Executive Summary. Guidelines on Merchant and ISO Underwriting and Risk Monitoring MARCH 2014 COUNSEL DEVELOPED BY
|
|
- Gilbert Atkins
- 8 years ago
- Views:
Transcription
1 TM MARCH 2014 Guidelines on Merchant and ISO Underwriting and Risk Monitoring Executive Summary DEVELOPED BY COUNSEL Venable LLP Jeffrey D. Knowles Ellen Traupman Berge Leonard L. Gordon
2 ELECTRONIC TRANSACTIONS ASSOCIATION Overview The Electronic Transaction Association ( ETA ) Guidelines on Merchant and ISO Underwriting and Risk Monitoring provide guidance to ETA Members in three distinct areas: (1) Merchant Underwriting; (2) Risk Management of Merchant Accounts; and (3) Sponsoring and Monitoring of Independent Sales Organizations ( ISOs ). ETA developed these Guidelines through the participation of a volunteer working group representing thirty-eight ETA member companies led by Deana Rich of Rich Consulting. The working group contributed ideas, real-life examples, and key inputs toward developing the topics covered by the Guidelines and in-depth substance for each subject. The working group considered a variety of laws, regulations, and guidance in drafting the Guidelines, including materials issued by Visa/MasterCard, the Federal Trade Commission, the Federal Communications Commission, the Office of the Comptroller of the Currency ( OCC ), the Federal Deposit Insurance Corporation, the Financial Crimes Enforcement Network, and other agencies and organizations. The Guidelines are not meant as a substitute for any rules or requirements set in place by U.S. laws and regulations, the card networks, acquiring banks, or any other bodies governing the activities of any ETA Member using these Guidelines. Recommendations in these Guidelines are not meant to be exhaustive or required in each instance, but they are meant to assist ETA Members in addressing the risks and concerns identified herein. Each ETA Member should refer to legal or other counsel for complete guidance. General Purpose and Scope of Guidelines As stated in Part I of the Guidelines, the purpose of the Guidelines is to provide ETA Members effective strategies for underwriting merchant risk and mitigating merchant risk in the U.S. card acceptance ecosystem, including risks to consumers posed by merchants who engage in unfair or deceptive acts or practices, and for conducting due diligence and oversight of third parties (including ISOs) that may provide intermediary underwriting and risk management of merchants on behalf of ETA Members. The spirit of the Guidelines is to help ETA Members define their own policies and procedures and make sound decisions as they strive to ensure that they are not providing card acceptance for merchants or ISOs engaged in illegal or fraudulent acts that harm consumers and the payments industry Electronic Transactions Association. All rights reserved.
3 The Guidelines recognize that all ETA Members are different, just as all merchants are different (card present, card-not-present, type of industry, length of time in business, etc.). While the Guidelines use industry practices and norms (as submitted by the working group) to suggest minimum thresholds, each ETA Member must make its own determination about underwriting and risk management best suited to the individual characteristics of its merchant portfolios and business operations. Guidelines for Underwriting Merchant Accounts Part II of the Guidelines provides detailed recommendations and suggestions for drafting underwriting policies and procedures. Briefly put, ETA Members underwriting policies should set forth a statement of intent that explains the Member s goal for underwriting and a list of objectives that will assist the Member in reaching that goal. Policies and procedures for underwriting merchant accounts should include (1) standards for expected underwriting timeframes, (2) criteria that should require escalated approval to a manager or committee, (3) utilization of an exception notation, review, and documentation process that tracks exception requestors, approvals, declines, and the reasons therefor, (4) periodic reporting of requested exceptions, and (5) prohibited and restricted merchants as may be specified by the card brands, sponsoring banks, the ETA Member s own policies, and other factors. An underwriting policy or procedure should also set different underwriting levels for micro, small, medium, large, major, and mobile merchants, with appropriate underwriting recommendations for each type of level, along with considerations for certain types of merchants flagged as high risk or restricted. The Guidelines make specific recommendations for looking at a merchant s prior history, including suggestions for refund and chargeback ratio thresholds that, for some merchants, may flag an issue that needs to be reviewed more deeply. The Guidelines also discuss the use of reserves and clarifies that reserves should only be used as a tool to protect against the credit risk of a merchant. Thus, it is appropriate to take a reserve in circumstances when the merchant displays weak financial condition, but not as a risk mitigation tool for protection when the merchant sells a higher risk product or uses sales methods prone to higher levels of consumer complaints. ETA Members underwriting policies and procedures should contain a section that defines when and how merchants will be reviewed on a periodic basis based on dollar volume and number of transactions processed over a specific time frame. These periodic reviews should work to ensure that merchants businesses have not changed, and to ensure that sales transactions, chargebacks, and refunds are in line with what the processor expected Electronic Transactions Association. All rights reserved. 3
4 The Guidelines also make recommendations for addressing merchant changes, from structural/ organizational changes to changes in business type or products sold, which may prompt further review. ETA Members should establish monthly reporting to management to ensure that an appropriate level of senior oversight of the daily activities within underwriting exists. Such monthly reporting should provide a high-level summary of matters that require management or senior-level attention. Types of reports include portfolio statistics, merchant annual/periodic reviews completed during the month, payment card industry (PCI) compliance statistics, and attrition reports. Part III of the Guidelines suggest practices for merchants that require enhanced due diligence, including higher risk merchants. Sponsoring higher risk merchants may require a more robust and knowledgeable staff that has the more in-depth understanding needed to review the marketing practices and programs of these merchants. The Guidelines discuss increased know your customer reviews to ensure that ETA Members know the principals and beneficial owners of these types of merchants and can identify the legitimacy of the merchants businesses. The Guidelines also recommend a review of such merchants prior processing and financial position, and suggests that ETA Members understand the merchants reasons for changing processors. The Guidelines provide additional review guidelines for specific processing methods, including Internet merchants, telemarketing and mail order merchants (MOTO), merchants engaged in mobile commerce, merchants that use affiliate marketing, and