{"id":22074,"date":"2024-09-06T14:12:50","date_gmt":"2024-09-06T18:12:50","guid":{"rendered":"https:\/\/chargebacks911.com\/?p=22074"},"modified":"2026-03-25T13:51:32","modified_gmt":"2026-03-25T17:51:32","slug":"psd2","status":"publish","type":"post","link":"https:\/\/chargebacks911.com\/psd2\/","title":{"rendered":"PSD2"},"content":{"rendered":"\n<h2 class=\"wp-block-heading\" id=\"conversion-to-compliance-how-psd2-affects-your-business\">How PSD2 Affects Your Business &amp; What Will Come Next<\/h2>\n\n\n\n<p class=\"wp-block-paragraph\">For regulators in the EU and UK, the goal is always to create a more standardized, universal set of rules for payments. One banking standard \u201cto rule them all,\u201d if you will.<\/p>\n\n\n\n<p class=\"wp-block-paragraph\">The revised Payment Service Directive, or PSD2, was an attempt at that.<\/p>\n\n\n\n<p class=\"wp-block-paragraph\">PSD2 should have opened a world of new opportunities for consumers and businesses. But, like any significant policy change, regulators left a fair amount to be desired.<\/p>\n\n\n\n<p class=\"wp-block-paragraph\">In this article, we\u2019ll go over what <a class=\"wpil_keyword_link\" href=\"https:\/\/chargebacks911.com\/psd2\/\" title=\"PSD2\" data-wpil-keyword-link=\"linked\">PSD2<\/a> is, who it pertains to, and the effects it\u2019s had on commerce since implementation. We\u2019ll also consider where regulators might go from here, and how businesses should respond.<\/p>\n\n\n<div class=\"c-suggested-reading\"><div class=\"c-suggested-reading__inner\"><div class=\"c-suggested-reading__header\"><h3 class=\"c-suggested-reading__headline\">Recommended reading<\/h3><\/div><ul class=\"c-suggested-reading__items\"><li class=\"c-suggested-reading__item\"><a href=\"https:\/\/chargebacks911.com\/emv-bypass-cloning\/\" class=\"c-suggested-reading__link\">What is EMV Bypass Cloning? Are Chip Cards Still Secure?<\/a><\/li><li class=\"c-suggested-reading__item\"><a href=\"https:\/\/chargebacks911.com\/chip-and-pin-technology\/\" class=\"c-suggested-reading__link\">Chip-and-PIN: How it Works &amp; How it Helps Stop Fraud<\/a><\/li><li class=\"c-suggested-reading__item\"><a href=\"https:\/\/chargebacks911.com\/terminal-id-number\/\" class=\"c-suggested-reading__link\">Terminal ID Number (TID): What is it? What Does it Do?<\/a><\/li><li class=\"c-suggested-reading__item\"><a href=\"https:\/\/chargebacks911.com\/qr-code-payments\/\" class=\"c-suggested-reading__link\">How Do QR Code Payments Work: Critical Info &amp; How to Accept<\/a><\/li><li class=\"c-suggested-reading__item\"><a href=\"https:\/\/chargebacks911.com\/debit-networks\/\" class=\"c-suggested-reading__link\">What is a Debit Network? How Does it Help You Get Paid?\u00a0<\/a><\/li><li class=\"c-suggested-reading__item\"><a href=\"https:\/\/chargebacks911.com\/transaction-settlement\/\" class=\"c-suggested-reading__link\">How Transaction Settlement Works: Guide to Manage Cash Flow<\/a><\/li><\/ul><\/div><\/div>\n\n\n\n<h2 class=\"wp-block-heading\">What is PSD2?<\/h2>\n\n\n\n<dl class=\"definition_box\" class=\"wp-block-cb911-block-library-definitions\"><div class=\"definition\"><div class=\"definition_top\"><h3><dt>Revised Payment Services Directive (PSD2)<\/dt><\/h3><p>[noun]\/r<em>\u01dd \u2022 v\u012bzd \u2022 p\u0101 \u2022 muhnt sur \u2022 vis \u2022 es \u2022 d\u01dd \u2022 rek \u2022 tiv<\/em>\/<\/p><\/div><dd><p>The Revised Payment Services Directive (PSD2) is a ruleset administered by the European Commission. Its purpose is to regulate payment services and payment service providers throughout the European Union and European Economic Area, allowing new entities to operate as financial institutions with proper oversight.<\/p><\/dd><\/div><\/dl>\n\n\n\n<p class=\"wp-block-paragraph\">The original Payment Service Directive <a href=\"https:\/\/www.payment-services-directive-3.com\/PSD1.html\" target=\"_blank\" rel=\"noopener\">was put in place in 2007<\/a> to facilitate pan-European competition, increase consumer protections, and standardize the rights and obligations of payment providers and users. The PSD worked to some extent, but a number of issues remained. For instance, entities that could operate as financial institutions in one country might not be able to do so in another, or the standards for best practices might differ across borders.<\/p>\n\n\n\n<p class=\"wp-block-paragraph\"><em>Enter PSD2<\/em>.<\/p>\n\n\n\n<p class=\"wp-block-paragraph\">Building on the original directive, PSD2 goes even further in creating a more integrated and competitive market. It breaks down barriers to entry for new payment services. Thus, PSD2 should benefit consumers by creating a more competitive market (in theory).<\/p>\n\n\n\n<p class=\"wp-block-paragraph\">PSD2 also focuses on greater data security standards.&nbsp;<a href=\"https:\/\/chargebacks911.com\/strong-customer-authentication-sca\/\">It mandates Strong Customer Authentication standards<\/a>&nbsp;and expands overall consumer rights. The directive limits costs associated with card payments and mandates better fraud protection for consumers.<\/p>\n\n\n\n<h2 class=\"wp-block-heading\">What Changes Did PSD2 Make? How Does It Differ From PSD1?<\/h2>\n\n\n\n<p class=\"wp-block-paragraph\">The original Payment Services Directive laid the legal groundwork for a <a href=\"https:\/\/ec.europa.eu\/commission\/presscorner\/detail\/fr\/MEMO_15_5793\" target=\"_blank\" rel=\"noopener\">EU single market for payments<\/a>. The directive\u2019s goal was to make cross-border payments <em>between <\/em>EU member states as seamless, easy, and secure as national payments <em>within <\/em>a member state.<\/p>\n\n\n\n<p class=\"wp-block-paragraph\">PSD2 builds upon PSD1\u2019s legal foundations. It further integrates the EU single market for payments, introduces stricter security standards for payment providers, protects consumers, and levels the playing field for third-party payment service providers (TPPs).