Account Updater

Are VISA and MC also processing update requests on weekends?


How do the notifications, received for ABU/VAU, look like?

Examples of the notifications we send can be found in the Account Updater Manual.

How long does it take to enroll into the Account Updater programs of the schemes?

VISA (EU/US): 1-2 weeks 

 MasterCard (EU/US): 3 weeks 

How long does it take to get an update back?

Updates can be expected within 2-3 days. VISA and MasterCard are processing update requests 7 days a week. 

How many days before billing should the merchant send the cards for update?

We recommend in 5 -7 days.

In which countries is the Account Updater available?

US, Canada, and the UK are the best markets for the usage of the Account Updater due to the high amount of participating issuers. 

Visa Europe has mandated Issuers to participate in addition in Ireland, Greece, and Italy. Ireland is the only additional market for MasterCard. Due to the quality of the supplied updates from the issuers in those markets, Adyen does not recommend the Account Updater usage there.

Is there a maximal batch size a merchant can send for update?

There is no maximum batch size set. However, we recommend limiting batch sizes to 10,000 cards.

Is there a minimum requirement, how often a merchant should send his card for update?

Yes, VISA and MasterCard request an update for every participating account at least: 

  • Once every 180 calendar days if you bill daily, weekly, monthly, quarterly, or biannually. 
  • Once every 365 calendar days if you bill annually. 

Is there a test environment for the Account Updater?

There is no test environment available. We recommend to first test a smaller batch size to ensure that the system and connection work without any issues.

What is the difference between the Automated Update Request and the Batch Update Request?

The major difference is who is selecting the cards, which are being sent to the Account Updater for an update. When you choose the Batch Update Request, the card selection logic has to be set up at your end. You are selecting the cards, which are sent to the Account Updater. When you decide to choose the Automated Account Updater Request, Adyen's logic system selects the cards which will be sent for an update. 

Adyen's card selection logic is based on three selection criteria, which , you as the merchant, can choose to switch on and customise to your needs. 

  • Payment refused - An account update request is sent automatically for all payments that were refused. 
  •  Credit cards expiring soon - An account update request is sent automatically for all payments that were authorised and the credit card's expiration date is within a number of months after the payment was authorised. The number of months has to be defined by, you as the merchant. 
  •  Delay request - An account update request is sent automatically a number of days after a payment was authorised. The merchant defines the number of days.

What types of merchants qualify for the Account Updater program?

Europe: Due to Visa's restriction for Europe only merchants with a recurring business model are allowed to use the Account Updater. 

 United Stated of America: All merchants offering card-on-file payments (e.g. subscription, express-checkout, memberships or recurring services) 

 Excluded from Account Updater: 

  • Merchants who are engaged in a business categorized by the following merchant category codes: 5962, 5966, 5967, or 7995 .
  • Merchants who have sales transactions that are predominantly Quasi-Cash, Account Funding, or any combination thereof.


Can I migrate existing card/payment data from another provider to Adyen?

Yes, It is a common practice to share card data between providers.

The process is as below: 

  1.  Contact your existing provider to request to export the card data.
  2.  The specification of the file format and the requested fields can be found in our Migration manual.
  3.  The file needs to be encrypted via PGP with the Adyen public PGP key.
  4.  The file can be sent via email or we can set up an SFTP to deliver the file.

The card data is imported on the same day of receiving the file. We can import all credit card data, paypal recurring subscriptions, and SEPA Bank account details (IBAN).

I'm moving to another payment provider. Can Adyen export my existing stored card/payment details to another provider?

Yes, as you are the owner of this data, Adyen complies with this request. Adyen needs to receive the public PGP encryption key of a PCI-DSS certified processor who is allowed to manage payment card information. After communicating the PGP Key and the delivery email address or SFTP details of the encrypted data, the encrypted data will be sent to the recipient.

