EP1941438A2 - Systemes et procedes de conduite de transactions financieres par le biais d'un reseau - Google Patents
Systemes et procedes de conduite de transactions financieres par le biais d'un reseauInfo
- Publication number
- EP1941438A2 EP1941438A2 EP07732550A EP07732550A EP1941438A2 EP 1941438 A2 EP1941438 A2 EP 1941438A2 EP 07732550 A EP07732550 A EP 07732550A EP 07732550 A EP07732550 A EP 07732550A EP 1941438 A2 EP1941438 A2 EP 1941438A2
- Authority
- EP
- European Patent Office
- Prior art keywords
- merchant
- location
- request
- customer
- funds
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Withdrawn
Links
Classifications
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06Q—INFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
- G06Q20/00—Payment architectures, schemes or protocols
- G06Q20/38—Payment protocols; Details thereof
- G06Q20/40—Authorisation, e.g. identification of payer or payee, verification of customer or shop credentials; Review and approval of payers, e.g. check credit lines or negative lists
- G06Q20/401—Transaction verification
- G06Q20/4016—Transaction verification involving fraud or risk level assessment in transaction processing
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06Q—INFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
- G06Q20/00—Payment architectures, schemes or protocols
- G06Q20/08—Payment architectures
- G06Q20/12—Payment architectures specially adapted for electronic shopping systems
Definitions
- the merchant sends an electronic authorization request to an acquiring bank.
- the acquiring bank passes the electronic authorization request to the issuing bank (i.e., the bank or financial institution that issued the payment card to the customer) yia the card issuer network (e.g., Visa, MasterCard, American Express, or private card issuer network).
- the issuing bank verifies that the customer has sufficient credit available, is not delinquent with payments, and that all information (e.g., card number, card verification value number, and card holder details) that has been supplied is correct.
- the issuing bank then sends an electronic message authorizing the payment, via the card issuer network, to the acquiring bank, and the acquiring bank sends the electronic message to the merchant.
- the merchant accepts this authorization message as proof of future payment by the issuing bank.
- the actual transfer of the funds takes place at a later stage, referred to as the settlement process.
- Various embodiments of the invention provide a more secure financial transaction system for e-commerce sectors that (1) more securely processes payment transactions, (2) helps to protect merchants and banks against fraudulent transactions, money laundering, and underage gambling, and (3) helps to limit other abuses in areas of e-commerce that are perceived to pose special risks, such as Internet gaming, travel, and consumer purchasing of electronic goods.
- various embodiments of the financial transaction system (1) establish operating and transaction processing protocols for merchants, Internet payment service providers, acquiring banks, and card schemes and (2) provide automated systems for monitoring and securely processing payment and financial transactions. Two or more of the various embodiments described herein may be combined to provide a system or method that meets one or more of these goals.
- a system for processing a financial transaction with an online merchant includes a payment service provider module that is configured for: (1) receiving a request to transfer funds from a customer account to an online merchant; (2) in response to receiving the request to transfer funds, allocating at least a portion of the funds to be paid to the online merchant to an escrow account; and (3) in response to allocating a portion of the funds to be paid to the online merchant to an escrow account, storing the allocated portion of funds in the escrow account for the lesser of a predetermined period of time or until a request for a chargeback or refund request is received by the system.
- the request may be received from a merchant computing device in communication with the payment services provider module over a network.
- the payment service provider module is further configured for periodically generating a reconciliation report for each online merchant that lists transfer requests that have been received and portions of funds that have been allocated to the escrow account.
- the payment service provider module is further configured for receiving a chargeback request or a refund request for funds previously transferred to the merchant from the customer account; and in response to receiving the chargeback request or the refund request, funding the chargeback request or the refund request from the funds stored in the escrow account.
- the system also includes a fraud prevention module that is configured for applying one or more fraud filters to the request.
- the fraud filters may include: (1) comparing a first location associated with the customer account with a second location associated with a customer computing device used to transmit the request to the online merchant, and in response to the first location being outside of a first predetermined acceptable distance of the second location, marking the request as potentially fraudulent; (2) comparing a third location associated with a customer email address with the second location, and in response to the third location being outside of a second predetermined acceptable distance of the second location, marking the request as potentially fraudulent; (3) comparing a fourth location associated with a customer billing address for the customer account with the second location, and in response to the fourth location being outside of a third predetermined acceptable distance of the second location, marking the request as potentially fraudulent; (4) comparing a customer identification with a list of individuals prohibited from conducting financial transactions, and in response to the customer identification matching one of the individuals on the list, marking the request as potentially fraudulent; and/or (5) comparing an identification of a customer account
- a method of funding a payback request received from a customer includes the steps of: (1) establishing an escrow account for a merchant (e.g., an online merchant) that is funded by a percentage of funds to be paid to the merchant from one or more accounts associated with one or more customers; (2) receiving a payback request for a payment previously made to the merchant from an account associated with a particular customer; and (3) funding the payback request with funds stored in the escrow account.
- the step of funding the payback request occurs without dispute.
- the payback request is a chargeback request or a refund request.
- the method also includes the step of transferring a portion of the funds in the escrow account to the merchant in response to the portion of funds being stored in the escrow account for a particular time period (e.g., at least six months).
- the method further includes the steps of: (1) reducing the percentage of funds to be paid by the merchant into the escrow account in response to the merchant receiving a reduced number of payback requests over a particular time period; and (2) increasing the percentage of funds to be paid by the merchant into the escrow account in response to the merchant receiving an increased number of payback request over said particular time period.
- the method includes the step of applying one or more fraud filters that are configured for identifying potentially fraudulent payback requests to the payback request. The fraud filters are executed by a fraud prevention module implemented on a computer readable medium according to one embodiment of the invention.
- Various embodiments of the invention provide a method of funding a payback request to a customer that the steps of: (1) receiving a payback request for a payment previously made to the merchant with an account associated with a customer; and (2) funding the payback request to the customer with funds stored in an account associated with the merchant without dispute.
- the payback request may be a chargeback request or a refund request, according to various embodiments.
- the payback request may be received from a financial institution holding the account associated with the customer according to one embodiment, and the funds for the payback request may be paid to a financial institution holding the account associated with the customer.
- a fraud prevention system for identifying potentially fraudulent online financial transactions received from a customer for an online merchant.
- the fraud prevention system includes a fraud prevention module that is configured for applying one or more of the fraud filters described above to each of one or more financial transactions received from one or more customers, hi addition, in various embodiments, the fraud filters may also include: (1) comparing information associated with one or more subsequent financial transactions to the financial transactions stored in the fraud database, and in response to the customer account, customer identification, or customer billing address of each of the one or more subsequent financial transactions matching any of the financial transactions stored in the fraud database, marking the one or more subsequent financial transactions as potentially fraudulent; and (2) comparing the first location with the third location, and in response to the first location being outside of a first predetermined acceptable distance of the third location, marking the financial transaction as potentially fraudulent.
- the fraud filters further include comparing the second location with a list of countries that are prohibited from conducting financial transactions with the merchant, and in response to the second location being on the list of countries, preventing the financial transaction from being conducted.
- the list of accounts prohibited from conducting financial transactions is a list of stolen accounts.
- the first location is a location associated with a financial institution that manages the customer account. And, in another embodiment, the first location is a billing address associated with the customer account.
- the first location, the second location, the third location, and the fourth location may be a country, a region, a state, a locality, a county, a city, or a postal district defined by one or more postal codes.
- the list of individuals and/or the list of accounts maybe published by a government authority.
- the fraud filters are selected based on the location of the merchant. In another embodiment of the invention, the fraud filters are selected based on the second location. And, in yet another embodiment of the invention, the fraud filters are selected based on the first location.
- the system further includes a payment service provider module that is configured for receiving a payback request for the customer, and the fraud prevention module is further configured for comparing an identity of the customer requesting the payback to a list of officers, directors, or owners associated with the online merchant. In response to the customer being on the list of directors, officers, or owners, the fraud prevention module marks the payback request as potentially fraudulent.
- the financial transaction is a gambling payout request and the fraud prevention module is further configured for comparing an identification of an account named by the customer for receiving a payout from the merchant with an identification of an account used by the customer to place bets with the merchant.
- the fraud prevention module marks the payout request as potentially fraudulent.
- the fraud prevention module is further configured for preventing a payout amount provided in the payout request from being transferred to the account named for receiving the payout.
- the account named for receiving the payout request is associated with a first payment card and the account used to place bets with the merchant is associated with a second payment card, and the fraud prevention module is further configured for comparing the first payment card to the second payment card. In response to the first payment card not matching the second payment card, the fraud prevention module marks the payout request as potentially fraudulent.
- a system for monitoring a compulsive spending behavior of a customer includes a processor and a memory, and the processor is configured for: (1) storing, in the memory, information associated with each of one or more requests from the customer to conduct financial transactions with a merchant, the information comprising an amount of funds; (2) receiving a new request comprising a new amount of funds to conduct a financial transaction with the merchant; (3) in response to receiving the new request, retrieving a total amount of funds stored in the memory; (4) comparing a sum of the total amount of funds and the amount of funds in the new request with a pre-determined acceptable limit; and (5) in response to the sum exceeding the pre-determined acceptable limit, notifying one or more of the customer, a payment source associated with the customer, or the merchant that the pre-determined acceptable limit has been exceeded.
- the information stored in the memory further comprises a date on which each request was received by the merchant; and the processor is further configured for comparing the sum of the total amount of funds stored in the memory within a particular time period and the amount of funds in the new request with the pre-determined acceptable limit.
- another system for monitoring a compulsive gambling behavior of a customer is provided.
- the system is similar to the system described above, but the processor is further configured for retrieving the total amount of funds stored in the memory for the type of financial transaction in the new request and comparing a sum of the total amount of funds and the amount of funds in the new request with a pre-determined acceptable limit associated with the type of financial transaction in the new request.
- the type of transaction may be a request to transfer funds to the merchant from an account associated with the customer or a request to place a bet using funds previously transferred to the merchant.
- the requests and the new request are received by a computing device associated with the merchant from one or more computing devices associated with the customer over a network.
- the processor is further configured for comparing the sum of the total amount of funds requested by the customer within a particular time period and the amount of funds in the new request with the predetermined acceptable limit.
- the processor is further configured for preventing the new request from being processed in response to the sum exceeding the pre-determined acceptable limit.
- a third system for monitoring a compulsive spending behavior of a customer is provided that is similar to the first system described above, but the information associated with the requests includes a date on which the request was received by the merchant.
- the process of the third system is further configured for retrieving a total number of transactions stored in the memory within a particular time period, comparing the total number of transactions with a pre-determined acceptable limit, and in response to the total number of transactions exceeding the pre-determined acceptable limit, notifying one or more of the customer, a payment source associated with the customer, or the merchant that the limit has been exceeded.
- Various embodiments of the invention provide a tax accounting system for financial transactions conducted with online merchants.
