3D Secure v2 allows an exemption from strong authentication for my customers, how can I benefit from it?
In 3D Secure v2 mode, if your store has the “Frictionless 3DS2” option. , you have the possibility1 to request an exemption from the strong authentication principle. This concerns transactions of less than €30 and within the limit of either 5 consecutive operations or a total amount of less than €100.
- Low value transactions
In Europe, for payments in euros, you can request an exemption from strong authentication, for transactions of less than €30, and within the limit of either 5 successive operations or a cumulative amount of less than €100.
If the amount is higher than €30, the value transmitted by the merchant is ignored and the choice of the preference is transferred to the card issuer (No Preference).
For payments made in a currency other than euro, a request for frictionless is transmitted to the issuer.
If the frictionless request is accepted, the transaction does not benefit from liability shift in case of chargeback.
- Transactional Risk Analysis (Acquirer TRA)
If your store has the "TRA Acquirer 3DS2" option, you can ask the issuer for an exemption from strong authentication if the amount is below the threshold set by your financial institution.
If the frictionless request is accepted, the transaction does not benefit from liability shift in case of chargeback.
This exemption reason is only available for transactions made on the CB network. The functionality will be extended to the Visa and Mastercard networks at a later date.The “Acquirer 3DS2 TRA" activation option is subject to the prior agreement of your financial institution.Once the agreement is obtained, contact sales administration to send us the agreement by e-mail.
When the option is activated and the threshold is set for your contract, you will be able to request an exemption to strong authentication for the “Acquirer TRA” reason.
You can configure this exemption rule using your payment form ("vads_threeds_mpi” or “strongAthentication field” depending on the API used).
Your client’s bank (the “issuing bank”) will ultimately decide to grant an authentication exemption to its client.