Learn about Strong Customer Authentication (SCA) and SCA Requirements.

What is SCA?

Strong Customer Authentication (SCA), a new rule coming into effect on September 14, 2019, as part of PSD2 regulation in Europe, will require changes to how your European customers authenticate online payments. Card payments will require a different user experience, namely 3D Secure, to meet SCA requirements.

Who does this affect?

If you are an EU-based business with members purchasing products with an EU bank or card, the transactions could be flagged for additional confirmation of payment. However, while SCA is regulation for EU businesses and EU customers, any bank can flag a payment for 3D Secure payments. So we highly recommend configuring 3D Secure settings in Stripe.

Do I need to do anything to prepare for this?

Please update your 3D Secure settings in Stripe and you’re good to go. We’ve handled everything else for you!

What about PayPal?

PayPal already handles 3D Secure payments.

What happens if SCA is triggered during checkout using Stripe?

The member will be redirected to a confirmation page where they will confirm the payment in a popup window. If they confirm the payment successfully, they will continue in the checkout process as usual. If they decline to confirm the payment, they will be redirected to checkout.

What does the modal look like?

Unfortunately, each page comes from the bank and there is no convention on what they require to confirm payment. It will be loaded in a modal/popup.

Does this apply to subscription payments?

Yes. The bank can require SCA at any time, whether it’s the first or fifth payment of a subscription.

What happens if SCA is triggered for subscription payments?

If a member has a subscription payment that requires SCA, and they try to view their library, we will redirect them to a page where they can confirm payment.

We also recommend you set up your 3D Secure settings within Stripe:

We recommend that you use the Stripe payment page to help capture the payment and/or eventually cancel the subscription should they fail to confirm the charge.

What is 3D Secure?

3D Secure provides a layer of protection against fraudulent payments that are supported by most card issuers. The upcoming Strong Customer Authentication regulation in Europe requires the use of 3D Secure for card payments. Unlike regular card payments, 3D Secure requires cardholders to complete an additional verification step with the issuer.

Typically, this involves showing the customer an authentication page on their bank’s website, where they are prompted to enter a password associated with the card or a verification code sent to their phone. This process is familiar to customers through the card networks’ brand names, such as Visa Secure and Mastercard Identity Check.

Learn how to set up your 3D Secure settings here:

Example of a 3D Secure Flow

  • Step 1: The customer enters their card details.


  • Step 2: The customer's bank assesses the transaction and can complete 3D Secure at this step.

Confirmation Page Message

Loading Authentication Modal

  • Step 3: If required by their bank, the customer completes an additional authentication step.

Bank Authentication UI

Contact support or access our 24/7 Live Chat:

Contact Support Live Chat

Need Help? Chat With Us Now!