<\/p>\n\n\n\n<div class=\"c-small-icon-list\">\n    <div class=\"c-small-icon-list__icon\">\n        <img decoding=\"async\" src=\"https:\/\/chargebacks911.com\/wp-content\/uploads\/2021\/07\/NEW-ICONS-DuoTone-card-emv-hand-giving.svg\" alt=\"Third-Party Payment Service Providers\"\/>\n    <\/div>\n<div class=\"c-small-icon-list__content\">\n    <h3 class=\"wp-block-heading joli-heading\">\n<span style=\"color:var(--color-primary);\">Change #1<\/span> \n<span style=\"color:var(--color-secondary-yellow);\"> &nbsp;|&nbsp; <\/span>\n Third-Party Payment Service Providers\n<\/h3>\n    <\/div>\n<\/div>\n\n\n\n<p class=\"wp-block-paragraph\">The inclusion of TPPs within the scope of PSD2 is a key way in which the revised directive differs from PSD1. Under PSD2, third parties known as \u201caccount information service providers\u201d (or \u201cAISPs\u201d) and \u201cpayment initiation service providers\u201d (or \u201cPISPs\u201d) can enter the EU market. To do so, they must comply with the revised directive\u2019s transaction security and customer data protection mandates.<\/p>\n\n\n\n<div class=\"c-small-icon-list\">\n    <div class=\"c-small-icon-list__icon\">\n        <img decoding=\"async\" src=\"https:\/\/chargebacks911.com\/wp-content\/uploads\/2023\/08\/NEW-ICONS-DuoTone-online-shopping-secured.svg\" alt=\"Strong Customer Authentication Requirements\"\/>\n    <\/div>\n<div class=\"c-small-icon-list__content\">\n    <h3 class=\"wp-block-heading joli-heading\">\n<span style=\"color:var(--color-primary);\">Change #2<\/span> \n<span style=\"color:var(--color-secondary-yellow);\"> &nbsp;|&nbsp; <\/span>\n Strong Customer Authentication Requirements\n<\/h3>\n    <\/div>\n<\/div>\n\n\n\n<p class=\"wp-block-paragraph\">The introduction of Strong Customer Authentication (SCA) standards mean that both banks and non-bank TPPs must secure customer accounts using multi-factor authentication security measures. SCA requirements promulgated under PSD2 help keep sensitive customer information secure and reduce fraudulent transaction risks.<\/p>\n\n\n\n<div class=\"c-small-icon-list\">\n    <div class=\"c-small-icon-list__icon\">\n        <img decoding=\"async\" src=\"https:\/\/chargebacks911.com\/wp-content\/uploads\/2023\/06\/NEW-ICONS-DuoTone-bank-connections.svg\" alt=\"Greater Data Sharing\"\/>\n    <\/div>\n<div class=\"c-small-icon-list__content\">\n    <h3 class=\"wp-block-heading joli-heading\">\n<span style=\"color:var(--color-primary);\">Change #3<\/span> \n<span style=\"color:var(--color-secondary-yellow);\"> &nbsp;|&nbsp; <\/span>\n Greater Data Sharing\n<\/h3>\n    <\/div>\n<\/div>\n\n\n\n<p class=\"wp-block-paragraph\">The introduction of TPPs into the EU payments market means that sensitive customer information will be shared more frequently between bank and non-bank providers. Banks can\u2019t withhold financial information from TPPs. This data sharing is done with the customer\u2019s consent, of course.<\/p>\n\n\n\n<div class=\"c-small-icon-list\">\n    <div class=\"c-small-icon-list__icon\">\n        <img decoding=\"async\" src=\"https:\/\/chargebacks911.com\/wp-content\/uploads\/2022\/07\/NEW-ICONS-DuoTone-Lineal-Icons-July2022-Update_DuoTone-Iconz-238.svg\" alt=\"Unified Specifications For APIs\"\/>\n    <\/div>\n<div class=\"c-small-icon-list__content\">\n    <h3 class=\"wp-block-heading joli-heading\">\n<span style=\"color:var(--color-primary);\">Change #4<\/span> \n<span style=\"color:var(--color-secondary-yellow);\"> &nbsp;|&nbsp; <\/span>\n Unified Specifications For APIs\n<\/h3>\n    <\/div>\n<\/div>\n\n\n\n<p class=\"wp-block-paragraph\">Data is most vulnerable while in transit, so PSD2 introduced unified technical specifications for application programming interfaces, or APIs\u2014tools that allow bank and TPP software to \u201ctalk\u201d to each other. Under PSD2, payment service providers will need to regularly report on API security measures, changes, and performance. The hope is that these stricter API standards will lead to safer and more secure communications between bank and non-bank TPPs.<\/p>\n\n\n\n<div class=\"c-shortcode-ebook c-shortcode-ebook--whitepaper\"><a href=\"https:\/\/ad.chargebacks911.com\/psd2-whitepaper\" class=\"c-shortcode-ebook__block\" target=\"_blank\"><div class=\"c-shortcode-ebook__inner\"><div class=\"c-shortcode-ebook__graphics\"><div class=\"c-shortcode-ebook__graphics-inner\"><div class=\"c-shortcode-ebook__ipad\">\n\t\t\t\t<img decoding=\"async\" src=\"https:\/\/chargebacks911.com\/wp-content\/themes\/CB911\/assets\/img\/shortcodes\/ebooks\/ipad--psd2.png\" alt=\"PSD2\"\/>\n\t\t\t<\/div>\n\t\t\t<div class=\"c-shortcode-ebook__cover\">\n\t\t\t\t<img decoding=\"async\" src=\"https:\/\/chargebacks911.com\/wp-content\/themes\/CB911\/assets\/img\/shortcodes\/ebooks\/cover--psd2.png\" alt=\"PSD2\"\/>\n\t\t\t<\/div><\/div><\/div><div class=\"c-shortcode-ebook__content\"><span class=\"c-shortcode-ebook__title\">PSD2: <span>What It Is, Why It Matters, and What Merchants Need to Know<\/span><\/span><p class=\"c-shortcode-ebook__description\">This detailed report shows why traditional attempts to combat chargebacks fail and how one fundamental misunderstanding is at the heart of most chargeback management mistakes.<\/p><span class=\"c-btn c-btn--primary c-shortcode-ebook__btn\">Download the FREE Whitepaper<\/span><\/div><\/div><div class=\"c-shortcode-ebook__close\" data-shortcode-ebook-close=\"true\"><svg xmlns=\"http:\/\/www.w3.org\/2000\/svg\" viewBox=\"0 0 20 20\" fill=\"currentColor\"><path fill-rule=\"evenodd\" d=\"M4.293 4.293a1 1 0 011.414 0L10 8.586l4.293-4.293a1 1 0 111.414 1.414L11.414 10l4.293 4.293a1 1 0 01-1.414 1.414L10 11.414l-4.293 4.293a1 1 0 01-1.414-1.414L8.586 10 4.293 5.707a1 1 0 010-1.414z\" clip-rule=\"evenodd\"><\/path><\/svg><\/div><\/a><div class=\"c-shortcode-ebook__overlay\"><\/div><\/div>\n\n\n\n<h2 class=\"wp-block-heading\">What are AISPs and PISPs?<\/h2>\n\n\n\n<p class=\"wp-block-paragraph\">Perhaps the biggest change resulting from PSD2 concerns account information service providers and payment initiation service providers.