eCommerce Disclosure Requirements Best Practices

Defines the requirements related to accepting payments on your website put in place by the card brands.

This page covers the disclosure requirements set by the card brands (Visa, MasterCard, AMEX, Discover) that apply to all merchants processing eCommerce transactions. eCommerce transactions include all in-app and embedded payments.

This page includes a table that defines each of the requirements and a sample web page that shows the implementation of each of the requirements. These requirements apply to the following entities that accept payments in apps or on websites:

Standard Merchants

Sponsored Merchants

High-Brand Risk Merchants

High-Brand Risk Sponsored Merchants

Standard Payment Facilitators

High-Brand Risk Payment Facilitators

eCommerce Requirements

The table below defines the requirements set by the card brands:

Requirement	Example	Information
1. Card Brand Logos		Each major credit card’s brand logo must be present (in full color)
2. Legal / Age Restrictions	Enter Date of Birth: MM/DD/YYYY	If applicable, this requirement sets restrictions for: transactions requiring minimum age limits (such as for the sale of medical services) -OR- transactions requiring certain legal requirements (such as tax/financial service companies).
3. Explanation of Transaction Processed		A complete description of goods or services being sold.
4. Return/Refund policy	Amazon Return Policies Shown as a sample	The requirement indicating the merchant’s refund policy, even if no refunds are accepted, it must be specified.
5. Customer Service Contact		This requirement displays the contact information for customers to be able to reach a merchant regarding goods, services, or transactions. This must include an e-mail address or telephone number.
6. Address of Merchant’s Permanent Establishment	123 Company Street Culver City, CA 90230	This requirement shows the permanent address of the merchant selling the goods or service. The address must also include the Country Code.
7. Transaction Currency	USD	This requirement must display the type of currency being used in the transaction, such as US Dollars (USD), Canadian Dollars (CAD), etc.
8. Secure Checkout Icon		This requirement displays a padlock icon within the URL bar that shows online secure checkout compliance requirements are met and can provide cardholders proof of privacy and security while processing credit card and personal data.
9. Web ACH Authorization	Single Transactions Screen 1: To pay your (Company Name and type of bill), enter amount and click the PAY button Amount: $____________________ Screen 2: I authorize XXXXXX to initiate [a single or XXX recurring] ACH/electronic debit[s] to my account in the amount of $XXX.XX from [can specify either “bank account on record” if account information is retained once it is entered, or provide a space for the entry of account information: checking or savings account, Depository Name, Routing Number and Account Number] on XXXXXX (date and/or frequency of debits). I agree that ACH transactions I authorize comply with all applicable law. [PAY BUTTON] Multiple, Recurring and Pre-Scheduled Transactions IF THE PAYMENT IS SCHEDULED IN ADVANCE, OR THE AUTHORIZATION IS FOR RECURRING DEBITS, INCLUDE THE FOLLOWING: I understand that this authorization will remain in full force and effect until I notify XXXXXX [insert manner of revocation, i.e. in writing, by phone, location, address, etc.] that I wish to revoke this authorization. I understand that XXXXXX requires at least [x days/weeks] prior notice in order to cancel this authorization. Payments made after X:XX P.M. eastern time will be applied as of the next business day. To complete the payment process, click the “authorize” button. Once payment is authorized, there cannot be any changes or corrections. I agree that ACH transactions I authorize comply with all applicable law.	This requirement displays an authorization being made by the cardholder to process the transaction using ACH payment methods for a merchant to process the transaction meeting E-Sign Act requirements.
10. Delivery Policy	Amazon Delivery Policy Shown as a sample	If applicable, the policy for the delivery of goods purchased in the transaction.
11. Consumer Data Privacy Policy	Amazon Data Privacy Notice The Home Depot Privacy Policy Shown as a sample	This requirement (which should be linked within the payment page) which discloses the merchant’s policy of the ways a party gathers, uses, discloses, and manages a customer or client's data.
12. Secure Checkout Policy	Home Depot Secure Checkout Policy Shown as a sample	This requirement lists security capabilities and policies for the transmission of payment cardholder data by the Merchant.
13. Terms and Conditions / Terms of Service	Payrix partner’s can satisfy this specific requirement in one of two ways: Partner creates a merchant TOS and requires all of their merchants to follow them and then the partner places a link on the check out Partner places a link on the checkout page but allows the merchant to upload the T&C themselves.	This requirements lists all legal terms and conditions a consumer cardholder agrees to when purchasing a goods or service from a merchant.

eCommerce Example Page

Below you’ll see an example of eCommerce requirements being met within the test merchant’s page.