opinion

EU Revises Payment Services Directive

EU Revises Payment Services Directive

Europe’s latest electronic payments regulation is about to take center stage.

The revised Payment Services Directive (PSD2) changes how payments will work across the EU, by opening up the financial services industry to more competition.

PSD2 creates the opportunity to access new markets while imposing strict regulations, ensuring anyone handling consumer information or transferring payment data is doing it safely.

The regulation is built around the concept of “open banking,” where compliant businesses can access consumer bank accounts, either to process payments directly or offer other services. The goal is to provide more options for consumers.

Companies wanting to participate will have to work for it; they’ll be required to meet new guidelines for data security, customer authentication and the use of APIs to transfer data.

Under PSD2, service providers that want access to consumers’ banking data will fall under one of two categories: Payment Initiation Service Providers (PISPs) who initiate payments by transferring funds from a consumer’s bank account, eliminating the need to send a consumer through a payment processor such as Visa… and Account Information Service Providers (AISPs) who offer value-added services by leveraging customer bank accounts — for example, by offering an app that tracks your spending.

The goal is to drive innovation of new third-party products and services that use consumers’ existing banking data to help them make payments and manage their accounts. PSD2 creates the opportunity to access new markets while imposing strict regulations, ensuring anyone handling consumer information or transferring payment data is doing it safely.

Who will this impact? Under PSD2, transactions where both the acquiring and issuing banks are based in the European Economic Area (EEA) must meet requirements for Strong Consumer Authentication (SCA). SCA is an extra layer of security for consumer-initiated transactions, helping reduce fraud and chargebacks through multi-factor authentication, for example, receiving a confirmation text on your phone or using physical characteristics like a fingerprint or facial recognition.

Segpay has been gearing up for PSD2 for some time now. We already offer merchants an extra layer of authentication through 3-D Secure (3DS), and we will introduce 3DS version 2.0 before the PSD2 compliance deadline of Sept. 14. 3DS 2.0 includes all the enhanced security features necessary to meet SCA requirements, including shifting fraud liability from merchants to issuing banks. Our policies will be updated to require that all consumer-initiated transactions between EEA consumers and businesses use 3DS 2.0 starting Sept. 14.

So, merchants working with us will be ready for PSD2. However, if you won’t be ready by September, you may be able to buy more time. The European Banking Authority has agreed to a limited extension for compliance. It will work with some payment service providers, merchants and consumers on a limited basis if they meet additional guidelines and provide a migration plan for achieving compliance.

As we count down the days until the curtain lifts on this latest EU regulation, take this time to work with your payments processor to consider how your business will handle the new regulations and work though any last-minute changes.

Cathy Beardsley is president and CEO of Segpay, a global leader in merchant services offering a wide range of custom financial solutions including payment facilitator, direct merchant accounts and secure gateway services. Under her direction, Segpay has become one of only four companies approved by Visa to operate as a high-risk internet payment services provider. Segpay offers secure turnkey solutions to accept online payments, with a guarantee that funds are always safe and protected with its proprietary Fraud Mitigation System and customer service and support. For any questions or help, contact compliance@segpay.com.

Related:  

Copyright © 2024 Adnet Media. All Rights Reserved. XBIZ is a trademark of Adnet Media.
Reproduction in whole or in part in any form or medium without express written permission is prohibited.

More Articles

opinion

Best Practices for Payment Gateway Security

Securing digital payment transactions is critical for all businesses, but especially those in high-risk industries. Payment gateways are a core component of the digital payment ecosystem, and therefore must follow best practices to keep customer data safe.

Jonathan Corona ·
opinion

Ready for New Visa Acquirer Changes?

Next spring, Visa will roll out the U.S. version of its new Visa Acquirer Monitoring Program (VAMP), which goes into effect April 1, 2025. This follows Visa Europe, which rolled out VAMP back in June. VAMP charts a new path for acquirers to manage fraud and chargeback ratios.

Cathy Beardsley ·
opinion

How to Halt Hackers as Fraud Attacks Rise

For hackers, it’s often a game of trial and error. Bad actors will perform enumeration and account testing, repeating the same test on a system to look for vulnerabilities — and if you are not equipped with the proper tools, your merchant account could be the next target.

Cathy Beardsley ·
profile

VerifyMy Seeks to Provide Frictionless Online Safety, Compliance Solutions

Before founding VerifyMy, Ryan Shaw was simply looking for an age verification solution for his previous business. The ones he found, however, were too expensive, too difficult to integrate with, or failed to take into account the needs of either the businesses implementing them or the end users who would be required to interact with them.

Alejandro Freixes ·
opinion

How Adult Website Operators Can Cash in on the 'Interchange' Class Action

The Payment Card Interchange Fee Settlement resulted from a landmark antitrust lawsuit involving Visa, Mastercard and several major banks. The case centered around the interchange fees charged to merchants for processing credit and debit card transactions. These fees are set by card networks and are paid by merchants to the banks that issue the cards.

Jonathan Corona ·
opinion

It's Time to Rock the Vote and Make Your Voice Heard

When I worked to defeat California’s Proposition 60 in 2016, our opposition campaign was outspent nearly 10 to 1. Nevertheless, our community came together and garnered enough support and awareness to defeat that harmful, misguided piece of proposed legislation — by more than a million votes.

Siouxsie Q ·
opinion

Staying Compliant to Avoid the Takedown Shakedown

Dealing with complaints is an everyday part of doing business — and a crucial one, since not dealing with them properly can haunt your business in multiple ways. Card brand regulations require every merchant doing business online to have in place a complaint process for reporting content that may be illegal or that violates the card brand rules.

Cathy Beardsley ·
profile

WIA Profile: Patricia Ucros

Born in Bogota, Colombia, Ucros graduated from college with a degree in education. She spent three years teaching third grade, which she enjoyed a lot, before heeding her father’s advice and moving to South Florida.

Women In Adult ·
opinion

Creating Payment Redundancies to Maximize Payout Uptime

During the global CrowdStrike outage that took place toward the end of July, a flawed software update brought air travel and electronic commerce to a grinding halt worldwide. This dramatically underscores the importance of having a backup plan in place for critical infrastructure.

Jonathan Corona ·
opinion

The Need for Minimal Friction in Age Verification Technology

In the adult sector, robust age assurance, comprised of age verification and age estimation methods, is critical to ensuring legal compliance with ever-evolving regulations, safeguarding minors from inappropriate content and protecting the privacy of adults wishing to view adult content.

Gavin Worrall ·
Show More