Controlled payment number

Last updated

A controlled payment number, disposable credit card or virtual credit card is an alias for a credit card number, with a limited number of transactions, and an expiration date between two and twelve months from the issue date. This "alias" number is indistinguishable from an ordinary credit card number, and the user's actual credit card number is never revealed to the merchant.

Contents

The technology was introduced primarily as an anti-fraud measure, so that a virtual unique credit card number may be generated to settle a specific transaction, on an exact date by an authorized individual. The possibility of a fraud occurring is significantly less than a traditional physical card, which can be lost, stolen or indeed cloned.

The number is generated through the use of either a Web application or a specialized client program, interacting with the card issuer's computer, and is linked to the actual credit card number. While it could usually be set up to allow multiple transactions, it could only be used with a single merchant. Consequently, if it is compromised a fraudulent user can usually not steal money, and the limit reduces how much a fraudulent person can steal.

The term "controlled payment number" is a trademark of Orbiscom. [1] The technology is also called by generic names "substitute credit card number", "one-time use credit card", "disposable credit card" and "virtual credit card number", or "virtual card number" (VCN).

Technologies

Mastercard

January 2009, MasterCard and Cyota Inc. acquired the controlled payment number system developed by Orbiscom, a Dublin-based payment processing company. [2] In the United States, the system is used by the following credit card issuers: Bank of America "ShopSafe" (inherited when it acquired MBNA) (and now discontinued-see below) [3] and Citibank "Virtual Account Numbers". [4] Examples from other countries are MBnet, which can create a payment number linked to virtually any credit or debit card emitted in Portugal.

Orbiscom's patented payment technologies have been integrated with MasterCard's global processing platform, "inControl". [5]

In 2013 Royal Bank of Scotland MasterCard customers became eligible for MasterCard's "enhanced Central Travel Service" (eCTS), which uses VCN technology. This service is intended to provide companies currently paying for travel through multiple accounts with a centralised travel payments system. [6]

In 2015 Etisalat Egypt, National bank of Egypt NBE and MasterCard launched Virtual Card Numbers via Flous service. The service works on any mobile phone. Every time a VCN is requested, a new one will be generated, and the user notified by SMS.

Discontinued programs

On February 7, 2014, the US Discover Card discontinued its Secure Online Account Numbers service, saying that Discover no longer had access to the underlying technology. All existing Secure Online Account Numbers expired on March 16, 2014. [7]

In the UK, Ivobank offered a similar "virtual card" until it went bankrupt in 2009, and Cahoot withdrew their Webcard in October 2009.

American Express's "Private Payments" was available from late 2000 to 2004.

PayPal discontinued their virtual credit card service on September 22, 2010. [8]

UK-based Neteller offered Net+, a "virtual debit card" with card details generated uniquely for each transaction, from 2008 to 2012; it was discontinued on 29 February 2012, citing lack of use by customers.

Bank of America discontinued ShopSafe on September 5, 2019.

Virtual credit card

A virtual credit card (VCC) is a virtual credit card number (VCN) typically used for online purchases, and often for single-use transactions. Virtual credit card numbers are not associated with a physical card, and consequently cannot be used for in-person transactions. Unlike the numbers generated by online credit card number generators, funds must be deposited into an account associated with the VCN prior to usage.

VCNs can be acquired from online VCN providers, banks, and some partners of Visa and MasterCard. Online VCN providers often assess service charges to pay banks, credit card companies, and/or credit networks for the costs of obtaining and servicing VCNs.

A virtual credit card includes three parts: [9]

Like standard Visa and MasterCard credit cards, the credit card number consists of sixteen digits.

A card security code (CSC) (also termed card verification code (CVC) and card verification value (CVV/CVV2)) is also associated with the virtual credit card; as in standard credit cards, a CVV is used in virtual credit cards to establish card ownership by the buyer and to authorize transactions.

Virtual credit cards often expire much sooner than physically issued credit cards, e.g., 60 days. As security is a primary reason for VCC usage, rapid turnover of VCNs prevents funds from being compromised for long periods of time.

Related Research Articles

<span class="mw-page-title-main">Debit card</span> Card used for financial transactions, usually without a credit line

A debit card, also known as a check card or bank card, is a payment card that can be used in place of cash to make purchases. The card usually consists of the bank's name, a card number, the cardholder's name, and an expiration date, on either the front or the back. Many of the new cards now have a chip on them, which allows people to use their card by touch (contactless), or by inserting the card and keying in a PIN as with swiping the magnetic stripe. These are similar to a credit card, but unlike a credit card, the money for the purchase must be in the cardholder's bank account at the time of the purchase and is immediately transferred directly from that account to the merchant's account to pay for the purchase.

