SCA adaptation operating manual

The effective date of the SCA for online payments is pending, and it is expected to be between January and May 2021.

At PAYCOMET, we have taken the necessary measures and adapted to this new regulation, and we can help you to resolve any questions that may arise.

  1. 3DSecure Payments only
  2. Unsecured payment
  3. Telephone sale

3DSecure Payments only

If you are already processing Secure Purchase operations only, according to the new EMVCo specifications, and in hopes of improving information among card-issuing banks, your Virtual POS must include new mandatory fields, such as certain browser parameters of the buyer.

We have adapted our Virtual POS so that it obtains the necessary information directly from the buyer’s session and automatically completes the mandatory fields. Therefore, no action need be taken or code programmed in order to adapt to these requirements as of the date to be defined by Banco de España.

If you have any questions, please contact us by e-mail at psd2@paycomet.com.

Unsecured payment

In case you are processing non-secure payments, you should consider the following:

Implementation of the SCA requirement (Strong Customer Authentication, or reinforced authentication) will demand the authentication of all European e-commerce transactions, to be henceforth processed as secured payments.

The Regulator has defined certain exemptions and exceptions in application of the SCA. More information can be found here: PSD2

Consider the operation you want to undertake, and if you find that you can take advantage of the stated exclusions or exceptions, send an e-mail to psd2@paycomet.com justifying your request. Our team will contact you and enable the exemptions or exceptions that apply. For your part, you will have to implement the parameters found at: PSD2 Parameters

Important: if you have contracted an acquisition service with an entity other than Banco Sabadell, then that entity must permit the same exemptions or exceptions as Banco Sabadell, to ensure that these are effective.

If your business is NOT eligible for any of the given exemptions and/or exceptions, bear in mind that as of the SCA effective date in 2021, you can only use the 3DS terminals configured in your Virtual POS, so long as that date for compliance is adhered to by the Regulator.

Also, according to the new EMVCo specifications, and in order to improve information among card-issuing banks, your Virtual POS must include new mandatory fields, such as certain parameters of the purchaser’s browser.

We have adapted our Virtual POS so that it obtains the necessary information directly from the buyer’s session and automatically completes the mandatory fields. Therefore, no action need be taken or code programmed in order to adapt to these requirements as of the date to be defined by Banco de España.

If you have any questions, please contact us by e-mail at psd2@paycomet.com.

Telephone sale

The new regulations do not directly affect operations carried out with our service, but we remain available to help you resolve any questions that may arise.

Operations in which payment has been initiated by telephone, mail, or e-mail, as well as certain operational exceptions, are excluded from SCA implementation, so no action need be taken or new code programmed in order to adapt to these PSD2 / SCA requirements.

If you have any questions, please contact us by e-mail at psd2@paycomet.com.