What do I need to know about PSD2 Compliance?

The PSD2 regulation

The revised Payment Services Directive (PSD2) is the latest version of the Payment Services Directive, a European regulation requiring Strong Customer Authentication (SCA) to make online payments in the European Economic Area (EEA) more secure.

Who needs to be compliant?

PSD2 applies to banks, not merchants. This means that issuing banks must refuse transactions that are not complying with PSD2. 

Tip: As a merchant, make sure your transactions comply with PSD2 SCA regulations to avoid the risk of refused transactions by issuing banks.

Are your payments affected?

Answer a few questions and check if your transactions fall under PSD2 Compliance guidelines.

Out of scope transactions

Out of scope transactions are transactions not covered by the PSD2 regulation. This means that issuing banks won’t apply strong authentication and guarantees that shoppers won’t be presented with an authentication challenge, unless you specifically ask for 3D Secure in your payment request. 

Stay PSD2 compliant

Adyen takes care of the majority of the complexity for you by routing in scope transactions to 3D Secure when required. 

If any of the below is true, then you’re already fully prepared for PSD2:

  • You use 3DS 1 or 2 via Adyen.
  • You use 3DS 1 or 2 via another provider such as Cardinal Commerce.
  • You’re integrated to Adyen via Drop In, Pay By Link, or HPP.

You’re integrated with a plugin such as BigCommerce or Shopify.

The PSD2 SCA compliance guide

Be ready to apply strong customer authentication to your transactions.

View PSD2 compliance guide

Related content

The illustration of support agent wearing a headset.

Do you need additional help?

Contact our support team

Send us the details of your issue by adding images or screenshots.

Submit a request