The Seasons Are Changing (And So Are Fraud and Regulations)
Monday, November 13, 2017
If you smell the air, you can sense the seasons changing; a little crispy cold moving in suddenly, the leaves are reddening and the winds of Faster Payments and PSD2 are kicking up. Smooth transition, right? So, yeah, seasons change, and so do regulatory regimes. In the US, we’ve been largely left to our own discretions about how to run our fraud shops, with some regulatory oversight regarding disputes handling. Historically, financial institution processes around authentication and fraud monitoring (including analytics and strategy) could be anything or nothing, depending on an institution’s risk appetite. Like the seasons, this might be in transition.
Winds of change blowing from Europe
The approach is at least surfacing in Europe, where the Payment Services Directive 2 (PSD2) is mandating some minimum requirements for high-risk transaction monitoring if a payments player wants to get between banks and merchants. This innovative mandate will place minimum requirements to ensure that there are minimum requirements for fraud strategy; that strong (two-factor) authentication will underpin transactions, and it specifies the thresholds to which controls will be applied. It does not mandate machine learning, or biometric authentication, but rest assured, these elements are going to be heavily favored. The regulations that are there, however, will have teeth, and monitoring is mandated.
PSD2 has the potential to be hugely disruptive to the legacy banking business models, and it sets a very serious precedent on floor standards for future technologies, regardless of the channel. In the US, we have our own Secure Payments Task Force (convened by the Federal Reserve), with one of the tasks including the evaluation of future recommendations in payments to ensure that payments security is up to the standard of the western world. Yes, recommendations are not regulations, but if we are going to move to Faster Payments, and both understand and mitigate the risks associated with mobile wallets, we need to be sure that we do it right and not compromise the security of all stakeholders when recommendations are published.
So, while regulations may not be immediately forthcoming, best practice recommendations for the industry might be the first step in that direction, acting as a stopgap for a very compliance-sensitive industry. That means that if a regulator sets foot onsite, sees a significant control deficiency and identifies it as a safety and soundness risk, it could be a finding.
Combine that with the influence that PSD2 will bring to our shores in the US, and you can see the setup. Control standards will not be so isolated in the future, payments risk containment standards will jump geographies via multinational organizations, there will be cross-pollination of best practices, and vendor competition will ensure that everyone has a machine learning strategy and biometric/two-factor authentication out of the box. The seasons do change, so we should welcome it. Embrace this change and see the upside in the prism of colors that the leaves bring. Put a fire on and warm yourself, winter is coming!
Related Blog Posts
All I Want For Christmas (Or Any Holiday) Is… Instant Payments Gratification
Mark, some of us are fast approaching the end of the holiday shopping season, some of us are fast approaching that time of year when we consume too much egg nog, and some of us are fast approaching too many viewings of Die Hard or It’s a Wonderful Life or Love Actually or Christmas in Connecticut (I’ve disclosed too much about myself). To segue slightly more than slightly, I was at Target over the weekend, braving the holiday shopping crowds, to buy toilet paper, paper towels and tissues… and I took advantage of the 5% off that I get from using my Red Card. I surveyed the throngs of other consumers in the nearby checkout lines and not once did I see another store card. During this, the biggest shopping season of the year, why wouldn’t consumers use loyalty/rewards cards when making purchases?
Fraudsters Don’t Wait for Peak, So Neither Should You: 2019 Fraud Strategy Starts Now!
In existence for barely two decades, eCommerce has transformed not only the way we shop, but also how retailers plan and execute their marketing strategies around the peak shopping season. Now that we’re deep into this period, retailers will have prepared for changes in buyer behaviors, relaxed their strategies to be within the limits of manageable review rate, and most important of all, put strategies in place for increased fraud attempts.
Women in Payments Australia: 8 Insights for Success
Women in Payments continues to go from strength to strength, expanding its footprint globally and running events from Canada (where it was born) and the U.S., to Australia and now the UK. ACI has been a proud global sponsor of Women in Payments since 2014, which has allowed me personally – along with a number of colleagues around the world – to be a part of the growing calendar of Women in Payments events that take place around the globe.
Cybersecurity: Risks, Controls and What to Expect in 2019
The world of Cybersecurity has brought about several subtle changes in 2018. For example, malware and targeted 'Spear Phishing' were on the rise, while the focus on protecting the perimeter has begun to take a back seat to hardening internal controls. As we enter 2019, the changing threat landscape is certain to result in a barrage of additional considerations in how we protect data and systems.
‘Soup To Nuts’ – A Multi-Layered Fraud Menu for the Holiday Season
The holiday shopping season is well underway, with Black Friday now behind us and many retailers around the world braced for higher levels of eCommerce fraud, from Cyber Monday all the way though until Christmas.
Success Speaks: Exploring the Future of Payments Collections in Auto-Finance with SAFCO
When it comes to improving collections, there’s one simple question your organization should ask before embarking on any type of payments project: what does “customer service” mean to our customers?
How Merchants and Consumers Can Fight Fraud This 2018 Holiday Shopping Season
For International Fraud Awareness Week, I want to bring special focus to the upcoming holiday season around the world. Here in the U.S., the holiday season kicks off with Thanksgiving, which is now only a week away. But as consumers and merchants around the world gear up for peak holiday shopping season, fraudsters are also preparing to triumph.
19 for 2019 (Payments Predictions Galore!)
Can you believe it! Snowflakes in the Northeast, which means getting the skis tuned up to race down (steep) hills. And speaking of racing, businesses are racing to complete their 2019 plans and put the finishing touches on remaining 2018 campaigns, which I hope are resounding successes. It also means (delicious or disgusting egg nog… #judgementfree), office holiday parties and prognostications galore!
A Postcard from Money20/20
Greetings from Las Vegas. By the time this note finds you, I will be back at my desk pouring over my follow-up notes from another crazy, wonderful, insightful and totally exhausting Money20/20. The event itself has grown to become the annual ‘must-attend’ on the financial technology schedule, and this year’s event didn’t disappoint with new attendees, old friends and an agenda that kept you on your feet for 4 days (and nights).
Preparing for Peak: Tactical Recommendations for Stopping Holiday Season Fraud
Business might be booming for eCommerce merchants, who see increases in holiday spending climbing steadily upwards each year, but with fraud growing nearly twice as fast as sales, merchants need to have their fraud strategy fine-tuned to ensure that peak retail season is a success. I spoke to Erika Dietrich, ACI’s Leader of Risk Services, to find out how merchants can best prepare their fraud management strategies for the holiday season, ensuring risk strategies are effective – with low friction for genuine customers and high accuracy in detecting fraud.