SCA adaptation operating manual

The effective date of the SCA for online payments is pending, and it is expected to be on December 30, 2020.

At PAYCOMET, we have taken the necessary measures and adapted to this new regulation, and we can help you to resolve any questions that may arise.

  1. 3DSecure Payments only
  2. Unsecured payment
  3. Telephone sale
  4. PSD2 parameters

3DSecure Payments only

If you are already processing Secure Purchase operations only, according to the new EMVCo specifications, and in hopes of improving information among card-issuing banks, your Virtual POS must include new mandatory fields, such as certain browser parameters of the buyer.

We have adapted our Virtual POS so that it obtains the necessary information directly from the buyer’s session and automatically completes the mandatory fields. Therefore, no action need be taken or code programmed in order to adapt to these requirements as of the date to be defined by Banco de España.

If you have any questions about this, you can contact us by opening a ticket through the control panel.

Unsecured payment

In case you are processing non-secure payments, you should consider the following:

Implementation of the SCA requirement (Strong Customer Authentication, or reinforced authentication) will demand the authentication of all European e-commerce transactions, to be henceforth processed as secured payments.

The Regulator has defined certain exemptions and exceptions in application of the SCA. More information can be found here: PSD2

Analyze your operation, and if you consider that you can benefit from any of the exclusions or exceptions provided, justify your request by means of a ticket from the control panel. Our team will contact you and enable any exceptions that apply.

Important: if you have contracted an acquisition service with an entity other than Banco Sabadell, then that entity must permit the same exemptions or exceptions as Banco Sabadell, to ensure that these are effective.

If your business is NOT eligible for any of the given exemptions and/or exceptions, bear in mind that as of the SCA effective date in 2021, you can only use the 3DS terminals configured in your Virtual POS, so long as that date for compliance is adhered to by the Regulator.

Also, according to the new EMVCo specifications, and in order to improve information among card-issuing banks, your Virtual POS must include new mandatory fields, such as certain parameters of the purchaser’s browser.

We have adapted our Virtual POS so that it obtains the necessary information directly from the buyer’s session and automatically completes the mandatory fields. Therefore, no action need be taken or code programmed in order to adapt to these requirements as of the date to be defined by Banco de España.

If you have any questions about this, you can contact us by opening a ticket through the control panel.

Telephone sale

The new regulations do not directly affect operations carried out with our service, but we remain available to help you resolve any questions that may arise.

Operations in which payment has been initiated by telephone, mail, or e-mail, as well as certain operational exceptions, are excluded from SCA implementation, so no action need be taken or new code programmed in order to adapt to these PSD2 / SCA requirements.

If you have any questions about this, you can contact us by opening a ticket through the control panel.

PSD2 parameters

You can check the parameters defined in the PSD2 to make a payment in the following link.