Is your online business ready for the PSD2 regulation?
The approval of the European Union’s (EU) Payment Services Directive (PSD2) in January 2018 means that the landscape for online transactions in the UK is set to change forever.
From 14th September 2019, businesses that accept online payments from customers will be required to comply with PSD2, which builds on the original Payment Services Directive (PSD) established in 2007 to foster safer, more secure payment services.
PSD2 is designed to enhance PSD in three key areas:
- Improved consumer rights relating to complaints handling, surcharges and currency conversions
Online businesses will be required to ensure payment terms and conditions are clear and transparent. A structured complaints procedure should also be in place to resolve issues within 15 days. PSD2 also aims to prohibit the use of surcharges on specific card transactions, enhancing the Interchange Fee Regulation (IFR) introduced in 2015.
- Improved security based on the Strong Customer Authentication (SCA) criteria
The new SCA criteria will require online businesses to operate two-factor identification for certain transactions. Customers will be required to provide two of three ID options: knowledge (a PIN number or password), inherence (fingerprint or retina scan) or possession (payment card or mobile device). One-in-ten online transactions will be required to pass two-factor authentication. Single online transactions under €30, up to a maximum of €100 or five transactions will be exempt.
- Allowing third-party access to consumer data to foster new, innovative payment and account services
One of the biggest aspects of PSD2 is to create an open framework that allows third-party fintech firms and retailers to have access to consumer banking data. Access to consumer data will allow online retailers to create a more seamless payment experience by introducing alternative payment methods.
Who does PSD2 affect?
All businesses that accept online payments via an online gateway (e.g. Sage Pay and Worldpay) will be required to comply with PSD2 from 14th September 2019.
Achieving PSD2 compliance is an important starting point for online merchants. PSD2 plans to usher in a new era for payment technology and data insights that can help online businesses to create slicker, more personalised customer experiences.
At Unity Online, our digital experts are committed to working closely with online businesses to assist with achieving PSD2 compliance. We’ve already been undertaking several compliance-based tasks on behalf of our clients. Our team have been busy updating terms and conditions to ensure clients better comply with the new regulations and updating necessary plugins. We’ve also been reviewing payment integrations and creating custom contact forms for prospective payment complaints to speed up the returns and refund process. We’re equally happy to offer guidance and support for other online retailers unsure about the new PSD2 landscape too.
If you’d like to arrange a free initial discussion on your PSD2 obligations as an online business, please don’t hesitate to contact our team and start taking a different digital path with Unity Online.