{"id":5009,"date":"2018-10-05T15:13:41","date_gmt":"2018-10-05T20:13:41","guid":{"rendered":"https:\/\/3dmerchant.com\/blog\/?p=5009"},"modified":"2021-12-03T03:22:51","modified_gmt":"2021-12-03T08:22:51","slug":"visa-stored-credential-mandate-overview","status":"publish","type":"post","link":"https:\/\/3dmerchant.com\/blog\/merchant-processing-services\/visa-stored-credential-mandate-overview","title":{"rendered":"Visa Stored Credential Mandate Overview"},"content":{"rendered":"<p><strong>How can merchants get compliant with the Visa Stored Credential Transaction framework and mandates effective October 14, 2017?<\/strong> Most companies are under the false impression that their acquirer and or payment gateway manages compliance. Not true. While some technical aspects are managed by the payment gateway, the merchant also has to make some changes for compliance. <strong><br \/>\n<\/strong><\/p>\n<p><strong>What is a Stored Credential?<\/strong> A stored credential is information (including, but not limited to, an account number or payment token) that is stored to process future purchases for a cardholder.<\/p>\n<p><strong>What is the Visa Stored Credential framework and mandate?<\/strong> It outlines the rules related to storing and using stored credentials. Since it&#8217;s 15 pages long, I&#8217;ll only highlight a few important items here.<\/p>\n<ul>\n<li>Merchant initiated or customer initiated transactions? Make sure your payment gateway is sending the correct code. For example, an ecommerce store checkout would be customer initiated. A recurring billing transaction is merchant initiated.<\/li>\n<li>Get customer consent for terms and conditions of storing and using stored card.<\/li>\n<li>Advise how the cardholder will be notified of any changes to the consent agreement.<\/li>\n<li>For a transaction using a stored credential initiated by the cardholder, the merchant or its agent must validate the cardholder\u2019s identity before processing. The only valid methods are 3-D Secure Verified by Visa and the security code.<\/li>\n<li>Receipt must be provided for the initial cardholder validation ($0 dollar transaction or actual amount.)<\/li>\n<li>All stored credential transactions must be submitted with a value of \u201c10\u201d in the POS Entry Mode Code field; this is for both newly stored cards and all prior transactions using stored credential. This is managed by the payment gateway. (Confirm your gateway is doing this.)<\/li>\n<\/ul>\n<p><strong>What about the other card brands?<\/strong> Mastercard rolled out their version in June 2018. If you comply with the Visa mandate, you&#8217;ll be in compliance with any others at this time.<\/p>\n<p><strong>What if I don&#8217;t comply?<\/strong><\/p>\n<ul>\n<li>You&#8217;ll be non-compliant with Visa\u2019s rules and risk Non Compliance Assessments<\/li>\n<li>No benefit from expected improved authorization rate<\/li>\n<li>Increased customer complaints and poor cardholder experience<\/li>\n<li>Cannot use Real Time Visa Account Updater service<\/li>\n<li>Risk issuer generated chargebacks for all transactions using the stored credential within the allowable chargeback timeframe under reason code 72, invalid authorization. A valid authorization is needed to qualify for the lowest interchange rates.<\/li>\n<\/ul>\n<p><strong>What are the benefits of compliance?<\/strong> Increased authorizations, better customer experience, more profits.<\/p>\n<p>See <strong>Improving Authorization Management for Transactions with Stored Credentials<\/strong> <a href=\"https:\/\/usa.visa.com\/dam\/VCOM\/global\/support-legal\/documents\/stored-credential-transaction-framework-vbs-10-may-17.pdf\">https:\/\/usa.visa.com\/dam\/VCOM\/global\/support-legal\/documents\/stored-credential-transaction-framework-vbs-10-may-17.pdf<\/a> . Are you going to manage documenting everything or are you going to use technology to help you manage it?<\/p>\n<div id=\"attachment_4793\" class=\"wp-caption aligncenter\">\n<p><a href=\"https:\/\/3dmerchant.com\/blog\/wp-content\/uploads\/2018\/10\/partial-stored-form.jpg\"><img loading=\"lazy\" decoding=\"async\" class=\"aligncenter wp-image-5579 size-full\" src=\"https:\/\/3dmerchant.com\/blog\/wp-content\/uploads\/2018\/10\/partial-stored-form.jpg\" alt=\"partial stored credit card authorizationform\" width=\"410\" height=\"478\" srcset=\"https:\/\/3dmerchant.com\/blog\/wp-content\/uploads\/2018\/10\/partial-stored-form.jpg 410w, https:\/\/3dmerchant.com\/blog\/wp-content\/uploads\/2018\/10\/partial-stored-form-257x300.jpg 257w\" sizes=\"auto, (max-width: 410px) 100vw, 410px\" \/><\/a><\/p>\n<p class=\"wp-caption-text\">Partial CenPOS PCI Compliant stored credential authorization form.<\/p>\n<\/div>\n<p><strong>Verify if you have a system to manage authorization validity.<\/strong> What the heck does that mean? Many companies have complex needs including pre-authorizations, incremental authorizations, delayed shipping etc. While you may get issuer approvals, that doesn\u2019t mean the authorization is valid. Are you compliant now? Look at your merchant statement \u2018pending <a href=\"https:\/\/3dmerchant.com\/blog\/credit-card-processing-rates\/terminal-best-interchange\">interchange<\/a> fees. If you see\u00a0 EIRF or STD or misuse of authorization fee, there\u2019s a problem.<\/p>\n<p><strong>Replace paper credit card authorization forms, <\/strong>and any digital form that you can decrypt and view sensitive card data. Offer your customers a way to self-manage their own wallet with either a hosted online pay page or Electronic Bill Presentment &amp; Payment.