merchants that use negative option marketing programs (e.g., free trial programs and recurring billing programs), among other things. Guidelines for Risk Management of Merchant Accounts Part IV of the Guidelines addresses the risk management of merchant accounts, focusing on the overall activity of merchants, including refund statistics and marketing methods. Merchant risk management practices should seek to indicate when merchant activity should be flagged for review by the ETA Member and should emphasize the importance of examining merchants records. Briefly put, the objectives of merchant risk management are to (1) identify and investigate merchant activity that does not align with an ETA Member s expectations for that merchant; (2) identify and investigate activity that does not align with industry-established averages for general merchant processing and defined verticals; (3) ensure merchant compliance with card schemes; (4) support the identification of suspicious activities; and (5) identify anomalous activity and file reports with the Financial Crimes Enforcement Network, when appropriate. Each ETA Member s policies and procedures for merchant risk practices should clearly set out the Member s expectations for monitoring merchant activity. As noted in the Guidelines, such expec Electronic Transactions Association. All rights reserved.
5 tations should include: (1) ETA Member standards for expected review timeframes and merchant notification; (2) ETA Member standards regarding adverse actions to take during investigations (e.g., when funds should be held, etc.); (3) ETA Member approval authority for funds release or parameter changes; (4) circumstances requiring escalated approval; (5) exception notation format, review, and documentation process; and (6) establishment of periodic reporting of all requested exceptions. The Guidelines recommend that all departments and teams in an organization that focus on preventing financial loss and mitigation of fraud should meet on a regular basis and use clearly defined marketing channels. In addition, the Guidelines lay out suggestions for daily exception monitoring, including using the contents of merchant records to establish system flags to trigger exceptions; setting out merchant risk classification exceptions depending on whether the merchant is micro, mobile, restricted, or monitored; and the issuance and contents of daily exception reports. The Guidelines outline the factors that should be examined when reviewing the daily exception reports, including new merchant exceptions, approved dollar volume exceptions, volume increases/processing spikes exceptions, volume decreases/processing dips exceptions, batch activity exceptions, individual ticket/sale exceptions, foreign activity exceptions, authorization activity exceptions, abnormal transaction timeframe exceptions, merchant changes, refund/credit transaction exceptions, ACH reject exceptions, retrieval request exceptions, chargeback activity, and fraud prevention tool response exceptions. In addition to daily exception monitoring, the Guidelines also recommend the generation of monthly or other periodic reports for critical risk activity, which senior or more experienced risk management staff should review. These monthly/periodic reports should contain information on top processing volume, chargeback volume, and refund volume requests, reports by vertical merchants, restricted business type review, monthly excessive volume exceptions, and merchants with decreasing volume. The Guidelines set forth recommendations relating to chargeback monitoring, investigation procedures, merchant remediation, and merchant reserves as related to risk management. The Guidelines recommend that ETA Members establish monthly management reporting to ensure there is appropriate senior-level oversight of the daily activities within risk management. Types of recommended monthly management reports include: merchant exception monitoring, refund monitoring reporting, chargeback monitoring reporting, card scheme monitoring program merchants, losses, significant terminations, merchant reserve activity, merchant changes on significant accounts, secret shopping summary, and restricted merchant exception activity. Section V of the Guidelines addresses risk management strategies for those merchants that require enhanced due diligence. The Guidelines suggest that ETA Members should engage 2014 Electronic Transactions Association. All rights reserved. 5
6 in reputation monitoring of such merchants and should also engage in secret shopping to verify merchant compliance with card scheme requirements, merchant account conditions, and general consumer satisfaction practices. The Guidelines also recommend cardholder/customer interviews, chargeback monitoring and reporting to card schemes, increased understanding of the merchant s sales processing method, and increased and expanded marketing review. Guidelines for Sponsoring and Monitoring Independent Sales Organizations (ISOs) The ISO portion of the Guidelines (Part VI) is intended to provide strategies for active oversight of ISO portfolio in a manner that provides for earlier detection and mitigation of issues that may present loss exposure or consumer harm due to undesirable or prohibited merchant types or merchant operational, sales, or marketing practices. The guidelines are meant to assist ETA Members in identifying those ISOs (or those seeking sponsorship) who may be poorly managing merchants or facilitating undesirable or prohibited practices. The Guidelines discuss factors ETA Members should use to review ISOs, including information about an ISO s principals, background, financial stability, and method of doing business. The Guidelines also discusses examples of factors to consider and tools to use when reviewing an ISO portfolio and the ISO s business and marketing plans. ETA Members should ensure that ISOs have minimum required policies and procedures, and ETA Members should review and approve all existing or proposed ISO policies and procedures. Such policies may address matters like merchant solicitation, merchant acceptance criteria/credit policy, merchant depositing monitoring standards, etc. The Guidelines recommend that ETA Members have a formal training program in place for new ISOs, and it calls on ETA Members to conduct periodic reviews of ISOs to mirror the original due diligence process and note changes, as well as quarterly statistical reviews of the ISO s merchant portfolio performance. With respect to the monitoring of ISOs and their merchant portfolios, the Guidelines recommend that ETA Members perform some level of oversight over the daily functions of the ISO and monitor overall ISO metrics to help understand when a more intensive review of the ISO is required. It provides examples to illustrate circumstances that may require such review. It also provides examples of shadow monitoring including shadow underwriting, shadow transaction review, and shadow of merchant terminations to ensure the ISO is properly underwriting, monitoring, and terminating merchants. As part of this discussion, the Guidelines suggest that the ETA Member should be able to review files stored by the ISO directly through secure access to the ISO s system or a secure posting of underwriting and other documents Electronic Transactions Association. All rights reserved.
