{"title":"SCA requirements based on business models","category":"default","creationDate":1556539740,"content":"<p>This page is an overview of all PSD2 SCA requirements, organized by business model. It also shows transaction types within business models, whether these transaction types require SCA, and which <a href=\"#payment-request-parameters\">payment request parameter values<\/a> to use.<\/p>\n<\/p>\n<h2>Business models<\/h2>\n<p>The following table shows common business models and whether SCA is required for each type of transaction:<\/p>\n<table>\n    <tbody>\n      <tr>\n        <th rowspan=\"2\">Business model<\/th>\n        <th rowspan=\"2\">Transaction type<\/th>\n        <th rowspan=\"2\">SCA required?<\/th>\n        <th colspan=\"2\">Payment request parameters<\/th>\n      <\/tr>\n      <tr>\n        <th><code>shopperInteraction<\/code> value<\/th>\n        <th><code>recurringProcessingModel<\/code> value<\/th>\n      <\/tr>\n      <tr>\n        <td rowspan=\"3\">Online purchase with shopper in-session<\/td>\n        <td colspan=\"1\">\n          <p>One-off online purchase where a shopper enters card payment details on the checkout page.<\/p>\n        <\/td>\n        <td colspan=\"1\">Yes, unless exemption applies.<\/td>\n        <td colspan=\"1\"><strong>Ecommerce<\/strong><\/td>\n        <td colspan=\"1\"> <\/td>\n      <\/tr>\n      <tr>\n        <td colspan=\"1\">\n          <p>Online purchase where shopper agrees to store card details for future use on your website or app. This can be a zero-value transaction.<\/p>\n        <\/td>\n        <td colspan=\"1\">Yes, unless exemption applies.<\/td>\n        <td colspan=\"1\">\n          <strong>Ecommerce<\/strong>\n        <\/td>\n        <td colspan=\"1\">\n          <strong>CardOnFile<\/strong>\n        <\/td>\n      <\/tr>\n      <tr>\n        <td colspan=\"1\">\n          <p>Online purchase where shopper uses previously stored card payment details.<\/p>\n        <\/td>\n        <td colspan=\"1\">Yes, unless exemption applies.<\/td>\n        <td colspan=\"1\">\n          <strong>ContAuth<\/strong>\n        <\/td>\n        <td colspan=\"1\">\n          <strong>CardOnFile<\/strong>\n        <\/td>\n      <\/tr>\n      <tr>\n        <td rowspan=\"2\">Subscriptions<\/td>\n        <td>First transaction where shopper agrees to the contract. This can be a zero-value transaction. The terms and conditions should describe the policy for later subsequent charges, for example, fixed or variable amounts.<\/td>\n        <td colspan=\"1\">\n          <p>Yes, if the first transaction is made on or after PSD2 SCA compliance is made compulsory.<\/p>\n        <\/td>\n        <td colspan=\"1\">\n          <strong>Ecommerce<\/strong>\n        <\/td>\n        <td colspan=\"1\">\n          <strong>Subscription<\/strong>\n        <\/td>\n      <\/tr>\n      <tr>\n        <td>Subsequent subscription charges as described in the initial terms and conditions during the sign-up transaction, following equal time intervals.<\/td>\n        <td colspan=\"1\">No, this falls under <p><a href=\"#mitframework\">MIT<\/a>.<\/td>\n        <td colspan=\"1\">\n          <strong>ContAuth<\/strong>\n        <\/td>\n        <td colspan=\"1\">\n          <strong>Subscription<\/strong>\n        <\/td>\n      <\/tr>\n      <tr>\n        <td rowspan=\"2\">Contracts with non-fixed time interval, such as auto account top-ups<\/td>\n        <td colspan=\"1\">Initial transaction where shopper agrees to the terms and conditions of later subsequent charges. This can be a zero-value transaction.<\/td>\n        <td colspan=\"1\">Yes, if the first transaction is made on or after PSD2 SCA compliance is made compulsory.<\/td>\n        <td colspan=\"1\">\n          <strong>Ecommerce<\/strong>\n        <\/td>\n        <td colspan=\"1\">\n          <strong>UnscheduledCardOnFile<\/strong>\n        <\/td>\n      <\/tr>\n      <tr>\n        <td colspan=\"1\">Subsequent charges as described in the initial terms and conditions during the sign-up transaction, following non-fixed time intervals.<\/td>\n        <td colspan=\"1\">No, this falls under <p><a href=\"#mitframework\">MIT<\/a> provided that the cardholder is off-session at the time when the charge occurs.