Dec/090
If you are an existing PayPal Website Payments Pro (UK) merchant, you may have received the following communication from PayPal:
“We’ve noticed that you haven’t yet set up 3-D Secure on your website. As previously communicated, please be aware that as of 21 January 2010, you will not be able to process Maestro payments through UK Website Payments Pro – Direct Credit Card Payments without 3-D Secure technology. This is due to MasterCard Compliance rules.
It is important that before this date you remove the Maestro option as a card type on your Card deposit page. This will ensure you keep declines to a minimum, maintain conversion and provide a good experience for your customers.
If you want to continue processing Maestro transactions after 21 January 2010, you must implement 3-D Secure. PayPal does not charge for the use of 3-D Secure and nor does Cardinal Commerce, our chosen 3-D Secure technology provider”.
PayPal have teamed up with Cardinal Commerce to provide the 3D Secure technology that will permit you to handle credit cards operating under Visa Verified By Visa, Mastercard SecureCode, and, in the UK, Maestro MSC technologies. PayPal’s About 3D Secure webpage answers the following questions:
- Who does this affect?
- What do I have to do?
- How much will 3-D Secure cost?
- When do I have to do this by?
- What happens if I don’t implement 3-D Secure?
NitroSell eCommerce currently supports two versions of PayPal Website Payments Pro, which have been updated to handle these latest 3D Secure requirements:
- PayPal Website Payments Pro (PayFlow Edition UK);
- PayPal Website Payments Pro (US, Canada, UK).
For technical details on our support for these two versions, please visit NitroSell KB Article #488: Setting Up PayPal Website Payments Pro with 3D Secure
* Please note that the above 3D Secure updates are currently available only to webstores running in the Beta and Early Adopters’ versions of NitroSell eCommerce. Feel free to open a ticket on the Partner Portal to discuss your PayPal 3D Secure options with a member of our services team.
Nov/091
In the first of a three-part series on combating fraud, we look at the address verification system (AVS). AVS assists in the authentication of a shopper claiming to own a credit card. It compares the shopper’s billing with the address(es) on file with the card company. AVS is not an exact science, however, because it only checks the numeric portions of a cardholders billing address.
An Example
Consider the following US billing address:
2495 Truxtun Rd,
Suite A,
San Diego, CA 92106
USA
The AVS system will see it as 2495 for the address numeric, and 92106 for the zip code.
Taking another example:
2495 Rosecrans St,
Suite E,
San Diego, CA 92106
USA
It will be read as 2495 for the address numeric and 92106 for the zip code.
As far as AVS is concerned, both addresses are the same! Normally, if the AVS check returns a negative result, the transaction will be declined. However, declines can result from common and legitimate issues. For example, a card holder may have moved address and not updated the details on file with the issuer.
Flexible AVS Options with NitroSell eCommerce
Techniques to combat fraud should be employed by every retailer and, where possible, we will continue to implement anti-fraud techniques in our payment gateway integrations. With AVS, NitroSell eCommerce provides you with as much information as possible, helping to minimize false positives and empower you to make informed decisions about fraud.
When configuring your payment gateway in the WebStore Manager, the following options are available:
- Perform AVS Check: notification service only. In the event of a negative result, the transaction will be permitted and the accompanying result notice will be presented to you in RMS during order fulfilment;
- Use Strict AVS Check: block transactions if AVS fails. An AVS check will return a different AVS code depending on the result. With this option enabled, a transaction will pass only if the AVS check returns a code that satisfies the standard list of safe AVS codes.
If the AVS options above are not available for your payment gateway, please feel free to open a ticket on our Partner Portal, where we will be happy to discuss your payment gateway options with you.
Nov/091
If your payment gateway supports it, delayed capture allows for transactions to be authorized on your shoppers’ cards without immediately settling the funds. The advantages of using it include:
- It gives you time to verify the authenticity of a customer’s details and credit status before shipping the purchased product, thus assisting in the prevention of credit card fraud;
- You can cancel (void) a payment instead of settling it, simplifying the refund process;
- Funds are reserved on the customer’s card at checkout and are only fully captured when the order is fulfilled.
Offline Settlement in RMS
NitroSell eCommerce semi-automates the settlement process. With offline settlement you avoid the need of logging into your payment gateway portal, or otherwise contacting your payment gateway, to capture funds.
At the point of processing the transaction in Microsoft RMS, a connection is made via the webstore to your payment gateway. The webstore requests the payment gateway settles the funds, and sends the result back to the tender process in RMS.
As each transaction has a unique identifier, customer credit card details, or other personally identifiable customer information are not transmitted. It is a secure and convenient means of settling delayed capture funds directly from RMS.
Some payment gateways provide a partial settlement function. This is most useful in cases where, for example, you have a an order that contains an item that is low in stock. With partial offline settlement you have the option to capture just those funds required to process the items currently in stock, and set aside the remainder of the order. Once stock levels have been replenished the order can be fulfilled, allowing you to capture the funds for the outstanding item and complete the order.
If your chosen payment gateway does not provide delayed capture or offline settlement capabilities, please feel free to open a ticket on our Partner Portal, where we will be happy to discuss your payment gateway configuration options with you.
Nov/090
If you were using VeriSign PayFlow, you should have received notification from Paypal that the service would no longer be supported, following a software development kit (SDK) update. The notice stems from PayPal’s acquisition of VeriSign, almost four years ago. We had maintained the pre-existing VeriSign integration but support for it will expire on January 4, 2010.
To ensure continuity, we have moved your webstore to the new service. When you next log in to the WebStore Manager, on your Payments configuration page, you will notice the service has been renamed to PayPal PayFlow. As part of PayPal’s upgrade requirements, we added support for the new service and automatically migrated your account details to it, at no cost to you.
For more information, please see the PayPal blog and the PayPal Gateway Update page.
If you have any questions regarding this update, please don’t hesitate open a ticket on the Partner Portal.