Many online merchants fight chargebacks by using payment gateway filters to protect their integrated payments processes from fraudulent behavior. What they may not realize is that these gateway filters are actually hurting their businesses by declining perfectly safe orders along with the fraudulent ones.
In this blog post, we’ll walk you through the nitty gritty of what payment gateways do, how you can use their filters to screen for fraud—and why you shouldn’t.
Q: What is a payment gateway?
A: Payment gateways process online payments from credit and debit cards. They make online shopping possible by connecting and authorizing payments between eCommerce customers and merchants.
There are two main types of gateways: hosted and integrated.
Hosted gateways are operated by payment-processing companies like PayPal. The main benefit of using a hosted gateway to manage your transactions is that the hosting company is responsible for all compliance and security requirements to ensure safe checkout.
The downside is that your customers will have to leave your website to place their orders. They’ll be redirected to the gateway host’s website, which means that you won’t have full control over their entire online shopping experience.
A sense of disconnection can jolt a customer out of the shopping process prematurely. Consider this example: a potential customer spends time browsing the products on your website, which you’ve carefully designed to run smoothly and reflect your brand. When he’s ready to check out, he is suddenly and unexpectedly rerouted to the gateway host’s website to finish processing his payment. If your customer thinks that the gateway site is slower, less secure, or even less visually appealing than your own familiar website, he might just reconsider his purchase and abandon his cart.
Alternatively, integrated gateways can be built into your website so that your customers never have to leave your site during the payment process. WooCommerce is an example of an integrated payment gateway. Like many similar services, WooCommerce integrates neatly into most websites. However, you’ll be charged a processing fee for each transaction, making it a costly choice for businesses that handle many small transactions.
Also, unlike their hosted counterparts, integrated gateways put the burden of data security on your business. They require some technical expertise to manage, so if you aren’t at least somewhat skilled at computer programming, you may need to hire a programmer to set up and maintain your payment gateway.
It’s important to choose the right payment gateway for your business. Again, if your customers don’t feel that their payment information is secure, or if they run into difficulties during the order process, they’re likely to abandon their carts and take their business elsewhere.
According to the 2016 American Express Digital Payments Security Survey, 42% of online shoppers reported that they had decided not to complete an order due to security concerns. That number rises to 48% among members of Generation X (those born in the years between 1965 and 1980), and 50% of Millennials surveyed (those born between 1981 and 1996).
Q: What is a gateway filter?
A: A gateway filter is a set of rules used by a payment gateway to identify and reject payments that seem likely to be fraudulent. To some extent, eCommerce merchants can usually set up and adjust the filters on the gateways they use to customize their specifications.
For example, you could set your gateway filter to deny all transactions with AVS mismatches (billing addresses that don’t match the addresses on file with the credit card company). You could also set your gateway filters to deny all transactions with CVV mismatches (when the card verification value, the three- or four-digit security code entered, doesn’t match the code associated with the credit card), or to block transactions from certain countries entirely.
Gateway filters are usually free to use and can be a decent fraud prevention tool for merchants who don’t experience much fraud. They’re far from a perfect solution, though.
Q: What’s the problem with gateway filters?
A: The selection of available rules is limited, so you can’t screen for every type of transaction fraud. The gateway filter rules are also not very flexible. This leaves the merchant with an unpleasant choice. They can set the rules too loosely and unintentionally allow fraudulent transactions to be processed, which results in lost merchandise and a costly chargeback fee. On the other hand, they can set the rules too strictly and decline legitimate transactions along with the fraudulent ones.
A high false rejection rate can cost merchants heavily in lost sales, especially since rejected customers are likely to take their future business to a competitor. Advisory firm Javelin Strategy and Research found that 32% of legitimate customers whose transactions were declined by a merchant’s overcautious fraud-prevention filters never shopped with that merchant again.
“We estimate that in the U.S. alone, the value of false declines is more than thirteen times the total amount lost to actual card fraud,” says Al Pascual, senior vice president, research director, and head of fraud and security at Javelin.
Consider these statistics: 3.6% of all eCommerce shoppers put in the wrong billing address when they check out. Standard fraud-detection filters will flag these orders with an “AVS N” error notification and decline the transaction—even though 91.9%of those orders are from legitimate customers.
6.7%of all eCommerce shoppers enter a billing address that’s only partially correct (leading to the error notification “AVS A,Z”). A full 98.1% of those orders are legitimate, but all of them will be denied by overzealous gateway filters.
Similarly, 15%of all transactions do not have an exact CVV match. 98.7%of those orders are safe to ship, but you won’t ship any of them if your strict gateway filter declines them first.
By turning away good customers, your gateway filters could be forcing you to leave money on the table. Take a few minutes to check if you have those profit-killing settings for your filters turned on at your payment gateway. By switching them off, you can easily boost your order acceptance rate by more than 10%.
Q: Is manual review a safe substitute for gateway filters?
A: For many eCommerce businesses, achieving effective security without turning away valid customers is impossible with their payment gateway filters. In this case, they’ll need to rely on a more accurate fraud detection solution. Often, merchants will fight fraud with manual review, counting on employees to look through orders, spot the fraudulent ones, and decline them. However, manual review is an expensive and time consuming solution, even when merchants choose to review only orders worth more than a certain dollar amount.
When engaging in manual review, business owners are stuck paying for countless hours of manpower, often hiring employees whose only job is to screen orders for fraud. These employees are still vulnerable to human error, especially when they don’t have access to all the available fraud-detection databases and technologies. Moreover, manual review can be relatively slow and tedious, resulting in delays when trying to process a high-volume of orders.
Q: What can I do to protect my business from fraud if I’m not relying on gateway filters or manual review?
A: A truly effective fraud detection system uses multiple layers of technology to analyze many points of data from a variety of sources, and drastically reduces the need for manual review. Unfortunately, they tend to be prohibitively expensive, difficult to set up and maintain, and designed with large businesses in mind. For many smaller businesses, these technology-driven solutions are not a viable or cost-effective option.
This is exactly why NoFraud was created. NoFraud’s automated fraud prevention service provides a layer of advanced protection between an eCommerce site’s shopping cart and its payment gateway, running quickly and smoothly in the background without slowing down the customer’s shopping experience.
NoFraud is also capable of reliably identifying when data mismatches are the result of honest customer errors. When typos are detected, NoFraud alerts customers instead of declining their orders, allowing them to correct their information and complete their purchases. That means you don’t lose out on a sale every time someone makes a mistake while typing in their billing address.
NoFraud is easy to use, affordable and adapts to keep up with evolving fraud threats. By comparing data gathered from all NoFraud users, NoFraud’s algorithm is able to spot emerging fraud trends and better protect all the merchants who rely on it.
There’s a human element to NoFraud, too. Our team of experts carefully monitors the transactions that are declined and makes sure that our software never turns away legitimate orders from your business. It’s the ideal fraud prevention solution, weeding out the fraudulent orders for you without compromising your bottom line in the process.
NoFraud is the perfect option for smaller businesses, requiring no monthly minimums and no long-term contracts. You can try NoFraud at no risk today. In just minutes, NoFraud’s powerful algorithm will integrate seamlessly into your payment system to keep your business safe from fraud and overcautious fraud-prevention filters.
To find out more about how NoFraud’s AI-powered solution can help your business and to try it for yourself, just send an email to firstname.lastname@example.org.