<\/td>\n        <td colspan=\"1\">\n          <strong>ContAuth<\/strong>\n        <\/td>\n        <td colspan=\"1\">\n          <strong>UnscheduledCardOnFile<\/strong>\n        <\/td>\n      <\/tr>\n      <tr>\n        <td rowspan=\"2\">One-off account status check<\/td>\n        <td colspan=\"1\">Transaction with a zero-value authorization to validate the shopper's account status.<\/td>\n        <td colspan=\"1\">Generally does not require SCA.<\/td>\n        <td colspan=\"1\">\n          <strong>Ecommerce<\/strong>\n        <\/td>\n        <td colspan=\"1\"> <\/td>\n      <\/tr>\n      <tr>\n        <td colspan=\"1\">Transaction with a USD\u00a01 authorization, for issuers that do not accept zero-value authorization.<\/td>\n        <td colspan=\"1\">Generally requires SCA, unless exemption applies.<\/td>\n        <td colspan=\"1\">\n          <strong>Ecommerce<\/strong>\n        <\/td>\n        <td colspan=\"1\"> <\/td>\n      <\/tr>\n      <tr>\n        <td colspan=\"1\">Purchase through <a href=\"\/get-started-with-adyen\/adyen-glossary#mail-ordertelephone-order-moto\">MOTO<\/a><\/td>\n        <td colspan=\"1\">\nMail Order \/ Telephone Order transaction. For example, a shopper calls a travel agency and the agent initiates a transaction.\n        <\/td>\n        <td colspan=\"1\">\nNo, this transaction is out of scope of PSD2 SCA.\n        <\/td>\n        <td colspan=\"1\">\n          <strong>Moto<\/strong>\n        <\/td>\n        <td colspan=\"1\"> <\/td>\n      <\/tr>\n      <tr>\n        <td colspan=\"1\">Purchase through POS<\/td>\n        <td colspan=\"1\">Regular purchase at a payment terminal in a store<\/td>\n        <td colspan=\"1\">This is a shopper-present transaction where shopper performs SCA in-store, for example, through chip-and-pin authentication.<\/td>\n        <td colspan=\"1\">\n          <strong>POS<\/strong>\n        <\/td>\n        <td colspan=\"1\"> <\/td>\n      <\/tr>\n      <tr>\n        <td>Authorization adjustment<\/td>\n        <td>Transactions submitted with the  <a href=\"https:\/\/docs.adyen.com\/api-explorer\/Payment\/latest\/post\/adjustAuthorisation\" class=\"codeLabel  external-link no-image\" target=\"_blank\" rel=\"nofollow noopener noreferrer\">Classic\/adjustAuthorisation<\/a> or  <a href=\"https:\/\/docs.adyen.com\/api-explorer\/Checkout\/latest\/post\/payments\/(paymentPspReference)\/amountUpdates\" class=\"codeLabel  external-link no-image\" target=\"_blank\" rel=\"nofollow noopener noreferrer\">Checkout\/amountUpdates<\/a> endpoint, used for example in tipping scenarios.<\/td>\n        <td>No, this falls under <p><a href=\"#mitframework\">MIT<\/a>.<\/td>\n        <td> <\/td>\n        <td> <\/td>\n      <\/tr>\n    <\/tbody>\n  <\/table>\n<h2>Payment request parameters<\/h2>\n<p>Use the following values for <code>shopperInteraction<\/code> and <code>recurringProcessingModel<\/code> parameters:<\/p>\n<ul>\n<li> <a href=\"https:\/\/docs.adyen.com\/api-explorer\/Checkout\/latest\/post\/sessions#request-shopperInteraction\" class=\"codeLabel  external-link no-image\" target=\"_blank\" rel=\"nofollow noopener noreferrer\">shopperInteraction<\/a>: Specifies the sales channel through which the shopper gives their card details, and specifies whether the shopper is a returning customer. Possible values are:\n<ul>\n<li><strong>Ecommerce<\/strong>: Customer-initiated transactions (CIT). These transactions can be one-off online purchases or transactions that start a series of ContAuth transactions.<\/li>\n<li><strong>ContAuth<\/strong>: Transactions using the shopper's stored card details. Cardholder is known to the merchant (a returning customer).<\/li>\n<li><strong>Moto<\/strong>: Mail-order and telephone-order transactions where the shopper is in contact with the merchant through mail or telephone.<\/li>\n<li><strong>POS<\/strong>: Point-of-sale transactions where the shopper is physically present to make a payment using a secure payment terminal.<\/li>\n<\/ul><\/li>\n<li>\n<p> <a href=\"https:\/\/docs.adyen.com\/api-explorer\/Checkout\/latest\/post\/sessions#request-recurringProcessingModel\" class=\"codeLabel  external-link no-image\" target=\"_blank\" rel=\"nofollow noopener noreferrer\">recurringProcessingModel<\/a>: Defines a recurring payment type. Possible values are:<\/p>\n<ul>\n<li><strong>Subscription<\/strong>: Contracts for a series of transactions with fixed or variable amounts, following a fixed time interval. If not set in the payment request, this will be the default value for shopperInteraction ContAuth.