<span class="mw-page-title-main">EFTPOS</span> Type of electronic payment system

Electronic funds transfer at point of sale is an electronic payment system involving electronic funds transfers based on the use of payment cards, such as debit or credit cards, at payment terminals located at points of sale. EFTPOS technology was developed during the 1980s.

<span class="mw-page-title-main">Smart card</span> Pocket-sized card with embedded integrated circuits for identification or payment functions

A smart card (SC), chip card, or integrated circuit card is a physical electronic authentication device, used to control access to a resource. It is typically a plastic credit card-sized card with an embedded integrated circuit (IC) chip. Many smart cards include a pattern of metal contacts to electrically connect to the internal chip. Others are contactless, and some are both. Smart cards can provide personal identification, authentication, data storage, and application processing. Applications include identification, financial, public transit, computer security, schools, and healthcare. Smart cards may provide strong security authentication for single sign-on (SSO) within organizations. Numerous nations have deployed smart cards throughout their populations.

<span class="mw-page-title-main">EMV</span> Smart payment card standard

EMV is a payment method based on a technical standard for smart payment cards and for payment terminals and automated teller machines which can accept them. EMV stands for "Europay, Mastercard, and Visa", the three companies that created the standard.

<span class="mw-page-title-main">Visa Electron</span> Debit card

Visa Electron is a debit card product that uses the Visa payment system. It is offered by issuing banks in every country with the exception of Canada, Australia, Argentina, Ireland and the United States. The difference between Visa Electron and Visa Debit, a similar product, is that payments with Visa Electron always require on-line electronic authorisation, and typically require that all the funds be available at the time of transfer, i.e., Visa Electron card accounts may not normally be overdrawn. Most Visa Debit cards, on the other hand, may be processed offline, without online authorisation, and may allow transfers exceeding available funds up to a certain limit. For that reason, Visa Electron cards are more commonly issued to younger customers or customers that have poor credit. Some online stores and all offline terminals do not support Visa Electron because their systems cannot check for the availability of funds. In addition to point of sale debit payments, the card also allows the holder to withdraw cash from automated teller machines (ATMs) using the Plus interbank network.

An e-commerce payment system facilitates the acceptance of electronic payment for offline transfer, also known as a subcomponent of electronic data interchange (EDI), e-commerce payment systems have become increasingly popular due to the widespread use of the internet-based shopping and banking.

<span class="mw-page-title-main">Visa Debit</span> Debit card

Visa Debit is a major brand of debit card issued by Visa in many countries around the world. Numerous banks and financial institutions issue Visa Debit cards to their customers for access to their bank accounts. In many countries the Visa Debit functionality is often incorporated on the same plastic card that allows access to ATM and any domestic networks like EFTPOS or Interac.

An address verification service (AVS) is a service provided by major credit card processors to enable merchants to authenticate ownership of a credit or debit card used by a customer. AVS is done as part of the merchant's request for authorization in a non-face-to-face credit card transaction. The credit card company or issuing bank automatically checks the billing address provided by the customer to the merchant against the billing address in its records, and reports back to the merchant who has the ultimate responsibility to determine whether or not to go ahead with a transaction. AVS can be used in addition to other security features of a credit card, such as the CVV2 number.

A merchant account is a type of bank account that allows businesses to accept payments in multiple ways, typically debit or credit cards. A merchant account is established under an agreement between an acceptor and a merchant acquiring bank for the settlement of payment card transactions. In some cases a payment processor, independent sales organization (ISO), or member service provider (MSP) is also a party to the merchant agreement. Whether a merchant enters into a merchant agreement directly with an acquiring bank or through an aggregator, the agreement contractually binds the merchant to obey the operating regulations established by the card associations. A high-risk merchant account is a business account or merchant account that allows the business to accept online payments though they are considered to be of high-risk nature by the banks and credit card processors. The industries that possess this account are adult industry, travel, Forex trading business, multilevel marketing business. "High-Risk" is the term that is used by the acquiring banks to signify industries or merchants that are involved with the higher financial risk.

<span class="mw-page-title-main">Payment card</span> Card issued by a financial institution that can be used to make a payment

Payment cards are part of a payment system issued by financial institutions, such as a bank, to a customer that enables its owner to access the funds in the customer's designated bank accounts, or through a credit account and make payments by electronic transfer with a payment terminal and access automated teller machines (ATMs). Such cards are known by a variety of names, including bank cards, ATM cards, client cards, key cards or cash cards.

<span class="mw-page-title-main">ATM card</span> Type of bank card providing access to Automatic Teller Machines

An ATM card is a dedicated payment card card issued by a financial institution which enables a customer to access their financial accounts via its and others' automated teller machines (ATMs) and, in some countries, to make approved point of purchase retail transactions. ATM cards are not credit cards or debit cards, however most credit and debit cards can also act as ATM cards and that is the most common way that banks issue cards since the 2010s.

