Companys holding onto Credit card details?

p00hsticks

grumbler wrote: »

I think they don't ask because they already have it.

I'm pretty sure that the CVV is the one piece of credit card info that the merchant isn't allowed to store.

Herbalus

p00hsticks wrote: »

I'm pretty sure that the CVV is the one piece of credit card info that the merchant isn't allowed to store.

This. There was a company that I used to deal with on the phone. Every time I placed an order they would ask if I'd like to use the same card details as before, but they needed the CVV code to process the order. The one time I didn't have my card on me, they couldn't process it.

Ash__

You technically can process it without the CVV code but most of the time its against agreements etc

iAMaLONDONER

Ash__ wrote: »

You technically can process it without the CVV code but most of the time its against agreements etc

So is Amazon breaking the rules by not requiring the CVV?

20aday

iAMaLONDONER wrote: »

So is Amazon breaking the rules by not requiring the CVV?

I don't know if they'd be breaking the law but by not asking the card holder for their CVV code when making a payment surely opens them up to Cardholder Not Present fraud?

iAMaLONDONER

20aday wrote: »

I don't know if they'd be breaking the law but by not asking the card holder for their CVV code when making a payment surely opens them up to Cardholder Not Present fraud?

That's a major concern!

reclusive46

20aday wrote: »

I don't know if they'd be breaking the law but by not asking the card holder for their CVV code when making a payment surely opens them up to Cardholder Not Present fraud?

Its up to the retailer with regards to collecting the 3 or 4 digit CVV. Those who process keyed or online transactions are liable for all credit/debit card fraud anyway (even if they collect CVV) unless they use Verified by Visa, MasterCard SecureCode or American Express SafeKey (Websites only obviously).

The only exception is American Express and Maestro. American Express will protect you from being liable if you collect the 4 digit CVV on keyed card present transactions (I.e. if the chip and magnetic stripe won't read, you can still key in the card and your covered if CVV matches and you obtain a signature). This is abused by some merchants though, especially by Pizza/take away delivery companies in the US who will process the transaction as card present and then get you to sign receipt when they deliver the food. They never even see the card but are completed protected from chargebacks.

All CNP Maestro transactions have to be processed via SecureCode so obviously there is never any merchant liability with these cards.

iAMaLONDONER

reclusive46 wrote: »

Its up to the retailer with regards to collecting the 3 or 4 digit CVV. Those who process keyed or online transactions are liable for all credit/debit card fraud anyway (even if they collect CVV) unless they use Verified by Visa, MasterCard SecureCode or American Express SafeKey (Websites only obviously).

The only exception is American Express and Maestro. American Express will protect you from being liable if you collect the 4 digit CVV on keyed card present transactions (I.e. if the chip and magnetic stripe won't read, you can still key in the card and your covered if CVV matches and you obtain a signature). This is abused by some merchants though, especially by Pizza/take away delivery companies in the US who will process the transaction as card present and then get you to sign receipt when they deliver the food. They never even see the card but are completed protected from chargebacks.

All CNP Maestro transactions have to be processed via SecureCode so obviously there is never any merchant liability with these cards.

Thanks for that informative post.

Dodgy takeaway shops aren't unique to the UK then!