PGP Encryption is the industry standard for transferring sensitive information. Many services like email clients support this type of encryption. More information about this security protocol can be found at https://en.wikipedia.org/wiki/Pretty_Good_Privacy

 The result will be a CSV file with the following fields:

  1. accountid of your Adyen account.
  2. shopperReference
  3. shopperEmail
  4. recurringdetailreference
  5. creationdate
  6. cardnumber
  7. cardholder
  8. expirymonth
  9. expiryyear
  10. bankaccountnumber
  11. branchcode
  12. bankcode
  13. checkcode
  14. ownername
  15. countrycode
  16. bankname
  17. iban
  18. bic
  19. tokentype
  20. tokendata


Do you support third party payouts?

Yes, we do offer our payout solution for paying out the third party.

Available payment methods:

  1. Visa
  2. Mastercard
  3. Paypal
  4. European Bank transfers
  5. Moneybookers
  6. Neteller

Is there a check on the payouts which we initiate?

We work with a 4 eye policy check on the payouts. After submitting a payout confirm the payout manually using the Adyen Customer Area (CA) or an API call.

This way you can prevent incorrect/duplicate payouts. See the technical specification for more information.

I want to wire/payouts funds to a third party provider. Is this supported?

Yes, our payout solution can be used for making wire payouts using bank transfers.

We currently support IBAN Bank transfers in the following currencies:

  1. EUR
  2. GBP
  3. CZK
  4. NOK
  5. CHF
  6. PLN
  7. DKK

The technical specification can be found in our Payout manual..

What happens if I initiate a payout and there is no funds in my account?

In this case, the payout fails providing the 'Insufficient in-process funds on account for refunding this payment' reason.

You need to re-trigger the payout at a later moment when there are enough funds.

There are two possibilities:

  1. Wait until you have processed more payments, then you have more in-process funds to try to refund the payment.
  2. Transfer funds to our bank account (details below) which we can use to allow you to refund the payment.

If you decide to transfer funds to our bank account, please use the following details:

IBAN: NL48RABO0132394782
Attn: Adyen
Reference: 'RefundMargin 'NAME MERCHANT ACCOUNT'

The transferred funds will be available for refunds as soon as we have received them in our bank account (this can take up to 3-4 business days).


How are recurring payments handled for SOFORT, Giropay and iDeal?

Adyen processes recurring transactions for Sofort, Giropay and iDeal payments as SEPA Direct Debit transactions in the background. 

In the past, Sofort and Giropay recurring transactions were processed as ELV transactions, while iDeal recurring transactions were processed as Dutch Direct Debit payments .

Continuing with our efforts to deprecate direct debit payment methods ELV (elv) in Germany and Direct Debit (directdebit_NL) in The Netherlands, we will begin to process iDeal, SOFORT GmbH and Giropay recurring payments as SEPA Direct Debit from August 22nd 2016 onwards. It is important to note that all existing recurring contracts (also known as the 'recurringDetailReference's ) will remain intact.

As such, the only change that can be expected for merchants using recurring ELV or Direct Debit NL is that they will see “sepadirectdebit" as the brandCode from August 22, 2016. Make sure to accommodate for the new brandCode if you automatically import and process our financial reporting, including the:

If you are currently explicitly indicating 'elv' or 'directdebit_NL' in the recurring payment requests, they will not be refused and will continue to be processed as such. Please contact Adyen Support (support@adyen.com) in case you have additional questions.

How can I delete/disable a recurring contract for a shopper?

There are two options to disable a recurring contract.

  • Send an API request to disable the recurring contract. Instructions and the format are mentioned in our Recurring Manual.
  • Alternatively, you can disable the saved card details for a shopper in the Adyen Customer Area (CA)include by going to the Payment Details screen for one of the transactions from the shopper and click View Stored Payment Details. You can see all of the stored details for this shopper and there is a button to disable them.

How do tokenisation and recurring differ?

Tokenisation is the storage of sensitive card details with a token stored within Adyen without an initial payment is required. Whereas, Recurring requires an authorised payment.

Tokenisation is not recommended as a full authorisation on the card never takes place. This means that the most sensitive data, such as CVV/CVC codes, and 3D secure authentication does not take place. For this reason, Adyen only makes this functionality available under special circumstances and given proper justification.

However, there is a workaround to store a shopper's card with full authorisation, including CVC checks, 3D secure authentication (if applicable), etc., and without the shopper being charged:

  • Create an initial payment for an amount of 0, zero authorisation, and set the recurringContract field to "RECURRING" or "ONECLICK,RECURRING"
  • If the payment is authorised, the card is stored.

