vCita and Strong Customer Authentication (SCA) Regulations
Protecting your personal data and sensitive information is one of vCita's highest priorities. We are therefore making the necessary preparations to meet the new security regulations required by the European Union’s Second Payments Services Directive (PSD2). These regulations will impact online businesses in the EEA that accept credit card payments, and they will go into effect on September 14, 2019.
What is SCA?
Strong Customer Authentication (SCA) is a requirement aimed at increasing the security of online payments by ensuring that such payments are performed using two-factor authentication. This means that in order to process an online payment, the customer needs to provide at least two of the following types of identifiers:
- Knowledge: Something the customer knows, e.g., a password or PIN
- Possession: Something the customer has, e.g., a mobile device or hardware token
- Inherence: Something that is unique to the customer, e.g., a fingerprint, voice or face recognition
Once SCA regulations go into effect, banks will begin to deny transactions that do not meet the new requirements.
How are we preparing to meet the relevant requirements of SCA?
At vCita, we are making sure that any online payment flow taking place in the EEA is redirected to the payment processor's new checkout pages, which are SCA compliant. All supported payment gateways (Stripe, PayPal and Square) will be compliant with the new regulations.
What do you need to do as an online business?
You don’t need to take any action to make your business ready for the new SCA regulations. We are doing all the necessary preparations.
Still have questions? Contact us.