<\/p>\n<p><strong>New to online payments? <\/strong>See Visa best practices to prevent brute force attacks. https:\/\/usa.visa.com\/support\/merchant\/library\/visa-merchant-business-news-digest.html. CenPOS includes recaptcha and client managed velocity and other rules as part of a layered security approach.<\/p>\n<p><strong>Register for 3-D Secure, including Verified by Visa, with your acquirer. <\/strong>Don\u2019t do this until you know which payment gateway will be used and get their instructions if applicable.<\/p>\n<div id=\"attachment_3366\" class=\"wp-caption aligncenter\">\n<p><a href=\"https:\/\/3dmerchant.com\/blog\/merchant-processing-industry-news\/m\/blog\/wp-content\/uploads\/2015\/01\/rates-unhappy.jpg\"><img loading=\"lazy\" decoding=\"async\" class=\" wp-image-3366\" src=\"https:\/\/3dmerchant.com\/blog\/wp-content\/uploads\/2015\/01\/rates-unhappy.jpg\" alt=\"interchange rate qualification\" width=\"395\" height=\"191\" \/><\/a><\/p>\n<p class=\"wp-caption-text\">The same transaction can process at different rates as shown above, depending on which rules you follow. CenPOS Smart Rate Selector automates compliance to qualify transactions at the lowest rate possible. Which rates are on your merchant statement now?<\/p>\n<\/div>\n<h1>Where can I buy CenPOS or learn more? You\u2019ve already found one of the top salespeople, Christine Speedy. All agreements are direct with CenPOS, no middle man.<\/h1>\n<p>Resources and documentation <a href=\"https:\/\/3dmerchant.com\/blog\/merchant-bulletins-downloads\">https:\/\/3dmerchant.com\/blog\/merchant-bulletins-downloads \u2013\u00a0<\/a>bookmark it!.\u00a0 Join <a href=\"https:\/\/3dmerchant.us1.list-manage.com\/subscribe?u=b62a9a3effa2f4c6c81a9fa51&amp;id=3a89870141\"><strong>Christine Speedy\u2019s<\/strong><\/a> <a href=\"https:\/\/3dmerchant.us1.list-manage.com\/subscribe?u=b62a9a3effa2f4c6c81a9fa51&amp;id=3a89870141\">email list<\/a>.<\/p>\n<p>DISCLAIMER: condensed and incomplete information! Information may be quickly outdated.<\/p>\n<p><strong>With the fast pace of changing rules, companies need a technology partner to automate compliance. Did you know? <\/strong><\/p>\n<ul>\n<li>CenPOS has a suite of solutions for companies just like yours, solving common problems and increasing profits virtually overnight.<\/li>\n<li>For those not ready to give up paper, CenPOS creates a printable PCI Compliant credit card authorization form for every stored card.<\/li>\n<li>CenPOS has ERP, ecommerce shopping cart, accounting and other plug-in modules available for quick and easy implementation.<\/li>\n<li>I\u2019ve been selling for CenPOS since day 1. Though I have other payment gateways available in my arsenal, nothing else compares.<\/li>\n<\/ul>\n<p><em><strong>Call <a href=\"https:\/\/3dmerchant.com\/blog\/about\">Christine Speedy<\/a> for global sales. 954-942-0483, 9-5 ET, CenPOS<\/strong> authorized reseller based out of South Florida and NY. CenPOS is an integrated commerce technology platform driving innovative, omnichannel solutions tailored to meet a merchant\u2019s market needs. Providing a single point of integration, the CenPOS platform combines payment, commerce and value-added functionality enabling merchants to transform their commerce experience, eliminate the need to manage complex integrations, reduce the burden of accepting payments and create deeper customer relationships.<br \/>\n<\/em><\/p>\n","protected":false},"excerpt":{"rendered":"<p>How can merchants get compliant with the Visa Stored Credential Transaction framework and mandates effective October 14, 2017? Most companies are under the false impression that their acquirer and or payment gateway manages compliance. Not true. While some technical aspects &hellip; <a href=\"https:\/\/3dmerchant.com\/blog\/merchant-processing-services\/visa-stored-credential-mandate-overview\">Continue reading <span class=\"meta-nav\">&rarr;<\/span><\/a><\/p>\n","protected":false},"author":11,"featured_media":0,"comment_status":"open","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[1,537],"tags":[314,15],"class_list":["post-5009","post","type-post","status-publish","format-standard","hentry","category-merchant-processing-services","category-payment-gateway","tag-token-billing","tag-visa"],"aioseo_notices":[],"_links":{"self":[{"href":"https:\/\/3dmerchant.com\/blog\/wp-json\/wp\/v2\/posts\/5009","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/3dmerchant.com\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/3dmerchant.com\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/3dmerchant.com\/blog\/wp-json\/wp\/v2\/users\/11"}],"replies":[{"embeddable":true,"href":"https:\/\/3dmerchant.com\/blog\/wp-json\/wp\/v2\/comments?post=5009"}],"version-history":[{"count":2,"href":"https:\/\/3dmerchant.com\/blog\/wp-json\/wp\/v2\/posts\/5009\/revisions"}],"predecessor-version":[{"id":5580,"href":"https:\/\/3dmerchant.com\/blog\/wp-json\/wp\/v2\/posts\/5009\/revisions\/5580"}],"wp:attachment":[{"href":"https:\/\/3dmerchant.com\/blog\/wp-json\/wp\/v2\/media?parent=5009"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/3dmerchant.com\/blog\/wp-json\/wp\/v2\/categories?post=5009"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/3dmerchant.com\/blog\/wp-json\/wp\/v2\/tags?post=5009"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}