- the tax accounting system includes a memory and a processor, and the memory is configured for storing one or more types of tax and corresponding taxation rates for each of one or more tax jurisdictions.
- the processor is configured for: (1) receiving information associated with a financial transaction conducted with an online merchant from a customer; (2) in response to receiving the information associated with the financial transaction, identifying one or more tax jurisdictions associated with the financial transaction; (3) in response to identifying the one or more tax jurisdictions associated with the financial transaction, querying the memory to determine whether one or more types of tax are associated with the one or more tax jurisdictions; (4) in response to determining that one or more types of tax are associated with the one or more tax jurisdictions, applying the corresponding taxation rates for each of the one or more types of tax to the information associated with the financial transaction to determine an amount of tax owed; and (5) in response to determining the amount of tax owed, transferring the amount of tax owed to one or more relevant tax authorities.
- the tax jurisdictions are associated with a location of the online merchant, a location of the customer, and/or a location of a computing device used by the customer to conduct the financial transaction.
- the processor is further configured for transferring the amount to the one or more relevant tax authorities via electronic funds transfer.
- the processor is further configured for storing the amount of tax owed and the amount transferred to the one or more relevant tax authorities in the memory with the financial transaction information for a particular period of time, hi yet another embodiment, the processor is further configured for generating an accounting report for each of the one or more relevant tax authorities, the accounting report comprising the amount of taxes owed to the relevant tax authority, the amount of tax transferred to the relevant tax authority, and at least a portion of the information associated with the financial transaction for which taxes were paid to the relevant tax authority.
- a system for processing a financial transaction conducted with an online merchant includes a payment service provider module that is configured for: (1) receiving a request to transfer funds from a customer account to an online merchant, the request including a first location associated with the customer's address and a second location of a computing device that generated the request; (2) in response to receiving the request, comparing the first location, the second location, and a location of the online merchant with a list of locations that regulate the transfer of funds to the online merchant; (3) hi response to the first location, the second location, or the location of the online merchant matching a location on the list of locations, determining whether one or more regulatory authorities regulate the transfer of funds from the customer account to the online merchant in the first location, the second location, or the location of the online merchant; and (4) in response to determining that the one or more regulatory authorities regulate the transfer of funds to the online merchant in the first location, the second location, or the location of the online merchant, notifying one or more of the customer, the merchant, or a bank
- a second system for processing a financial transaction conducted with an online merchant includes a payment service provider module that is configured for: (1) receiving a request to conduct a financial transaction (e.g., a request to place a gambling bet with the online merchant, a request to transfer funds to the online merchant, or a request for a payout resulting from one or more gambling bets placed with the online merchant) between a customer account and an online merchant, the request comprising a first location associated with the customer's address and a second location of a computing device that generated the request; (2) in response to receiving the request, comparing the first location, the second location, and the location of the merchant with a list of locations that regulate financial transactions conducted with the online merchant; (3) in response to the first location, the second location, or the location of the merchant matching a location on the list of locations, determining whether one or more regulatory authorities regulate financial transactions conducted with the online merchant in the first location, the second location, or the location of the online merchant; and (4) in response to: (1) receiving a request to conduct a financial transaction (
- the payment services provider module is further configured for preventing the financial transaction from being conducted with the merchant in response to determining that the one or more regulatory authorities regulate financial transactions conducted with the online merchant in the first location, the second location, or the location of the online merchant.
- the payment services provider module is further configured for notifying one or more of the online merchant or the bank associated with the customer's account in response to determining that the one or more regulatory authorities regulate financial transactions conducted with the online merchant in the first location, the second location, or the location of the online merchant.
- FIG. 1 is a high-level block diagram of a financial transaction processing system in accordance with various embodiments of the present invention
- FIG. 2 is an illustration of various contractual relationships within the financial transaction processing system in accordance with various embodiments of the present invention
- FIG. 3A is a schematic diagram of a computing device according to one embodiment of the invention
- FIG. 3B is a schematic diagram of a computing device according to an alternative embodiment of the invention
- FIG. 4 is a schematic diagram illustrating the financial transaction processing system in accordance with various embodiments of the present invention
- FIG. 5 is a block diagram of a merchant module according to various embodiments of the present invention.
- FIG. 6 is a block diagram of an IPSP module according to various embodiments of the present invention.
- FIG. 7A is a block diagram of a fraud prevention sub-module according to various embodiments of the present invention.
- FIG. 7B is a flow diagram of a fraud prevention sub-module according to various embodiments of the present invention.
- FIG. 8 is a block diagram of an ASP module according to various embodiments of the present invention
- FIGS. 9A and 9B are flow diagrams of an authorization transaction process according to various embodiments of the present invention
- FIGS. 1OA and 1OB are flow diagrams of a settlement transaction process according to various embodiments of the present invention
- FIG. 11 is a flow diagram of a chargeback transaction process according to various embodiments of the present invention.
- FIG. 12 is a flow diagram of a customer payment transaction process according to various embodiments of the present invention.
- FIG. 13 is a flow diagram of an authorization transaction request process according to one embodiment of the invention.
- FIG. 14 is a flow diagram of a settlement transaction request process according to one embodiment of the invention.
- FIG. 15 is a flow diagram of a process of monitoring compulsive spending behavior according to one embodiment of the invention.
- FIG. 16 is a flow diagram of a process of monitoring compulsive gambling behavior according to one embodiment of the invention.
- FIG. 17 is a flow diagram of a process of determining any taxes owed on a financial transaction according to one embodiment of the invention.
- FIG. 18 is a flow diagram of a process of identifying financial transactions that are illegal or subject to regulation according to one embodiment of the invention.
- various embodiments of the invention provide an improved financial transaction processing system for e-commerce sectors that (1) more securely processes payment transactions, (2) helps to protect merchants and banks against fraudulent transactions, money laundering, and underage gambling, and (3) helps to limit other abuses in areas of e-commerce that are perceived to pose special risks, such as Internet gaming, travel, and consumer purchasing of electronic goods.
- various embodiments of the financial transaction system (1) establish operating and processing protocols for merchants, Internet payment service providers, acquiring banks, and card schemes and (2) provide improved automated systems for monitoring and processing payment and related financial transactions.
- a rolling reserve escrow account is set up for each merchant and funded in a manner that reduces the risk of loss to an acquiring bank or an issuing bank.
- the risk of loss is reduced according to one embodiment by ensuring that sufficient funds are available for processing payback (e.g., chargeback and refund) requests received by the merchant.
- a certain percentage of the funds paid to the merchant is reserved and transferred to the escrow account for a certain period of time (e.g., 6 months, 1 year, or 3 years), and if the funds are not used during the time period, the funds are transferred back to the merchant.
- the grounds on which a merchant can dispute chargeback requests are limited such that acceptable grounds for dispute do not substantially increase the risk of loss to the acquiring bank or the issuing banks (e.g., transactions that have been marked with a fraud flag).
- the merchant may not be allowed to dispute chargeback requests on any grounds.
- the rolling reserve escrow account ensures a source of funds for processing payback requests, which decreases the risk of loss to customers and may increase the likelihood that customers will use engage in online financial transactions.
- payback requests are funded by the merchant, the risk of loss for acquiring banks and issuing banks is decreased and may result in more favorable business terms for the merchant (e.g., lower transaction rates or lower chargeback rates).
- the participants in the financial transaction system require each other to be in compliance with the local regulatory authority.
- an Internet payment service provider which is discussed in more detail below
- acquiring banks, and card schemes may refuse to do business with the merchant.
- the participants may fine the non-complying participant.
- customers may also refuse to do business with non-complying merchants.
- the financial transaction system tends to provide a market incentive for participants to remain in compliance with the local regulatory authority.
- Participants of the financial transaction system may include, according to various embodiments of the invention, online customers, online merchants, an Internet payment service provider (IPSP), an acquiring bank, issuing banks, or card schemes.
- IPSP operates between the merchant and the acquiring bank to provide payment related services to the merchants and interface between the merchants and an acquiring bank over the network.
- the EPSP may contract with an accounting services provider (ASP) to provide accounting management services related to the payment services that the IPSP provides to the merchants.
- ASP accounting services provider
- Figure 1 illustrates a high-level schematic diagram of how the various participants interface with each other according to various embodiments of the invention.
- participants may exchange transaction information electronically over a network (e.g., the Internet, a private network, or a private LAN network).
- a network e.g., the Internet, a private network, or a private LAN network.
- the transaction information may include an authorization request from the merchant to transfer money from the account associated with the customer's payment card to the merchant's account, an authorization message from the issuing bank authorizing the transfer of money from the customer's account to the merchant's account, a payback (e.g., chargeback or refund) request from the issuing bank requesting money be transferred from the merchant's account to the customer's account, and settlement requests for each merchant for all transactions processed during a particular time period (e.g., 24 hours, 48 hours, or a week).
- a payback e.g., chargeback or refund
- a payment card e.g., debit card, credit card, prepaid card, or proximity card
- alternative payment modes may include using payment tokens associated with an account (e.g., physical or electronic tokens) or using a number associated with an account (e.g., an account number and password for accessing the account).
- Other payment modes may involve authorizing payment by use of biometric data associated with an account, such as, for example, iris scans, finger print, and voice recognition.
- Payments may also be authorized by a combination of an account number and a one time password that may be supplied by a token or via telephone, email, or short message service ("SMS").
- SMS short message service
- the financial transaction system provides (1) operating and processing protocols for participants and (2) automated monitoring and processing systems (e.g., computer software and/or hardware) that are adapted for processing financial transactions with a high level of security. These protocols and automated systems serve to protect customers and participants from fraudulent transactions and other abuses that may create risks in e-commerce transactions.
- protocols and automated systems serve to protect customers and participants from fraudulent transactions and other abuses that may create risks in e-commerce transactions.
- Various examples of protocols that may be implemented by the system are described in detail below in Section A., and various embodiments of automated systems are described in Section B. below. Exemplary flows of various transactions that may be processed through the financial transaction system are described in more detail in Section C.
- the protocols serve to deter organized crime and money laundering schemes using the merchant's business, reduce the risks of fraud and unauthorized transactions typically associated with online financial transactions and reduce the risk of loss to the acquiring bank and issuing banks, and increase the likelihood of compliance with government or local regulatory regulations.
- the participants should be able to demonstrate compliance with the local or jurisdictional regulatory authority and should maintain auditable records of transactions processed for a particular time period (e.g., 2 years, 3 years, or 5 years).
- protocols may require each participant to demonstrate compliance with local regulatory requirements before entering into contracts with other participants, and protocols may require participants to verify periodically that the other participants are in good standing with the local regulatory authority.
- Various exemplary protocols that may be established for the merchant and IPSP are described below.
- the merchant may be required to folly disclose the identity of company directors, officers, and beneficial shareholders and report any changes to the IPSP. Requiring that this list be provided and comparing the list to a list of people and entities suspected to be involved with organized crime may help deter organized crime rings from using the merchant's business for money laundering or other illegal purposes.
