The peaks and pitfalls of payments tokenization
High profile data breaches, mounting fraud losses, regulatory demands and rising consumer concerns have driven retailers and banks to increase their efforts to improve standards of payment security.
It is no surprise, then, that the use of tokenization is starting to gain significant ground, with a recent survey by Forrester Consulting for ACI indicating that 34% of retailers are already using the technology and a further 36% are conducting pilot programs.
Tokenization, which replaces the Primary Account Number with a unique value or numeric sequence, renders transaction data useless to thieves because they are unable to reverse the process to uncover the original data. As well as deterring hackers and helping to protect sensitive information, the use of tokenization outwardly demonstrates a strong proactive measure in the fight against fraud - helping to boost consumer confidence and brand reputation.
Recently, tokenization has become particularly popular with card-not-present channels, especially in the mobile payments space where some of the mainstream players have pinned their security strategies around the approach. The ability for tokenization to simultaneously enhance the security of digital payments and simplify the customer buying experience has made it an appealing and logical option.
Tokenization also delivers some great benefits around regulatory challenges – by reducing their storage of sensitive data, merchants can reduce the scope and costs of PCI DSS compliance.
Despite its undeniable advantages, however, tokenization and how it is implemented can have critical implications for payments risk management and fraud prevention. To ensure that tokenization delivers effectively alongside other operational solutions, merchants need to scope and assess a variety of challenges including:
- Dealing with legacy data or data at rest – to what degree will tokenization be introduced in these areas?
- How will reconciliations, returns, refunds and chargebacks be handled during the implementation period?
- What are the benefits of single vs multi-use tokens, and how do they impact on velocity rules and link analysis?
- Token format – what ‘identifiers’ might need to be retained in the transaction information to support effective order reconciliation and fraud detection?
- Are there limitations in deploying an in-house tokenization solution?
- What is the place of tokenization in the broader payments security and fraud prevention strategy?
Failing to thoroughly understand these and other areas can have a far-reaching and costly impact on the effectiveness of fraud management strategies and on brand loyalty, bringing the risk of missed fraud and disruption to the customer experience.
Related Blog Posts
Beyond Borders: Navigating the Challenges of eCommerce Expansion
eCommerce continues to flourish, with impressive growth figures year after year. In 2018, global online sales reached almost $3 trillion, and are expected to hit $4 trillion by the end of 2020.
Despite eCommerce taking an increasing slice of the retail pie (which could now be as high as 15 percent according to recent figures), it is increasingly challenging, with competition and cost pressures creating significant issues for merchants of all sizes.
Payments and Fraud: The Paradox Twins
Digital commerce through web and mobile is where merchants predominantly experience shopper growth today. This has become a hugely important domain for their focus. It offers a means for international growth, new market penetration and a way to engage with shopper-hungry Millennials in their culture. Merchants frequently adopt a Digital-First, eCommerce-First or Mobile-First strategy to ensure full corporate buy-in to this strategy.
Open Payments Systems for Merchants: Don't Close Down Your Options
Remember “Open Systems”?
It was a big industry nom du jour in the 80s and 90s. Every IT system had to be open and therefore flexible and future-proof. Nobody can argue with the logic behind this; making systems easy to integrate with other systems, ensuring vendors could cooperate with one another; creating agility to improve time to market and drive down costs.
Knowing New Customers – And How Shared Data Helps in Fighting Fraud
As the eCommerce industry continues its rapid growth, the lines between physical and digital shopping are becoming increasingly blurred. These changes are creating a number of challenges for merchants, not least around customer visibility and fraud prevention.
Why Non-Functional Requirements Should be a Few of Your Favorite Things
It’s not unusual for me to be questioned by retailers as to why some payment solutions are priced differently or more expensively than others – in fact, it would be unusual not to be asked those questions when dealing daily with procurement and finance teams of major multi-national multi-channel merchants!
Adding a Global Payments Layer for Future Growth
Digitization has changed the payments industry completely and irrevocably. Cash payments are in full retreat, as more people pay digitally – with more than 1.6 billion people now shopping online. The digital customer expects an extremely fast and convenient payment experience, with high security standards, and immediate availability of payments information.
Major League Baseball’s Tampa Bay Rays Tell Cash, “You’re Out!”
As a lifelong baseball fan and former resident of Tampa, Florida, I had the pleasure of spending a summer night or three at Tropicana Field, watching my beloved New York Yankees take on the hometown Tampa Bay Rays. And as a fan of cheap tickets, air conditioning in the Florida summer and plenty of great seats, I always enjoyed the “The Trop” despite its poor reputation.
Let’s Get Phygital: eCommerce Is Coming To A Store Near You
While payments vendors continue to pitch and strategize with a focus on omnichannel, the omnichannel story has already moved on.
Make no mistake – omnichannel remains important and the best vendors have solutions that provide a single cloud payments service capable of delivering a single view of the customer across stores and digital channels. And the best retailers utilize these solutions to deliver efficient cross-channel shopping experiences. Meanwhile, many other retailers get by (though seldom rise to the top) with a siloed approach.
Around The World: Taking Stock of Global eCommerce in 2019
As I head to #NRF2019 in New York City next week, I’m excited to see how some of the biggest retailers and merchants see the industry evolving over the coming year. What trends they think are going to shape 2019, and which of 2018’s buzzwords can be put to bed.
Fraudsters Don’t Wait for Peak, So Neither Should You: 2019 Fraud Strategy Starts Now!
In existence for barely two decades, eCommerce has transformed not only the way we shop, but also how retailers plan and execute their marketing strategies around the peak shopping season. Now that we’re deep into this period, retailers will have prepared for changes in buyer behaviors, relaxed their strategies to be within the limits of manageable review rate, and most important of all, put strategies in place for increased fraud attempts.