How to Validate Credit Cards - 2020

Merchants need to verify the validity of both the card and its cardholder for each payment. Industry rules require it to ensure protection for cardholders and issuers against fraud and merchants need to do anyway it to protect themselves. You can also take benefits of BIN Search.

Card validation is much more easily done in a face-to-face setting than it is in virtual transactions. If you incorporate the following best practices into your payment acceptance process, you will be able to verify the legitimacy of both the card and your customer in each transaction:

  1. Swipe the card. Avoid key-entered transactions as much as you can. They limit your ability to verify payment information, are much more prone to processing errors and get higher interchange rates.

  2. Obtain transaction authorization approval. Do not complete the payment unless your authorization request is approved. Skip this procedure if the transaction amount is below your floor limit.

  3. Compare the account numbers. Your point-of-sale (POS) machine should allow you to verify whether the account number embossed on the face of the card matches the one encoded in the magnetic stripe. Check the owner’s manual or call the manufacturer for the exact procedure. Some terminals will display the number encoded in the magnetic stripe while others will print it out on the transaction receipt, in which case you will only see the last four digits. Some terminals will enable you to check the numbers electronically, in which case you will be prompted to key-enter the last four digits of the embossed account number. Whatever the exact procedure, if you receive a “No Match” response, you should make a Code 10 call.

  4. Check the card’s expiration date. You should not be accepting expired cards.

  5. Check the Electronic Warning Bulletin or International Warning Notices. If you get a positive response, you should not complete the transaction, unless it is authorized by the issuer.

  6. Check the four-digit number in the signature panel of the card. It should be an exact match of the last four digits of the account number on the front of the card.

  7. Check the photograph on the card. If the card features a photo of its owner, there is no reason not to take advantage of it.

  8. Check the signature. The card must be signed to be valid. Some consumers have been led to believe that writing “Ask for ID” instead of signing their card is a form of fraud protection, however according to industry rules such cards are just as invalid as unsigned cards. In either of these cases you will need to follow these procedures:

  • Obtain an authorization approval for the transaction.

  • Request a photo ID (e.g. driver’s license) from the customer.

  • Ask your customer to sign the card.

Why should the verification take place?

When you have verification for credit cards, it enables you to have quality leads that you could nurture, as the system does not store the cards that fail the verification. It is not necessary to charge the customer, $0 plans could be there or you could take after AWeber.

Firstly, during testing, subjects tended to be extra careful when inputting their card number. Oftentimes we observed that test subjects, after having inputted their credit card number, double-checked it to make sure the it was correct before submitting the form.

A single typo when transferring the 15-16 digit numeral string printed on the physical card into the card number form field will cause a validation error. But in practice it’s often worse than just an error.

Many users have – likely due to poor prior general checkout experiences, typically on other sites – come to suspect that a card validation error may also clear out all of their typed card data, hence a transposed digit will force them into re-typing their full credit card data. Indeed our checkout benchmark reveals that even among the 50 top-grossing US e-commerce sites, 18% still clear out the user’s entire card number on just the smallest typo.

It’s therefore not that surprising when we during testing observed a sub-group of users meticulously double-checking their card number after having typed it by nearly always looking from the physical card to the typed number on the screen, and using the mouse cursor to inspect the typed number in 4-digit blocks.