Fraud Overview
Fraud API enables a financial institution or cardholder to manage, mitigate fraud losses and create travel exemptions while minimizing friction for the consumer.
Availability: Debit Enhanced EPOC, Credit Gateway, Optis FS Credit
Features
-
Cardholder Alerts
Give cardholders security functionality to confirm potential fraud, unblock their card, and increase retention.
-
Convenient Experience
Empower cardholders to manage exemptions as well and quickly respond to fraud notifications.
-
Verification
Retrieves media addresses and methods that can be used for cardholder verification.
Fraud Case feature provides the functionality to search and update real-time Fraud Case information.
- Case Search: Search for Fraud cases based on institutions, dates, case status, case number and cardholder details.
- Case Details: Returns Fraud case detailed information for a given case number.
- Case History: Returns Fraud case history details for a given case number.
- Case Transactions: Returns authorizated transactions for a given case number.
- Case Update: Updates Fraud Case details for a given case number.
- Case Rules: Returns Fraud Case rules for a given case number.
Exemption feature provides the functionality to retrieve state and country list.
- Travel Locations : Retrieves state and country list.
Fraud Alert API provides integration partners the ability to receive alerts for potential fraudulent transactions, retrieve case data for fraudulent cases, and notify Fiserv of the results of an alert notification.
- Search Case: Retrieve information for fraud cases from Fiserv.
- Alert Outcome: Notify Fiserv of updates to a case under review. Fiserv returns a response that identifies if a case outcome request is accepted or if the request is rejected and why the request was rejected.
- Case Close: Notify Fiserv of a case for potential fraud being closed on the vendor platform.
Travel Exemptions API enables collection and application of all travel exemptions for a specific card number. Any cardholder updates are captured and used by other web services in the authorization rules for each card transaction, reducing false declines and giving users more control over how they use their card.
- Search Exemptions: Obtain information on all existing travel exemptions for the requested card number.
- Add Exemptions: Add travel exemptions for the requested primary account number (PAN)\, up to the maximum of two lists. Cardholders can make exemptions by state or country.
- Update Exemptions: Update existing travel exemptions for the requested primary account number (PAN).
- Expire Exemptions: Terminate existing travel exemptions at any time to create a new list, expiring the old version to enable the new list.
FAQs
The feature is a web-message specification that can be coded to make this possible; however, the online banking tool will need to be modified as well coding to use the service to send and receive the necessary information will need to be done.
No, exemptions are maintained by group; the group has its own start and end dates. Each group can contain up to 15 locations (countries and/or states).
Yes, each cardholder can have two exemptions configured each containing up to 15 locations (states and/or countries). Each exemption has start and end dates and times.
Design of the consumer or internal user interface is outside of the scope of Travel Exemptions feature. However, if an excluded state or country is sent as an exemption an error response message will be sent.
Updates will need to be made to the system you want to integrate so that your cardholder or internal staff can enter the necessary data. That system sends an initial “getTrvlExemptionsList” so that current cardholder record information can be displayed. Fiserv finds the cardholder’s record and sends all current state and country exemptions along with any location exclusions where you have indicated you don’t want automated exemptions configured. The cardholder or internal staff make the changes and a follow up message (add, update or expire) is sent to Fiserv. Fiserv reviews the information and sends back the response (success or error message).
Yes.
Yes. The unique code for this scenario WS205.This is different than when a state or country validation can’t occur (e.g. CA for CAN) whose code is WS204.
This feature offers the ability to integrate from your own applications into to the Fiserv risk systems in real-time. It gives you flexibility to have your cardholders to self-service through existing tools they know.
All clients who participate in a Risk Solution Set (Risk Essentials, Risk Advisor or Risk Advantage) can implement the Fraud Alert feature.
This feature allows an entity outside of CWSi Card Management to be able to retrieve case data regarding fraudulent cases, notifies Fiserv of case results or a case closed. The data contains the case information including card details and up to three (3) transactions that may be considered fraud. This allows the client to determine the locations of where notifications are sent internally and to consumers.
This is a RESTful message that allows an entity outside of the CWSi card management system to be able to update the cardholder record regarding state and country exemptions. This will require coding to specification and completing a certifications process as well as interfacing the API to the user interface (for example: digital app or online banking service).
A standard ISO country list can be used, the API requires 3-character country values and 2-character state values. You will need to decide how you want to work with your exclusion list. Some people don’t display these options and others choose to simply let the error message return and address it then.
You need to utilize at least one of the following risk rule tools – TranBlockerSM, Card Risk Mitigation: EnFact® or Card Risk OfficeSM Advantage: RuleManager. If you are currently on Card Risk Office Essentials, Card Risk Office Advisor or Card Risk Office Advantage) you are able to utilize the Travel Exemptions feature.
No. Alerts sent through the Fraud Alert feature are in addition to the existing notifications you are currently sending. When a case is created, the Fraud Alert feature is initiated in conjunction with the first notification type you have in your existing notifications. If a case is closed as “NO FRAUD,” “FRAUD” or the card status is changed to a “Closed” status, the contact attempts stop through both the API and the existing channels, similar to the existing process.
This is done within the card management system of Debit Processing: Client CentralSM. A maximum of two exclusion groups can be created. A maximum of 51 State/Country codes can be part of an individual exclusion group. The exclusion groups are kept at the client (LOGO) level and contain up to 50 BINs.