<\/p>\n\n\n\n<p class=\"wp-block-paragraph\">PSD2 allows for more open banking. This means, for example, that sites like Facebook and Google can now offer their users a host of new financial services. Options range from checking balances and information on multiple accounts to making online payments via direct transfer of funds instead of using a credit or debit card.<\/p>\n\n\n\n<p class=\"wp-block-paragraph\">These services can be specific, or can be provided all within the same platform by an AISP or a PISP. Under PSD2 regulations, both consumers and businesses operating in the EU are free to use these third parties to fill roles previously restricted only to banks.<\/p>\n\n\n\n<div class=\"c-icon-list\">\n\n<div class=\"c-icon-list__item\"><div class=\"c-icon-list__icon\"><object type=\"image\/svg+xml\" data=\"https:\/\/chargebacks911.com\/wp-content\/uploads\/2022\/02\/NEW-ICONS-DuoTone-Lineal-Icons_ReasonCode.svg\" width=\"96\" height=\"auto\"><\/object><\/div><div class=\"c-icon-list__content\"><h3 class=\"c-icon-list__title\">Account Information Service Providers (AISP)<\/h3><div class=\"c-icon-list__text\">\n\nAISPs are service providers who \u2014 at the bank customer\u2019s request \u2014 can gain access to that customer\u2019s account data. That access could be used to analyze a specific user\u2019s spending patterns, either for a single bank or collectively across the customer\u2019s accounts in multiple banks.\n\n<\/div><\/div><\/div>\n\n<div class=\"c-icon-list__item\"><div class=\"c-icon-list__icon\"><object type=\"image\/svg+xml\" data=\"https:\/\/chargebacks911.com\/wp-content\/uploads\/2022\/03\/iconz-money-bag.svg\" width=\"96\" height=\"auto\"><\/object><\/div><div class=\"c-icon-list__content\"><h3 class=\"c-icon-list__title\">Payment Initiation Service Providers (PISP)<\/h3><div class=\"c-icon-list__text\">\n\nPISPs can provide transfer services without the bank\u2019s direct involvement. Common examples include peer-to-peer transfers or centralized bill payment services. Again, the customer would be able to access any bank accounts from the same platform.\n\n<\/div><\/div><\/div>\n\n<\/div>\n\n\n\n<h2 class=\"wp-block-heading\">How are AISPs and PISPs Beneficial?<\/h2>\n\n\n\n<div class=\"c-category-alert c-category-alert--teal\">\n<span class=\"c-category-alert--teal__icon\">\n        <object data=\"https:\/\/chargebacks911.com\/wp-content\/uploads\/2024\/09\/Time-Limit-Icon.png\" height=\"22\"><\/object>\n  <\/span>\n    <span class=\"c-category-alert--teal__heading\">TL;DR<\/span>\n    <p class=\"c-category-alert--teal__description\">Third-party payment providers can \u201cpiggyback\u201d on existing banking infrastructure. This lets them offer services faster and more easily than many traditional financial institutions.<\/p>\n<\/div>\n\n\n\n<p class=\"wp-block-paragraph\">The introduction of AISPs and PISPs allows non-bank third-party payment service providers to offer new and improved financial services to merchants and consumers.<\/p>\n\n\n\n<p class=\"wp-block-paragraph\">This is possible because TPPs have a unique advantage. Using open application program interfaces, (or \u201cAPIs\u201d), third parties can \u201cpiggyback\u201d on a bank\u2019s existing infrastructure. This lets them offer credit, investing products, depository accounts, cross-border transfers, and other solutions faster and more easily.<\/p>\n\n\n\n<p class=\"wp-block-paragraph\">This does not mean, of course, that banks are out of the picture. Banks are obligated to provide third-party players with access to customers\u2019 accounts, assuming the account holder grants permission. But, AISPs and PISPs are still not banks; there are services they will be legally prohibited from offering.<\/p>\n\n\n<div class=\"cta-ab\"><span class=\"cta-ab__cta-content\">New payments technologies. New threats. Prevent fraud and recover revenue with just a few simple clicks.<\/span><span class=\"hs-cta-wrapper\" id=\"hs-cta-wrapper-f46a4ca9-3755-4911-b18a-8ad344729c8e\"><span class=\"hs-cta-node hs-cta-f46a4ca9-3755-4911-b18a-8ad344729c8e\" id=\"hs-cta-f46a4ca9-3755-4911-b18a-8ad344729c8e\"><!--[if lte IE 8]><div id=\"hs-cta-ie-element\"><\/div><![endif]--><a href=\"#\"  target=\"_blank\" data-open-demo-modal><img decoding=\"async\"  class=\"hs-cta-img\" id=\"hs-cta-img-f46a4ca9-3755-4911-b18a-8ad344729c8e\" style=\"border-width:0px;\" src=\"https:\/\/no-cache.hubspot.com\/cta\/default\/2611577\/f46a4ca9-3755-4911-b18a-8ad344729c8e.png\"  alt=\"REQUEST A DEMO\"\/><\/a><\/span><\/span><\/div>\n\n\n\n<p class=\"wp-block-paragraph\">There are other concerns to keep in mind, too. For instance, having third-party platforms provide services through banks means adding another entry point to a given transaction chain. Every entry point has the potential of being a weak link in that chain\u2026 a fact fraudsters are sure to exploit.<\/p>\n\n\n\n<p class=\"wp-block-paragraph\">That said, PSD2 does address this issue. As mentioned before, the directive unifies technical standards surrounding APIs and requires banks and TPPs to regularly report on their APIs\u2019 security measures. Although this requirement will not deter all instances of fraud, it may lower its prevalence.<\/p>\n\n\n\n<h2 class=\"wp-block-heading\">Who Must Comply With PSD2?<\/h2>\n\n\n\n<div class=\"c-category-alert c-category-alert--teal\">\n<span class=\"c-category-alert--teal__icon\">\n        <object data=\"https:\/\/chargebacks911.com\/wp-content\/uploads\/2024\/09\/Time-Limit-Icon.png\" height=\"22\"><\/object>\n  <\/span>\n    <span class=\"c-category-alert--teal__heading\">TL;DR<\/span>\n    <p class=\"c-category-alert--teal__description\">All financial institutions and TPPs doing business in the European Economic Area (EEA) must comply with PSD2. This includes all 27 European Union (EU) member states plus Iceland, Lichtenstein, and Norway. PSD2 is also enforced by the Financial Conduct Authority in the UK, despite the fact that they are not UR or EEA members.<\/p>\n<\/div>\n\n\n\n<p class=\"wp-block-paragraph\">The directive impacts eCommerce merchants, too. In fact, it impacts any business or service that accepts payments from consumers, uses payment or customer data, or otherwise assists in the electronic payment process.