SCA Exemption Turn Key - Worldpay Direct XML

SCA Exemption Turn Key automatically applies an exemption request to all qualifying payment requests.

Prerequisites:

  • You need to be setup for Exemption Turn Key. For the optimal experience we strongly recommend being setup with 3DS Flex too. Contact your Relationship Manager for details.

No technical integration is required to use this service.

Worldpay automatically identifies the payments that are SCA mandated and will attempt to exempt them. Payments that are not exempt will be authenticated.

Note: No exemption information is returned in the XML response. You can use reports to review the payment status.

Reports

You can generate reports in the MAI to review exemption payment performance.

This report shows all of the payments processed and their relevant exemption status: Report

You can apply various filters including date, merchant code and exemption status, to easily find specific results: Filters

Contact your Relationship Manager for further details, and to have the SCA Exemption Turn Key enabled.

ThreatMetrix Integration

ThreatMetrix collects and sends device fingerprint data and geo-location data that relates to a customer’s payment. You use JavaScript to send all this data to ThreatMetrix. The Device Session ID (generated by you) accompanies the device fingerprint and geo-location data sent to ThreatMetrix.

Device Session ID example:

The Device Session ID is used in the element <deviceSession> and child element <sessionID>.

The Device Session ID is in the UUID format 8-4-4-4-12:

Copied!
...
    <deviceSession>
        <sessionId>55f9c219-4e98-4130-972e-8c8b2f3c2125</sessionId>
    </deviceSession>
...

Submit this within your payment request XML. ThreatMetrix gets the Device Session ID when the data is sent. We get the Device Session ID when the payment request is made. We use this Device Session ID to retrieve the customer device data in subsequent calls from ThreatMetrix.

The data we retrieve is visible in the FraudSight UI. Ask your Worldpay Relationship Manager or Support colleague for access.

Full payment request example

Copied!
<?xml version="1.0" encoding="UTF-8"?>
<!DOCTYPE paymentService PUBLIC "-//WorldPay//DTD WorldPay PaymentService v1//EN" "http://dtd.worldpay.com/paymentService_v1.dtd" >
<paymentService version="1.4" merchantCode="YOUR_MERCHANT_CODE">
   <submit>
       <order orderCode='YOUR_ORDER_CODE'>
           <description>test order</description>
           <amount value="100" currencyCode="EUR" exponent="2"/>
           <orderContent>
               <![CDATA[]]>
           </orderContent>
           <paymentDetails>
               <CARD-SSL>
                   <cardNumber>4444********1111</cardNumber>
                   <expiryDate>
                       <date month="06" year="2020"/>
                   </expiryDate>
                   <cardHolderName>EE.HONOURED_ISSUER_HONOURED.AUTHORISED</cardHolderName>
                   <cvc>666</cvc>
                   <cardAddress>
                       <address>
                           <firstName>A</firstName>
                           <address1>Worldpay</address1>
                           <address2>270-289 The Science Park</address2>
                           <address3>Milton Road</address3>
                           <postalCode>CB4 0WE</postalCode>
                           <city>Cambridge</city>
                           <countryCode>GB</countryCode>
                       </address>
                   </cardAddress>
               </CARD-SSL>
               <session shopperIPAddress="127.0.0.1" id="ssn194781884"/>
           </paymentDetails>
           <shopper>
               <shopperEmailAddress>a.shopper@worldpay.com</shopperEmailAddress>
               <browser>
                   <acceptHeader>text/html</acceptHeader>
                   <userAgentHeader>Mozilla/5.0 ...</userAgentHeader>
               </browser>
           </shopper>
           <!-- Exemption -->
                <exemption type="LV" placement="AUTHORISATION"/>
                <deviceSession>
                  <sessionId>55f9c219-4e98-4130-972e-8c8b2f3c2125</sessionId>
                </deviceSession>
       </order>
   </submit>
</paymentService>

Contact your Relationship Manager for further details, and to have the SCA Exemption Turn Key enabled.