- the merchant may be required to take one or more steps that help to reduce the risk of loss from fraudulent transactions to the acquiring banks, issuing banks, and customers.
- the merchants may be required to (1) demonstrate compliance with all relevant regulatory requirements, (2) pay a penalty payment when any contractual obligations are breached, (3) use address verification, age verification, and identity verification software on the merchant's computing device to verify payment information and customer information provided during online transactions, (4) perform an initial fraud check on payment and customer information received and perform random or periodic checks thereafter, or (5) provide notice to a customer that is accessing the system using an IP address or that provides a billing address that is associated with a jurisdiction in which the transaction is considered illegal.
- the merchant may be required to implement protocols that mitigate the risk of abuse associated with the merchant's business, if any, or the perceived social impact of conducting business with the merchant (e.g., compulsive spending if the merchant is an online gaming merchant or an adult entertainment provider).
- the merchant may be required to provide advice and help resources regarding the social impact of its business (e.g., a toll free telephone number for a help line, a website that offers helpful information, or contact information for a counselor).
- the merchant may be required to provide the merchant's name and a free telephone number on the customer's payment card statement for customers to call customer service and query about the transaction.
- a customer service representative should be available 24/7, according to various embodiments of the invention.
- the IPSP may be required to implement one or more of the following security features to help deter organized crime rings or others from using the merchants business for money laundering purposes and to reduce the risks associated with online financial transactions for the various participants: (1) setting up a rolling reserve escrow account, such as the escrow account discussed above, for each merchant from which it will process payback requests, (2) monitoring transactions to identify suspicious activity, (3) monitoring the frequency and value of transactions on a per payment card basis, (4) keeping transactions for each merchant (or website) in separate streams for tracking and auditing purposes, (5) saving transaction information periodically (e.g., every 2 seconds or every 10 seconds) to create an audit trial and storing the transaction information for a particular time period (e.g., 1 year, 2 years, or 5 years), (6) verifying the identify of card holders, (7) requiring merchants to disclose company directors and beneficial shareholders to the IPSP, (8) limiting the payment of winnings from Internet gambling merchants to the card holder and screening names of payees against applicable sanction lists (e.
- the IPSP maintains a fraud database 42, shown in Figure 1, for storing information on transactions processed by the IPSP that appear to be or were determined to be fraudulent.
- the IP SP allows other participants to utilize the fraud database when processing transactions, further reducing the risk of loss to issuing banks, acquiring banks, merchants, and customers.
- the IPSP may manage its own accounting and the fraud database, reconcile transactions it processes, and generate reconciliation reports for the merchants, the DPSP, according to another embodiment, may contract with an ASP to provide one or more of these services.
- exemplary protocols according to one embodiment of the invention may require that the IPSP create separate corporate entities (e.g., SGl, SG2, SG3, etc.) for each merchant, and that these corporate entities operate under the direction of the IPSP and/or ASP to manage the funds received for the particular merchant associated with the corporate entity, which is discussed in more detail in relation to Figure 14.
- this corporate structure isolates the operation of each merchant, hi addition, according to various embodiments, this corporate structure provides a legal structure that ensures fair and objective control of the escrow funds being held for the protection of the financial transaction system and the customer.
- exemplary protocols may require the acquiring banks to implement one or more of the following security features to reduce the risks associated with online transactions to the issuing banks and the customers: (1) monitor the credit activity of online merchants to ensure that customers are able to receive winnings or credits from merchants onto their payment cards (e.g., the cardholder funds transfer (CFT) pilot sponsored by VISA and the Money Flow pilot sponsored by MasterCard), (2) ensure all card scheme regulations are communicated to the IPSP and merchants, (3) ensure that transaction information has correct data elements as dictated by the card schemes and issuing banks, and (4) ensure the IPSP is in compliance with the applicable regulatory schemes.
- CFT cardholder funds transfer
- one or more system protocols may be incorporated into agreements between the participants to ensure compliance with the established protocols.
- Figure 2 illustrates a schematic diagram of contractual relationships among the participants according to various embodiments of the invention.
- the acquiring bank 36, the IPSP 34, and each merchant 31, 32, 33 may enter into a three-way processing contract 45 that sets forth the obligations of each party with respect to how transactions are processed.
- This agreement 45 may require each party to remain in good standing with the local regulatory authority, provide an updated list of officers, directors, and beneficial shareholders to the other parties, perform certain identity verification and fraud checks on transaction information, and store transaction information for a particular time period (e.g., for 1 year, 3 years, 5 years) for auditing purposes.
- the agreement 45 may include one or more grounds on which the merchant may dispute a chargeback request.
- the agreement 45 may establish a fee chargeable to the merchants 31, 32, 33 for chargebacks.
- the acquiring bank 36 and the IPSP 34 may enter into a trust agreement 47 that sets forth the particular fraud checks that the IPSP should perform on transaction data and when the IPSP should request settlement on behalf of each merchant (e.g., daily or weekly).
- the ASP 35 and each merchant 31, 32, 33 may enter into an escrow agreement 49 that sets forth how the ASP will manage the rolling reserve escrow account on behalf of the merchant (e.g., the percentage of funds to be taken out for the escrow account, the length of time the funds are stored in the escrow account, or the format of reconciliation reports).
- an escrow agreement 49 sets forth how the ASP will manage the rolling reserve escrow account on behalf of the merchant (e.g., the percentage of funds to be taken out for the escrow account, the length of time the funds are stored in the escrow account, or the format of reconciliation reports).
- the ASP 35 and the IPSP 34 may enter into a service agreement 43 that sets forth the obligations of each party with respect to the accounting services provided by the ASP to the EPSP (e.g., the formats of and accessibility of data exchanged between the ASP and 3P SP, the types and formats of summary reports generated by the ASP for or on behalf of the IPSP 34, the calculation of fees payable to one or more participants, or the approval procedures for approving reconciliation reports for the merchants).
- the ASP 35 may be required by the agreement 43 to respond to queries from merchants 31, 32, 33 about transactions processed by the D?SP 34 or on behalf of the D?SP 34 by the ASP 35.
- the ASP 34 may be required to (a) identify all transaction data processed by the ASP 35 on behalf of the PSP 34 that is related to chargeback requests and (b) forward the identified data to the merchant 31, 32, 33 to ascertain what, if any, further actions the merchant 31, 32, 33 wishes to take with respect to the chargeback request.
- the present invention may be embodied as a method, a transaction processing system, or a computer program product. Accordingly, the present invention may take the form of an entirely hardware embodiment, an entirely software embodiment, or an embodiment combining software and hardware aspects. Furthermore, the present invention may take the form of a computer program product on a computer-readable storage medium having computer-readable program instructions (e.g., computer software) embodied in the storage medium. More particularly, the present invention may take the form of web-implemented computer software. Any suitable computer- readable storage medium may be utilized including hard disks, CD-ROMs, optical storage devices, or magnetic storage devices.
- These computer program instructions may also be stored in a computer- readable memory that can direct a computer or other programmable data processing apparatus to function in a particular manner, such that the instructions stored in the computer-readable memory produce an article of manufacture including computer-readable instructions for implementing the function specified in the flowchart block or blocks.
- the computer program instructions may also be loaded onto a computer or other programmable data processing apparatus to cause a series of operational steps to be performed on the computer or other programmable apparatus to produce a computer-implemented process such that the instructions executed on the computer or other programmable apparatus provide steps for implementing the functions specified in the flowchart block or blocks.
- blocks of the block diagrams and flowchart illustrations support combinations of means for performing the specified functions, combinations of steps for performing the specified functions and program instruction means for performing the specified functions. It will also be understood that each block of the block diagrams and flowchart illustrations, and combinations of blocks in the block diagrams and flowchart illustrations, can be implemented by special purpose hardware-based computer systems that perform the specified functions or steps, or combinations of special purpose hardware and computer instructions.
- a "computer” or “computing device” may be referenced.
- Such computer may be, for example, a mainframe, desktop, notebook or laptop, a hand held device such as a data acquisition and storage device, or it may be a processing device embodied within another apparatus such as, for example, a wireless telephone.
- the computer may be a "dumb" terminal used to access data or processors over a network.
- a processor 1 such as a microprocessor, is used to execute software instructions for carrying out the defined steps.
- the processor receives power from a power supply 17 that also provides power to the other components as necessary.
- the processor 1 communicates using a data bus 5 that is typically 16 or 32 bits wide (e.g., in parallel).
- the data bus 5 is used to convey data and program instructions, typically, between the processor and memory.
- memory can be considered primary memory 2 that is RAM or other forms which retain the contents only during operation, or it may be non- volatile 3, such as ROM, EPROM 3 EEPROM, FLASH, or other types of memory that retain the memory contents at all times.
- the memory could also be secondary memory 4, such as disk storage, that stores large amount of data.
- the disk storage may communicate with the processor using an I/O bus 6 instead or a dedicated bus (not shown).
- the secondary memory may be a floppy disk, hard disk, compact disk, DVD, or any other type of mass storage type known to those skilled in the computer arts.
- the processor 1 also communicates with various peripherals or external devices using an I/O bus 6.
- a peripheral I/O controller 7 is used to provide standard interfaces, such as RS-232, RS422, DIN, USB, or other interfaces as appropriate to interface various input/output devices.
- Typical input/output devices include local printers 18, a monitor 8, a keyboard 9, and a mouse 10 or other typical pointing devices (e.g., rollerball, trackpad, joystick, etc.).
- the processor 1 typically also communicates using a communications I/O controller 11 with external communication networks, and may use a variety of interfaces such as data communication oriented protocols 12 such as X.25, ISDN, DSL, cable modems, etc.
- the communications controller 11 may also incorporate a modem (not shown) for interfacing and communicating with a standard telephone line 13.
- the communications I/O controller may incorporate an Ethernet interface 14 for communicating over a LAN. Any of these interfaces may be used to access a wide area network such as the Internet, intranets, LANs, or other data communication facilities.
- the processor 1 may communicate with a wireless interface 16 that is operatively connected to an antenna 15 for communicating wirelessly with another device, using for example, one of the IEEE 802.11 protocols, 802.15.4 protocol, or a standard 3 G wireless telecommunications protocols, such as CDMA2000 Ix EV-DO, GPRS, W-CDMA, or other protocol.
- a wireless interface 16 that is operatively connected to an antenna 15 for communicating wirelessly with another device, using for example, one of the IEEE 802.11 protocols, 802.15.4 protocol, or a standard 3 G wireless telecommunications protocols, such as CDMA2000 Ix EV-DO, GPRS, W-CDMA, or other protocol.
- FIG. 3B An alternative embodiment of a processing system that may be used is shown in Figure 3B.
- a distributed communication and processing architecture is shown involving a server 20 communicating with either a local client computer 26a or a remote client computer 26b.
- the server 20 typically comprises a processor 21 that communicates with a database 22 (e.g., a SQL database), which can be viewed as a form of secondary memory, as well as primary memory 24.
