Frankfurt / Main (dpa) - shopping with just a few clicks on the Internet and pay conveniently with the credit card - from mid-September, this will be more complicated.
In addition to the data on the credit card, buyers should also identify themselves with another security feature such as an additional password or a fingerprint via smartphone. Many a purchase could fail because the payment can not be settled - so at least the fear of trade. Because in the implementation of the new requirements it crunching tremendously.
The EU wants to ensure more security in online banking and online payments. The rules of the EU Payment Directive (PSD 2), which will apply from 14 September, are designed to make life more difficult for fraudsters. Consumers therefore need to identify themselves even more when paying and banking on the Internet - two-factor authentication.
So far, the number of the credit card, its expiration date and the three-digit check code when paying in the network, an additional element is required for security reasons. Now a second factor has to be added, for example a TAN (transaction number), a password, a fingerprint transmitted via smartphone or face recognition. The TAN lists on paper still used by some banks are no longer allowed.
Many retailers could not change their Internet shops in time, even with respect to the customers there is still need for information, says Ulrich Binnebößel from the German trade association (HDE). "Two-factor authentication is much more complicated and very few consumers know it.
The trade must explain it to the customers, because the banks fulfill this task sometimes only unsatisfactory, criticizes Binnebößel. The HDE calls for a single transitional period of 18 months in the European Union. However, a shift is currently considered unlikely. So do not stay too many weeks until the start on September 14th.
Although trade, payment service providers and credit institutions have been aware of the new requirements since the adoption of the EU Directive in 2015. However, the technical details were published by the European Banking Authority (EBA) in March 2018, which would have raised further questions, Binnebößel describes the situation.
The devil is in the detail as always. Banks and savings banks issuing credit cards define the additional security element. They decide whether their customers, for example, have to use a password, a fingerprint or a code, which they receive via SMS, when paying with the card in the network.
For smaller purchases under 30 euros, the financial institutions can do without. In addition, they can allow customers to classify individual Internet shops as safe. Then the second security feature is also omitted. "The system of online retailers must be able to take all this into account. It's not easy for traders, "says Binnebößel.
The HDE fears that especially small online retailers will come under pressure and customers annoyed emigrate, if from 14 September, the payment by credit card in the network does not work smoothly. "This would allow large online platforms to expand their position," warns Binnebößel. According to a survey by the Cologne-based trade research institute EHI, 82% of online retailers are generally more worried about purchasing due to their increased complexity.
The Federal Association of E-Commerce and Mail Order Germany (bevh) also advocates a transitional period of at least 18 months. "One month before the deadline, the implementation of strong customer authentication fails on technical issues on the banking side," criticizes the Association.
The German banking industry, on the other hand, sees trade mainly on the train. Banks and savings banks had initiated and almost completed their preparations for implementing the requirements at an early stage. "It is important, however, that the online retailers themselves make their preparations on time," explains the representation of the interests of the central banks and savings banks. The online retailer decides whether the system will be supported. "That's not the case at the moment."
Not to be ruled out, therefore, that many online shoppers on September 14 desperate. However, there is still the possibility to pay the purchase on the net by invoice or direct debit.