7 The Guidelines recommend monthly reporting on ISO portfolios and identification of monthto-month variations over at least a 6-month period to identify trends. It also provides lists of example reports that the ETA Member could review on an ongoing basis to understand the merchants in the ISO s portfolio, including reports segmented by card present/cardnot-present, retail/moto/ecommerce/mcommerce, MCC code, business type, and other criteria. The Guidelines provide examples of quantitative measures that can be used, on a monthly basis, to monitor ISO activity, including merchant application approval and decline ratios, pending application stats and trends, statistical concentrations of MCC codes assigned, and other factors. It also discusses reviewing processing volume, chargeback volume, and refund volume reports for merchants in the ISO s portfolio. The Guidelines addresses steps the ETA Member should take when it finds that an ISO is not adhering to the ETA Member s requirements, including remediation plans and related milestone assessments. According to the Guidelines, remediation strategies could include on-site audits, portfolio analysis, reduction in underwriting authorities, increased oversight or shadow monitoring of the ISO s underwriting process, and increased risk mitigation requirements for applicable merchants (such as settlement delays and merchant termination requirements). The Guidelines acknowledge termination of an ISO as an extreme measure, but suggest it is appropriate when the ISO is not remediating as agreed through the plan Electronic Transactions Association. All rights reserved. 7
Electronic Transactions Association Guidelines on Merchant and ISO Underwriting and Risk Monitoring
TM MARCH 2014 Electronic Transactions Association Guidelines on Merchant and ISO Underwriting and Risk Monitoring DEVELOPED BY www.deanarich.com COUNSEL Venable LLP Jeffrey D. Knowles Ellen Traupman Berge
More informationFDIC Updates Guidance on Payment Processor Relationships
February 2012 FDIC Updates Guidance on Payment Processor Relationships BY KEVIN L. PETRASIC In its recently issued Financial Institution Letter, FIL-3-2012, the Federal Deposit Insurance Corporation (
More informationTHIRD PARTY PAYMENT PROVIDERS
THIRD PARTY PAYMENT PROVIDERS BY DARLIA FOGARTY, DIRECTOR OF COMPLIANCE & COO KNOWLEDGE. CLARITY. RELIABILITY. www.compliancealliance.com (888) 353-3933 THIRD PARTY PAYMENT PROCESSORS Third Party Payment
More informationPayment Processor Relationships Revised Guidance
Federal Deposit Insurance Corporation 550 17th Street NW, Washington, D.C. 20429-9990 Payment Processor Relationships Revised Guidance Financial Institution Letter FIL-3-2012 January 31, 2012 Summary:
More informationGUIDANCE ON PAYMENT PROCESSOR RELATIONSHIPS (Revised July 2014)
Federal Deposit Insurance Corporation 550 17th Street NW, Washington, D.C. 20429-9990 Financial Institution Letter FIL-127-2008 November 7, 2008 GUIDANCE ON PAYMENT PROCESSOR RELATIONSHIPS (Revised July
More informationThird Party Payment Processors Job Aid
Third Party Payment Processors Job Aid This job aid is to be used by state institution examiners as a means to understand, identify, and assess the risks associated with institutions relationships with
More informationExecutive Fraud Forum October 30, 2013
Executive Fraud Forum October 30, 2013 Payments Fraud Trends Mary Kepler, Director, Retail Payments Risk Forum, Federal Reserve Bank of Atlanta Judy Long, Executive Vice President, First Citizens National
More information(877)306-3652. City: State: Zip: Physical Business Address: City: State: Zip:
Smstein55@gmail.com / Phone (972)984-6601 / Fax (818)921-3199 COMPANY INFORMATION Merchant Company Legal Name: DBA Name: Line of Business: Registered Address: http:// (877)306-3652 City: State: Zip: Physical
More informationGUIDANCE FOR MANAGING THIRD-PARTY RISK
GUIDANCE FOR MANAGING THIRD-PARTY RISK Introduction An institution s board of directors and senior management are ultimately responsible for managing activities conducted through third-party relationships,
More informationComptroller s Handbook for National Bank Examiners April 1992 - Temporary Insert. Merchant Processing Introduction Section 212A.1
Comptroller s Handbook for National Bank Examiners April 1992 - Temporary Insert Merchant Processing Introduction Section 212A.1 Merchant processing is the settlement of credit card sales transactions
More informationThird-Party Sender Case Studies: ODFI Best Practices to Close the Gap An ACH Risk Management White Paper
Third-Party Sender Case Studies: ODFI Best Practices to Close the Gap An ACH Risk Management White Paper This ACH risk management white paper examines three case studies related to Third-Party Sender Risk.
