The European Payments Council has drawn up a blueprint for the creation of an interoperable card and terminal infrastructure to handle card-not-present transactions across the Single Euro Payments Area (Sepa).
The proposals are published in the latest version of the Sepa Card Standardisation Volume, devised by the EPC in concert with the Cards Stakeholders Group (CSG).
The document, last published over a year ago, now includes new functional and security requirements applicable to card-not-present transactions, enhanced requirements related to the pre-authorisation of card payments and a cards processing framework.
The January 2014 Volume laid out requirements applicable to card-present transactions, which remain unchanged and subject to a voluntary three-year timescale for roll out by January 2017.
The latest edition incorporates the following new elements:
- Functional and security requirements applicable to card-not-present (also referred to as ‘remote’) payments, which are initiated in the context of electronic or mobile commerce or by mail or telephone order.
- Enhanced requirements related to the pre-authorisation of both face-to-face and remote card payments relevant to, amongst others, service providers operating in the hospitality sector.
- A cards processing framework which defines business principles and requirements for market access and participation in card payment processing services.
The CSG is calling on all stakeholders to provide feedback on the new specifications by 5 June 2015. A revised and final version of the documentation will then be published, which will be subject to a three-year implementation timeline.