Tips for Protecting Your Online Business From Debit and Credit Card Fraud

 

Man using mobile phone and laptop for shopping online by credit card. Pays for purchase.online shopping, online payment,buy and sell products .

In 2017, online shoppers spent $453.46 billion in the United States alone. With profit potential that great, every business with a product or service that can be offered online is either doing so or risking being left behind. Wherever there’s money to be made, however, there are people rushing to learn how best to steal it.

The ubiquity of plastic as the payment method of choice online has resulted in a thriving underworld industry of debit and credit card fraud. And unfortunately for online vendors, one of the most common forms of card fraud is “card not present” theft. Online vendors don’t have the luxury of checking ID to be sure the names match. That being said, there are a number of relatively simple steps that e-merchants can take to mitigate the risk of online card fraud.

 Tokenization

One of the best ways in general to reduce fraud risk is to contract with a trusted, established payment processing institution. An experienced payment processing firm should be able to handle everything from accounts receivable collections software for accounting to tokenization. Tokenization is a process that replaces sensitive data, like payment card numbers, with a “token.”

The token is a unique identifier that stands in for the actual card information (which is stored off-network in an ultra-secure data vault). The token can be effectively used by the business as necessary but is meaningless and useless to any hacker who breaches a less-secure local database, network, or payment application.

Emails, Addresses, and Overseas

Sometimes, security measures are relatively low-tech, requiring good old-fashioned risk management. In this case, keeping an eye out for details like the validity of an email address. It’s obviously not a sure-fire sign of larcenous intent, but if an email address appears to be a random string of characters at a free email domain, be wary.

The same goes for orders in which the billing and shipping address differ. There are countless legitimate reasons for that, but it can be a red flag, particularly if expedited shipping is requested. Overseas sales can be tricky. Obviously, the entirety of the planet beyond your borders is a great market, but it’s also a bit of a risk. Make sure the aforementioned payment processing firm you contract with has a solid foundation in international payment processing to help mitigate risks.

Always Require the CVV Code

This one may seem obvious, but a surprising number of online businesses still allow card transactions without requesting the card verification value (CVV) code. The CVV is a three- or four-digit code on the back of a credit or debit card. When hackers, identity thieves, and scammers get their hands on payment card numbers online the CVV is very often not present with that information. Requiring the CVV is therefore a small step that significantly mitigates the risk of fraud.

About Payscout

Payscout has worked to establish the company as one of the most trusted payment processing providers. Facilitating safe and convenient payment solutions across six continents, Payscout has been linking merchants and consumers with credit, debit, mobile, ATM, and alternative payment solutions. Managing payments, whether on-site or across mobile and online media, is easy with Payscout. Payscout integrates with more than a dozen software applications and also offers healthcare payment processing as well as specialization in non profit payment processing. Whatever your specific payment needs, Payscout can accommodate you with quick, convenient, friendly, and secure service.

Learn more about Payscout’s payment processing solutions at www.payscout.com

The Financial Challenges of Running a Non Profit and How Payscout Can Help

Young woman stands addressing colleagues at a meeting

Running a non profit can be an incredibly challenging calling. Non profits deal with nearly all of the challenges for-profit businesses do while concurrently having to fundraise; operate on a shoestring budget (which generally necessitates a small staff); and navigate compliance applying for grants, etc.

And once you’ve built your donor or supporter base and you’re ready to start accepting donations, providing a modern, secure payment-acceptance model results in an entirely new set of challenges.

Keeping track of donation amounts, the payment method used, whether or not the donations are recurring or one-time, ensuring PCI-compliance for payments, and all of the other challenges involved in payment processing can make the entire process seem overwhelming. While some of these challenges are simply part of the tough (but often rewarding) undertaking that is running a non profit, Payscout can take the hassle out of managing your payment processing model. And with specializations in financial arenas as complex as healthcare payment processing, they’re up to the challenge.

