At FNSrooms we have created FNSpayments with the aim of adapting to the new PSD2 Regulations. To comply with it, it is necessary to integrate with a supplier that facilitates compliance with the Standard. In our case, we have integration with PAYCOMET and Addon Payments.
Thanks to our technology and the integrations developed, from FNSrooms you can manage payments safely, always complying with the PSD2 Regulation.
PSD stands for Payment Service Directive, which stands for Payment Services Directive. The European regulations that regulate this type of services emerged for the first time in 2007, to later go a step further with the publication of a second Directive in 2015, which is what we know as PSD2 and which is transposed into our legal system in the Real Decree Law 19/2018, of November 23, on payment services and other urgent measures in financial matters.
The objective of this regulation is, above all, get a safe environment in the EU payments market, reinforcing the consumer protection, that establishes common rules regarding its operation and that allows a wide range of options and means of payment for users, since not only banks will be able to provide the service but there may be other payment providers such as Google Pay or Apple Pay.
Whatever the origin of the reservation, from FNSrooms we launch the necessary processes so that the payment of the same is authenticated. Through a system known as "tokenization", the card data is encrypted and converted into an alphanumeric code that encrypts the information. This "token" is received by the hotel and will allow it to make charges in situations in which the client is not present 8 (for example, in the case of a no show).
In this way, the card data is no longer visible and security for the guest is guaranteed, so that no one on the hotel staff can have the card information. Likewise, it seeks to have more security in the face of a cyberattack.
(*) Check the integrations with currently available providers.
It is the authentication process required by PSD2 through which the user must enter, during the payment process, a step that includes the use of two authentication factors so that the transaction can be completed.
No, this procedure is no longer valid as it was done before, but other authentication criteria are required. Strong authentication requires the use of 2 of 3 items categorized into one of these options: knowledge (something that only the user knows), possession (something that the user has), or inherence (fingerprint or facial recognition). It is no longer allowed to store this card-related data, it would have to be "tokenized".
No. In general, when operations are initiated by the customer in the online purchase process on a website, the normal thing is that they are. There are some exceptions to this, based on the amount, etc., but almost all card transactions or wire transfers require SCA.
Yes, the MIT (Merchant Initiated Transaction). They are those transactions in which the cardholder is not present at the time of the charge for different reasons: increases in value, recurring payments or installment payments. In these cases, the card will have had to be authenticated at the start of the operation. You also need to get customer acceptance to charge your card in the future.
Tokenization is a process by which the card data is encrypted and converted into an alphanumeric code that encrypts the information. The aim is to guarantee security for the guest, so that no one from the hotel staff can have the information on the card. Likewise, it seeks to have more security in the face of a cyberattack. As we can see, we would avoid fraudulent use by maximizing security.
The tokenization process is carried out by the payment gateway provider but it is connected to the PMS so that if you need to make payments, the gateway can use the token by decrypting the information from the provider when we launch payment orders from the management system . In the PMS we can control at all times the status, for collection purposes, of each of the reservations subject to the rule.