opinion

Online Billing: More Monitoring at the Transaction Level

Operation Choke Point and increased pressure by bank regulators on financial Institutions to identify and eliminate merchant fraud has certainly increased the monitoring efforts by banks regarding their payment services. Under Operation Choke Point, financial institutions, ISOs and IPSPs are being held liable and accountable for their merchants’ fraudulent activities.

The Federal Trade Commission has communicated that financial institutions and payment processors know or should have known about any deceptive acts or practices of their merchants. They lean on the assumption that these deceptive acts and practices are visible through the payment processing activities of the merchants.

The financial institutions are creating more transaction-level monitoring as well as leveraging third-party technology companies that specialize in comprehensive merchant monitoring.

The bank regulators have been publishing bulletins and incorporating into their exam processes, communication regarding the increased risk of banks to work with third party processors. They cite in their communications that indicators of fraud include: chargebacks, having multiple merchant accounts, having multiple bank or payment processor relationships, increasing online customer complaints and elevated rates of return. The regulators even go so far as to say that the solicitation for payment processing to a distressed financial institution, one seemingly looking for easy revenue, suggests that the soliciting party (payment processor or merchant) could be engaged in “improper or illegal conduct.”

The financial institutions are creating more transaction-level monitoring as well as leveraging third-party technology companies that specialize in comprehensive merchant monitoring. Some of the third parties that the financial institutions use are G2 Web Services, ControlScan Inc., Identity Mind and Trustwave. By visiting any of these companies websites, you will get an idea of just how much data they can report back to the bank or ISO about your activities.

Now that you have an indication as to why banks seem to be getting a little less tolerant, and how they are protecting themselves, here are five common reasons that your bank may flag your merchant account, even though your account is compliant with card association rules:

HIGH REFUND RATIO

Although there is no predetermined ratio or a rule against issuing refunds to consumers, and it is a transaction that is necessary when conducting regular business, an increase in refunds or an increase in the ratio for refunds to sales can get your account flagged for further investigation.

ONLINE CONSUMER COMPLAINTS

Banks are now monitoring the complaint boards for feedback on their merchants. It is a process that is performed during the initial underwriting activities but we are seeing more often that these banks are also looking regularly at the feedback online to discover bad activities faster.

When the banks see an increase in complaints it is likely that this will trigger some interaction with the merchant to explain why this is occurring and what they are doing about it.

UNUSUAL ACTIVITY

Do you have a high ratio of prepaid cards hitting your account? Do you have a particular bank identification number (BIN) from which you are receiving lots of payments? Do you have a sudden increase in sales? Although these occurrences can be natural and not fabricated in any way, it will often result in your account being flagged at the bank for further investigation. Banks are performing both BIN analysis and velocity checks on your transactions.

CHANGES TO YOUR WEBSITE

Banks have monitoring tools that will notify them of changes on your registered websites. This will notify them of language changes, pricing changes, terms and conditions changes, hosting changes, link changes, etc. If these changes are undesirable or change the risk profile of your account, then you will be hearing from your merchant account provider as well.

HIGH DECLINE RATES

Card transactions can decline for many reasons but an overall high decline rate on your merchant account will flag the account for further investigation. For example, a merchant with a high number of “pickup” or “fraud” declines could lead the bank to inquire about your traffic sources.

We are seeing an unprecedented level of scrutiny on payment providers and the financial institutions that partner with them. With this aggressive behavior by law enforcement and regulators, financial institutions and payment processors simply have to put into place technology and process that provide layers of protection against any potential merchant fraud. As a result, even compliant merchants will be flagged by these systems.

Here’s some practical ideas to address these issues:

• It is in your best interest to notify your payment processor if you are making any significant changes to your business. By being proactive with your merchant account provider you will alleviate the unnecessary intrusion into your business and provide the bank with the information necessary to demonstrate that they are informed and have evaluated the risk associated with the change.

