Strong Customer
Authentication (SCA)
What is SCA?
Strong Customer Authentication (SCA) is a new European requirement created to reduce fraud and
make online payments more secure. From 31 December 2020, when an individual with a card issued in
the European Economic Area (EEA) makes a payment online, extra levels of authentication will be
required at the time of the transaction. This will apply to payments over £30, or to lower transactions
if the same card has been used elsewhere previously in the same day.
As ways of committing fraud are constantly changing, the aim of SCA is to:
• reduce fraud
• provide added security to online payments, and
• act as a "frictionless authentication," improving the donation experience and providing security
against the emergence of new online payment threats.
Failure to adhere to SCA will result in the rejection of donations by financial institutions across the
European Economic Area (EEA).
What changes will this require?
In the past, supporters could simply enter their card number and a CVC verification code, but with
the revised EU Payment Services Directive (PSD2), more information will be required at the time of
payment. A new specification, 3D Secure 2.0, has been introduced to make it easier to collect SCA
information at the time of the transaction. From 31 December onward, authentication must include
two or more of the following:
• Something you know
Such as a password or secret fact
• Something you own
Such as a mobile phone or token
• Something you are
Such as a fingerprint or voice pattern
Whilst the number of required data points is increasing, more customer choice should mean better
authentication experiences and fewer drop-offs!
1
+44 (0) 207 601 7100
|
solutions@blackbaud.co.uk
|
www.blackbaud.com