<\/li>\n<li><strong>CardOnFile<\/strong>: Models where a shopper stores card details and then purchases from the website or app at a later time using the stored card details.<\/li>\n<li><strong>UnscheduledCardOnFile<\/strong>: Contracts that occur on a non-fixed schedule and\/or have variable amounts using stored card details. For example, automatic top-ups when cardholder's balance drops below certain amount.<\/li>\n<\/ul>\n<div class=\"notices yellow\">\n<p>If you set up a default Recurring Processing Model on your account, all transactions from your account will use the assigned default model. If you want to set the Recurring Processing Model on a transaction level, submit the values in your API request. For more information, refer to <a href=\"\/pt\/online-payments\/tokenization\">Tokenization<\/a>.<\/p>\n<\/div>\n<\/li>\n<\/ul>\n<h2 id=\"mitframework\">Merchant-Initiated Transaction framework (MIT)<\/h2>\n<p>If you are not <a href=\"\/pt\/online-payments\/tokenization\">tokenizing<\/a> cards with Adyen and are using your own or an external card vault, use the card schemes' MIT framework to maximize the probability of the transaction being correctly classified as MIT.<\/p>\n<p>Under PSD2, SCA is required for the first transaction of a series of <strong>Subscription<\/strong> or <strong>UnscheduledCardOnFile<\/strong> payments. You need to store the returned  <a href=\"https:\/\/docs.adyen.com\/api-explorer\/Checkout\/latest\/post\/payments\/details#responses-200-additionalData-ResponseAdditionalDataCommon-networkTxReference\" class=\"codeLabel  external-link no-image\" target=\"_blank\" rel=\"nofollow noopener noreferrer\">additionalData.networkTxReference<\/a> to be able to include it with subsequent payments. Issuers can return soft declines if you fail to do so.<\/p>\n<p>The following table describes transactions for a Subscriptions business model:<\/p>\n<table>\n<thead>\n<tr>\n<th>Transaction type<\/th>\n<th>SCA required?<\/th>\n<th><code>shopperInteraction<\/code> value<\/th>\n<th><code>recurringProcessingModel<\/code> value<\/th>\n<th>Additional implementation steps<\/th>\n<\/tr>\n<\/thead>\n<tbody>\n<tr>\n<td>First transaction where shopper agrees to the contract<\/td>\n<td>Yes.<\/td>\n<td><strong>Ecommerce<\/strong><\/td>\n<td><strong>Subscription<\/strong> or <strong>UnscheduledCardOnFile<\/strong><\/td>\n<td>This value is returned in the <code>networkTxReference<\/code> field of the  <a href=\"https:\/\/docs.adyen.com\/api-explorer\/Checkout\/latest\/post\/payments\/details#responses-200-additionalData-ResponseAdditionalDataCommon-networkTxReference\" class=\" external-link no-image\" target=\"_blank\" rel=\"nofollow noopener noreferrer\">\/payments\/details<\/a> response. Save this scheme transaction identifier for use in the subsequent transactions.<\/td>\n<\/tr>\n<tr>\n<td>Subsequent charges<\/td>\n<td>No, this falls under MIT.<\/td>\n<td><strong>ContAuth<\/strong><\/td>\n<td><strong>Subscription<\/strong> or <strong>UnscheduledCardOnFile<\/strong><\/td>\n<td>Provide the card scheme transaction identifier in the <code>networkTxReference<\/code> field in your payment request. This allows the issuing bank to link the subsequent recurring charge with the initial, fully authenticated sign-up transaction.<\/td>\n<\/tr>\n<\/tbody>\n<\/table>\n<h2>Next steps<\/h2>\n<div class=\"next-steps\" id=\"next-steps\" >\n<a href=\"\/online-payments\/psd2-sca-compliance-and-implementation-guide\/sca-options\" class=\"next-steps__step\" style=\"width:45%;\" target=\"_self\"><div class=\"next-steps__title\">SCA is required<\/div><p class=\"next-steps__body\"><p>Implement SCA compliance.<\/p><\/p><\/a><a href=\"\/online-payments\/psd2-sca-compliance-and-implementation-guide\/business-models\/out-of-scope-transactions\" class=\"next-steps__step\" style=\"width:45%;\" target=\"_self\"><div class=\"next-steps__title\">SCA is not required<\/div><p class=\"next-steps__body\"><p>Out of scope transactions.