Magento for B2B Commerce, 2.2.x

Payment Services Directive

As of September 14, 2019, the European Union requires that all merchants in the EU and UK comply with the Strong Customer Authentication (SCA) requirements of the Payment Services Directive (PSD2). Merchants in all other countries are encouraged to comply with PSD2 as a best practice.

As a key component of PSD2, Strong Customer Authentication requires two of the following:

  • Something only the customer has (password or PIN)
  • Something only the customer knows (unique security token generated by phone or key fob.)
  • Something only the customer is (biometric authentication such as a fingerprint or facial recognition)

European banks might decline payments that do not meet the requirements. However, low risk and low value transactions might still be accepted, as well as subsequent payments in a recurring subscription.

Due to this significant change and to ensure that customer payments are not declined, we are introducing the following changes and recommendations for native Magento payment integrations.

  • PSD2 Compliance Guide

    Payment Method

    Compliance Requirements

    PayPal

    For most PayPal solutions, no action is needed to comply with PSD2 because the requirements are handled by PayPal. For information about specific PayPal solutions, see the note at the top of each PayPal topic.

    Braintree

    To comply with PSD2, do one of the following:

    • (Recommended) Install and configure the official Braintree payment integration extension from Magento Marketplace.
    • Enable and configure the Braintree payment method in the Magento configuration.

    Both of these integrations support 3D Secure 2.0 verification. However, Braintree implementations that run on JavaScript SDK v2 do not support 3D Secure 2.0.

    Authorize.Net

    To comply with PSD2, do one of the following:

    • (Recommended) Install the official Authorize.Net payment integration extension from Magento Marketplace.
    • Enable and configure the Authorize.Net payment method in the Magento configuration.

    Both of these integrations support 3D Secure 2.0 verification through CardinalCommerce and other third-party services.

    CyberSource

    To comply with PSD2, install and configure the official CyberSource payment integration extension from Magento Marketplace. 3D Secure 2.0 verification is available through CardinalCommerce.

    eWAY

    To comply with PSD2, install and configure the official eWAY payment integration extension from Magento Marketplace.

    Worldpay

    Ask your payment provider what solution they recommend to comply with PSD2 requirements.

    Other

    For all other payment integrations, check the available extensions on Magento Marketplace. If you need help, ask your payment provider which solution(s) they recommend to comply with PSD2 requirements.