The 3D-Secure system is an additional fraud prevention scheme for online purchases. As part of our partnership with Mastercard, you can use your Qonto debit cards for online payments on websites supporting 3D-Secure.

To ensure optimum protection, Qonto is now operating under the most recent version of this system, called 3DS2. It guarantees more security than the previous version and offers you a better experience when purchasing online.

How does it work?

For each online transaction, you must confirm that you are the cardholder who initiated the online card payment, thanks to two-step authentication. This layer of security is designed to ensure that a merchant only accepts card payments from legitimate customers.

A unique verification code is sent to you by SMS, which you have to enter on the merchant site to confirm your order. This system protects you from potential fraud, as your phone is needed to finalize this payment.

This authentication is mandatory, even in the case of multiple payments made within a short period of time. Subscriptions paid with your card online require a one-time approval using 3D-Secure; the next automatic occurrences don't need to be approved again.

☝️ Good to know: this system does not apply to card payments in-store or to approve direct debit.

What should I do if a website doesn't support 3DS?

Merchants are responsible for implementing 3D-Secure. If a merchant is 3D Secure compliant, you will be able to see the Verified by Visa or MasterCard SecureCode logo on the site:

If you want to make a payment on a website that doesn't support 3DS, your payment will therefore be rejected for transactions exceeding the following thresholds:

  1. Since January 2021, payments above €1000 are rejected

  2. From March 2021, payments above €250 will be rejected

  3. From April 2021, payments above €100 will be rejected

From May 2021, online payments without 3DS will not be accepted.

This limitation is due to the regulation known as the Second Payment Services Directive (PSD2), which aims to drive merchants to adopt 3DS on their site. Its objective is to strengthen transactions and banking operations security while keeping your data safe. Merchants will therefore have to adopt this security protocol to avoid any inconvenience.

Did this answer your question?