Choose language and country

Germany

German English Turkish

Austria

German

Switzerland

German French Italian

Request a quotation

You can reach us as follows

Concardis | E-Mail

Interested in a non-binding offer?

We will get back to you. Click here to fill out our contact form.

keyboard_arrow_right
Concardis | E-Commerce

For all E-Commerce merchants

If you are just setting up an online shop or want to change your payment module, we will be happy to help you.
Click here to fill out our contact form.

keyboard_arrow_right
Concardis | Sales unterstützt Ihre Branche

Configure a non-binding offer online yourself

Put together your complete payment package yourself and receive an all-inclusive offer.
Click here for the online configurator.

keyboard_arrow_right

REQUEST FOR OFFER:

Concardis | So erreichen Sie uns +49 6196 7873 745

SERVICE REQUEST:

Concardis | So erreichen Sie uns +49 69 7922 4060

CALL BACK SERVICE:

Concardis | Rückrufservice We will call you back

Report

E-Com Report 2020 DACH

Insights and analyses (only in German)

Download the report

SCA - mit Concardis viele Vorteile genießen

Strong Customer Authentication (SCA)

On 17 October 2019, the German Federal Financial Supervisory Authority (BaFin) set 31 December 2020 as the end of the grace period for the non-use of strong customer authentication for card payments carried out online. BaFin also announced that it will incorporate into its supervisory practices the milestones and data to be reported as determined by the European Banking Authority (EBA) for the purpose of supervising and monitoring progress.

Concardis intends to make use of the relief within the framework of the BaFin provisions. As a merchant, you will be informed separately on the basis of the Concardis migration schedule about any potential upcoming migration information and tasks.

 

Strong customer authentication
The European Union is making online retail even more secure!

The objective is to create a trustworthy environment both for the merchant as well as for the customer. Additionally, this will reduce the risk of abuse, which in turn means cost savings for the merchant.

Previously optional guidelines became obligatory as of 14 September 2019. However, due to the determination of BaFin, implementation of this obligation is to be done by 31 December 2020 at the latest. The European Banking Authority (EBA) demands the clear authentication of the payer with at least two of the following elements.

Concardis | Schlüssel

KNOWLEDGE

KNOWLEDGE

PIN, password and other security questions

whose answers are only known to the customer.

Concardis | Smartphone und Tablet

POSSESSION

POSSESSION

Smartphone, token and other objects

which are only in the customer’s possession.

Concardis | fingerprint

INHERENCE

INHERENCE

Fingerprints as well as all aspects and biometric characteristics

which identify the individual customer.

What dates are important?

The grace period ends on 31 December 2020. Payengine will make the corresponding required protocol versions available in due time.

 

The cruxes of PSD2

 Two-factor authentication for online payments

Open banking account interfaces

Surcharge ban

Details

Confirmation with two factors from three different areas Knowledge | Possession | Inherence

Open interfaces for third-party providers

No extra fees, e.g. for credit card payments

Aim

Greater payment security

Greater competition

Greater protection for consumers

 

What happens in the worst-case scenario?

In the worst-case scenario, Concardis will refuse authorisations ...
 

  1. If a transaction is sent as an exemption that has not been coordinated with Concardis.

  2. If transactions subject to SCA are submitted without a corresponding SCA identification.

  3. If the flagging of the transaction does not correspond to the rules

  4. In the event of erroneous MIT identification.

  5. And if the internal fraud prevention system is triggered, of course.

Concardis will process all transactions that fall within the regulations (SCA or exemptions). However, rejection by the card issuer cannot be excluded.