Comment by figassis

I’ve implemented a few payment processors before. The merchant’s processor implements account updater. you change your card, and the issuer (not visa) sends this information to the network and ends up at the partner bank for the payment processor, which forwards to the processor. So the issuing bank is sending these out, but for everyone, and it may be correct that specific support people don’t know how to turn it off for individuals (this possibility may not even be implemented, it’s just firing events in batch).

This process does not have any protections for card holders. It was designed probably to benefit merchants from customers that change cards with unpaid bills, but is marketed as convenience (you change your card and don’t hav to worry about updating it everywhere).

I think this should be better regulated. Not every merchant type should have access to this. I can see utilities and rent maybe, but there should still be a process to opt out.