 The Relevant Challenges

As mentioned, it’s a great feeling when money starts coming in to your non profit. It’s a less than great feeling when the complexities of managing it become difficult to navigate. For instance, without a unified non profit payment processing platform, a non profit can find itself struggling to juggle contributions from credit cards, debit cards, checks, or donors requesting electronic payments, as well as from local and international sources.

To further complicate matters, those contributions can come from one-time donors, members with recurring donations, grants, or fundraising events; and in some cases, alternate sources of income non profits can establish. When the donation is from an international source, international payment processing and everything it entails becomes necessary to sort out. Additionally, as the staffs of non profits are often operating on a tight budget, losing staff members familiar with this sort of financial organization can create chaos.

 What Payscout Can Do for You as a Payment Processor

Payscout has established a reputation as one of the world’s premier payment processing providers by establishing expertise in every facet of the industry, from proprietary accounts receivable collections software to virtual reality commerce. And that level of comprehensive expertise and experience is important for ensuring that a non profit’s payment processing platform is as secure as possible while providing ease of use for both staff and donors.

Payscout provides PCI-compliant hosted payment forms that allow donation via debit and credit cards and checks, including user-friendly options for automatic recurring payments, which help ensure consistent, ongoing support. That the platform is PCI-compliant serves as a guarantee that donations are always going to be secure and safe to make. Payscout also works with every non profit individually to establish a payment processing dynamic that’s especially suited for their size and needs.

 Take the financial potential of your non profit to the next level, at www.payscout.com

The Most Common Debit and Credit Card Fraud Risks for Brick-and-Mortar Businesses

Store merchant taking cc for payment

Ecommerce has emerged as a monumental market presence, and along with it, the vast, destructive shadow world of hacking and digital fraud has evolved equally as rapidly. Neither of these trends should be overlooked by brick-and-mortar business owners, whose very livelihoods depend on addressing potential threats to their businesses. Unfortunately, it’s often the proprietors and managers of brick-and-mortar businesses themselves overlooking said vulnerabilities. And in an age of mobile payment processing and dynamic points of sale, it can be an expensive oversight.

But it’s not that these entrepreneurs are necessarily lax or indifferent about security. It’s not uncommon for a location’s management and even risk-management policymakers to invest in robust loss-prevention strategies and institute strict check-vetting and acceptance, while overlooking one of the most common, insidious, and expensive security vulnerabilities: debit and credit card fraud. Fortunately, there are some practical steps businesses can take to greatly reduce their fraud vulnerability.

 ID Checks for Stolen Cards

Stolen credit cards are one of the most common manifestations of credit card fraud. Rather than somehow electronically intercepting card information, or stealing someone’s identity (usually), the thief has come into physical possession of the card. While thieves will often use stolen cards to make card-not-present purchases online or over the phone, many will also attempt to use them for physical purchases. Generally, this is one of the easiest forms of fraud to prevent by requiring that the clerk check the ID of the purchaser.

 Dummy Card Fraud

There are two variations of dummy card fraud featuring similar scams: doctored cards and counterfeit cards. Doctored cards are popular with scammers who have actual credit card numbers but don’t have the equipment to rewrite counterfeit cards. Doctored cards are real credit cards, usually printed rather than embossed, that have had their information changed. The magnetic strip on the card is then either altered or erased so when the merchant scans the card it then fails to read it, resulting in the scammer asking that the information be entered manually.

Counterfeit cards are a variation of doctored cards. Oftentimes, if the scammer has access to the technology necessary for actually printing and encoding the magnetic strip of a credit card, they will produce new credit cards written with the stolen card number.

Brick-and-mortar business owners can curb dummy card fraud by ensuring their POS equipment is EMV (chip) compatible, as chip technology is much harder to counterfeit than its magnetic-stripe-based counterpart.