<\/p><\/p><\/a><\/div>\n\n<h2>See also<\/h2>\n<div class=\"see-also-links output-inline\" id=\"see-also\">\n<ul><li><a href=\"\/online-payments\/psd2-sca-compliance-and-implementation-guide\/sca-exemptions\"\n                        target=\"_self\"\n                        >\n                    SCA exemptions\n                <\/a><\/li><\/ul><\/div>\n","url":"https:\/\/docs.adyen.com\/pt\/online-payments\/psd2-sca-compliance-and-implementation-guide\/business-models-overview","articleFields":{"last_edit_on":"03-06-2020 12:45","feedback_component":true},"algolia":{"url":"https:\/\/docs.adyen.com\/pt\/online-payments\/psd2-sca-compliance-and-implementation-guide\/business-models-overview","title":"SCA requirements based on business models","content":"This page is an overview of all PSD2 SCA requirements, organized by business model. It also shows transaction types within business models, whether these transaction types require SCA, and which payment request parameter values to use.\n\nBusiness models\nThe following table shows common business models and whether SCA is required for each type of transaction:\n\n    \n      \n        Business model\n        Transaction type\n        SCA required?\n        Payment request parameters\n      \n      \n        shopperInteraction value\n        recurringProcessingModel value\n      \n      \n        Online purchase with shopper in-session\n        \n          One-off online purchase where a shopper enters card payment details on the checkout page.\n        \n        Yes, unless exemption applies.\n        Ecommerce\n         \n      \n      \n        \n          Online purchase where shopper agrees to store card details for future use on your website or app. This can be a zero-value transaction.\n        \n        Yes, unless exemption applies.\n        \n          Ecommerce\n        \n        \n          CardOnFile\n        \n      \n      \n        \n          Online purchase where shopper uses previously stored card payment details.\n        \n        Yes, unless exemption applies.\n        \n          ContAuth\n        \n        \n          CardOnFile\n        \n      \n      \n        Subscriptions\n        First transaction where shopper agrees to the contract. This can be a zero-value transaction. The terms and conditions should describe the policy for later subsequent charges, for example, fixed or variable amounts.\n        \n          Yes, if the first transaction is made on or after PSD2 SCA compliance is made compulsory.\n        \n        \n          Ecommerce\n        \n        \n          Subscription\n        \n      \n      \n        Subsequent subscription charges as described in the initial terms and conditions during the sign-up transaction, following equal time intervals.\n        No, this falls under MIT.\n        \n          ContAuth\n        \n        \n          Subscription\n        \n      \n      \n        Contracts with non-fixed time interval, such as auto account top-ups\n        Initial transaction where shopper agrees to the terms and conditions of later subsequent charges. This can be a zero-value transaction.\n        Yes, if the first transaction is made on or after PSD2 SCA compliance is made compulsory.\n        \n          Ecommerce\n        \n        \n          UnscheduledCardOnFile\n        \n      \n      \n        Subsequent charges as described in the initial terms and conditions during the sign-up transaction, following non-fixed time intervals.\n        No, this falls under MIT provided that the cardholder is off-session at the time when the charge occurs.\n        \n          ContAuth\n        \n        \n          UnscheduledCardOnFile\n        \n      \n      \n        One-off account status check\n        Transaction with a zero-value authorization to validate the shopper's account status.\n        Generally does not require SCA.\n        \n          Ecommerce\n        \n         \n      \n      \n        Transaction with a USD\u00a01 authorization, for issuers that do not accept zero-value authorization.\n        Generally requires SCA, unless exemption applies.\n        \n          Ecommerce\n        \n         \n      \n      \n        Purchase through MOTO\n        \nMail Order \/ Telephone Order transaction. For example, a shopper calls a travel agency and the agent initiates a transaction.\n        \n        \nNo, this transaction is out of scope of PSD2 SCA.\n        \n        \n          Moto\n        \n         \n      \n      \n        Purchase through POS\n        Regular purchase at a payment terminal in a store\n        This is a shopper-present transaction where shopper performs SCA in-store, for example, through chip-and-pin authentication.