<\/p>\n\n\n\n<p class=\"wp-block-paragraph\">PSD2 was first introduced on January 12, 2016, and EU member states were given two years to transpose it into national law. Enforcement of the directive began on September 14, 2019, though not without delays.<\/p>\n\n\n\n<p class=\"wp-block-paragraph\">For instance, the European Banking Authority extended the deadline for Strong Customer Authentication compliance to December 31, 2020, and in the UK, PSD2 the deadline was further extended to March 14, 2022.<\/p>\n\n\n\n<p class=\"wp-block-paragraph\">As of August 2024, PSD2 is in full effect within all EEA countries and the UK. This means, among other things, that all customer-initiated electronic payment transactions must go through strong customer authentication protocols unless they qualify for a very specific exclusion or exemption.<\/p>\n\n\n\n<h2 class=\"wp-block-heading\">SCA Exemptions Allowed Under PSD2<\/h2>\n\n\n\n<p class=\"wp-block-paragraph\">Essentially, everyone who takes or manages payments in the EU or UK must be PDS2 compliant for most transactions. There are, however, a few exceptions to the rule that may apply in specific circumstances.<\/p>\n\n\n\n<p class=\"wp-block-paragraph\">Possible SCA exemptions include:<\/p>\n\n\n\n<div class=\"fix-floatdivs\">\n<div class=\"floatdivs-item\">\n<div class=\"floatdiv\"><img loading=\"lazy\" decoding=\"async\" id=\"j-marge\" class=\"aligncenter imgpad\" src=\"https:\/\/chargebacks911.com\/wp-content\/uploads\/2021\/10\/NEW-ICONS-DuoTone-Lineal-Icons_DuoTone-Iconz_DuoTone-Iconz-23.svg\" width=\"90\" height=\"90\" alt=\"\"\/>\n<p class=\"headertext\">Low-Risk Payments<\/p>\n<p class=\"bodytext\">Payments below \u20ac30<\/p>\n\n<\/div>\n<\/div>\n<div class=\"floatdivs-item\">\n<div class=\"floatdiv\"><img loading=\"lazy\" decoding=\"async\" id=\"j-marge\" class=\"aligncenter imgpad\" src=\"https:\/\/chargebacks911.com\/wp-content\/uploads\/2021\/10\/NEW-ICONS-DuoTone-Lineal-Icons_DuoTone-Iconz_DuoTone-Iconz-41.svg\" width=\"90\" height=\"90\" alt=\"\"\/>\n<p class=\"headertext\">Fixed-Amount Subscriptions<\/p>\n<p class=\"bodytext\">SCA only applies to the first transaction.<\/p>\n\n<\/div>\n<\/div>\n<div class=\"floatdivs-item\">\n<div class=\"floatdiv\"><img loading=\"lazy\" decoding=\"async\" id=\"j-marge\" class=\"aligncenter imgpad\" src=\"https:\/\/chargebacks911.com\/wp-content\/uploads\/2021\/12\/Authenticate-Buyers-DuoTone-Lineal-Icons_DuoTone-Iconz-copy-23.svg\" width=\"90\" height=\"90\" alt=\"\"\/>\n<p class=\"headertext\">Trusted Beneficiaries<\/p>\n<p class=\"bodytext\">In effect, businesses that are considered a \u2018trusted source\u2019, like a utility provider, etc. The customer\u2019s bank maintains the list.<\/p>\n\n<\/div>\n<\/div>\n<div class=\"floatdivs-item\">\n<div class=\"floatdiv\"><img loading=\"lazy\" decoding=\"async\" id=\"j-marge\" class=\"aligncenter imgpad\" src=\"https:\/\/chargebacks911.com\/wp-content\/uploads\/2021\/12\/Accounting-DuoTone-Lineal-Icons_DuoTone-Iconz-copy-19.svg\" width=\"90\" height=\"90\" alt=\"\"\/>\n<p class=\"headertext\">Corporate Payments<\/p>\n<p class=\"bodytext\">Charges made on behalf of a more central agency, such as corporate travel, meals, hotels, etc.<\/p>\n\n<\/div>\n<\/div>\n<\/div>\n<div class=\"fix-floatdivs2\">\n<div class=\"floatdivs-item2\">\n<div class=\"floatdiv\"><img loading=\"lazy\" decoding=\"async\" id=\"j-marge\" class=\"aligncenter imgpad\" src=\"https:\/\/chargebacks911.com\/wp-content\/uploads\/2021\/12\/Card-SecurityCode-DuoTone-Lineal-Icons_DuoTone-Iconz_DuoTone-Iconz-copy-9.svg\" width=\"90\" height=\"90\" alt=\"\"\/>\n<p class=\"headertext\">Payments Made With Saved Cards<\/p>\n<p class=\"bodytext\">The customer will always need to authenticate, and the bank still reserves the right to decline<\/p>\n\n<\/div>\n<\/div>\n<\/div>\n\n\n\n<p class=\"wp-block-paragraph\">Other exemptions may apply in the future, as PSD2 regulations are relatively new. While this might offer a bit of a break from these behemoth changes to well-established payment routines, merchants are less enthusiastic about the changes.<\/p>\n\n\n\n<h2 class=\"wp-block-heading\" id=\"merchant-issues-with-psd2\">Merchant Issues With PSD2<\/h2>\n\n\n\n<p class=\"wp-block-paragraph\">PSD2 implementation has gone fairly smoothly for most parties. This probably owes to the several years of delays allowed for the compliance deadline. That said, there are three points at which PSD2 adoption has negatively impacted operations:<\/p>\n\n\n\n<div class=\"c-icon-list\">\n<div class=\"c-icon-list__item\"><div class=\"c-icon-list__icon\"><object data=\"https:\/\/chargebacks911.com\/wp-content\/uploads\/2022\/04\/Iconz-Numbers-01.svg\" type=\"image\/svg+xml\"><\/object><\/div><div class=\"c-icon-list__content\"><h3 class=\"c-icon-list__title\"><strong>Customer Experience<\/strong><\/h3><div class=\"c-icon-list__text\">\n<p class=\"wp-block-paragraph\">Maintaining an optimized customer experience is already a challenge. However, PSD2 has exacerbated the matter. Today\u2019s consumers value smooth-yet-flexible service at least as highly as security (if not higher). Merchants often struggle to find ways to provide a frictionless experience, especially since implementing the required security measures causes friction, almost by definition.<\/p>\n\n\n\n<p class=\"wp-block-paragraph\">SCA security protocols are a step in the right direction for consumers, merchants, and banks. But, finding a way to implement that security without negatively influencing the customer experience is proving problematic.