The Clearsale Blog

EU regulations might help, not hinder, digital payment fraud

EU regulations might help, not hinder, digital payment fraud

We live in a time of great convenience for many customers and businesses: according to PWC, a possible 20 per cent of online transactions in the UK took place on mobile devices in 2018. But while double-clicking our iPhone’s Home button is a quick and effortless way to pay for our morning coffee, the consequences of this convenience are disproportionately serious.

Simply put, digital payments are the reason behind rising fraud rates. The more transactions we carry out online, the more data we make available for criminals. In turn, this can fund organised crime as serious as terrorism, drug trafficking and people smuggling.

The EU is stepping up its data protection regulations, with the introduction of GDPR in 2018 and PSD2 this year. In this article, we not only do some jargon-busting on these acronyms, but also explore how these regulations might adversely affect the ecommerce ecosystem by helping criminals carry out their digital dark deeds. In this new regulatory environment, it’s essential that business leaders educate themselves so that they can do all that is possible to protect their customers and companies.

GDPR and PSD2: new legislative defences against fraud in the EU

GDPR was brought in across the EU in 2018 to place control over personal data back into the hands of consumers. Among other clauses, GDPR ensures they can request to see any data that firms have on them and demand it be deleted, known as the ‘right to be forgotten’.

On top of GDPR, PSD2 will come into effect in the EU in September 2019 as a response to the digitalisation of the European economy and the growing number of online-only platforms offering consumers financial services. The idea behind PSD2 is to simultaneously improve security and encourage competition in the fintech ecosystem – such as by obliging banks to open up their APIs (application programming interfaces) to third-party payment providers. Digital banks and app-based payment services are going to flourish more than they do now as a result.

In theory, this is a step in the right direction and a piece of legislation fit for the modern world. However, GDPR and PSD2 could open up many companies to the risk of global fraud – and make it harder for them to fight it.

The case against: legislative loopholes and missed marks

 

Today’s online payment ecosystem is highly complex – and so while created in the name of healthy (and secure) competition, some of this regulatory protection might not work in businesses’ favour.

One fraud risk associated with GDPR is that criminals can request that their data is deleted from online businesses, then turn to other ones with all of their history removed. With a blank slate, fraudsters can more easily beat fraud detection, which often relies on previous history to identify criminals. What’s more, GDPR places restraints on data sharing, which hampers businesses’ ability to share data on fraud with each other. As a result, it is more difficult to warn competitors against fraud attacks.

Lastly, GDPR and PSD2 are both EU-only. Companies must be wary of transactions coming from outside Europe – as data stolen elsewhere could still be used for fraud within the EU.

Machine learning and human intuition can close the gaps

Fraud protection in this digital payment landscape was never going to be an easy task. As more services become digitalised and fraud becomes more sophisticated, solutions have to evolve to keep pace. Your firm needs to be able to go beyond the obvious, to spot and flag patterns across disparate data points which, together, may point to fraudulent behaviour. Only with this level of sophistication is it possible to identify criminals who, post-GDPR, can repeatedly wipe their slates clean and move their scams elsewhere. Global firms, meanwhile, need solutions of their own which comply with regulations such as GDPR and PSD2 but go further – such as by mounting an additional defence against fraud coming from outside the EU.

Sophisticated fraud defences require human expertise to spot hidden patterns while deploying machine learning to crunch through swathes of data. Machine learning alone could mark fraudulent transactions as safe, if they seem to come from existing or previous customers which may have had their data stolen. That’s why human intuition is also required. But as the number of online payments grows exponentially, machine learning must be brought in to deal with the pure scale of transactions that modern businesses have to cope with.

As payment services are increasingly digitised, it is easier and more common than ever to use FS platforms without even interacting with another human being. This is a gift to convenience-loving customers – but also to the fraudsters. Only by combining machine learning with human intuition is it possible to spot and flag criminal behavioural markers on a vast scale. This is, by far, the best way to comply with these new regulations – and much more importantly, to protect both your company and your customers in equal measure.

Original article at: https://www.itproportal.com/features/eu-regulations-might-help-not-hinder-digital-payment-fraud/

You may also like

ClearSale Wins Comparably Awards for Best Work-Life Balance and Happiest Employees

ClearSale Wins Comparably Awards for Best Work-Life Balance and Happiest Employees

Fraud protection leader recognized by career site for a second time this year

[Industry Focus] Fraud Risk Profile for Nutraceutical and Drug Retailers

[Industry Focus] Fraud Risk Profile for Nutraceutical and Drug Retailers

As people become more conscious of what they’re putting into their bodies, there’s been an increased demand for high-quality supplements and healthful food and beverages. The result has been a..

3 Ways Tech Can Benefit Remote Teams

3 Ways Tech Can Benefit Remote Teams

Ecommerce businesses are used to an ever-evolving digital connection between them and their customers. But 2020’s COVID-19 pandemic has resulted in that digital connection making its way into the..

Shopping Habits by Gender: What’s Changed in 2020

Shopping Habits by Gender: What’s Changed in 2020

Do men hate shopping online? Are women more worried about fraud?

How Management Should Contribute to Fraud Protection

How Management Should Contribute to Fraud Protection

As companies grow, management often delegates business-critical tasks—marketing, technology, fraud prevention—to different departments. While it might seem to be an efficient way to get things..

ClearSale Becomes Shopify Plus Certified App Program Partner

ClearSale Becomes Shopify Plus Certified App Program Partner

The fraud protection leader has been selected as a premier app provider for the highly regarded commerce platform.

“I Don’t Need Fraud Protection — My Business Isn’t at Risk!”

“I Don’t Need Fraud Protection — My Business Isn’t at Risk!”

As an e-commerce merchant, you know the risk of fraud, false declines and chargebacks. But maybe you think it won’t happen to you because you’re a relatively new — or small — e-commerce merchant,..

Account takeover is the biggest fraud threat U.S. consumers haven't heard of

Account takeover is the biggest fraud threat U.S. consumers haven't heard of

Account takeover fraud is a huge problem, but most US consumers don’t know about it. Only 36% of US consumers say they are familiar with account hijacking fraud, even though it’s one of the..

How Backtesting Can Improve Fraud Prevention

How Backtesting Can Improve Fraud Prevention

They say hindsight is 20/20, and that’s especially true for e-commerce merchants looking to increase their approval rates and decrease fraudulent transactions. It’s easy to look back at..

Want to write
for our blog?

Please review our writers' guidelines
https://www2.clear.sale/press/clearsale-guest-blog-guidelines
and then email guestwriter@clear.sale with your pitch!

Subscribe to our blog