- the processor also communicates with external devices using an I/O controller 23 that typically interfaces with a LAN 25.
- the LAN may provide local connectivity to a networked printer 28 and the local client computer 26a. These may be located in the same facility as the server, though not necessarily in the same room.
- Communication with remote devices typically is accomplished by routing data from the LAN 25 over a communications facility to a wide area network 27, such as the Internet.
- a remote client computer 26b may execute a web browser, allowing the remote client 26b to interact with the server as needed by transmitting data through the wide area network 27, over the LAN 25, and to the server 20.
- the web browser may include a user interface developed in Java Script and Microsoft.net for example.
- Figure 4 illustrates computing devices 101-109 that are associated with each participant and that are in communication with each other via one or more networks 115 (e.g., private networks, private LAN networks, or the Internet) according to various embodiments of the invention.
- the DPSP 34 may establish an IPSP network that is accessible to merchants 31, 32, 33 and the acquiring bank 36 through IPSP gateways 40 that connect the IPSP network to the networks utilized by the merchants 31, 32, 33 and acquiring banks 36.
- the IPSP gateways 40 may be implemented completely as hardware, completely as software, or as a combination of both.
- IPSP gateways 40 ensure the security of the information being transmitted to and from the IPSP 34 by selectively allowing access to the IPSP network. For example, merchants 31, 32, 33 or acquiring banks 36 that do not have a contractual relationship with the IPSP 34 may be denied access to the IPSP network by the PSP gateways 40.
- the acquiring banks 36 may utilize card scheme networks to exchange information with the issuing banks 37, 38, 39 according to various embodiments of the invention.
- card scheme networks include, but are not limited to, the VISA, MasterCard, and American Express networks.
- the merchants 31, 32, 33, IPSP 34, ASP 35, acquiring bank 36, and issuing banks 37, 38, 39 may be associated with one or more computing devices (e.g., one or more servers, SQL servers, or web servers) and one or more of these computing devices may include an automated system for processing financial transactions.
- the system 100 provides a merchant module 200 configured to operate on the merchants' systems 101, 102, 103, an IPSP module 300 configured to operate on the BPSP's system 104, and an ASP module 400 configured to operate on the ASP's system 105.
- These modules 200, 300, 400 automate processing functions for each participant, according to one embodiment.
- modules may be implemented completely as hardware, completely as software, or as a combination of both.
- the ASP module 400 may be configured to operate on an ASP system 105 if the EPSP 34 contracts with an ASP 35 to provide accounting related services, or, in another embodiment, the ASP module 400 may be configured to operate on the IPSP's system 104.
- IPSP's system 104 Various embodiments of these modules are described in more detail below in relation to Figures 5-8.
- FIG. 5 illustrates a block diagram of a merchant module 200 according to various embodiments of the invention.
- the merchant module 200 operates on the merchant system 101, 102, 103 and automates at least a portion of the steps that a merchant performs to process transactions.
- the merchant module 200 is configured to process authorization requests, which is shown as step 202.
- the merchant module 200 receives payment information from a customer, which may include some or all of the customer's full name and billing address, email address, credit card number, CVV2 number, payment amount, or card issuer name.
- the merchant module 200 verifies the format of the payment information received, such as verifying whether the credit card number is a valid number and whether all fields have been completed.
- the merchant module 200 may further be configured to compare the customer information with previously stored identifications and passwords associated with 3-D secure software plug ins (e.g., Verified by Visa and SecureCode by MasterCard). If the format is correct, the merchant module 200 generates and transmits an authorization request to the IPSP system 104 for further processing. According to various embodiments of the invention, the merchant module
- the elementary fraud check step 206 may include comparing the credit card number with a list of stolen credit card numbers, verifying that the billing address provided by the customer matches the billing address for the payment card, comparing the billing address provided with a billing address that is provided when the customer initially registers with the merchant, or verifying that the card issuer name matches the banking identification number (BIN) for the card, for example.
- the fraud check step 206 may be performed after the authorization request is transmitted to the IPSP (step 202), as shown in Figure 5, or prior to generating and transmitting the authorization request (not shown). In one embodiment, the fraud check step 206 is performed after the authorization request has been transmitted (step 202) but prior to settlement with the issuing bank.
- the merchant module 200 verifies the age and identity of the customer, shown as step 210.
- the age may be verified by checking government records for the cardholder, such as voter registration records or driver's license records, or by establishing a network connection with an electronic age and/or identity verification service (e.g., the "URU" service provided by the UK based GB Group) and providing the customer's information to the service.
- the service compares the customer's information to government or other public records to verify the customer's identity and age.
- the merchant module 200 may perform the age and identity verification step 210 when a customer is setting up a new account with the merchant.
- step 210 may be repeated periodically or randomly thereafter to re- verify the identity and age of existing customers.
- the age and identity verification step 210 is shown as occurring after the fraud check step 206 and the authorization request step 202. However, in other embodiments, the age and identity verification step 210 can occur prior to the authorization request step 202 or the fraud check step 206.
- the merchant module 200 may notify the customer that the transaction is denied and the IPSP that the transaction should be denied, shown as step 208, according to one embodiment.
- the merchant module 200 is configured to display or otherwise notify the customer of the amount of time spent on the merchant's website for a particular time period (e.g., per session, 24 hours, or week). Having this information may assist customers in avoiding compulsive behavior with respect to the merchant's website.
- the merchant module 200 may be configured to allow customers to access the transaction log for the customer maintained by the merchant.
- the merchant module 200 may be configured to implement self-regulation guidelines, such as, for example, limits on losses (e.g., gambling transactions), or the time and/or amount or money spent on the merchant's website.
- the merchant module 200 may be further configured to execute anti-money laundering software (e.g., software that compares available data to the parameters set forth in the "Anti-Money Laundering/Combating Terrorist Financing Methodology (with FATF 40+9 incorporated)" promulgated by the International Monetary Fund), attached as Appendix A) to evaluate any transaction over a selected amount (e.g., €15,000 or $20,000).
- anti-money laundering software e.g., software that compares available data to the parameters set forth in the "Anti-Money Laundering/Combating Terrorist Financing Methodology (with FATF 40+9 incorporated)" promulgated by the International Monetary Fund
- the evaluation by the software may include identity verification and re- verification, followed by checks against the verified individual or company.
- FIG. 6 illustrates a flow diagram of an DPSP module 300 according to various embodiments of the invention.
- the DPSP module 300 is configured to operate on the D?SP system 104.
- the IPSP module 300 processes authorization requests received from the merchant system 101, 102, 103. Each authorization request may include payment information for a particular transaction and the customer information associated with the transaction, such as the full name of the customer, the customer's email address, and the IP address of the computing device used by the customer to initiate the transaction.
- the PSP module 300 then transmits the authorization request to the acquiring bank system 106, which transmits the authorization request to the appropriate issuing bank system 107, 108, 109.
- the EPSP module 300 receives an authorization message from the issuing bank system 107, 108, 109, via the acquiring bank system 106, authorizing or denying the transaction, and the IPSP module 300 transmits the authorization message to the merchant system 101, 102, 103.
- the IPSP module 300 stores transaction information (e.g., authorization requests, chargeback requests, refund requests, and settlement requests) processed by the IPSP module 300.
- the stored transaction information may be used for auditing purposes, monitoring the type and frequency of transactions on a per customer, per payment card, or per merchant basis, and generating settlement requests and allocating payment of funds received in response to settlement requests.
- authorization, chargeback, and refund requests may be stored periodically, such as, for example, every second or every ten seconds, or on a per transaction basis, such as each time the IPSP module 300 receives and processes transaction information. These requests may be stored for a certain period of time (e.g., a day or a week or longer).
- the requests may be stored on a per merchant basis (or on a per URL (Uniform Resource Locator) if a merchant has more than one website supporting e-commerce transactions).
- the EPSP module 300 groups the authorization requests for each merchant into a settlement request file for each merchant periodically (e.g., daily or weekly) and transmits the settlement requests for the merchants in a batch file to the acquiring bank system 106 for settlement, which is discussed below in relation to step 310.
- the IPSP module 300 may store the grouped transaction information as a separate file for a certain period of time (e.g., a year, two years, or three years).
- the IPSP module 300 is also configured to execute a fraud prevention sub-module 350, which is shown as step 306 in Figure 6 and discussed below in more detail in relation to Figures 7 A and 7B, to verify that the transaction should be subject to settlement by the system 100. For example, if the payment card number is listed on a list of stolen payment card numbers, the country of the IP address of the customer does not match the country in which the payment card was issued, or the customer is on a national sanctions list (e.g., "Specially Designated Nationals list" in the U.S.), the IPSP module 300 will not present the transaction for settlement.
- a fraud prevention sub-module 350 which is shown as step 306 in Figure 6 and discussed below in more detail in relation to Figures 7 A and 7B, to verify that the transaction should be subject to settlement by the system 100. For example, if the payment card number is listed on a list of stolen payment card numbers, the country of the IP address of the customer does not match the country in which the payment card was issued, or the customer is on a
- step 306 may be performed by the IP SP module 300 prior to transmitting authorization requests to the acquiring bank system 106 in step 302 or prior to storing the transaction information in step 304, according to other embodiments of the invention.
- the IPSP module 300 is configured to notify the appropriate party or parties of the suspected fraudulent activity, which is shown as step 308.
- the appropriate party may include the acquiring bank 36 (which may pass the notification on to the issuing bank), the issuing bank 37, 38, 39 (directly), the merchant 31, 32, 33, and/or the customer.
- the IPSP module 300 is configured, according to various embodiments, to store information about potentially fraudulent transactions in a fraud database 42, shown as step 312.
- the fraud database 42 may be utilized by the IPSP module 300 to analyze subsequent transactions.
- the fraud database 42 may be accessible to the card issuer networks and/or acquiring banks to analyze transactions received. Furthermore, the fraud database 42 may include one or more of the following fields: customer name, address, IP address, payment information (e.g., card or account number), phone number, and a code or description identifying prior fraudulent activity. As shown in step 310, if the fraud prevention sub-module 350 does not detect any potentially fraudulent activity in step 306, the IPSP module 300, according to various embodiments, is configured to generate and transmit settlement requests to the acquiring bank system 106 or the issuing bank system 107, 108, 109.
- the IPSP module 300 is configured to generate and transmit settlement requests to the acquiring bank system 106 or the issuing bank system 107, 108, 109.
- the settlement requests are based on the authorization, chargeback, and refund requests received by the PSP module 300 within a particular time period (e.g., a day or a week).
- the settlement requests may include only those transactions that have not been detected as potentially fraudulent by the IPSP module 300 and the merchant module 200, according to one embodiment.
- the settlement requests may include one or more transactions that have been detected as potentially fraudulent by the IPSP module 300 or the merchant module 200, but are marked or flagged as being potentially fraudulent in the settlement request.
- the IPSP module 300 executes the fraud prevention sub-module 350 in step 306.