More informationManaging your community bank s ACH and demand draft risk By George F. Thomas
Payment Protocols Managing your community bank s ACH and demand draft risk By George F. Thomas Would anyone in their right mind attempt to drive a car blindfolded? Well, the answer would be an emphatic
More informationPayment Systems Today: Latest Legal and Regulatory Challenges
Payment Systems Today: Latest Legal and Regulatory Challenges October 14, 2014 Jon Genovese, Vantiv Ellen T. Berge, Esq., Venable LLP Ed Wilson, Esq., Venable LLP Andrew E. Bigart, Esq., Venable LLP 1
More informationIdentifying Key Risk Indicator
PUERTO RICO PAYMENTS SYMPOSIUM Identifying Key Risk Indicator EPOCPR Services Agenda for Today Background History Regulators & Risk Management Let s have fun Regulators & Risk Assessment ACH Risks Categories
More informationREVIEW OF THE GUIDELINES FOR UNDERWRITING, TRANSACTION MONITORING
Electronic Transactions Association March 31, 2015 Moscone Center San Francisco, CA Electronic Transactions Association REVIEW OF THE GUIDELINES FOR UNDERWRITING, TRANSACTION MONITORING AND PORTFOLIO REVIEW
More informationThird-Party Payment Processing and Financial Crimes March 14, 2012
Third-Party Payment Processing and Financial Crimes March 14, 2012 Michael Benardo Chief, Cyber Fraud & Financial Crimes Section Division of Risk Management Supervision Federal Deposit Insurance Corporation
More informationACH Operations Bulletin #2-2013
ACH Operations Bulletin #2-2013 High-Risk Originators and Questionable Debit Activity March 14, 2013 EXECUTIVE SUMMARY Recent press reports have inaccurately stated that some Receiving Depository Financial
More informationCredit Card Related Merchant Activities
Credit Card Related Merchant Activities Standards Examiners should evaluate the above-captioned function against the following control and performance standards. The Standards represent control and performance
More informationACH Operations Bulletin #1-2014
ACH Operations Bulletin #1-2014 Questionable ACH Debit Origination: Roles and Responsibilities of ODFIs and RDFIs September 30, 2014 Replaces ACH Operations Bulletin #2-2013 (Originally Issued March 14,
More informationPAYMENT GATEWAY ACCOUNT AND MERCHANT ACCOUNT SETUP FORMS
PAYMENT GATEWAY ACCOUNT AND MERCHANT ACCOUNT SETUP FORMS Welcome to Authorize.Net, and thank you for choosing us for your e-commerce transaction needs. To complete the setup of your Authorize.Net account,
More informationFINANCIAL COALITION AGAINST CHILD PORNOGRAPHY
FINANCIAL COALITION AGAINST CHILD PORNOGRAPHY Internet Merchant Acquisition and Monitoring Best Practices for the Prevention and Detection of Commercial Child Pornography* Background The Financial Coalition
More informationPreparing for the Outsourcing Challenge: Legal Due Diligence to Ensure a Winning Service Provider Relationship
THE 4 TH NATIONAL CONFERENCE ON OUTSOURCING IN FINANCIAL SERVICES NEGOTIATING, MANAGING & TERMINATING OUTSOURCING RELATIONSHIPS WHILE ENSURING REGULATORY COMPLIANCE Renaissance Mayflower, Washington, DC
More informationMerchant Account Terms of Use
Merchant Account Terms of Use This Merchant Account Terms of Use ("MATOU") governs your use of the Services. Capitalised terms and expressions used in this MATOU shall, unless the context otherwise requires,
More informationVisa Merchant Best Practice Guide for Cardholder Not Present Transactions
Visa Merchant Best Practice Guide for Cardholder Not Present Transactions Table of Contents Section 1 About This Guide 03 Section 2 Merchant Procedures 05 Section 3 Authorisation 07 Authorisation Procedures
More informationHELPcard Merchant Operating Guide (Rev. Date 12/01/2013)
HELPcard Merchant Operating Guide (Rev. Date 12/01/2013) 1. Definitions. Capitalized terms used in this Merchant Operating Guide have the meanings assigned to them by the HELPcard Merchant Agreement between
More informationCFPB Mortgage Servicing Transfers
PwC s CFPB Mortgage Servicing Standards Perspectives Issue 9/October 2014 CFPB Mortgage Servicing Transfers Mortgage Servicing Transfer Bulletin: The revised CFPB guidelines should be a key chapter in
More informationChargeback Reason Code List - U.S.
