What is PSD2?
PSD2 is a mandate for payment service providers to implement strong customer authentication (SCA) measures to make payments more secure for cardholders. In other words, PSD2 mandates strong customer authentication for online payments and online banking transactions which includes subscription models as well.
This means that before the banks authenticate a transaction, the end user is required to provide two out of three authentication factors:
- Something only the shopper knows.
- Something only the user possesses.
- Something the user is.
For example, before the bank authenticates and authorises a payment, an end user is required to supply a one-time authentication code received on their phone (something the end user has), and a password that only the end user knows (something the end user knows).
This improvement is mainly to be focussed on Debit/Credit cards. This requirement applies to all the banks operating within the European Union and the buyer who may reside anywhere (globally) but is using EU banks to buy the subscription or make a purchase.
Why is it important to comply?
To understand better, this change is mainly for 'Issuing banks'. Because of this requirement, all banks in the Europe Union have to upgrade the authentication method from 3D secure 1.0 to 3D Secure 2.0. Due to that fact, every time a transaction has been trigged when using Cleeng Merchant, it goes to the bank for verification. The 'issuing bank' then verifies if the transaction supports 3D Secure 2.0, if yes, then the transaction goes through, otherwise banks simply refuse the transaction which will affect the conversion rate.
Is Cleeng PSD2 Compliant?