What is Strong customer authentication (SCA)?
Strong customer authentication (SCA) is a requirement of the European Union Revised Directive on Payment Services (PSD2) that forces all online payments within the EU (also, Iceland, Liechtenstein, and Norway) to go through an extra step of authentication.
How does it affect my payments?
Like many other payment providers, digital wallets (e-wallets) implemented some changes aiming at making online payments safer and more secure while complying with this new regulation.
Now, e-wallet purchases require an extra layer of security known as two-factor authentication. This means you'll need to provide information from at least two of the three categories below:
- Knowledge: Something you know (such as a password or PIN).
- Ownership: Something you possess (such as a mobile phone or other device confirmed by a one-time passcode).
- Biometrics: Something you are (such as a fingerprint).
How did my favorite e-wallet implement SCA?
Select each e-wallet below to see what changed to make your payments with us safer and more secure:
PayPal
Whether you're using your computer, mobile phone, or another device to complete your PayPal purchase, you may be asked for an additional security check to verify your identity. This will help PayPal know it's really you making that purchase and, therefore, protect you against fraud.
If PayPal can recognize you're accessing your account from a trusted device, you'll be able to log in simply by entering your email address/username and your password. But from time to time, PayPal may ask you for a One-Time Passcode that you'll receive via SMS on the mobile phone number registered to your PayPal account.
If you've registered a direct landline phone number in your profile, PayPal will place a call to that phone and ask you for the One-Time Passcode displayed on your device. In that case, just follow the on-screen instructions to authenticate your transaction.
If you need to update the phone number registered to your PayPal account, follow these steps:
- Login to your PayPal account
- Go to the 'Settings' icon next to 'Log Out'
- Select 'Your Profile'
- Choose 'Update' next to 'Phone'
You can find more information on Paypal and PSD2 on their site.
 
 
Skrill
As a result of these recent changes, on some occasions (when logging in or completing a transaction), Skrill may ask you for additional authentication either via a 6-digit SMS code sent to your mobile phone or by verifying your primary email address.
If you've used SCA before, and you ticked the options ‘Skip authentication when doing this transaction in future’ or ‘Trust this device’, this authentication step won't be required for future deposits on your account.
Also, if you enter an incorrect verification code 4 times, the payment will be declined and your Skrill account will be locked. On the other hand, if an incorrect code is entered less than 3 times, you still can go back and select another payment method, such as a card.
To know more about Skrill’s Strong customer authentication (SCA) visit their site.
 
 
NETELLER
As a result of these recent changes, on some occasions (when logging in or completing a transaction) NETELLER may ask you for additional authentication either via a 6-digit SMS code sent to your mobile phone or to your registered email address.
If you've used SCA before, and you ticked the option ‘Skip authentication when doing this transaction in future’ or ‘Trust this device’, this authentication step won't be required for future deposits on your account. 
Also, if you enter an incorrect verification code 4 times, the payment will be declined and your NETELLER account will be locked. On the other hand, if an incorrect code is entered less than 3 times, you still can go back and select another payment method, such as a card.
To know more about NETELLER’s Strong customer authentication (SCA) visit their site.
 
 
MuchBetter
Due to the way the MuchBetter payment system has been designed, it has always been compliant with the SCA guidelines, so nothing will change from what you’re used to.
When you make a payment via MuchBetter you’ll confirm the transaction by logging into your MuchBetter account on your mobile phone. As the login to the app is made via PIN or fingerprint recognition, all transactions include two-factor authentication by default.
In case you’re using a MuchBetter card to deposit, you’ll see that your card doesn’t have the CVV code on the back. This is because the “MuchBetter dynamic CVV” system changes frequently the CVV code of your card. This means your transaction is 2-factor authenticated during generating CVV even before you submit the transaction.
To know more about MuchBetter security features visit their site
 
 
Payz
Every time you access your Payz account, you'll be required to enter your password and a verification code.
Depending on which option you select at setting up, you'll receive your unique code from either Google Authenticator or it will be sent directly to your phone.
You can manage your two-step verification settings in your account, including managing your ‘Trusted devices’. This feature allows you to add a device to your trusted list which means you won't be required to enter a verification code every time you access your account on that device.
To know more about Payz Strong customer authentication (SCA) visit their site.