<\/p>\n<\/div><\/div><\/div>\n\n\n\n<div class=\"c-icon-list__item\"><div class=\"c-icon-list__icon\"><object data=\"https:\/\/chargebacks911.com\/wp-content\/uploads\/2022\/04\/Iconz-Numbers-02.svg\" type=\"image\/svg+xml\"><\/object><\/div><div class=\"c-icon-list__content\"><h3 class=\"c-icon-list__title\"><strong>Chargeback Policy<\/strong><\/h3><div class=\"c-icon-list__text\">\n<p class=\"wp-block-paragraph\">The Consumer\u2019s right to file <a class=\"wpil_keyword_link\" href=\"https:\/\/chargebacks911.com\/chargebacks\/\" title=\"Chargebacks 101\" data-wpil-keyword-link=\"linked\" data-wpil-monitor-id=\"2015\">chargebacks<\/a> on credit and debit card purchases is guaranteed by law. Disputes are different with PISPs, though. Since these are not credit or debit card transactions, there\u2019s no guarantee that a service provider can resolve customer disputes when goods or services aren\u2019t received.<\/p>\n\n\n\n<p class=\"wp-block-paragraph\">Thus far, PISPs have not proved themselves in the arena of disputed transactions just yet. Many merchants have seen little-to-no fluctuations in the frequency of disputes, aside from a general rise in post-pandemic&nbsp;<a href=\"https:\/\/chargebacks911.com\/card-not-present-transactions\/\">CNP transactions<\/a>&nbsp;and their resulting chargebacks. This is a \u201cremains to be seen\u201d situation.<\/p>\n<\/div><\/div><\/div>\n<\/div>\n\n\n\n<div class=\"c-category-alert c-category-alert--red\">\n    <span class=\"c-category-alert--red__icon\">\n        <object data=\"https:\/\/chargebacks911.com\/wp-content\/uploads\/2022\/04\/blog-alert-icon-information.svg\" width=\"20\" height=\"20\"><\/object>\n    <\/span>\n    <span class=\"c-category-alert--red__heading\">Important!<\/span>\n    <p class=\"c-category-alert--red__description\">Chargebacks are widely abused and used to commit <a class=\"wpil_keyword_link\" href=\"https:\/\/chargebacks911.com\/friendly-fraud\/\" title=\"Friendly Fraud\" data-wpil-keyword-link=\"linked\" data-wpil-monitor-id=\"2016\">friendly fraud<\/a>, and the system is in desperate need of an update for the eCommerce age in general. That said, chargebacks remain an essential consumer protection tool, ensuring that consumers won\u2019t pay the price for fraud.<\/p>\n<\/div>\n\n\n\n<div class=\"c-icon-list\">\n<div class=\"c-icon-list__item\"><div class=\"c-icon-list__icon\"><object data=\"https:\/\/chargebacks911.com\/wp-content\/uploads\/2022\/04\/Iconz-Numbers-03.svg\" type=\"image\/svg+xml\"><\/object><\/div><div class=\"c-icon-list__content\"><h3 class=\"c-icon-list__title\">\u201c<strong>One-Leg<\/strong>\u201d Compliance<\/h3><div class=\"c-icon-list__text\">\n<p class=\"wp-block-paragraph\">If you have any transactions with parties in the EU, the PSD2 will affect your business, no matter which side of the pond you call home. Merchants in North America will need to abide by some (though not all) of the new regulations to access consumers in EU member states.<\/p>\n\n\n\n<p class=\"wp-block-paragraph\">Transactions in which one party is in the European Economic Area (EEA), but the other is out, are called one-leg transactions. The PSD2 stipulates that, for one-leg transactions in which the buyer is in the EEA but the seller is not, SCA is still required.<\/p>\n<\/div><\/div><\/div>\n\n\n\n<div class=\"c-icon-list__item\"><div class=\"c-icon-list__icon\"><object data=\"https:\/\/chargebacks911.com\/wp-content\/uploads\/2022\/04\/Iconz-Numbers-04.svg\" type=\"image\/svg+xml\"><\/object><\/div><div class=\"c-icon-list__content\"><h3 class=\"c-icon-list__title\"><strong>3DS Requirements<\/strong><\/h3><div class=\"c-icon-list__text\">\n<p class=\"wp-block-paragraph\">Since PSD2 requires SCA to verify users, many merchants <a data-wpil=\"url\" data-wpil-url-old=\"aHR0cHM6Ly9jaGFyZ2ViYWNrczkxMS5jb20vMy1kLXNlY3VyZS8=\" href=\"https:\/\/chargebacks911.com\/fraud-prevention\/3-d-secure\">sought 3D Secure solutions<\/a> to comply with the directive. This turned out to be a mistake, as PSD2 affects every aspect of 3DS software with some startling side effects.<\/p>\n\n\n\n<p class=\"wp-block-paragraph\">Authentication failures like false declines, abandonment, and a loss of consumer trust are just a few examples of the problems resulting from too many safeguards in place at once. Heightened security is a great thing, but that security can lead to lost revenue and even chargebacks when technical issues arise. 3DS tends to trigger issuer declines to combat fraud, and due to its sensitivity, merchants are feeling the backlash in their conversion rates.<\/p>\n<\/div><\/div><\/div>\n<\/div>\n\n\n\n<h2 class=\"wp-block-heading\" id=\"how-does-psd2-affect-conversion\">How Does PSD2 Affect Conversion?<\/h2>\n\n\n\n<p class=\"wp-block-paragraph\">Let\u2019s look at that last point in a little more detail.<\/p>\n\n\n\n<p class=\"wp-block-paragraph\">Frankly, the initial impact of PSD2 on conversion wasn\u2019t great. Comparing 3DS conversion rates with non-3DS transactions paints a relatively clear picture of PSD2\u2019s failings across the EU.<\/p>\n\n\n\n<h3 class=\"wp-block-heading\">Decrease in Conversions per Country Post-PSD2:<\/h3>\n\n\n\n<table  class=\" table table-hover\">\n<tbody>\n<tr>\n<td style=\"vertical-align: middle; border: 0.5px solid #dce1e6; padding: 2px; text-align: center;\">Great Britain<\/td>\n<td style=\"vertical-align: middle; border: 0.5px solid #dce1e6; padding: 10px; text-align: center;\">Germany<\/td>\n<td style=\"vertical-align: middle; border: 0.5px solid #dce1e6; padding: 15px; text-align: center;\">France<\/td>\n<td style=\"vertical-align: middle; border: 0.5px solid #dce1e6; padding: 22px; text-align: center;\">Spain<\/td>\n<td style=\"vertical-align: middle; border: 0.5px solid #dce1e6; padding: 15px; text-align: center;\">Italy<\/td>\n<\/tr>\n<tr>\n<td style=\"vertical-align: middle; border: 0.5px solid #dce1e6; padding: 2px; text-align: center;\">25-30%<\/td>\n<td style=\"vertical-align: middle; border: 0.5px solid #dce1e6; padding: 10px; text-align: center;\">50%<\/td>\n<td style=\"vertical-align: middle; border: 0.5px solid #dce1e6; padding: 15px; text-align: center;\">40-50%<\/td>\n<td style=\"vertical-align: middle; border: 0.5px solid #dce1e6; padding: 22px; text-align: center;\">40%<\/td>\n<td style=\"vertical-align: middle; border: 0.5px solid #dce1e6; padding: 15px; text-align: center;\">40-50%<\/td>\n<\/tr>\n<\/tbody>\n<\/table>\n\n\n\n<p class=\"wp-block-paragraph\">(Source: <a href=\"https:\/\/www.forter.com\/blog\/the-real-impact-of-psd2\/\" target=\"_blank\" rel=\"noopener\">Forter<\/a>)<\/p>\n\n\n\n<p class=\"wp-block-paragraph\">Referring to this graph, we can see the European market was not prepared for the new regulations. According to Forter, high 3DS authentication declines result from technical failure or issuer decline. This indicates that the payment ecosystem is not fully prepared to handle the new regulation.