<span class="mw-page-title-main">NETS (company)</span>

Network for Electronic Transfers, colloquially known as NETS, is a Singaporean electronic payment service provider. Founded in 1986 by a consortium of local banks, it aims to establish the debit network and drive the adoption of electronic payments in Singapore. It is owned by DBS Bank, OCBC Bank and United Overseas Bank (UOB).

<span class="mw-page-title-main">Multibanco</span>

Multibanco is a portuguese interbank network. It is the largest interbank network in Portugal owned and operated by SIBS , that links the ATMs of 27 banks in Portugal, totaling 12,700 machines as of December 2014. The bank members of Multibanco control the SIBS. Multibanco is a fully integrated interbank network. One of the most notable characteristics of Multibanco is the wide range of services that can be utilised through its machines.

<span class="mw-page-title-main">Credit card fraud</span> Financial crime

Credit card fraud is an inclusive term for fraud committed using a payment card, such as a credit card or debit card. The purpose may be to obtain goods or services or to make payment to another account, which is controlled by a criminal. The Payment Card Industry Data Security Standard is the data security standard created to help financial institutions process card payments securely and reduce card fraud.

<span class="mw-page-title-main">Credit card</span> Card for financial transactions from a line of credit

A credit card is a payment card, usually issued by a bank, allowing its users to purchase goods or services or withdraw cash on credit. Using the card thus accrues debt that has to be repaid later. Credit cards are one of the most widely used forms of payment across the world.

Card schemes are payment networks linked to payment cards, such as debit or credit cards, of which a bank or any other eligible financial institution can become a member. By becoming a member of the scheme, the member then gets the possibility to issue cards or acquire merchants operating on the network of that card scheme. UnionPay, Visa and MasterCard are three of the largest global brands, known as card schemes, or card brands. Billions of transactions go through their cards on a yearly basis.

<span class="mw-page-title-main">Rede S.A.</span>

Rede known as Redecard is a Brazilian multi-brand acquirer with 25 brands in its portfolio, for credit, debit and benefit cards. Its activities include merchant acquiring, capturing, transmission, processing and settlement of credit and debit card transactions, prepayment of receivables to merchants, rental of POS terminals, check verification through POS terminals, credit card machine and the capture and transmission of transactions using benefit-voucher, private-label cards and loyalty programs such as Multiplus. The company is the first largest in its sector. The company was traded in BM&F Bovespa and disclosed in 2012, 24, September.

A card-not-present transaction is a payment card transaction made where the cardholder does not or cannot physically present the card for a merchant's visual examination at the time that an order is given and payment effected. It is most commonly used for payments made over the Internet, but can also be used with mail-order transactions by mail or fax, or over the telephone.

<span class="mw-page-title-main">Card security code</span> Security feature on payment cards

A card security code is a series of numbers that, in addition to the bank card number, is printed on a credit or debit card. The CSC is used as a security feature for card not present transactions, where a personal identification number (PIN) cannot be manually entered by the cardholder. It was instituted to reduce the incidence of credit card fraud.

<span class="mw-page-title-main">Google Pay (payment method)</span> Mobile payments platform developed by Google

Google Pay is a mobile payment service developed by Google to power in-app, online, and in-person contactless purchases on mobile devices, enabling users to make payments with Android phones, tablets, or watches. Users can authenticate via a PIN, passcode, or biometrics such as 3D face scanning or fingerprint recognition.

References

  1. "Controlled Payment Numbers". Orbiscom. 2005. Archived from the original on 2005-02-04.
  2. "MasterCard Worldwide Acquires Orbiscom to Accelerate Development of Innovative Payment Solution". Orbiscom. Archived from the original on 2009-08-09. Retrieved 2009-10-20.
  3. "ShopSafe". bankofamerica. Archived from the original on 12 November 2019.
  4. "Virtual Account Numbers". citi. Retrieved 2022-12-20.
  5. "Commercial Products". Mastercard. Retrieved 2014-10-01.
  6. MasterCard Central Travel Solution brochure
  7. "Discover to Discontinue Secure Online Account Numbers Again". Archived from the original on 2014-05-19. Retrieved 2014-05-18.
  8. "Paypal Plugin will no longer be available".[ permanent dead link ]
  9. "Virtual Credit Card Buying Guide". Micro Labors. 2016-02-16. Archived from the original on 2016-03-09.
This page is based on this Wikipedia article
Text is available under the CC BY-SA 4.0 license; additional terms may apply.
Images, videos and audio are available under their respective licenses.