While eCommerce has opened economic opportunities for thousands of people, it has also attracted high levels of fraud. This is a natural attraction in any new industry or service as unscrupulous people will find ways to exploit or defraud others. However, governments and entrepreneurs have been working together to find solutions to protect data while facilitating business opportunities.

eCommerce continues to grow. Some analysts project US online sales to surpass US$1.1 trillion by 2022, with nearly a third ($360 billion) of that total coming from mobile commerce. Yet, eCommerce also involves risk from the criminal activities of increasingly sophisticated fraudsters. Those risks and costs include direct financial losses, fines and fees, increased operational costs and reputational risks to businesses. These risks mean that security should always be a priority when selling online. A key feature of any payments system should be data security, and this is why:

  • LexisNexis estimated that in 2018, fraud cost eCommerce businesses 2.38{d1a1694403c5660430dc420b8f142668f13097a51a1c1fc172179b975fdf78b3} of revenues, a 6{d1a1694403c5660430dc420b8f142668f13097a51a1c1fc172179b975fdf78b3} increase over 2017. Their study projects the “true costs of fraud” for eCommerce merchants to be $2.46 for every $1 of payment fraud.
  • Experian found that eCommerce fraud attacks in the US rose 30{d1a1694403c5660430dc420b8f142668f13097a51a1c1fc172179b975fdf78b3} in 2017 over 2016. Experian’s report notes that the unauthorized use of credit cards accounted for 92{d1a1694403c5660430dc420b8f142668f13097a51a1c1fc172179b975fdf78b3} of fraudulent online transactions.
  • A 2019 report from Juniper Research estimates that retailers may lose $130 billion from card-not-present (CNP) eCommerce fraud in the five years between 2018 and 2023.

Retailers need to be responsible for their on-site security. Not only because of reputation but also because of the threat of bankruptcy should they be fined for breaches.

To help eCommerce merchants understand some of the security priorities they should make, we’ve listed the top 4 payments securities your eCommerce should include.

1. Take time to understand suspicious purchasing activity

Fraudsters are sophisticated criminals that cause real harm to businesses and consumers alike. However, even fraudsters leave a trace. Those traces can reveal the patterns of suspicious activity that indicate fraudulent activity.

Multiple orders from a single IP address using multiple credit cards can represent a red flag. This pattern suggests a single fraudster is using multiple credit cards, either stolen directly in data breaches or purchased from the dark web. Remarkably large orders, especially when the purchaser requests next-day shipping, could also raise a red flag for fraud.

Single points of suspicious activity aren’t sufficient to definitively identify a transaction as fraud. Strong payment security strongly suggests using multiple data points to help model both “good” and “bad” transactions. Taking the time to understand the range of suspicious activity you’re likely to face when selling online will help you make more informed decisions. Leading eCommerce platform providers and payment partners can help you create a secure and convenient service.

2. Enable address verification system (AVS)

An important tool to help reduce fraud is the address verification system (AVS). This system verifies the billing address against the cardholder’s data from the issuing bank.

AVS helps prevent fraud since the criminal often doesn’t have access to the billing address of the legitimate cardholder. AVS systems are often used in conjunction with CVV2 verification, the 3 or 4-digit code on consumers’ physical cards. Requiring both CVV2 and AVS at checkout can help protect against fraudulent transactions.

A failed AVS may not necessarily mean the transaction is fraudulent. Similarly, a verified AVS doesn’t necessarily mean the transaction is legitimate. The address could have been connected to the card by other means. AVS represents an important data point that can help reduce eCommerce fraud.

3. Achieve compliance with industry standards like PCI DSS

Data breaches can be devastating to businesses of all sizes. The 2018 Cost of a Data Breach Study by Ponemon found that the average cost of a data breach globally was more than US$3.86 million, or an estimated US$148 for every lost or stolen record of sensitive information.

The importance of keeping data safe led to the development Payments Card Industry Data Security Standards (PCI DSS). PCI DSS is an important set of guidelines and best practices that apply to any entity that receives, transmits or stores sensitive card data.

Achieving and maintaining PCI compliance takes an experienced partner that understands payments security. Leading credit card processors offer comprehensive support on meeting and maintaining PCI compliance through system vulnerability checks, training programs and customer support.

4. Partner with a processor who knows online payments

Choosing the right payments processor is the first step to safely and securely accepting credit cards online. Work with a reputable payments processor that prioritises security.

Staying vigilant with security of your online payments systems and eCommerce store is a process. You should start by consulting a payments expert. A reputable and experienced payments partner will take the time to understand your business and craft online payment security measures that fit the way your business.