<\/p>\n\n\n\n<p class=\"wp-block-paragraph\">Now, the good news is that <a href=\"https:\/\/chargebacks911.com\/3-d-secure-2-0\/\">widespread adoption of newer version of 3DS technology<\/a> has largely addressed this problem. But, it still serves as an illustrative example of what can happen when new regulations are implemented without merchants and other players being prepared for the change.<\/p>\n\n\n\n<div class=\"c-shortcode-ebook c-shortcode-ebook--whitepaper\"><a href=\"https:\/\/chargebacks911.com\/chargeback-field-report\/\" class=\"c-shortcode-ebook__block\"><div class=\"c-shortcode-ebook__inner\"><div class=\"c-shortcode-ebook__graphics\"><div class=\"c-shortcode-ebook__graphics-inner\"><div class=\"c-shortcode-ebook__ipad\">\n\t\t\t\t<img decoding=\"async\" src=\"https:\/\/chargebacks911.com\/wp-content\/themes\/CB911\/assets\/img\/shortcodes\/ebooks\/ipad--field-report.png\" alt=\"2022\" chargeback=\"\" field=\"\" report=\"\"\/>\n\t\t\t<\/div>\n\t\t\t<div class=\"c-shortcode-ebook__cover\">\n\t\t\t\t<img decoding=\"async\" src=\"https:\/\/chargebacks911.com\/wp-content\/themes\/CB911\/assets\/img\/shortcodes\/ebooks\/cover--field-report.png\" alt=\"2022\" chargeback=\"\" field=\"\" report=\"\"\/>\n\t\t\t<\/div><\/div><\/div><div class=\"c-shortcode-ebook__content\"><span class=\"c-shortcode-ebook__title\"><span>A Real-World Look at<\/span> Chargeback Management<\/span><p class=\"c-shortcode-ebook__description\">Based on a survey of over 400 merchants, the report presents a comprehensive, cross-vertical look at the current state of chargebacks and chargeback management.<\/p><span class=\"c-btn c-btn--primary c-shortcode-ebook__btn\">Access the FREE Report<\/span><\/div><\/div><div class=\"c-shortcode-ebook__close\" data-shortcode-ebook-close=\"true\"><svg xmlns=\"http:\/\/www.w3.org\/2000\/svg\" viewBox=\"0 0 20 20\" fill=\"currentColor\"><path fill-rule=\"evenodd\" d=\"M4.293 4.293a1 1 0 011.414 0L10 8.586l4.293-4.293a1 1 0 111.414 1.414L11.414 10l4.293 4.293a1 1 0 01-1.414 1.414L10 11.414l-4.293 4.293a1 1 0 01-1.414-1.414L8.586 10 4.293 5.707a1 1 0 010-1.414z\" clip-rule=\"evenodd\"><\/path><\/svg><\/div><\/a><div class=\"c-shortcode-ebook__overlay\"><\/div><\/div>\n\n\n\n<h2 class=\"wp-block-heading\">What About PSD3?<\/h2>\n\n\n\n<p class=\"wp-block-paragraph\">In June 2023, the European Commission proposed a <a href=\"https:\/\/eur-lex.europa.eu\/resource.html?uri=cellar:e09b163c-1687-11ee-806b-01aa75ed71a1.0001.02\/DOC_1&amp;format=PDF\" target=\"_blank\" rel=\"noopener\">third payment services directive (PSD3)<\/a> along with a <a href=\"https:\/\/eur-lex.europa.eu\/resource.html?uri=cellar:04cc5bd5-196f-11ee-806b-01aa75ed71a1.0001.02\/DOC_1&amp;format=PDF\" target=\"_blank\" rel=\"noopener\">Payment Services Regulation (PSR)<\/a>. The final PSD3\/PSR legislative drafts are expected to be available by the end of 2024. If this deadline is met, the rules established by PSD3\/PSR legislation could go into force as soon as the second half of 2026.<\/p>\n\n\n\n<p class=\"wp-block-paragraph\">PSD3\/PSR seeks to improve upon some of PSD2\u2019s practical weaknesses. For example, the pair of proposals will streamline compliance requirements for AISPs and PISPs. This could make it easier for prospective and incumbent firms operating in the EU market to secure and maintain authorization to do business, respectively.<\/p>\n\n\n\n<p class=\"wp-block-paragraph\">PSD3\/PSR also introduces an array of <a href=\"https:\/\/www.engage.hoganlovells.com\/knowledgeservices\/news\/psd3-european-parliament-adopts-amended-psd3-and-psr-texts-at-first-reading\" target=\"_blank\" rel=\"noopener\">new consumer protections<\/a>. It mandates greater fee transparency among ATM service providers, requires \u201cduly justified response and reasoning\u201d from the PSP when accounts are closed, and further limits consumers\u2019 liability for fraud\u2014specifically when they are victims of APP fraud.<\/p>\n\n\n\n<p class=\"wp-block-paragraph\">It will be interesting to see what PSD3 will entail once the final draft is ready. In the meantime, merchants have to focus their attention on remaining compliant while ensuring that conversion is not negatively impacted.<\/p>\n\n\n\n<h2 class=\"wp-block-heading\" id=\"how-can-merchants-counteract-pitfalls-and-remain-psd2-compliant\">How Can Merchants Counteract Pitfalls &amp; Remain Compliant?<\/h2>\n\n\n\n<p class=\"wp-block-paragraph\">Merchants want to get ahead of the game and remain compliant. To do so, a simple fix might be to shift focus to <a href=\"https:\/\/chargebacks911.com\/fraud-prevention\/\">other&nbsp;fraud prevention solutions and practices<\/a>. We recommend that merchants:<\/p>\n\n\n\n<div class=\"c-icon-list\">\n<div class=\"c-icon-list__item\"><div class=\"c-icon-list__icon\"><object data=\"https:\/\/chargebacks911.com\/wp-content\/uploads\/2023\/03\/NEW-ICONS-DuoTone-Tools.svg\" type=\"image\/svg+xml\"><\/object><\/div><div class=\"c-icon-list__content\"><h3 class=\"c-icon-list__title\">Use the Right Fraud Tools<\/h3><div class=\"c-icon-list__text\">\n<p class=\"wp-block-paragraph\">In addition to 3DS, you should deploy several other fraud tools that work in tandem to secure your transaction power. This includes&nbsp;<a data-wpil=\"url\" href=\"https:\/\/chargebacks911.com\/fraud-prevention\/address-verification-service\/\">AVS<\/a>, CVV, and two-factor authentication, to name a few.