- An exemplary fraud prevention sub-module 350 according to various embodiments of the invention is shown in Figures 7A and 7B.
- the fraud prevention sub-module 350 performs various steps, referred to herein as "fraud filters", to detect potentially fraudulent transaction activity and may be configured to block or flag a transaction depending on the result of a particular fraud filter or a combination of results from a group of fraud filters.
- Steps 352-368 show several fraud filters that may be performed by the fraud prevention sub-module 350 according to various embodiments of the invention.
- Figure 7B illustrates steps executed by the fraud prevention sub-module 350 to determine which fraud filters to apply to the transaction information, according to various embodiments of the invention.
- the fraud prevention sub- module 350 may compare the payment card information with a list identifying stolen payment cards, hi addition, as shown in step 354, the fraud prevention sub- module 350 may compare a location associated with a financial institution that issued the payment card with a location associated with the IP address associated with the customer's computing device.
- the IP address associated with the customer's computing device may be obtained by the merchant module 200 (e.g., by using IP address detection software integrated into the merchant module 200) when the transaction information is initially received by the merchant system 101, 102, 103.
- the fraud prevention sub-module 350 may be configured to compare the location associated with the IP address of the customer's computing device with the customer's billing address to ensure the location of the customer's computing device is within a particular radius of the billing address (e.g., 50 miles). Similarly, the fraud prevention sub-module 350 may compare the location associated with the financial institution that issued the payment card with a location associated with the email address provided by the customer, as shown in step 356, or compare the location of the IP address of the customer's computing device with the location associated with the email address provided by the customer, as shown as step 357.
- the locations compared above may include one or more of a country, a region, a state, a locality, a county, a city, or a postal district defined by one or more postal codes (e.g., zip codes).
- the fraud prevention sub-module 350 may compare the banking identification number (BIN) of the payment card to a list of suspicious BINs, and in step 360, the fraud prevention sub-module 350 may identify and flag transactions initiated by customers having web mail email addresses (e.g., HOTMAIL or YAHOO email addresses). Furthermore, as shown in step 362, the fraud prevention sub-module 350 may compare the customer's information to a government-compiled list of persons that are prohibited from engaging in financial transactions with merchants within the government's jurisdiction. If the customer is identified on lists of persons, groups and entities subject to financial sanctions published by the jurisdiction, such as the "Specially Designated Nationals list" published by the U.S., the transaction may be denied.
- BIN banking identification number
- the fraud prevention sub-module 350 may identify and flag transactions initiated by customers having web mail email addresses (e.g., HOTMAIL or YAHOO email addresses).
- the fraud prevention sub-module 350 may compare the customer's information to a government-compiled list of persons that are prohibited from engaging in financial
- the fraud prevention sub-module 350 may compare a country associated with the IP address of the customer's computing device with a list of countries that are prohibited from doing business with merchants in a particular jurisdiction, and if the country of the P address is on the list, the transaction may be denied.
- the fraud prevention sub-module 350 may compare a customer's information with a list of officers, directors, or owners of the online merchant, and if the customer is on the list, the transaction may be flagged as being potentially fraudulent or denied.
- the fraud prevention sub-module 350 may further be configured to monitor the frequency of transactions for each customer or each card for a particular time period (e.g., a month, a year), as shown in step 364.
- the fraud prevention sub-module 350 may be configured to monitor the type of transactions (e.g., gambling transactions, travel transactions, adult entertainment transactions) for each customer or card during a particular time period.
- the fraud prevention sub-module 350 can (1) identify potentially fraudulent use of a card if the pattern of its use changes dramatically and (2) identify potential addictions or abuses if the customer engages in a particular type of transaction more frequently or too frequently.
- the monitoring steps 364 and 366 may be accomplished, according to one embodiment, by establishing a range of frequency and/or types of transactions based on the customer's prior transactions and comparing future transactions to the established range.
- the ranges used by the fraud prevention sub-module 350 may be published by local governments or regulatory authorities, result from academic or institutional research or the like, or may be established by one or more of the participants.
- FIG. 15 illustrates a process of monitoring compulsive spending behavior according to various embodiments of the invention.
- a new request for a financial transaction is received by the IPSP module 300.
- the IPSP module 300 retrieves a total amount of funds that have been stored in the memory 24 associated with previously requested financial transactions between the particular merchant 31, 32, 33 and customer, shown as step 504.
- step 506 a sum of the total amount of funds retrieved and the amount of funds in the new request are compared with a pre-determined acceptable limit of funds to be spent with the merchant 31, 32, 33.
- the IPSP module 300 If the sum exceeds the pre-determined acceptable limit, the IPSP module 300 notifies the appropriate party or parties (e.g., customer, the issuing bank, and/or the merchant) that the limit has been exceeded, shown as step 508.
- the IPSP module 300 may retrieve the amount of funds stored in the memory within a particular time period (e.g., 24 hours, 36 hours, week, month, quarter, year, etc.).
- the IPSP module 300 is configured for comparing the number of transactions conducted between the customer and the merchant during a particular time period, and if the number of transactions conducted exceeds a pre-determined acceptable limit, then the IPSP module 300 notifies the customer, issuing bank, and/or merchant that the limit has been exceeded.
- FIG. 16 illustrates a process of monitoring compulsive gambling behavior according to various embodiments of the invention.
- a new request for a financial transaction is received by the IPSP module 300.
- the new request may include an amount of funds and a type of transaction (e.g., transferring funds to the merchant, placing a bet with the merchant, requesting a payout from the merchant).
- the IPSP module 300 retrieves a total amount of funds stored in the memory 24 for the type of financial transaction in the new request.
- step 606 a sum of the total amount of funds and the amount of funds in the new request are compared with a pre-determined acceptable limit associated with the type of financial transaction in the new request.
- the IPSP module 300 notifies the appropriate party or parties (e.g., customer, the issuing bank, and/or the merchant) that the limit has been exceeded, which is shown as step 608. In one embodiment, if the sum exceeds the pre-determined acceptable limit, the new request is denied. Furthermore, the total amount of funds retrieved from the memory may be limited to those funds stored within a particular time period, and the pre-determined acceptable limit may be vary based on the time period being queried.
- the fraud prevention sub- module 35Q may be further configured to monitor payback request transactions and identify suspicious transactions.
- identifying suspicious payback request transactions such as by identifying transactions in which the payback request information does not align with information in the original transaction or by identifying a significant number of payback request transactions for a particular payment card during a particular time period (e.g., within a week, a month, or several months)
- the payment card number may be added to a list of prohibited payment cards, thus preventing future purchasing transactions with the payment card.
- the fraud prevention sub-module 350 may further be configured to (1) ensure that each customer only use one payment card and (2) limit payments for certain activities for each customer to a particular frequency during a particular time period (e.g., one payment per day or three payments per 36 hours).
- a ceiling may be set on the amount that can be spent per card or per customer on particular services (e.g., Internet gambling or adult entertainment) during a particular time period (e.g., per day, week, or month).
- the ceiling may be set upon request by the customer.
- the IPSP system 104 may introduce a default limit on the amount that can be spent on certain activities (e.g.
- the IPSP system 104 or the merchant system 101, 102, 103 may be configured to present materials to the customer regarding the risk of overspending in response to receiving a request to increase the spending limit, such as via a phone call from a specially trained employee or an email to the customer, and present materials or resources when potential abuse is detected (e.g., Gamblers Anonymous phone numbers, website address, or other materials).
- materials or resources when potential abuse is detected e.g., Gamblers Anonymous phone numbers, website address, or other materials.
- the IPSP system 104 further includes a fraud and abuse database (not shown) that stores results from the fraud prevention module 350.
- the IPSP module 300 accesses the database when processing transactions (step 302) or when executing the fraud prevention sub-module (step 306) to determine whether the transaction should be denied based on a prior fraud check for the particular payment card or customer.
- the fraud prevention sub-module 350 may use one or more of the above described fraud filters to evaluate the transaction information received, according to one embodiment of the invention.
- the fraud prevention sub-module 350 receives the transaction data from the JP SP module 300.
- the fraud prevention sub-module 350 determines the one or more fraud filters to use in evaluating the transaction data. For example, according to one embodiment, fraud prevention sub-module 350 uses the fraud filters that are previously selected by the merchant to be used.
- the type of fraud filters to be used depends on the type of transaction (e.g., an authorization request, a chargeback request, a settlement request, or a payment request) or whether the stage of the transaction (e.g., whether the transaction information has not yet been sent to the issuing bank or whether it has been authorized by the issuing bank already), hi yet another embodiment, the type of fraud filters to be used depends on the country of the IP address associated with the customer. And, in another embodiment, the choice of which fraud filters should be applied is determined by the IPSP and/or the local regulatory authority. Finally, in step 374, the fraud prevention sub-module 350 executes the appropriate fraud filters to evaluate the transaction data.
- the type of fraud filters to be used depends on the type of transaction (e.g., an authorization request, a chargeback request, a settlement request, or a payment request) or whether the stage of the transaction (e.g., whether the transaction information has not yet been sent to the issuing bank or whether it has been authorized by the issuing bank already), hi yet another embodiment, the type of
- the IPSP module 300 is further configured for identifying financial transactions that are illegal or subject to regulatory restrictions according to various embodiments of the invention.
- Figure 18 illustrates an exemplary process of identifying an illegal or regulated financial transaction.
- the IPSP module 300 receives a request to transfer funds from a customer's payment card to the merchant 31, 32, 33.
- the request to transfer funds includes the customer's billing address and the location of the EP address associated with the computing device used by the customer to generate the request.
- the IPSP module 300 compares the customer's billing address, the location of the IP address, and the location of the merchant 31, 32, 33 with a list of locations that regulate the transfer of funds to the merchant 31, 32, 33.
- the IPSP module 300 determines whether one or more regulatory authorities regulate the transfer of funds in any of these locations, shown as step 806. If the IPSP module 300 determines that one or more regulatory authorities regulate the transfer of funds, the IPSP module 300 notifies the appropriate party or parties (e.g., customer, the merchant, and/or the issuing bank) of the one or more types of regulations to which the transfer of funds is subject, shown as step 808.
- the types of regulations to which a financial transaction may be subject includes a prohibition of the transfer (e.g., a gambling transaction in a state or region in which gambling is illegal) or a limitation on the transfer (e.g., a gambling transaction in a state or region that limits the amount of funds bet).
- Figure 8 illustrates a block diagram of an ASP module 400 according to various embodiments of the invention.
- the ASP module 400 may be configured to operate on an ASP system 105 according to one embodiment, it may also be configured to operate on the EPSP's system 104 if the IPSP does not contract with an ASP to provide accounting management services according to another embodiment.
- the ASP module 400 obtains transaction information from the IPSP system 104 and the acquiring bank system 106.
