Skip to content

About SCA

Strong Customer Authentication (SCA) is a requirement of the EU Revised Directive on Payment Services (PSD2) on payment service providers within the European Economic Area. The SCA requirement comes into force from the 30th of October 2020. The requirement ensures that electronic payments are performed with multi-factor authentication, to increase the security of electronic payments.

3DS version 1.1 does NOT fulfill the requirements of SCA and transactions verified by this version are considered non compliant. Please use version 2.2 or higher.

Out of scope transactions

The following transaction types are out of scope of SCA (rules of SCA do not apply):

  • Merchant Initiated Transactions (MITs) (subsequent transaction initiated by the merchant)
  • Mail Order/Telephone Order (MOTO)
  • "One-leg-out". If the card issuer or acquirer are located outside the EEA.
  • Anonymous transactions (for example anonymous prepaid cards)