AL Airline Transaction Dispute AP Automatic Payment AW Altered Amount CA Cash Advance Dispute CD Credit Posted as Card Sale CR Cancelled Reservation This chargeback occurs because of a dispute on an Airline
More informationMEDFUSION MERCHANT AGREEMENT: ACCEPTABLE USE POLICY ( AUP )
By accessing or using the Services under the MMA, you agree to be bound by this Acceptable Use Policy ("AUP"), which is incorporated into the MMA, and any additional terms, conditions, rules or policies
More informationBoard of Directors and Management Oversight
Board of Directors and Management Oversight Examination Procedures Examiners should request/ review records, discuss issues and questions with senior management. With respect to board and senior management
More informationPayment Processing Without Money Transmitter Licenses. Susan Dunn General Counsel WePay, Inc.
Payment Processing Without Money Transmitter Licenses Stanford Ecommerce Best Practices Conference June 6, 2016 Susan Dunn General Counsel WePay, Inc. WePay, Inc., provides integrated payments payments
More informationFEDERAL HOUSING FINANCE AGENCY ADVISORY BULLETIN AB 2014-07 OVERSIGHT OF SINGLE-FAMILY SELLER/SERVICER RELATIONSHIPS. Purpose
FEDERAL HOUSING FINANCE AGENCY ADVISORY BULLETIN AB 2014-07 OVERSIGHT OF SINGLE-FAMILY SELLER/SERVICER RELATIONSHIPS Purpose This advisory bulletin communicates the Federal Housing Finance Agency s (FHFA)
More informationRISK MANAGEMENT UPDATE Lessons [To Be] Learned from Recent Enforcement Actions
RISK MANAGEMENT UPDATE Lessons [To Be] Learned from Recent Enforcement Actions Presented by: Dixie K. Hieb and Robb Schlimgen Davenport, Evans, Hurwitz & Smith, LLP www.dehs.com 2014 Davenport, Evans,
More informationAutomated Clearing House
Automated Clearing House THE SERVICE Customer wishes to initiate credit and/or debit Entries as an Originator through Bank to Accounts maintained at Bank and in other depository financial institutions
More informationRealex Payments Integration Guide - Ecommerce Remote Integration. Version: v1.1
Realex Payments Integration Guide - Ecommerce Remote Integration Version: v1.1 Document Information Document Name: Realex Payments Integration Guide Ecommerce Remote Integration Document Version: 1.1 Release
More informationMerchant Application & Agreement Merchant Processing Terms & Conditions
Merchant Application & Agreement Merchant Processing Terms & Conditions MERCHANT # (ASSIGNED BY BANK) 100 Throckmorton Street, Suite 1800 Fort Worth, Texas 76102 MCC: MERCHANT APPLICATION & AGREEMENT ASSOCIATION
More informationSelecting a Secure and Compliant Prepaid Reloadable Card Program
Selecting a Secure and Compliant Prepaid Reloadable Card Program Merchants and other distributors of prepaid general purpose reloadable (GPR) cards should review program compliance as an integral part
More informationWhite Paper on Financial Institution Vendor Management
White Paper on Financial Institution Vendor Management Virtually every organization in the modern economy relies to some extent on third-party vendors that facilitate business operations in a wide variety
More informationO OCC BULLETIN OCC 2006-39. Automated Clearing House Activities. Risk Management Guidance
O OCC BULLETIN Comptroller of the Currency Administrator of National Banks Subject: Automated Clearing House Activities Description: Risk Management Guidance TO: Chief Executive Officers, Chief Risk Officers,
More informationManaging TPPPs and TPSs in the Current Regulatory Environment
November 2015 Managing TPPPs and TPSs in the Current Regulatory Environment Prepared by: Jodie Ruby, Director Audience: This document is intended for managers, directors and executives who deal with business
More informationMonetary Authority of Singapore INSURANCE BUSINESS - INSURANCE FRAUD RISK
Monetary Authority of Singapore INSURANCE BUSINESS November 2007 GUIDELINES ON RISK MANAGEMENT PRACTICES FOR INSURANCE BUSINESS MONETARY AUTHORITY OF SINGAPORE TABLE OF CONTENTS 1 INTRODUCTION AND FUNDAMENTALS
More informationAuthorize.Net Investor Overview. Wedbush Morgan 5 th Annual Conference May 2007
Authorize.Net Investor Overview Wedbush Morgan 5 th Annual Conference May 2007 Safe Harbor Statement Certain statements herein and in any accompanying presentation that are not historical facts including,
More informationMARKET CONDUCT ASSESSMENT REPORT
MARKET CONDUCT ASSESSMENT REPORT PART 1 STATUTORY ACCIDENT BENEFITS SCHEDULE (SABS) PART 2 RATE VERIFICATION PROCESS Phase 1 (2012) Financial Services Commission of Ontario (FSCO) Market Regulation Branch
More informationWhat would you do if your agency had a data breach?