- the transaction information obtained from the IPSP system 104 may include the following data fields for each transaction: (1) a merchant identification ("MID") number, which is granted by the acquiring bank to identify the merchant or trading entity (e.g., specific website) of the merchant; (2) the date and time of the transaction; (3) the name of the customer; (4) the payment card number or a portion of the payment card number (e.g., the last four digits); (5) the cardholder's email address; (6) the currency of the transaction; (7) the type of payment card used (e.g., Visa, MasterCard, or American Express); (8) the payment amount; (9) an order reference number that the merchant allocated to the transaction; (10) an authorization code, which is a unique code generated by the issuing bank indicating whether the transaction was authorized; (11) the settled status of the transaction (e.g., "100” for completed transactions); (12) the "settled time," which
- this information may also be included in the settlement requests that are transmitted from the IPSP to the acquiring bank, which is discussed above in relation to step 310 in Figure 6 and below in relation to steps 1102 and 1104 in Figure 1OA.
- the transaction information obtained from the acquiring bank system 106 may include the total amount of funds requested from the issuing banks, aggregated in one or more batches on a per merchant basis, for example.
- the ASP module 400 may access secure web pages (e.g., maintained by each system 104, 106) on which the transaction information is posted and download the information to the ASP system 105, receive the transaction information through another type of electronic transmission (e.g, via email or fax), or a combination of both.
- secure web pages e.g., maintained by each system 104, 106
- download the information to the ASP system 105 receive the transaction information through another type of electronic transmission (e.g, via email or fax), or a combination of both.
- the transaction information obtained in step 402 is stored on the ASP system 105, as shown in step 404 and the information obtained from the DPSP system 104 is compared to the information obtained from the acquiring bank system 106, as shown in step 406.
- step 406 is shown as occurring after step 404, but in other embodiments, the steps can occur simultaneously or in reverse order.
- the ASP module 400 identifies any transactions for which the transaction information provided by the IPSP system 104 does not match the transaction information provided by the acquiring bank system 106.
- any non-matching transactions are flagged and reported to the merchant, the EPSP, and/or the acquiring bank in an exception report generated by the ASP module 400, which is discussed below in more detail in relation to step 410.
- the ASP module 400 is further configured to compare the transaction information provided by the IPSP system 104 and the acquiring bank system 106 with the amounts transferred into each merchant account.
- the ASP module 400 may then allocate payment amounts received during the settlement process to the various participants, which is shown as step 408 in Figure 8.
- the payment amounts may include, for example, payment amounts to the merchants 31, 32, 33, commissions owed to the IPSP 34, the acquiring bank 36, and the ASP 35, and a percentage of funds to be deposited in a rolling reserve escrow account 41 for each merchant 31, 32, 33.
- the various participants may require a certain percentage of funds received by the merchant 31, 32, 33 as payment for their services in the contracts 43, 45, 47, 49 with the merchant 31, 32, 33 and with each other.
- the acquiring banks 36 may charge 3% of the funds received by the merchant 31, 32, 33 from the issuing banks 37, 38, 39, the card schemes may charge 1% of the funds transferred using their cards, the IPSP 34 may charge 5% for its payment related services, and the ASP 35 may charge the IPSP 34 3% of the money received by the IPSP 34 for its accounting management services.
- the ASP 35 may also calculate the provisional costs incurred by the PSP 34 for various services, such as card verification, commission payments to the various participants, and any fees chargeable to the merchants 31, 32, 33 for chargebacks received.
- the financial transaction system 100 may establish protocols that specify the percentage of funds that are to be used to fund the rolling reserve escrow account 41.
- system protocol may require the ASP module 400 to allocate 7.5% of the funds to be received by each merchant 31, 32, 33 to the rolling reserve escrow account 41 for each merchant 31, 32, 33.
- the percentage specified for the rolling reserve account may be automatically increased or decreased depending on the number of payback requests received for the particular merchant 31, 32, 33.
- the ASP module 400 monitors and identifies funds that have remained in the account for the predetermined time period (e.g., six months, one year, or three years) and re- allocates those funds to the merchant 31, 32, 33 at the end of the time period.
- the escrow account 41 is shown in the embodiment in Figure 1 as being part of the ASP system 35. However, in other embodiments, the escrow account 41 may reside or be maintained by a bank or other financial institution.
- the ASP module 400 is configured to generate a reconciliation report, or an "advice note," for each merchant.
- the advice note provides each merchant with a summary of the transactions processed for the merchant during a particular time period (e.g., a day or a week), the exception reports (if needed) created in the reconciliation step 406, a summary of payments allocated to each of the various participants in step 408, an summary of the activity in the escrow account during the particular time period, and the day on which the payments are to be transferred to the merchant 31, 32, 33.
- the various portions of the advice note are included in separate reports (e.g., an exception report, a payment allocation report, and a transaction summary report).
- the ASP module 400 is configured to generate one or more summary reports for the IPSP 34 and each merchant 31, 32, 33 according to the particular formats specified by each.
- the ASP module 400 is further configured to (1) transmit the advice notes for each merchant 31, 32, 33 to the rPSP 34 for approval, which is shown as step 412, and (2) upon receiving approval for the advice note from the IPSP 34, which is shown as step 414, transmit the advice notes to the merchants 31, 32, 33, which is shown as step 416,
- steps 412 and 414 may not be performed.
- the ASP module 400 is configured to prepare and transmit payments to the various participants and to the escrow account as shown in step 418, according to various embodiments of the invention.
- Step 418 may include, for example, physically sending payment (e.g., checks or cash) to each of the participants, preparing the request for an electronic funds transfer (EFT) from an account associated with the ASP system 105 to the accounts associated with each of the various participants that are owed money, or a combination of both.
- EFT electronic funds transfer
- the payment step 418 is shown as occurring after step 416 in the embodiment shown in Figure 8, the ASP module 400 according to other embodiments may be configured to perform the payment step 418 simultaneously with or prior to step 416.
- the ASP module 400 may be further configured to withhold local or regional taxes on relevant e-commerce transactions (e.g., Internet gambling transactions, or retail purchases) prior to transmitting payments to each merchant 31, 32, 33.
- relevant e-commerce transactions e.g., Internet gambling transactions, or retail purchases
- the ASP module 400 may be configured to apply the applicable tax or licensing rate on the basis of the place of residence or the place of transaction of each customer and/or merchant and transfer the funds directly to the relevant tax or licensing authorities.
- Figure 17 illustrates an exemplary process of accounting for any taxes owed on a financial transaction.
- the appropriate types of tax and corresponding taxation rates for each of one or more tax jurisdictions are stored in the memory 24.
- step 704 information associated with a financial transaction conducted between a customer and the merchant 31, 32, 33 is received, hi response to receiving the information associated with the financial transaction, one or more relevant tax jurisdictions associated with the financial transaction are identified, shown as step 706.
- step 708 the memory is queried to determine the one or more types of tax associated with the identified tax jurisdictions.
- the corresponding taxation rates for the types of tax are applied to the financial transaction to determine the tax owed on the transaction, which is shown as step 710.
- the amount of tax owed is transferred to the relevant tax authorities, shown as step 712.
- taxes may be levied depending on the location of the transaction originator (e.g., merchant), the customer, and/or the location of the computing device from which the customer placed the order.
- the amount of tax withheld and the amount paid to the tax authorities are stored in the system with the transaction information for a period of time, which, in some embodiments, allows for a full audit trail.
- the amount due is held in a designated bank account and is paid to the tax authorities periodically (e.g., monthly, weekly, daily, or in real time), hi one embodiment, the amount due is paid the tax authorities via electronic funds transfer (EFT).
- EFT electronic funds transfer
- this tax accounting functionality lessens the burden on the merchants, customers, and tax authorities and provides a trustworthy accounting system for taxable transactions, hi addition, in one embodiment, the ASP module 400 generates accounting reports for tax authorities that summarize the taxes due and/or taxes collected.
- transaction records may be audited electronically or manually through the ASP module 400.
- the unique reference number (“UKN") associated with each transaction is tracked as the transaction is processed through the system.
- a plurality of transactions may be grouped into a batch file and sent to the acquiring bank for settlement.
- the ASP module 400 stores the URN associated with each transaction in the batch file along with information identifying the batch file such that each individual transaction is independently auditable.
- Figure 9A illustrates the flow 1000 of processing an authorization request according to various embodiments of the invention.
- the processing of the authorization request takes place online while the customer is waiting, and it typically takes about two to twenty seconds to process. If the authorization request is accepted by the issuing bank, the merchant accepts the customer's payment and the issuing bank blocks the amount requested against the credit limit or balance associated with the payment card.
- the authorization request process 1000 begins at step 1002 by the merchant 31, 32, 33 receiving a request from a customer to transfer money from the customer's payment card to the merchant's account.
- the request may include, for example, the amount to be transferred and the customer's information and payment card information (assuming that the merchant does not have the customer's information and payment card information stored from a previous transaction).
- the customer and payment card information may include the full name and address of the customer, the customer's email address, and the payment card number, expiration date, and any other identifying information associated with the payment card.
- the request may be received by the merchant's system 101, 102, 103 and stored thereon.
- step 1006 the merchant 31, 32, 33 verifies the format of the information received in the customer's request.
- the merchant module 200 verifies whether the format of the payment card number is correct and whether all required fields have been completed.
- the merchant 31, 32, 33 transfers the transaction information to the IPSP 34 for further processing, which is shown as step 1010.
- the IPSP 34 receives and stores the transaction information on the EPSP system 104 and transfers to the acquiring bank 36 information needed by the acquiring bank 36 and the issuing banks 37, 38, 39 to process the authorization request, shown as step 1012.
- the information may be transferred by the IPSP module 300 to the acquiring bank system 106 and may include the payment card number, the payment amount, and the billing address of the customer, according to various embodiments of the invention.
- the acquiring bank system 106 receives and stores the authorization request on the acquiring bank system 106. Then, in step 1016, the acquiring bank system 106 identifies the appropriate card issuer and issuing bank and routes the authorization request to the issuing bank via the appropriate card issuer network (e.g., the VISA, MasterCard, or American Express networks). Upon receiving the authorization request, the issuing bank system 107, 108, 109 verifies that the payment card is operational and valid, which is shown as step 1018, and that sufficient funds are available for the payment card, which is shown as step 1020.
- the appropriate card issuer network e.g., the VISA, MasterCard, or American Express networks.
- the issuing bank system 107, 108, 109 Upon approving the authorization request, the issuing bank system 107, 108, 109 sends an approval message to the acquiring bank system 106 through the card issuer network, shown as step 1022, and the acquiring bank system 106 receives the approval message and transmits the approval message to the IPSP system 104 in step 1024. Then, in step 1026, the IPSP system 104 receives and stores the approval message and transmits the approval message to the merchant system 101, 102, 103 that initiated the authorization request.
- the elementary fraud check and identity/age verification steps (steps 204 and 206) discussed above in relation to Figure 5 may be performed by the merchant module 200 simultaneously with, before, or after step 1010 of transferring the authorization request information from the merchant to the IPSP.