• You should address consumer feedback on the complaint boards. You should even consider making changes to your processes if there are a significant number of similar complaints.

• Work with gateways and other third party technology companies to help make your transactions as valid as possible.

• Ensure your payment pages are clear to the user and that you have scrubbing technology to reduce the number of transactions that you send through your account that will be declined. Not only will you keep your decline ratios lower but you will keep your bank fees down as well.

Melody L is chief operating officer for L3 Payments.

Copyright © 2024 Adnet Media. All Rights Reserved. XBIZ is a trademark of Adnet Media.
Reproduction in whole or in part in any form or medium without express written permission is prohibited.

More Articles

opinion

Best Practices for Payment Gateway Security

Securing digital payment transactions is critical for all businesses, but especially those in high-risk industries. Payment gateways are a core component of the digital payment ecosystem, and therefore must follow best practices to keep customer data safe.

Jonathan Corona ·
opinion

Ready for New Visa Acquirer Changes?

Next spring, Visa will roll out the U.S. version of its new Visa Acquirer Monitoring Program (VAMP), which goes into effect April 1, 2025. This follows Visa Europe, which rolled out VAMP back in June. VAMP charts a new path for acquirers to manage fraud and chargeback ratios.

Cathy Beardsley ·
opinion

How to Halt Hackers as Fraud Attacks Rise

For hackers, it’s often a game of trial and error. Bad actors will perform enumeration and account testing, repeating the same test on a system to look for vulnerabilities — and if you are not equipped with the proper tools, your merchant account could be the next target.

Cathy Beardsley ·
profile

VerifyMy Seeks to Provide Frictionless Online Safety, Compliance Solutions

Before founding VerifyMy, Ryan Shaw was simply looking for an age verification solution for his previous business. The ones he found, however, were too expensive, too difficult to integrate with, or failed to take into account the needs of either the businesses implementing them or the end users who would be required to interact with them.

Alejandro Freixes ·
opinion

How Adult Website Operators Can Cash in on the 'Interchange' Class Action

The Payment Card Interchange Fee Settlement resulted from a landmark antitrust lawsuit involving Visa, Mastercard and several major banks. The case centered around the interchange fees charged to merchants for processing credit and debit card transactions. These fees are set by card networks and are paid by merchants to the banks that issue the cards.

Jonathan Corona ·
opinion

It's Time to Rock the Vote and Make Your Voice Heard

When I worked to defeat California’s Proposition 60 in 2016, our opposition campaign was outspent nearly 10 to 1. Nevertheless, our community came together and garnered enough support and awareness to defeat that harmful, misguided piece of proposed legislation — by more than a million votes.

Siouxsie Q ·
opinion

Staying Compliant to Avoid the Takedown Shakedown

Dealing with complaints is an everyday part of doing business — and a crucial one, since not dealing with them properly can haunt your business in multiple ways. Card brand regulations require every merchant doing business online to have in place a complaint process for reporting content that may be illegal or that violates the card brand rules.

Cathy Beardsley ·
profile

WIA Profile: Patricia Ucros

Born in Bogota, Colombia, Ucros graduated from college with a degree in education. She spent three years teaching third grade, which she enjoyed a lot, before heeding her father’s advice and moving to South Florida.

Women In Adult ·
opinion

Creating Payment Redundancies to Maximize Payout Uptime

During the global CrowdStrike outage that took place toward the end of July, a flawed software update brought air travel and electronic commerce to a grinding halt worldwide. This dramatically underscores the importance of having a backup plan in place for critical infrastructure.

Jonathan Corona ·
opinion

The Need for Minimal Friction in Age Verification Technology

In the adult sector, robust age assurance, comprised of age verification and age estimation methods, is critical to ensuring legal compliance with ever-evolving regulations, safeguarding minors from inappropriate content and protecting the privacy of adults wishing to view adult content.

Gavin Worrall ·
Show More