What would you do if your agency had a data breach? 80% of businesses fail to recover from a breach because they do not know this answer. Responding to a breach is a complicated process that requires the
More informationKnowing your customers and their customers and their customers and so on and so on
Knowing your customers and their customers and their customers and so on and so on Identifying your Third-Party s and their Nested s This ACH risk management white paper provides an overview of ACH relationships
More information- Last 6 months credit card processing statements OR Last 6 months processing statements for ACH or whatever type of processing previously used.
Internet Merchant Services Application Complete and return by email to netpay@salemanager.com or by fax to 1-904-437-4050. The following documents must be returned with your offshore merchant account application
More informationAIM for Success and Effectively Manage High Risk Originators
AIM for Success and Effectively Manage High Risk Originators Pamela T. Rodriguez, AAP, CIA, CISA EVP, Risk Management & Education, EastPay Brent Siegel Vice President, Argos Risk Disclaimer This presentation
More informationMerchant Account Glossary of Terms
Merchant Account Glossary of Terms From offshore merchant accounts to the truth behind free merchant accounts, get answers to some of the most common and frequently asked questions. If you cannot find
More informationTi ps. Merchant. for Credit Card Transactions. Processing Tips CARD ONE INTERNATIONAL INC
Merchant Processing Tips Ti ps for Credit Card Transactions CARD ONE INTERNATIONAL INC Card One International Inc - Merchant Processing Tips for Card Transactions Page 1 of 11 Merchant Processing Tips
More informationHow To Set Up A Committee To Check On Cit
CIT Group Inc. Charter of the Audit Committee of the Board of Directors Adopted: October 22, 2003 Last Amended: April 20, 2015 I. PURPOSE The purpose of the Committee is to assist the Board in fulfilling
More informationFax Cover Sheet and Application Checklist Attention: Craig Storms Company: Authorize.Net
Fax Cover Sheet and Application Checklist Attention: Craig Storms From: Company: Authorize.Net Date: Fax Number: (801) 492-6546 Total No. of Pages (including cover): Reseller Reseller ID: 11296 Checklist
More informationCFPB Consumer Laws and Regulations
General Principles and Introduction Supervised entities within the scope of CFPB s supervision and enforcement authority include both depository institutions and non-depository consumer financial services
More informationElavon Payment Gateway Integration Guide- Remote
Elavon Payment Gateway Integration Guide- Remote Version: v1.1 Table of Contents 1 About This Guide 3 1.1 Purpose 3 1.2 Audience 3 1.3 Prerequisites 3 1.4 Related Documents 3 2 Elavon Payment Gateway Remote
More information2015 NACHA Rules, Same Day ACH and Regulation E Changes
2015 NACHA Rules, Same Day ACH and Regulation E Changes Recently Approved Amendments to Improve Quality and Reduce Risk in the ACH Network 2015 NYBA Technology, Compliance & Risk Management Forum DISCLAIMER
More informationG2 Best Practices: Deceptive Marketing Merchants
G2 Best Practices: Deceptive Marketing Merchants Key Risk Overview: A new type of merchant fraud is causing significant brand damage to the card schemes, the issuers, and acquirers alike. Moreover, the
More informationMerchant Application Form
emerchantpay Limited Merchant Application Form Hand written applications will not be accepted. CORPORATION DETAILS European Company Details n-european Company Details If applicable Company Registration
More informationSaint Louis University Merchant Card Processing Policy & Procedures
Saint Louis University Merchant Card Processing Policy & Procedures Overview: Policies and procedures for processing credit card transactions and properly storing credit card data physically and electronically.
More informationCase: 1:15-cv-10963 Document #: 1 Filed: 12/07/15 Page 1 of 15 PageID #:1 UNITED STATES DISTRICT COURT NORTHERN DISTRICT OF ILLINOIS
Case: 1:15-cv-10963 Document #: 1 Filed: 12/07/15 Page 1 of 15 PageID #:1 UNITED STATES DISTRICT COURT NORTHERN DISTRICT OF ILLINOIS FEDERAL TRADE COMMISSION, Plaintiff, v. Case No. 15-cv-10963 COMPLAINT
More informationChargebacks: Another Payment Card Acceptance Cost for Merchants
Chargebacks: Another Payment Card Acceptance Cost for Merchants Fumiko Hayashi, Zach Markiewicz, and Richard J. Sullivan January 216 RWP 16-1 http://dx.doi.org/1.18651/rwp216-1 Chargebacks: Another Payment
More informationServicing Issues Update
September 2014 Servicing Issues Update Regulatory Developments 1. Future Rulemaking. CFPB has indicated that it is reviewing its mortgage servicing regulations and may issue additional amendments and clarifications.
More informationPowering e-commerce Globally. What Can I Do to Minimize E-Commerce Chargebacks?