- the step of executing the fraud prevention sub-module 350 which is shown as step 306 in Figure 6, may be performed by the IPSP module 300 simultaneously with, before, or after step 1012 of transferring the authorization request information from the IPSP to the acquiring bank.
- the customer's information is encrypted when sent to the merchant system 101a, 102a, 103a and through the network 115a to the IPSP system 104a (e.g., with 2048 bit variable encryption).
- the IPSP module 300a executes one or more of the fraud filters of the fraud prevention sub-module 350a and, if the fraud filters detect potentially suspicious activity, the IPSP module 300a sends the results of the fraud check to the merchant for approval prior to sending the authorization requests to the acquiring bank system 106a. After the merchant provides approval for the transaction, the PSP module 300a transmits the authorization request to the acquiring bank, which then transmits the request to the issuing bank.
- the acquiring bank After the acquiring bank receives the authorization message from the issuing bank, the acquiring bank stores the transaction information in a memory area of the acquiring bank system 106a (e.g., a database) and sends the authorization message to the IPSP system 104a.
- the EPSP module 300a forwards the authorization message to the merchant and may execute one or more fraud filters on the transaction information prior to generating a settlement request for the transaction.
- FIGS 1OA and 1OB illustrate the exemplary flow 1100 of processing a settlement request according to various embodiments of the invention.
- a settlement request is a request generated by the acquiring bank (or the IPSP on behalf of the acquiring bank) to transfer money from the issuing bank to the acquiring bank for payment to the merchant.
- the settlement request process 1100 begins at step 1102 with the IPSP system 104 generating a settlement request for each merchant 31, 32, 33 and transmitting the settlement requests in a batch file to the acquiring bank 36.
- each settlement request contains the data for transactions that have been handled by the IPSP 34 during a particular time period (e.g., 24 hours, 48 hours, or week).
- the settlement requests may include authorized and unauthorized transactions or just authorized transactions, according to various embodiments of the invention.
- the IPSP system 104 stores the settlement requests on the IPSP system 104.
- the settlement requests may be transferred to the ASP system 105 by downloading the settlement requests from a secure part of the IPSP system 104, or the IPSP 34 may send physical copies or electronic copies of the settlement requests to the ASP 35 (e.g., via email, facsimile,
- the acquiring bank 36 receives the batch file and transmits the settlement requests to the appropriate issuing banks 37, 38, 39.
- the acquiring bank 36 generates and stores a payment report for the ASP 35 that summarizes the amount of funds (e.g., aggregate amount of funds) included in each settlement request for each issuing bank 37, 38, 39, which is shown as step 1108.
- a payment report for the ASP 35 summarizes the amount of funds (e.g., aggregate amount of funds) included in each settlement request for each issuing bank 37, 38, 39, which is shown as step 1108.
- One embodiment of the payment report generated by the acquiring bank 36 for the ASP 35 is discussed above in relation to Figure 8.
- step 1110 the issuing banks 37, 38, 39 transfer the requested funds to the acquiring bank 36.
- step 1112 the acquiring bank 36 transfers the funds received to the IPSP 34.
- the ASP system 105 obtains the settlement requests generated by the IPSP system 104 and the payment report generated by the acquiring bank 36 and reconciles the information obtained in step 1114.
- the results of the reconciliation performed in step 1114 may be summarized in a reconciliation report (or "advice note") by the ASP 35 according to various embodiments of the invention.
- the ASP 35 organizes the payments for each participant and the amount for transferring to flie escrow account and transfers the payments to the participants and the escrow account.
- the ASP module 400 is configured to perform steps 1114 and 1116, which is discussed above in relation to Figure 8.
- the ASP module 400 summarizes the results from reconciling the data provided by the PSP and the acquiring bank in a reconciliation report that is sent to each merchant 31, 32, 33 periodically (e.g., daily or weekly).
- the reconciliation report summarizes the amounts that the merchant 31, 32, 33 can expect to receive in the merchant's bank account by a particular date.
- the reconciliation report includes the total amount that customers put in their respective merchant accounts and shows the following deductions and additions: (1) less commission and charges (covering payments to all participants in the payment chain); (2) less a "trust deduct" corresponding to a percentage of the total amount that is withheld for a certain time period (e.g., 6 months or a year) in the rolling reserve escrow account as security against chargebacks and refunds; (3) plus the "trust money" that was withheld during the certain time period and one day before the date of the advice note; (4) less any chargebacks communicated by the acquiring bank on the day of the advice note relating to previous transactions.
- a certain time period e.g. 6 months or a year
- the IPSP 34 reviews the reconciliation reports, including the dates on which payments are indicated to be paid. Upon receiving the approval of the IPSP 34 for the reconciliation reports, the ASP 35 transmits the reconciliation reports to the various merchants 31, 32, 33 and transfers the payments to the appropriate participants and the escrow account. In one embodiment, the transfer of funds may occur after the reconciliation reports are generated and approved. In another embodiment, the transfer of funds may occur prior to approval of the reconciliation reports. According to the alternative embodiment shown in Figure 14, the funds are directly deposited by the acquiring bank into an account for each corporate entity associated with each merchant (e.g., SGl, SG2, SG3, etc.).
- the ASP module 400a is further configured for reconciling the amounts received into each account with the settlement requests and the payment report obtained from the PSP and the acquiring bank, respectively. In one embodiment, any amount not paid out of the account to the various participants or the escrow account is paid to the merchant.
- Chargeback Processing Flow Chargeback requests are requests initiated by an issuing bank on behalf of a customer to refund a particular charge to the customer's payment card account.
- an issuing bank may initiate a chargeback request in response to a customer contesting a charge on the customer's payment card that the customer asserts was not authorized by the customer.
- Figure 11 illustrates the exemplary flow 1200 of processing chargeback requests according to various embodiments of the invention.
- the issuing bank 37, 38, 39 receives a request for a chargeback from a customer. Then, at step 1204, the issuing bank 37, 38, 39 transmits the chargeback request to the acquiring bank 36. The acquiring bank 36 receives the chargeback request and transmits it to the IPSP 34 in step 1206. Next, at step 1208, the IPSP 34 compares the chargeback request with the data from the original transaction. If the data in the chargeback request appears to match the data from the original transaction, the IPSP 34 transmits the request to the ASP 35 in step 1210. The comparison and transmittal steps 1208 and 1210 may be performed by the IPSP module 300 according to various embodiments of the invention as described above.
- the ASP 35 forwards the chargeback amount from the merchant's escrow account to the acquiring bank 36, which then forwards the chargeback amount to the issuing bank 37, 38, 39 that initiated the chargeback request.
- the ASP 35 pays the chargeback amount to the issuing bank 37, 38, 39 by deducting it from the total amount that should be paid to the merchant 31, 32, 33 in the settlement request.
- the ASP 35 stores the chargeback request.
- the ASP module 400 is configured to perform steps 1212 and 1214.
- the chargeback request may be flagged, according to various embodiments of the invention.
- the IPSP may include the particular payment card number on a list of payment cards that should not be accepted for payment by the merchant in the future (e.g., in the fraud and abuse database maintained by the IPSP 34).
- the ASP 35 reconciles chargeback requests processed by the acquiring bank 36 and the IPSP 34 during a particular time period (e.g., daily or weekly) with the transaction data from the original transactions.
- the ASP 35 obtains a chargeback transaction report generated by the acquiring bank 36 and a chargeback transaction report generated by the IPSP 34 and compares the two reports with the data from the original transactions, shown as step 1216.
- the comparison step 1216 is performed by linking the data in the chargeback reports with the data from the original transactions that has been stored in the memory of the ASP system 105.
- the chargeback data reports contain at least a portion of the following information: (1) reference to the original transaction that is being charged back; (2) the MED number; (3) the date that the chargeback request is made; (4) a description of the transaction as a "chargeback”; (5) the full card number; (6) the reference number granted by the acquiring bank; (7) a "reason code,” which is a code number issued by the card issuer that indicates why the chargeback was initiated by the cardholder; (8) a description of why the chargeback was initiated; (9) type of currency for the chargeback amount; (10) chargeback amount; (11) the card number or portion thereof (e.g., first four digits of card number) provided by the acquiring bank; (12) the date that the original transaction was "posted” or authorized; (13) the date the original transaction took place; (14) the "type" of the original transaction; (15) the currency of the original transaction; (16) the amount of the original transaction; (17) the currency in which the transaction was settled; (18) the amount that was settled; (19)
- the ASP module 400 may be configured to perform this reconciliation step 1216 according to various embodiments of the invention.
- the reports may be posted to the IPSP system 104 and the acquiring bank system 106 and downloaded by the ASP system 105, or the reports may be transmitted physically or electronically via email, facsimile, CD, DVD, or floppy disk, for example.
- FIG. 12 illustrates an exemplary flow 1300 of processing and transmitting payment to a customer when the customer submits a payment request.
- the merchant receives a request from the customer for payment and transmits the request to the PSP.
- the IPSP verifies that the customer is not included on a government or local authority sanction list (e.g., "Specially Designated Nationals list” published by the U.S.).
- the IPSP verifies that the nationality of the customer (e.g., based on the customer's billing address or the IP address of the customer's computing device) is not on a list of prohibited countries in which merchants may conduct business. According to various embodiments, if the customer (or customer's country) is on the list, the payment request cannot be processed by the system 100 and the request is denied.
- the IPSP 34 transmits the payment request to the merchant's bank, which is shown as step 1306.
- the merchant bank transmits the funds to the IPSP 34, which is shown as step 1308.
- the IPSP 34 transfers the funds to the acquiring bank 36 as shown in step 1310.
- step 1312 upon receiving the funds, the acquiring bank 36 transmits the funds to the issuing bank 37, 38, 39 that is associated with the customer's payment card that was used to make purchases (e.g., place bets) on the merchant's website.
- the issuing bank 37, 38, 39 may then credit the account associated with the payment card for the amount received from the merchant 31, 32, 33, or the issuing bank 37, 38, 39 may send a check to the customer that is listed as the card holder.
- the financial transaction system 100 is configured to allow customers to purchase electronic tokens from the IPSP 34, which can then be used with participating merchants 31,
- the features of the financial transaction system 100 are extendable to the e-wallet system. For example, instead of the merchant 31, 32, 33 receiving the request from the customer to transfer funds from the account associated with the customer's payment card to the merchant's account, the IPSP
- the IPSP 34 receives the request to transfer funds from the customer's e-wallet account to the IPSP's account.
- the IPSP 34 executes the steps of the merchant module 200 and the IPSP module 300 to generate and process the authorization and settlement requests with the issuing bank. Upon settlement, the
- IPSP 34 credits an e-wallet account for the customer with an amount of electronic tokens representative of the amount of funds transferred.
- the customer can use the tokens with participating merchants 31, 32, 33 to make purchases.
- Periodically e.g., daily or weekly
- the IPSP 34 transfers funds to each merchant 31, 32, 33 that are representative of the amount of tokens spent at each merchant's website.
