Comment by SXX

2 years ago

This is not mandatory by law though and mostly it's up to merchant to decide whatever they require 2FA or not. AFAIK payment processors like Stripe actually let you make 3DS (and whatever it called for MasterCard / AMEX) mandatory.

I guess problem is that in US you'll lose a lot of customers by declining payments without 2FA. Also likes of AMEX use 2FA via email so I guess there could be fraud too.

1 comment

SXX

Reply
lxgr  2 years ago

It is required by law (the PSD regulation, specifically) in many circumstances.