Global Payments changes to support 3DS with Digital Wallets
Posted on in Business News , Cycles News
Mastercard have announced that from October 2019, Mastercard (and Global Payments) systems can support sending an authorisation request containing both the digital wallet and 3D Secure (3DS) information in it.
This will affect any retailer with a website or mobile app who takes payments using a digital wallet, such as ApplePay or Android Pay with a Mastercard card (token) stored in it.
What Happens Currently?
Up until now it has not been normal practice to use 3DS with a digital wallet for ecommerce transactions. Mastercard currently considers an ecommerce or in-app transaction processed with a digital wallet (such as ApplePay or Android Pay) to be as secure as an ecommerce transaction performed with an actual card number and 3DS.
What Do the Changes Mean For You?
- From April 2020, Mastercard has mandated that all ecommerce transactions using a Mastercard issued token (such ApplePay and Android Pay) should be secured using 3DS
- Digital wallet transactions will be treated the same as a regular ecommerce transaction with a card number
- If a merchant does not secure the transaction with 3DS, they will be liable for any fraud even if the transaction is approved by the issuer
- With the Strong Customer Authentication requirements of PSD2, an issuer may also choose to decline ecommerce transactions that were not subject to SCA
There is no impact or change for face-to-face merchants who take ApplePay or Android Pay transactions at a point of sale terminal.
What Should You do?
If you currently take payments using a digital wallet on your website or app, then you should contact your PSP or software provider and ask about how they're planning to implement 3DS for your transactions.
They should all have a copy of our latest technical specifications (Version 10) which explains the requirements in technical detail for them.