all payment types across multiple channels without disrupting the merchant’s banking relationships.

B2B Donations Checkout Solution: Accept Donations Anywhere

Collect charitable donations for your favorite causes wherever your customers pay with our simple donations checkout solution for all sales channels and payment types. Fully compliant with credit card processing rules, such as producing a receipt that lists the subtotal sale of goods and services, a separate line for the donation, and a total for the complete amount.

  • Employees don’t ask- customers never feel uncomfortable. The system automates the donation process via each sales channel. For example, if it’s an e-invoice or hosted pay page, the customer sees a donations field to add an amount if desired.
  • Easy to adopt- Works with multiple accounting, software and financial partners such as First Data.
  • Activate, deactivate and change the beneficiary on demand. You’re in control.

We’re helping your business help others. The donations service is included at no additional cost with our standard services.

Christine Speedy, 954-942-0483, specializes in enterprise-class solutions for businesses, saving them time and money, while improving their customer engagement. Secure, cloud-based solutions optimize acceptance for all payment types across multiple channels without disrupting merchant banking relationships.

Free Hosted Pay Page for Irma Business Disaster Relief

A hosted online web pay page ensures business cash flow and continuity after a disaster like Hurricane Irma by enabling customers to make online payments from wherever they are. With no USPS mail delivery, businesses that depend on checks in the mail need immediate solutions to get paid. A pay page helps solve the problem for both parties.

A hosted pay page enables customers to passively pay bills online via a secure web page. Payment types may include credit cards, Paypal, ACH (echeck), wire and other methods. Because it’s hosted by a 3rd party PCI level 1 certified service provider, PCI Compliance burden is reduced for merchants.

hosted paypage online payments

A hosted pay page empowers customers to make secure payments online.

Hosted Pay Page Implementation options:

  1. Direct customers to 3rd party custom URL- no change to merchant web site needed. Just email or text the link.
  2. Link from merchant web site to 3rd party custom URL by updating web site. Html and pay now graphical button available.
  3. Embed the secure payment object on merchant web site via iframe html. Customers never leave merchant web site, but payment is accepted on the 3rd party web site.

There are other ways to collect payment remotely, including our alternative service that enables businesses to push out payment requests via via email or text. This method is proven to increase loyalty as well as reduce time to collect payment and is available for an additional fee.

Managing Costs with Online Payments:

The hosted payment solution selected directly impacts the cost of credit card processing. For example, our solution with Smart Rate Selector automatically optimizes the transaction to qualify for the lowest rate. Compliance with rules are complex and few payment gateways have a solution to comply with every situation. With the right implementation, the cost of card not present transactions are often exactly the same as card present, and can be lower than if employees key enter transactions into a virtual terminal.

Mitigating Fraud Losses and Chargebacks:

Merchants can reduce risk of lost credit card disputes and resulting chargebacks with a multifaceted approach:

  • Verify address & zip code
  • Verify CVV / CID security code; if using token billing, prior validation is OK
  • 3-D Secure: Verified by Visa (Vbyv) and MasterCard SecureCode – cardholder authentication shifts fraud liability back to issuer.
  • Comply with transaction authorization rules (it’s complicated, especially if performing an authorization now and capture later.

Free Hosted Pay Page Info:

  • Quick and easy to set up
  • Start-up fee waived
  • Works with your existing merchant services account
  • Echeck / ACH directly to your bank overnight in most cases
  • Optional ACH with guarantee additional fee
  • After power is restored, optionally continue with services at predetermined rate (hosted pay page always included with other services)
  • Available to all businesses impacted by Hurricane Irma or Harvey exclusively through Christine Speedy.

Christine Speedy, CenPOS authorized reseller, 954-942-0483. CenPOS is a merchant-centric, end-to-end payments engine that drives enterprise-class solutions for businesses, saving them time and money, while improving their customer engagement. CenPOS secure, cloud-based solution optimizes acceptance for all payment types across multiple channels without disrupting the merchant’s banking relationships.

American Express SafeKey Video and B2B tips

American Express SafeKey® leverages the global industry standard, 3-D Secure®*, to detect and reduce online fraud by adding an extra layer of security when Card Members shop online. Merchant and customer experience answers in this article.

American Express SafeKey

 

How does Amex SafeKey impact the customer shopping experience? The cardholder may have some or no difference in the checkout experience, based on many factors, including prior online shopping history. The cardholder may be asked authentication question(s) to confirm it’s really the cardholder.

How does Amex SafeKey impact merchants?

  • Fraud liability for “It wasn’t me, I didn’t authorize it” goes away as liability shifts back to the issuer.
  • For business to business, where cardholder billing and shipping address frequently vary, cardholder authentication plays an important role not available with four digit CID security code validation only.
  • At this writing, American Express merchants do not receive a specific interchange discount as may be available with other card brands.

How can merchants adopt the Amex SafeKey service?

  1. Enroll your company on the American Express web site. https://network.americanexpress.com/globalnetwork/safekey/us/en/merchants-acquirers
  2. Receive e-mail from SafeKey Certification Team with your SafeKey ID and next steps.
  3. SafeKey Certification Team gets approval from Acquirer.
  4. Acquirer and SafeKey Certification Team complete required setup.
  5. Activate 3-D Secure on the application. (Ecommerce shopping cart, payment gateway, or ERP.) Both payment gateway and application must support the service.

* 3-D Secure is a registered trademark of Visa International Service Association in the United States and other countries.

Have a question about how to add to your business? Contact CenPOS global sales and integrations reseller, Christine Speedy, 954-942-0483 for more information.