Powering e-commerce Globally What Can I Do to Minimize E-Commerce Chargebacks? Chargebacks are not going away. And now there are new rules. Selling products and services online and using credit cards for
More informationSupervisory Highlights. Summer 2013
Supervisory Highlights Summer 2013 Table of Contents 1. Introduction... 3 2. Supervisory Observations... 5 2.1 Compliance Management Systems... 5 2.2 Mortgage Servicing... 11 2.3 Fair Lending Provision
More informationInformation Technology Project Oversight Framework
i This Page Intentionally Left Blank i Table of Contents SECTION 1: INTRODUCTION AND OVERVIEW...1 SECTION 2: PROJECT CLASSIFICATION FOR OVERSIGHT...7 SECTION 3: DEPARTMENT PROJECT MANAGEMENT REQUIREMENTS...11
More informationFinancial Crimes Enforcement Network
Financial Crimes Enforcement Network 1 Special Due Diligence Programs for Certain Foreign Accounts Special Due Diligence Programs for Certain Foreign Accounts An Assessment of the Final Rule Implementing
More informationEDUCATION - TERMS 101
EDUCATION - TERMS 101 ACH (Automated Clearing House): A processing organization networked with others to exchange (clear and settle) electronic debit/credit transactions (no physical checks). ABA Routing
More informationMerchant Application Form
Merchant Application Form *Please take note that in order to qualify to become a BookCoins merchant, you will need to first buy silver bullion with the minimum amount of 50,000 grams. CORPORATION DETAILS
More informationCOMMENTARY. occ and fdic Guidance on Supervisory Concerns and Expectations Regarding Deposit Advance Products JONES DAY
December 2013 JONES DAY COMMENTARY occ and fdic Guidance on Supervisory Concerns and Expectations Regarding Deposit Advance Products The Office of the Comptroller of the Currency ( OCC ) and the Federal
More informationCARD-NOT-PRESENT MERCHANT INFORMATION FORM
F 1486 CARD-NOT-PRESENT MERCHANT INFORMATION FORM Date: Dear Sir/Madam, We thank you for your application for a MCB merchant electronic commerce facility which will enable you to accept Card-Not Present
More informationXIX. MERCHANT PROCESSING
Risk Management Examination Manual for Credit Card Activities Chapter XIX XIX. MERCHANT PROCESSING Merchant processing is the acceptance, processing, and settlement of payment transactions for merchants.
More informationD. DFA: Mississippi Department of Finance and Administration.
MISSISSIPPI DEPARTMENT OF FINANCE AND ADMINISTRATION ADMINISTRATIVE RULE PAYMENTS BY CREDIT CARD, CHARGE CARD, DEBIT CARDS OR OTHER FORMS OF ELECTRONIC PAYMENT OF AMOUNTS OWED TO STATE AGENCIES The Department
More informationMerchant Application Form for Credit and Debit Card Payment Gateway
Merchant Application Form for Credit and Debit Card Payment Gateway MERCHANT PRE-QUAPPLICATION FORM Merchant application form With this intake form you can apply for our online payment solutions. The information
More informationPAYMENT GATEWAY AND OPTIONAL MERCHANT ACCOUNT SETUP FORM
AR ID: 102291 Name: IRIS Sytems PAYMENT GATEWAY AND OPTIONAL MERCHANT ACCOUNT SETUP FORM ATTENTION: David Glass Phone Number: 801-492-6509, Fax Number: 801-492-6546, E-mail Address: dglass@authorize.net
More informationMerchant Procedure Guide
Merchant Procedure Guide Customer Service Phone 800-939-9942 Fax 707-578-7088 After Hours Help Desk 800-228-0210 Voice Authorization / Call Center 800-228-1122 Security/ Dispute Department Phone -- 800-385-6212
More informationA-MP. Comptroller of the Currency Administrator of National Banks. Merchant Processing. Comptroller s Handbook. December 2001.
A-MP Comptroller of the Currency Administrator of National Banks Merchant Processing December 2001 A Assets Merchant Processing Table of Contents Introduction... 1 Types of Merchant Processors... 2 Acquiring
More informationFinancial Services Regulatory Commission Antigua and Barbuda Division of Gaming Customer Due Diligence Guidelines for
Division of Gaming Customer Due Diligence Guidelines for Interactive Gaming & Interactive Wagering Companies November 2005 Customer Due Diligence for Interactive Gaming & Interactive Wagering Companies
More informationAutoridade Bancária e de Pagamentos de Timor-Leste Banking and Payments Authority of Timor-Leste
Autoridade Bancária e de Pagamentos de Timor-Leste Banking and Payments Authority of Timor-Leste PUBLIC INSTRUCTION 02/2004 ON THE PREVENTION OF MONEY LAUNDERING, CUSTOMER IDENTIFICATION AND RECORD-KEEPING
More informationGlossary ACH Acquirer Assessments: AVS Authorization Back End: Backbilling Basis Point Batch
Glossary ACH: Automated Clearing House; an electronic payment network most commonly associated with payroll direct deposit, recurring payments, and is the network most commonly used to settle merchant
More informationAmerican Express Merchant Reference Guide - U.S.
American Express Merchant Reference Guide - U.S. table of contents April 2013 table of contents Copyright 2008-2013 American Express Travel Related Services Company, Inc. All rights reserved. introduction...7
More informationCFTC and SEC Jointly Propose Identity Theft Rules
CLIENT MEMORANDUM March 7, 2012 CFTC and SEC Jointly Propose Identity Theft Rules Contents Identity Theft Prevention Program...1 Entities Required to Comply...1 Financial Institutions and Creditors...