The shopper should be warned that an authorisation will take place on their card if using the workaround above.

See our Recurring manual for further information.


Can I automatically add cards involved in chargebacks to the blocked list?

Cards that are involved in chargebacks are automatically added to Adyen's global Card/Bank Account number referral list and cannot be used for future purchases through the Adyen platform. Therefore, no action is required by the merchant to block the card.

However, if a merchant wishes to do business with that shopper they can opt to put the card on their own accepted list (this affects the merchant in question).

There are two ways to trust a card which is on Adyen's global Card/Bank Account number referral list and add to a merchant's accepted list:

  1. Fraud Settings
    [Merchant] >> Settings >> Fraud Control >> Card/Bank Account number referral list >> Configure
    The performing user needs to have necessary roles to make fraud setting changes

  2. Payment page
    [Merchant] >> Payments >> [PSP number of blocked transaction] >> Fraud Control

In both cases, the shopper needs to perform the transaction again in order for this acceptance to go through.

Can I block shoppers from certain countries?

The Shopper IP originates from high-risk country fraud risk check has a list of default countries with a default Action of fixed. The merchant can choose to add additional countries to this list and has also the opportunity to delete those countries again. However, if you want to unblock the default countries that are put on the High-Risk Country list by Adyen, contact Adyen Support Team.

The Issuing country referral list performs a similar role, but specific to the issuing country of the card or bank account. 

Do you provide risk management?

Yes. Adyen’s vision is to make risk management a natural part of the payment processing flow, allowing merchants to take a customised approach based on their specific requirements.

By designing intelligent dynamic screening based on real-time analysis of the most comprehensive range of shoppers’ data, Adyen makes it possible to effectively reduce chargeback rates and minimize 
“false positives”, that is to say genuine customers that are declined. 

Being an acquirer, Adyen has access to highly detailed transaction data from card schemes and issuers that can be leveraged to optimise merchants’ risk management strategies and thereby optimize their revenues.

How can an authorised payment be cancelled soon after?

It is possible that a payment is cancelled after authorisation.

This is often due to Adyen's a post-authorisation fraud check that occurs after results are returned from the issuer. An example is the No Liability Shift risk check that ensures that the issuer is responsible for card holder disputes using an additional authentication through the 3D secure protocol. If they do not match, the fraud score of the risk check is added to the total. If the total score is over 100 the payment is cancelled. The Billing address does not match card holder address (AVS) is another example of a post-authorisation fraud check where Adyen needs information from the issuer before performing the check.

How can I remove a card from the blocked or card referral list?

If a card is on the Adyen's global Card/Bank Account number referral and a merchant wants to unblock the card there are two ways to add the card to the merchant's accepted list (this affects the merchant in question):

A - Fraud Settings
[Merchant] >> Settings >> Fraud Control >> Card/Bank Account number referral list >> Configure
*User needs to have necessary roles to make fraud setting changes

B - Payment page
[Merchant] >> Payments >> [PSP number of blocked transaction] >> Fraud Control
In both cases, the shopper needs perform the transaction again in order for this acceptance to go through.

View the Payment Page Fraud Control video tutorial.

How do I add a shopper to my trust or block list?

Referral checks allow merchants to establish block and trust lists of the shopper's good and bad attributes affecting the risk score based. All the referral lists function at company-level so any particular value needs to be provided only once to apply to all merchant accounts. You should go to the merchant account level to change risk rules. 

To  add a shopper to the trust/ block list:

  1. Go to Adyen Customer Area (CA) → Payment Details → Fraud Control.
  2. Select the attributes you want to add to the block or trust list.

In order for this to take effect, you should set fraud scores for these Referral List checks. You can do so by going to Settings > Fraud Control > Referral* and set the fraud scores for the respective referral list checks. To configure a negative score for trust lists, go to Referral Risk checkConfigure →Assign following negative score if item on TRUST list and specify a negative fraud score.

For the Shopper Reference trust referral list, make sure that you have the Shopper Reference Trust List fraud check enabled with a negative fraud score. 