<\/p>\n<\/div><\/div><\/div>\n\n\n\n<div class=\"c-icon-list__item\"><div class=\"c-icon-list__icon\"><object data=\"https:\/\/chargebacks911.com\/wp-content\/uploads\/2021\/12\/Audit-DuoTone-Lineal-Icons_DuoTone-Iconz-copy-27.svg\" type=\"image\/svg+xml\"><\/object><\/div><div class=\"c-icon-list__content\"><h3 class=\"c-icon-list__title\">Conduct Regular Audits<\/h3><div class=\"c-icon-list__text\">\n<p class=\"wp-block-paragraph\">Conduct regular audits of all internal operations to ensure you\u2019re doing what needs to be done. Are you staying up to date with tech changes? Are your employees abiding by your established protocols?<\/p>\n<\/div><\/div><\/div>\n\n\n\n<div class=\"c-icon-list__item\"><div class=\"c-icon-list__icon\"><object data=\"https:\/\/chargebacks911.com\/wp-content\/uploads\/2021\/12\/Software-up-to-date-DuoTone-Lineal-Icons_DuoTone-Iconz-copy-26.svg\" type=\"image\/svg+xml\"><\/object><\/div><div class=\"c-icon-list__content\"><h3 class=\"c-icon-list__title\">Keep Software Up to Date<\/h3><div class=\"c-icon-list__text\">\n<p class=\"wp-block-paragraph\">Outdated software can cause multiple problems. Outdated fraud prevention solutions may fail to intercept new threats. Keep up with all software updates and patches and deploy them as soon as possible.<\/p>\n<\/div><\/div><\/div>\n<\/div>\n\n\n\n<h2 class=\"wp-block-heading\">Need Help?<\/h2>\n\n\n\n<p class=\"wp-block-paragraph\">PSD2 regulations are complex, and guidelines for compliance can be vague and confusing.<\/p>\n\n\n\n<p class=\"wp-block-paragraph\">What if someone could show you the ropes?<\/p>\n\n\n\n<p class=\"wp-block-paragraph\">With more than a decade of experience in the payments industry, Chargebacks911\u00ae is the leading chargeback management solution provider in Europe. Reach out to us for a no-obligation discussion about how to navigate the regulatory challenges and opportunities presented by PSD2, PSD3\/PSR, and future EU directives.<\/p>\n\n\n\n<div class=\"c-shortcode-faq\" data-shortcode-faq=\"true\" class=\"wp-block-cb911-block-library-faq\"><div class=\"c-shortcode-faq__inner\"><h2 class=\"c-shortcode-faq__heading joli-heading\" id=\"faqs\">FAQs<\/h2><div class=\"c-shortcode-faq__items\">\n\n<div class=\"c-shortcode-faq__item\" data-shortcode-faq-item=\"true\" class=\"wp-block-cb911-block-library-faq-item\"><div class=\"c-shortcode-faq__item-inner\"><div class=\"c-shortcode-faq__icons\"><div class=\"c-shortcode-faq__icons-inner\"><div class=\"c-shortcode-faq__icon c-shortcode-faq__icon--minus\"><svg xmlns=\"http:\/\/www.w3.org\/2000\/svg\" fill=\"none\" viewBox=\"0 0 24 24\" stroke=\"currentColor\" stroke-width=\"2\"><path stroke-linecap=\"round\" stroke-linejoin=\"round\" d=\"M20 12H4\"><\/path><\/svg><\/div><div class=\"c-shortcode-faq__icon c-shortcode-faq__icon--plus\"><svg xmlns=\"http:\/\/www.w3.org\/2000\/svg\" fill=\"none\" viewBox=\"0 0 24 24\" stroke=\"currentColor\" stroke-width=\"2\"><path stroke-linecap=\"round\" stroke-linejoin=\"round\" d=\"M20 12H4\"><\/path><\/svg><\/div><\/div><\/div><h3 class=\"c-shortcode-faq__question\">What is the meaning of PSD2?<\/h3><p class=\"c-shortcode-faq__answer\">Officially the Revised Payment Services Directive and colloquially the \u201cPayment Services Directive 2,\u201d PSD2 is a European Union (EU) regulation that lays out security requirements for payment service providers (PSPs). Entered into force in January 2016, PSD2 expands consumer protections and requires PSPs to implement Strong Customer Authentication security standards.<\/p><\/div><\/div>\n\n\n<div class=\"c-shortcode-faq__item\" data-shortcode-faq-item=\"true\" class=\"wp-block-cb911-block-library-faq-item\"><div class=\"c-shortcode-faq__item-inner\"><div class=\"c-shortcode-faq__icons\"><div class=\"c-shortcode-faq__icons-inner\"><div class=\"c-shortcode-faq__icon c-shortcode-faq__icon--minus\"><svg xmlns=\"http:\/\/www.w3.org\/2000\/svg\" fill=\"none\" viewBox=\"0 0 24 24\" stroke=\"currentColor\" stroke-width=\"2\"><path stroke-linecap=\"round\" stroke-linejoin=\"round\" d=\"M20 12H4\"><\/path><\/svg><\/div><div class=\"c-shortcode-faq__icon c-shortcode-faq__icon--plus\"><svg xmlns=\"http:\/\/www.w3.org\/2000\/svg\" fill=\"none\" viewBox=\"0 0 24 24\" stroke=\"currentColor\" stroke-width=\"2\"><path stroke-linecap=\"round\" stroke-linejoin=\"round\" d=\"M20 12H4\"><\/path><\/svg><\/div><\/div><\/div><h3 class=\"c-shortcode-faq__question\">Is PSD2 applicable in the US?<\/h3><p class=\"c-shortcode-faq__answer\">Officially, no. PSD2 is only enforced within the European Union (EU) and the European Economic Area (EEA). However, PSD2 would apply to US merchants with EU customers or US payment service providers that process payments in the EU.<\/p><\/div><\/div>\n\n\n<div class=\"c-shortcode-faq__item\" data-shortcode-faq-item=\"true\" class=\"wp-block-cb911-block-library-faq-item\"><div class=\"c-shortcode-faq__item-inner\"><div class=\"c-shortcode-faq__icons\"><div class=\"c-shortcode-faq__icons-inner\"><div class=\"c-shortcode-faq__icon c-shortcode-faq__icon--minus\"><svg xmlns=\"http:\/\/www.w3.org\/2000\/svg\" fill=\"none\" viewBox=\"0 0 24 24\" stroke=\"currentColor\" stroke-width=\"2\"><path stroke-linecap=\"round\" stroke-linejoin=\"round\" d=\"M20 12H4\"><\/path><\/svg><\/div><div class=\"c-shortcode-faq__icon c-shortcode-faq__icon--plus\"><svg xmlns=\"http:\/\/www.w3.org\/2000\/svg\" fill=\"none\" viewBox=\"0 0 24 24\" stroke=\"currentColor\" stroke-width=\"2\"><path stroke-linecap=\"round\" stroke-linejoin=\"round\" d=\"M20 12H4\"><\/path><\/svg><\/div><\/div><\/div><h3 class=\"c-shortcode-faq__question\">What are the main requirements of PSD2?<\/h3><p class=\"c-shortcode-faq__answer\">PSD2 protects customer data and enhances payment transaction security by requiring payment service providers (PSPs) to adhere to several standards. First, PSD2 mandates strong customer authentication, which requires PSPs to implement two-factor authentication security measures. Second, PSPs must monitor suspicious or fraudulent transaction and device activity on behalf of customers. Third, PSD2 unifies technical standards regarding application programming interface (API) access for third-party PSPs.