\n        \n          POS\n        \n         \n      \n      \n        Authorization adjustment\n        Transactions submitted with the  Classic\/adjustAuthorisation or  Checkout\/amountUpdates endpoint, used for example in tipping scenarios.\n        No, this falls under MIT.\n         \n         \n      \n    \n  \nPayment request parameters\nUse the following values for shopperInteraction and recurringProcessingModel parameters:\n\n shopperInteraction: Specifies the sales channel through which the shopper gives their card details, and specifies whether the shopper is a returning customer. Possible values are:\n\nEcommerce: Customer-initiated transactions (CIT). These transactions can be one-off online purchases or transactions that start a series of ContAuth transactions.\nContAuth: Transactions using the shopper's stored card details. Cardholder is known to the merchant (a returning customer).\nMoto: Mail-order and telephone-order transactions where the shopper is in contact with the merchant through mail or telephone.\nPOS: Point-of-sale transactions where the shopper is physically present to make a payment using a secure payment terminal.\n\n\n recurringProcessingModel: Defines a recurring payment type. Possible values are:\n\nSubscription: Contracts for a series of transactions with fixed or variable amounts, following a fixed time interval. If not set in the payment request, this will be the default value for shopperInteraction ContAuth.\nCardOnFile: Models where a shopper stores card details and then purchases from the website or app at a later time using the stored card details.\nUnscheduledCardOnFile: Contracts that occur on a non-fixed schedule and\/or have variable amounts using stored card details. For example, automatic top-ups when cardholder's balance drops below certain amount.\n\n\nIf you set up a default Recurring Processing Model on your account, all transactions from your account will use the assigned default model. If you want to set the Recurring Processing Model on a transaction level, submit the values in your API request. For more information, refer to Tokenization.\n\n\n\nMerchant-Initiated Transaction framework (MIT)\nIf you are not tokenizing cards with Adyen and are using your own or an external card vault, use the card schemes' MIT framework to maximize the probability of the transaction being correctly classified as MIT.\nUnder PSD2, SCA is required for the first transaction of a series of Subscription or UnscheduledCardOnFile payments. You need to store the returned  additionalData.networkTxReference to be able to include it with subsequent payments. Issuers can return soft declines if you fail to do so.\nThe following table describes transactions for a Subscriptions business model:\n\n\n\nTransaction type\nSCA required?\nshopperInteraction value\nrecurringProcessingModel value\nAdditional implementation steps\n\n\n\n\nFirst transaction where shopper agrees to the contract\nYes.\nEcommerce\nSubscription or UnscheduledCardOnFile\nThis value is returned in the networkTxReference field of the  \/payments\/details response. Save this scheme transaction identifier for use in the subsequent transactions.\n\n\nSubsequent charges\nNo, this falls under MIT.\nContAuth\nSubscription or UnscheduledCardOnFile\nProvide the card scheme transaction identifier in the networkTxReference field in your payment request. This allows the issuing bank to link the subsequent recurring charge with the initial, fully authenticated sign-up transaction.\n\n\n\nNext steps\n\nSCA is requiredImplement SCA compliance.SCA is not requiredOut of scope transactions.\n\nSee also\n\n\n                    SCA exemptions\n                \n","type":"page","locale":"pt","boost":17,"hierarchy":{"lvl0":"Home","lvl1":"Online payments","lvl2":"PSD2 SCA compliance guide","lvl3":"SCA requirements based on business models"},"hierarchy_url":{"lvl0":"https:\/\/docs.adyen.com\/pt","lvl1":"https:\/\/docs.adyen.com\/pt\/online-payments","lvl2":"https:\/\/docs.adyen.com\/pt\/online-payments\/psd2-sca-compliance-and-implementation-guide","lvl3":"\/pt\/online-payments\/psd2-sca-compliance-and-implementation-guide\/business-models-overview"},"levels":4,"category":"Online Payments","category_color":"green","tags":["requirements","based","business","models"]}}