If you are not able to view all the referral checks, make sure you switch on Show inactive checks.

How do I block a credit card number or bank account?

To block a credit card number or bank account based on an existing payment:

  1. Navigate to Payment Detail → Fraud Control.
  2. Click Block.
    You can also change the reason if needed.
  3. Click Apply.

Any future payments involving the credit card number or bank account triggers our Card/Bank Account number referral list fraud check, if this is 100 or more the payment is refused.

Also, any cards or bank account that is involved in a chargeback is automatically added to Adyen's global Card/Bank Account number referral list and can not be used for future purchases through the Adyen platform, therefore no action is required by the merchant to block the card. 

To unblock a card or bank account:

  1. Navigate to Payment Detail → Fraud Control.
  2. Click Allow.
    You can also change the reason if needed.
  3. Click Apply.

How do I disable 3D Secure on my account?

We do not recommend to disable the entire functionality because you will always be liable for any financial losses for transactions that were not verified using 3D secure. When 3D secure is verified, the issuer will bear the financial risks in case of a dispute.

A better solution would be to set up dynamic 3D secure rules. In order to mitigate any effects on conversion, Adyen has developed a robust dynamic 3D secure system where merchants can optimize which transactions they send to 3D secure while letting most trusted transactions through without 3D Secure. We can configure dynamic rules based on card type, transaction amount, risk score or issuer country (or a combination of those). Find more information in Dynamic 3D Secure.

If you still want to disable 3D secure for all transactions contact Adyen Support Team acknowledging that you are aware of the financial risks.

How do I remove countries in the Shopper IP originates from high-risk country risk check?

The Shopper IP originates from high-risk country fraud risk check has a list of default countries with a default action of fixed. To unblock any of these countries contact Adyen Support Team.

What does the fraud score mean?

Adyen offers fraud control giving the ability to prevent a payment from happening due to a wide range of pre-determined criteria. A score is applied to a payment based on multiple criteria's, If the total score is 100 or more the payment is refused.

Each fraud criterium has a score which can be changed or disabled by merchants.


If the score is 100 or higher, the payment is refused. Else, the payment is passed on to the issuer for authorisation. Adyen performs two different kinds of fraud checks, pre-authorization checks and post-authorization checks. The pre-authorization checks include fraud checks that Adyen can perform before the authorization takes place, like shopper behavior, referral list checks etc. Post-authorization checks include data that is received by issuers, such as AVS data and CVC codes. If the pre-authorization fraud checks do not sum up to 100, but the pre and post checks together sum up to 100 or more the transaction can have the Received, Authorised, or Cancelled status.


To check the fraud score for a payment:

  1. Look up the payment
  2. On the Payment Details page, click the score in the Fraud Scoring field. The result shows the breakdown of how the score was determined. 

You can also click the fraud score from the payment list to get the breakdown of the fraud scores.


To change the calculation of a fraud score, or to disable fraud criteria, do the following:

  1. Login to the Adyen Customer Area (CA) and select the merchant.
  2. Navigate to Settings → Fraud Control.

Here you can change scores, make fraud criteria inactive and, for some criteria, configure further. Care should be taken while changing settings, if done incorrectly you may cause all payments to be refused. Click the info icon next to each fraud control for further information.    

Fraud Control is only visible to the user with specific permissions, contact Adyen Support Team to know more.

What is the Card number referral list?

The Card Number Referral List  consists of card data (e.g. Credit Card numbers) that have been reported to be involved in fraudulent activities by the actual owners of the cards. The list was designed by Adyen in order to provide extra security to protect merchants.

If an incident has occurred with a card then it will be added to the Card Number Referral List. From that point on, all transactions initiated with that specific card will be refused and the code for the specific refusal will be Card number referral list.

Where can I find more information about the risk checks that can be configured?

You can configure the risk checks by going to Adyen Customer Area (CA) → [merchant account] → Settings → Fraud Control. In order to see all the risk checks that can be configured, turn on the switch Show inactive checks on the top right of the page. 

We have extensive explanations of each of the risk scores that you can configure RevenueProtect engine rules.