How to Protect Your Business

Technology may seem like the logical place to start when it comes to protecting your business from fraud, but the reality is, successful fraud-prevention starts with people. Employee training is key. Employees are usually both the first line of defense against fraudsters and those targeted by them. Often, just a basic level of training on spotting and avoiding fraud is sufficient to significantly reduce it. The balance most businesses struggle with for card security is being as vigilant as possible without alienating the customer. No one wants to have to share their birth certificate and utility payment processing documentation to confirm their address to buy a new electronic device. But a little security can go a long way. Simply requiring customers to show an ID that matches the card and calling a manager for any card that has to be entered manually can be enough to both prevent incidences of fraud and deter future scammers.

 About Payscout

Payscout has worked to establish the company as one of the most trusted payment processing providers in the world. Facilitating safe and convenient payment solutions across six continents, Payscout has been linking merchants and consumers with credit, debit, mobile, ATM, and alternative payment solutions. Managing payments, whether on-site or across mobile and online media, is easy with Payscout. Payscout integrates with more than a dozen software applications and also offers healthcare payment processing as well as specialization in non profit payment processing. Whatever your specific payment needs, Payscout can accommodate you with quick, convenient, friendly, and secure service.

Learn more about Payscout’s payment processing solutions at www.payscout.com

The Convenience Fee Conundrum

Working with laptop in office
Convenience Fees are an attractive solution for boosting your bottom line, but if you’re not careful, they can cost you your ability to accept payments altogether.

In the accounts receivable management (ARM) world, convenience-fee payment models are growing in popularity, and for good reason: When applied correctly, they have the ability to reduce a merchant’s payment processing costs significantly by charging the consumer or debtor a flat fee for the convenience of accepting payments online or over the phone (depending on the consumer’s/debtor’s State of residence).

What many collection agencies may not realize is that convenience-fee solutions are the subject of serious scrutiny from compliance experts (and enforcers), and if they’re not properly applied, they can cost the merchant their ability to accept payments altogether. Having their merchant accounts closed, being blacklisted, and being cut off from their banks are just a few of the potential hazards for a merchant who deploys this model without doing their due diligence.

Here is what you should consider if you’re thinking about offering some type of convenience fee solution:

Convenience Fees and Compliance

There are three layers of compliance that a merchant must consider if they are using a convenience-fee model:

  • Operating in accordance with the Fair Debt Collection Practices Act (FDCPA), a federal law that governs the practices of third-party debt collectors;
  • Adhering to state requirements;
  • Compliance with Card-Brand (Visa, MasterCard, American Express, etc.) rules

FDCPA guidelines prohibit “the collection of any amount (including any interest, fee, charge, or expense incidental to the principal obligation) unless such amount is expressly authorized by the agreement creating the debt or permitted by law,” 15 U.S.C. 1692f(1). However, a third-party vendor, in most cases a payment processor, can charge the fee because that vendor is not subject to FDCPA, which only applies to third-party debt collectors.

The second leg of compliance is the state requirements or restrictions. Abiding by these rules is not as simple as just keeping a list of restricted states, as case law is constantly changing. Due to the dynamic nature of state requirements, it is crucial to monitor these changes and work with partners who stay up to date on statutes and can handle the differences in their technology.

Most of the payment processors who offer convenience fees are doing so in compliance with FDCPA and state requirements. From the card-brand perspective, however, there is a set of very specific rules pertaining to added charges such as convenience fees, Visa’s being the most restrictive, and many popular solutions are not in compliance with these rules.

Visa defines three main types of fees: Surcharges, Convenience Fees, and Service Fees, each with their own set of restrictions. In the US, a Merchant that charges a Convenience Fee must ensure that the fee is assessed as follows:

1)  Charged for a bona fide convenience in the form of an alternative payment channel outside the Merchant’s customary payment channels and not charged solely for the acceptance of a Card

2)  Added only to a Transaction completed in a Card-Absent Environment

3)  Not charged if the Merchant operates exclusively in a Card-Absent Environment

4)  Charged only by the Merchant that provides goods or services to the Cardholder

5)  Applicable to all forms of payment accepted in the payment channel

6)  Disclosed clearly to the Cardholder:

– As a charge for the alternative payment channel convenience

– Before the completion of the Transaction the Cardholder must be given the opportunity to cancel.

