Exemptions to SCA
Merchants can request specific Customer-Initiated-Transactions (CIT)s be exempt from strong customer authentication (EMV 3D Secure).
This has the benefit of reducing friction for your customers and related checkout drop-outs.
Judopay will not currently automatically apply for transaction exemptions on behalf of the merchant.
- Low-Value Transactions: Transactions up to £45 do not require SCA, up to a maximum of five consecutive transactions, or a cumulative limit of £100.
The consecutive transactions and cumulative limit are made up of all transactions against the card and not the merchant. When the limit is reached, the Issuer will request the consumer to be challenged, before authorising the transaction.
- Low-Risk Transactions: The Transaction Risk Analysis (TRA) exemption flag allows for certain remote transactions to be exempt from SCA, provided a robust risk analysis is performed.
- Trusted Beneficiaries (Whitelisting): This exemption flag gives the card holder the option to add the merchant to their trusted list.
- Secure Corporate Payments: Request exemption for payments made using a corporate card.
Exemption flags provide you with the option to request the issuer, to not challenge the card holder at the time of the transaction.
Judopay has introduced the following exemption flags for you to add per transaction:
- ChallengeRequestIndicator Indicates the type of challenge request:
- No Preference
- No Challenge
- Challenge Preferred
- Challenge As Mandate
- ScaExemption The Customer-Initiated-Transaction (CIT) type, that is exempt from SCA.
This is subject to the Issuer’s decision; they do not have to honour this request and can reject authentication with a soft decline. A soft decline is where the issuer rejects the exemption and requests the card holder be challenged for 3D Secure.
For more information, see 3D Secure 2 Payment Flow.