<\/p><\/div><\/div>\n\n\n<div class=\"c-shortcode-faq__item\" data-shortcode-faq-item=\"true\" class=\"wp-block-cb911-block-library-faq-item\"><div class=\"c-shortcode-faq__item-inner\"><div class=\"c-shortcode-faq__icons\"><div class=\"c-shortcode-faq__icons-inner\"><div class=\"c-shortcode-faq__icon c-shortcode-faq__icon--minus\"><svg xmlns=\"http:\/\/www.w3.org\/2000\/svg\" fill=\"none\" viewBox=\"0 0 24 24\" stroke=\"currentColor\" stroke-width=\"2\"><path stroke-linecap=\"round\" stroke-linejoin=\"round\" d=\"M20 12H4\"><\/path><\/svg><\/div><div class=\"c-shortcode-faq__icon c-shortcode-faq__icon--plus\"><svg xmlns=\"http:\/\/www.w3.org\/2000\/svg\" fill=\"none\" viewBox=\"0 0 24 24\" stroke=\"currentColor\" stroke-width=\"2\"><path stroke-linecap=\"round\" stroke-linejoin=\"round\" d=\"M20 12H4\"><\/path><\/svg><\/div><\/div><\/div><h3 class=\"c-shortcode-faq__question\">What is the difference between GDPR and PSD2?<\/h3><p class=\"c-shortcode-faq__answer\">GDPR sets standards for the storage, processing, and transfer of customer data. It grants consumers rights over their personal data and is broadly applicable to a wide range of industries (not just the payments space). PSD2 is a regulatory framework that applies more narrowly to the payments industry. It mandates strong customer authentication security measures, enhances fraud monitoring requirements, and unifies technical standards surrounding application programming interface (API) access for third-party payment service providers, or TPPs.<\/p><\/div><\/div>\n\n\n<div class=\"c-shortcode-faq__item\" data-shortcode-faq-item=\"true\" class=\"wp-block-cb911-block-library-faq-item\"><div class=\"c-shortcode-faq__item-inner\"><div class=\"c-shortcode-faq__icons\"><div class=\"c-shortcode-faq__icons-inner\"><div class=\"c-shortcode-faq__icon c-shortcode-faq__icon--minus\"><svg xmlns=\"http:\/\/www.w3.org\/2000\/svg\" fill=\"none\" viewBox=\"0 0 24 24\" stroke=\"currentColor\" stroke-width=\"2\"><path stroke-linecap=\"round\" stroke-linejoin=\"round\" d=\"M20 12H4\"><\/path><\/svg><\/div><div class=\"c-shortcode-faq__icon c-shortcode-faq__icon--plus\"><svg xmlns=\"http:\/\/www.w3.org\/2000\/svg\" fill=\"none\" viewBox=\"0 0 24 24\" stroke=\"currentColor\" stroke-width=\"2\"><path stroke-linecap=\"round\" stroke-linejoin=\"round\" d=\"M20 12H4\"><\/path><\/svg><\/div><\/div><\/div><h3 class=\"c-shortcode-faq__question\">What are the risks of using PSD2?<\/h3><p class=\"c-shortcode-faq__answer\">Most of the risks surrounding PSD2 involve the sharing of \u201csensitive personal data\u201d with third-party payment service providers (TPPs). For example, it may be more difficult for banks that share customer data with TPPs to keep that data private. The movement of data between banks and TPPs also introduces security risks, given that data is most vulnerable when it is in transit. PSD2 also elevates transaction fraud risk, since some TPPs may be unreliable or even criminal.\u00a0<\/p><\/div><\/div>\n\n\n<div class=\"c-shortcode-faq__item\" data-shortcode-faq-item=\"true\" class=\"wp-block-cb911-block-library-faq-item\"><div class=\"c-shortcode-faq__item-inner\"><div class=\"c-shortcode-faq__icons\"><div class=\"c-shortcode-faq__icons-inner\"><div class=\"c-shortcode-faq__icon c-shortcode-faq__icon--minus\"><svg xmlns=\"http:\/\/www.w3.org\/2000\/svg\" fill=\"none\" viewBox=\"0 0 24 24\" stroke=\"currentColor\" stroke-width=\"2\"><path stroke-linecap=\"round\" stroke-linejoin=\"round\" d=\"M20 12H4\"><\/path><\/svg><\/div><div class=\"c-shortcode-faq__icon c-shortcode-faq__icon--plus\"><svg xmlns=\"http:\/\/www.w3.org\/2000\/svg\" fill=\"none\" viewBox=\"0 0 24 24\" stroke=\"currentColor\" stroke-width=\"2\"><path stroke-linecap=\"round\" stroke-linejoin=\"round\" d=\"M20 12H4\"><\/path><\/svg><\/div><\/div><\/div><h3 class=\"c-shortcode-faq__question\">Who needs to be PSD2 compliant?<\/h3><p class=\"c-shortcode-faq__answer\">Any payment service provider that does business in the EU, the European Economic Area (EEA), or the UK, must be PSD2 compliant.<\/p><\/div><\/div>\n\n<\/div><\/div><\/div>\n","protected":false},"excerpt":{"rendered":"<h2 class=\"wp-block-heading\" id=\"conversion-to-compliance-how-psd2-affects-your-business\">How PSD2 Affects Your Business &amp; What Will Come Next<\/h2>\n<p>For regulators in the EU and UK, the goal is always to create a more standardized, universal set of rules for payments. One banking standard \u201cto rule them all,\u201d if you will.<\/p>\n<div><a class=\"btn-filled btn\" href=\"https:\/\/chargebacks911.com\/psd2\/\" title=\"PSD2\">Read More<\/a><\/div>\n","protected":false},"author":9192231,"featured_media":72991,"comment_status":"open","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"_acf_changed":false,"_crdt_document":"","inline_featured_image":false,"footnotes":""},"categories":[58],"tags":[71,80,79],"class_list":["post-22074","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-payment-technology","tag-banks","tag-payments","tag-technology"],"acf":[],"_links":{"self":[{"href":"https:\/\/chargebacks911.com\/wp-json\/wp\/v2\/posts\/22074","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/chargebacks911.com\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/chargebacks911.com\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/chargebacks911.com\/wp-json\/wp\/v2\/users\/9192231"}],"replies":[{"embeddable":true,"href":"https:\/\/chargebacks911.com\/wp-json\/wp\/v2\/comments?post=22074"}],"version-history":[{"count":10,"href":"https:\/\/chargebacks911.com\/wp-json\/wp\/v2\/posts\/22074\/revisions"}],"predecessor-version":[{"id":96375,"href":"https:\/\/chargebacks911.com\/wp-json\/wp\/v2\/posts\/22074\/revisions\/96375"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/chargebacks911.com\/wp-json\/wp\/v2\/media\/72991"}],"wp:attachment":[{"href":"https:\/\/chargebacks911.com\/wp-json\/wp\/v2\/media?parent=22074"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/chargebacks911.com\/wp-json\/wp\/v2\/categories?post=22074"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/chargebacks911.com\/wp-json\/wp\/v2\/tags?post=22074"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}