- the ASP 35 manages the e-wallet accounts and allocates payments from the PSP 34 to the participating merchants 31, 32, 33.
Landscapes
- Business, Economics & Management (AREA)
- Accounting & Taxation (AREA)
- Engineering & Computer Science (AREA)
- Finance (AREA)
- Strategic Management (AREA)
- Physics & Mathematics (AREA)
- General Business, Economics & Management (AREA)
- General Physics & Mathematics (AREA)
- Theoretical Computer Science (AREA)
- Computer Security & Cryptography (AREA)
- Financial Or Insurance-Related Operations Such As Payment And Settlement (AREA)
Abstract
Priority Applications (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
EP11169023A EP2365468A1 (fr) | 2006-04-25 | 2007-04-25 | Systemes et procedes de conduite de transactions financieres par le biais d'un reseau |
Applications Claiming Priority (6)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
US74556106P | 2006-04-25 | 2006-04-25 | |
US11/609,785 US20080040275A1 (en) | 2006-04-25 | 2006-12-12 | Systems and methods for identifying potentially fraudulent financial transactions and compulsive spending behavior |
US11/609,792 US20070250441A1 (en) | 2006-04-25 | 2006-12-12 | Systems and methods for determining regulations governing financial transactions conducted over a network |
US11/609,775 US8099329B2 (en) | 2006-04-25 | 2006-12-12 | Systems and methods for determining taxes owed for financial transactions conducted over a network |
US11/609,779 US7941370B2 (en) | 2006-04-25 | 2006-12-12 | Systems and methods for funding payback requests for financial transactions |
PCT/GB2007/001513 WO2007125316A2 (fr) | 2006-04-25 | 2007-04-25 | Systemes et procedes de conduite de transactions financieres par le biais d'un reseau |
Publications (1)
Publication Number | Publication Date |
---|---|
EP1941438A2 true EP1941438A2 (fr) | 2008-07-09 |
Family
ID=38325567
Family Applications (2)
Application Number | Title | Priority Date | Filing Date |
---|---|---|---|
EP07732550A Withdrawn EP1941438A2 (fr) | 2006-04-25 | 2007-04-25 | Systemes et procedes de conduite de transactions financieres par le biais d'un reseau |
EP11169023A Withdrawn EP2365468A1 (fr) | 2006-04-25 | 2007-04-25 | Systemes et procedes de conduite de transactions financieres par le biais d'un reseau |
Family Applications After (1)
Application Number | Title | Priority Date | Filing Date |
---|---|---|---|
EP11169023A Withdrawn EP2365468A1 (fr) | 2006-04-25 | 2007-04-25 | Systemes et procedes de conduite de transactions financieres par le biais d'un reseau |
Country Status (3)
Country | Link |
---|---|
EP (2) | EP1941438A2 (fr) |
BR (1) | BRPI0710981A2 (fr) |
WO (1) | WO2007125316A2 (fr) |
Families Citing this family (7)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
US8099329B2 (en) | 2006-04-25 | 2012-01-17 | Uc Group Limited | Systems and methods for determining taxes owed for financial transactions conducted over a network |
US20100106611A1 (en) * | 2008-10-24 | 2010-04-29 | Uc Group Ltd. | Financial transactions systems and methods |
GB2466676A (en) * | 2009-01-06 | 2010-07-07 | Visa Europe Ltd | A method of processing payment authorisation requests |
GB2466810A (en) | 2009-01-08 | 2010-07-14 | Visa Europe Ltd | Processing payment authorisation requests |
US20120311151A1 (en) | 2011-06-03 | 2012-12-06 | Uc Group Limited | Systems and methods for establishing and enforcing user exclusion criteria across multiple websites |
US9704195B2 (en) | 2011-08-04 | 2017-07-11 | Fair Isaac Corporation | Multiple funding account payment instrument analytics |
CN111598680A (zh) * | 2020-04-13 | 2020-08-28 | 上海金仕达软件科技有限公司 | 一种风险分类预警及处置的方法 |
Family Cites Families (15)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
US7451114B1 (en) * | 1999-02-19 | 2008-11-11 | Visa International Service Association | Conducting commerce between individuals |
TW469389B (en) * | 1999-10-14 | 2001-12-21 | Ibm | A system, method, and program for enabling an e-commerce database server to provide jurisdictional information to facilitate e-commerce sales by a web server |
US20030065571A1 (en) * | 1999-10-14 | 2003-04-03 | Rabindranath Dutta | System, method, and program for determining the jurisdiction of a product delivery location by using the ip address of the client while selling items via electronic commerce over the internet |
WO2001033522A1 (fr) * | 1999-11-05 | 2001-05-10 | American Express Travel Related Services Company, Inc. | Systemes et procedes permettant de faciliter des transactions commerciales entre des parties geographiquement eloignees |
US20020002075A1 (en) * | 2000-02-03 | 2002-01-03 | Rick Rowe | Method and apparatus for facilitating monetary and reward transactions and accounting in a gaming environment |
WO2001059727A2 (fr) * | 2000-02-09 | 2001-08-16 | Internetcash.Com | Procede et systeme permettant d'effectuer des paiements electroniques anonymes sur le web |
US7263506B2 (en) * | 2000-04-06 | 2007-08-28 | Fair Isaac Corporation | Identification and management of fraudulent credit/debit card purchases at merchant ecommerce sites |
US7313538B2 (en) * | 2001-02-15 | 2007-12-25 | American Express Travel Related Services Company, Inc. | Transaction tax settlement in personal communication devices |
US6783065B2 (en) * | 2001-03-12 | 2004-08-31 | First Data Corporation | Purchasing card transaction risk model |
US7865427B2 (en) * | 2001-05-30 | 2011-01-04 | Cybersource Corporation | Method and apparatus for evaluating fraud risk in an electronic commerce transaction |
US20060085275A1 (en) * | 2002-01-16 | 2006-04-20 | Stokes Patricia L | System and method for facilitating online transactions |
WO2004084113A1 (fr) * | 2003-03-12 | 2004-09-30 | Zoltan Kovacs | Systeme de prevention de contre-passation de cartes de credit |
CA2530696C (fr) * | 2003-08-27 | 2014-10-21 | John Thomas Flanagan | Systeme et procede destines a faciliter un comportement responsable |
US7497374B2 (en) * | 2004-09-17 | 2009-03-03 | Digital Envoy, Inc. | Fraud risk advisor |
US20060151598A1 (en) * | 2005-01-13 | 2006-07-13 | Yen-Fu Chen | Categorization based spending control |
-
2007
- 2007-04-25 EP EP07732550A patent/EP1941438A2/fr not_active Withdrawn
- 2007-04-25 WO PCT/GB2007/001513 patent/WO2007125316A2/fr active Search and Examination
- 2007-04-25 BR BRPI0710981-4A patent/BRPI0710981A2/pt not_active Application Discontinuation
- 2007-04-25 EP EP11169023A patent/EP2365468A1/fr not_active Withdrawn
Non-Patent Citations (1)
Title |
---|
None * |
Also Published As
Publication number | Publication date |
---|---|
WO2007125316A3 (fr) | 2008-04-10 |
BRPI0710981A2 (pt) | 2012-02-28 |
EP2365468A1 (fr) | 2011-09-14 |
WO2007125316A2 (fr) | 2007-11-08 |
Similar Documents
Publication | Publication Date | Title |
---|---|---|
US8099329B2 (en) | Systems and methods for determining taxes owed for financial transactions conducted over a network | |
CA2741408C (fr) | Systemes et procedes pour traiter des transactions avec des commercants en ligne | |
US20080040275A1 (en) | Systems and methods for identifying potentially fraudulent financial transactions and compulsive spending behavior | |
CA2604913C (fr) | Procede et systeme destines a la gestion des risques dans une transaction | |
US8224753B2 (en) | System and method for identity verification and management | |
US7249092B2 (en) | System and method for facilitating a subsidiary card account with controlled spending capability | |
US6993502B1 (en) | Transaction tax collection system and method | |
US20040139008A1 (en) | Payment system clearing for transactions | |
US20070175984A1 (en) | Open-loop gift card system and method | |
US7849005B2 (en) | Electronic funds transfer method | |
US20050192892A1 (en) | Automated clearing house compatible loadable debit card system and method | |
WO2007044596B1 (fr) | Systeme et procede de protection contre la fraude et l'usurpation d'identite | |
JP2002541601A (ja) | 個人対個人、個人対会社、会社対個人、及び会社対会社の金融トランザクションシステム | |
US20040153410A1 (en) | Anonymous payment system and method | |
JP2009541818A (ja) | ネットワークで金融取引を行うためのシステム及び方法 | |
EP2365468A1 (fr) | Systemes et procedes de conduite de transactions financieres par le biais d'un reseau | |
JP5592428B2 (ja) | ネットワークで金融取引を行うためのシステム及び方法 | |
US20030115140A1 (en) | Payment method for on-line purchases | |
US20190130402A1 (en) | Secure Sales Tax Compliance and Fraud Prevention System for Business-to-Business Transactions | |
Williams et al. | On-line credit card payment processing and fraud prevention for e-business | |
WO2019211664A1 (fr) | Plate-forme de paiement pour sécuriser des paiements | |
WO2001035276A1 (fr) | Systeme et procede conçus pour des transactions commerciales en ligne anonymes et sures | |
AU2002247093B8 (en) | Method and system for completing a transaction between a customer and a merchant | |
Merchant | & Merchant, I | |
KR20020083983A (ko) | 어음보험에 가입된 어음 및 어음카드의 중개시스템. |
Legal Events
Date | Code | Title | Description |
---|---|---|---|
PUAI | Public reference made under article 153(3) epc to a published international application that has entered the european phase |
Free format text: ORIGINAL CODE: 0009012 |
|
17P | Request for examination filed |
Effective date: 20080331 |
|
AK | Designated contracting states |
Kind code of ref document: A2 Designated state(s): AT BE BG CH CY CZ DE DK EE ES FI FR GB GR HU IE IS IT LI LT LU LV MC MT NL PL PT RO SE SI SK TR |
|
AX | Request for extension of the european patent |
Extension state: AL BA HR MK RS |
|
REG | Reference to a national code |
Ref country code: HK Ref legal event code: DE Ref document number: 1113003 Country of ref document: HK |
|
17Q | First examination report despatched |
Effective date: 20090529 |
|
DAX | Request for extension of the european patent (deleted) | ||
REG | Reference to a national code |
Ref country code: HK Ref legal event code: WD Ref document number: 1113003 Country of ref document: HK |
|
STAA | Information on the status of an ep patent application or granted ep patent |
Free format text: STATUS: EXAMINATION IS IN PROGRESS |
|
STAA | Information on the status of an ep patent application or granted ep patent |
Free format text: STATUS: THE APPLICATION IS DEEMED TO BE WITHDRAWN |
|
18D | Application deemed to be withdrawn |
Effective date: 20181101 |