More informationSupporting Effective Compliance Programs
October 2015 Supporting Effective Compliance Programs The Oversight Roles of the Board Audit and Risk Committees in Regulatory Compliance By Paul Osborne, CPA, CAMS, AMLP, and Peggy Sepp, CIA To be effective,
More informationVendor Risk Management in the New Regulatory Environment. kpmg.com
Vendor Risk Management in the New Regulatory Environment kpmg.com Vendor Risk Management in the New Regulatory Environment 2 Vendor Risk Management in the New Regulatory Environment Background Regulators
More informationBOV e-commerce. your guide to: General Product Information The Benefits Your Checklist Important Information Our Fees and Charges Terms and Conditions
BOV e-commerce your guide to: General Product Information The Benefits Your Checklist Important Information Our Fees and Charges Terms and Conditions General Product Information What is an e- commerce
More informationA multi-layered approach to payment card security.
A multi-layered approach to payment card security. CARD-NOT-PRESENT 1 A recent research study revealed that Visa cards are the most widely used payment method at Canadian websites, on the phone, or through
More informationThird Party Relationships
3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 A B D INTRODUCTION AND PURPOSE Background Yes/No Comments 1. Does the credit union maintain a list of the third party
More informationTHIRD PARTY AGENT REGISTRATION PROGRAM
THIRD PARTY AGENT REGISTRATION PROGRAM Frequently Asked Questions For the U.S., Canada and Latin America & Caribbean Regions General Information Q. What is the Third Party Agent Registration Program? A.
More informationHow To Use Fis Payment Gateway
FIS Payment Gateway A gateway to card authorisation, settlement & secure data hosting FIS RETAIL PAYMENTS FIS Payment Gateway A gateway to card authorisation, settlement & secure data hosting FIS RETAIL
More informationecheck.net Operating Procedures and User Guide
echeck.net Operating Procedures and User Guide Table of Contents Introduction... 4 What is echeck.net?... 4 Who can use echeck.net?... 4 Applying for echeck.net... 5 echeck.net Fees and Settings... 5 echeck.net
More informationAnti-Money Laundering Program and Suspicious Activity Reporting Requirements For Insurance Companies. Frequently Asked Questions
Anti-Money Laundering Program and Suspicious Activity Reporting Requirements For Insurance Companies Frequently Asked Questions We are providing the following Frequently Asked Questions to assist insurance
More informationMerchant e-solutions Payment Gateway Back Office User Guide. Merchant e-solutions January 2011 Version 2.5
Merchant e-solutions Payment Gateway Back Office User Guide Merchant e-solutions January 2011 Version 2.5 This publication is for information purposes only and its content does not represent a contract
More informationBoard Responsibility. A bank can outsource a task, but it cannot outsource the responsibility.
Third-Party Risk Board Responsibility The Board of Directors and senior management are ultimately responsible for managing activities conducted through third-party relationships as if the activity were
More informationVAN BUREN COMMUNITY MENTAL HEALTH AUTHORITY POLICIES & PROCEDURES
VAN BUREN COMMUNITY MENTAL HEALTH AUTHORITY POLICIES & PROCEDURES Title: Identity Theft Prevention Program Originated: 10/22/09 Number: I.05.02 Approved By: Executive Team DIRECTIVE: The Program was developed
More informationOctober 20, 2014. Subject: ETA s Comments on Proposed Virtual Currency Regulatory Framework
October 20, 2014 Dana V. Syracuse, Esquire Office of General Counsel Department of Financial Services One State Street New York, New York 10004 Subject: ETA s Comments on Proposed Virtual Currency Regulatory
More informationDon t Originate in the Dark: Shine Some Light on Your Third-Party Senders and Their Originators
Don t Originate in the Dark: Shine Some Light on Your Third-Party Senders and Their Originators This ACH risk management white paper examines the risks related to ACH transactions processed by Third-Party
More informationRegulation Crowdfunding
Regulation Crowdfunding November 9, 2015 On October 30, 2015, more than three years after the passage of the Jumpstart Our Small Business Startups Act of 2012 (the JOBS Act ) the U.S. Securities and Exchange
More informationPayLeap Guide. One Stop
PayLeap Guide One Stop PayLeap does it all. Take payments in person? Check. Payments over the phone or by mail? Check. Payments from mobile devices? Of course. Online payments? No problem. In addition
More informationTop Five Privacy and Data Security Issues for Nonprofit Organizations
Top Five Privacy and Data Security Issues for Nonprofit Organizations Julia K. Tama, Esq. Jeffrey S. Tenenbaum, Esq. Association of Corporate Counsel Nonprofit Organizations Committee Legal Quick Hit MAY
More informationYour Gateway to Online Success
The NETBANX gateway is a leading, proprietary online payment processing platform operating on a world class technology infrastructure. Trusted by global brands and companies around the world, the NETBANX
More informationCompliance Risk Assessment and 3 rd Party Due Diligence & Monitoring
Advisory Services May, 2011 Compliance Risk Assessment and 3 rd Party Due Diligence & Monitoring Compliance Risk Strategy 3 rd Party Due Diligence 3rd Party Auditing The differing ways in which a company
More informationFraud Risk Management Procedures
Fraud Risk Management Procedures 1. Introduction KCE Electronics Public Company Limited ( KCE or the Company ) is committed to achieving the highest levels of business integrity, morals and transparency
More information