7)  A flat or fixed amount, regardless of the value of the payment due

8)  Included as part of the total amount of the Transaction and not collected separately

9)  Not charged in addition to a surcharge

10) Not charged on a Recurring Transaction or an Installment Transaction

It’s the fourth and eighth items in this list that can, together, compromise a merchant account quickly: Convenience fees have to appear (and be processed and authorized) as a single transaction by the merchant of record.

As you are reading this, if you’re currently deploying or considering a convenience fee model that involves running the fee as a separate transaction, you may be at risk of losing your merchant processing account.

Fully compliant programs do exist that can minimize your business risk while reducing your payment acceptance costs.

Click here to learn more.

Four Big Challenges Facing Healthcare Companies

Two male doctors in consultation at desk in office

The healthcare industry is growing increasingly complicated. Providers are often operating at the intersection of complex IT and billing solutions, competing state and federal policies, and the ever-evolving data-security landscape.

While this operational complexity can seem daunting, a recent survey has shed light on the various challenges facing the industry today, as well as issues that healthcare servicers will encounter in the future.

A 2018 Healthcare Business Strategy and Technology Survey polled the nation’s leading healthcare providers to reveal insights, challenges, and strategies related to topics such as healthcare payment processing, data security, billing and coding, and others.

Survey respondents included:

  • Healthcare collections facilities (50%)
  • Multi-location hospitals with shared service centers (25%)
  • Single location medical practices (25%)

The survey revealed the following challenges:

Payment Collections

Respondents said that patients’ inability to pay is the biggest challenge they face when it comes to revenue reconciliation. Respondents also noted that a lack of payment channels can also hamstring healthcare operations, including an absence of online payment portals, virtual assistants, or hospital staff to assist patients.

When it comes to payment processing and collections, 90% of respondents said they accept electronic payments from patients, including credit cards and debit cards as well as health savings or flexible spending accounts.

Integrating IT solutions like accounts receivable collections software into your healthcare organization can help alleviate some of the billing pains associated with patient checkout and payment collections. Accounts receivable collections software can also ensure that financial transactions are secure, efficient, and provide real-time data.

Innovative Payment Options

The survey also revealed that web payment options are increasingly important for healthcare providers. More than 60% of respondents said their institution or organization plans to add web payment options within the next 12 months.

Additionally, approximately 25% of respondents said they plan to add automated payment options to their phone system. This was an increase of 12% from last year.

Interactive voice response options, such as virtual assistants and intelligent automation, increased from last year as well. According to the survey, an estimated 50% of healthcare providers reported using or planning to adopt automated response systems, which is an increase of 7% from last year.

HIPAA Compliance

Regulations stipulated under the Health Insurance Portability and Accountability Act (HIPAA) are a big deal for healthcare providers, according to the survey. HIPAA rules are extremely complex but are intended to protect patients’ medical records and personally identifiable information. In fact, a majority of survey respondents ranked HIPAA compliance and reporting requirements as the top two factors when choosing a payment processing service.

Documentation

Although documentation practices such as coding and billing weren’t discussed in the survey, insufficient or inaccurate documentation can lead to huge headaches for both the patient and healthcare provider. An estimated 80% to 85% of denied claims stem from incorrect documentation. Essentially, insurance companies can deny claims if bills and medical records are not coded to complete accuracy.

About Payscout

Payscout is a trusted, global payment processing provider working across six continents and connecting merchants and consumers via credit, debit, ATM, and alternative payment networks. Payscout makes it easy to manage payments on-site and across online and mobile platforms. Payscout even offers customized API connections for international payment processing and integrates with over a dozen software applications. If you work in a healthcare environment, Payscout’s mobile payment processing services can help drive revenue efficiently and securely.

Learn more about the importance of payment processing systems at www.payscout.com