Seismic Shifts Happening in the Software Integration Landscape

The biggest fee increases we saw in 2023 came not from card brands, but from tech enabled, integrated payment processing and subscription-model services with exclusive processor relationships.

What are Software Integrated Payment Processing Services?

Software integrated payment processing services (often referred to as “integrated payment systems”) are products that allow businesses to handle credit card or digital financial transactions within their currently used software applications. The integrated payment system will ideally offer a solution to handle multiple payment methods, offer customization and automation, provide useful reporting, and ultimately, drive efficiencies. 

Integrated Systems & Business Impact

Costs are going up across the board and unfortunately for businesses with integrated systems, this is particularly true. Integrated systems often lock merchants into a specific processor. 

Imagine wearing handcuffs with no key in sight as they squeeze tighter and tighter—this is the situation many businesses are in. As such, many businesses are canceling their system subscriptions. At the same time, increased pressure on software companies is pushing them to offer more than one processor in their integration systems—allowing for more competition and ultimately lower costs.

In a major change from previous policy, Stripe just announced earlier this month they would make their online checkout site, billing services, and fraud protection available to companies that are using rival payments providers.

 

What it Means in 2024?

As we approach the midpoint of Q2 2024, now is a great time for business owners to take a closer look at recurring expenses and consider if the Return on Investment (ROI) of an integration justifies the expense or if any recent policy changes may have created new opportunities. 

Alternative Solutions

There are a variety of other solutions that may get the job done at a lower cost, including payment bridges, semi-integration, and small procedural changes. It may also be possible to negotiate and optimize costs independently or engage the expertise of a third-party auditor like Merchant Advocate.

What Every Business Owner Needs to Know About Credit Card Processing

Credit card spending has more than tripled in the last decade. For merchants accepting credit cards, that means billions of dollars in processing fees. But while processing may be big money, very few people understand the ins and outs of this unregulated industry. 

Let’s dive into how to protect your business, whether it’s a small business or a large corporation, while increasing its value and reducing costs. We will also touch on two timely concerns for all merchants—data security and the rise in surcharging programs.

 

Software Integration Issues

Many of our clients use a point-of-sale solution with integrated software. Typically, these software companies work exclusively with one processor, which can make it challenging for a business to secure optimal rates on their own.

Another major issue can involve the software itself. If you aren’t running the most recent upgrade (which may not be automatic and require an opt-in for install), all the information required by the processor at the time of the transaction may not be shared, resulting in additional charges that can really add up. 

While we would recommend calling your provider to ensure you’re running the most recent version, they aren’t always aware if there’s a problem or how to fix it. Merchant Advocate understands not only what information the processor needs to avoid fees but can also ensure pricing is fair.

 

Chargebacks

What is a Chargeback?

A chargeback happens when the credited amount from the initial charge to your business checking account is reversed. The issuing bank reverses all or a portion of the transaction amount to your acquirer/processor, citing a violation of Payment Card Networks rules or regulations as the reason for the chargeback. This often occurs frequently for businesses who have a monthly membership program. Other reasons for chargebacks include suspected fraudulent activity with the card, non-receipt of the product or service, or cardholder disagreement regarding the quality/receipt of merchandise.

Chargebacks: Impact on Large & Small Businesses

Managing chargebacks and engaging in representment can significantly reduce your expenses and improve your ratios, but these processes demand a considerable amount of time and resources. If you’d like to do so, check if your processor has a chargeback dispute manager tool. Merchant Advocate can also help set you up with a trustworthy chargeback company. No matter how you decide to handle, it is incredibly important to respond in a timely fashion.

Respond or be Fined

In the past, merchants could disregard a response request, essentially defaulting to accepting the chargeback. No longer! To expedite the process, Visa has introduced time constraints. Failure to respond promptly will result in fines.

 

Unclear Guidelines Around Surcharges

Some business owners have turned to cash discounts and surcharges to cover increases in processing costs, passing the cost to their customers. The guidelines and laws surrounding these programs are unclear, ever-changing, and vary by state and area. Many states cap the percentage of a transaction merchants can charge and the surcharge itself is often set up incorrectly, leading to math errors and overcharging. There are serious tax implications and the possibility of fines in these cases. Options include:

Sign up for a registered surcharge program that only passes the fee on credit cards.

How to Save

  1. Raise your prices
  2. Offer a cash discount yourself (no need to have the processor involved as they are just trying to make a commission), and keep the extra profit. 
  3. Enlist the help of a vigilant auditing service or work with an expert who can help decipher these confusing statements.

All you need to do this is a well-priced merchant account. You’ll need to become more familiar with monthly statements—particularly potential hidden or junk fees—and use these data points to negotiate lower fees. 

 

PCI Compliance: Protecting your Data

Every merchant that stores, processes, or transmits cardholder data is responsible for its protection. The Payment Card Industry (PCI) Data Security Standard (DSS) was created to help protect consumer data. The good news is that it’s easy to become compliant by using a PCI-compliant hosting provider. EMV chip cards are an additional way to protect card-present transactions.

How to Remain PCI Compliant

To ensure PCI compliance, you must implement the proper security policies, procedures, and staff training. You can start by auditing your merchant statements, which will show noncompliance via a penalty fine. 

Other simple steps include changing your user account passwords on a regular basis, using a third party to monitor your network security, and reviewing your physical security measures such as employee training and IT infrastructure.

 

Protecting the Interests of Your Business & Your Customers

Third-party auditors are often the best resources for understanding the credit card processing ecosystem, as processors often hide fees and make calculation errors in needlessly confusing monthly statements. It’s also normal for them to raise rates three to four times per year. Without due diligence and knowing how to read these statements, fees add up quickly.

The ever-evolving landscape of credit card security and compliance underscores the need for constant vigilance to safeguard both your financial interests. Increasing awareness leads to savings and less stress down the line and empowers business owners to navigate the credit card payment ecosystem with greater confidence.

Find out if Merchant Advocate can help your business with a free analysis.

Top Ten States with Highest Swipe Fees

By Zena Tsarfin for Merchant Advocate

Credit card processing fees are an inescapable part of doing business. And though it’s well known that American-based businesses pay more in swipe fees than their European counterparts—what most people probably don’t realize is that even some states have higher swipe fees than others.

Many variables come into play. Recently, Forbes Advisor compiled a list, adjusting for things like inflation and cost of living. Their rankings are based on the total amount of fees paid statewide, as well the average swipe fee per capita and per transaction.

Not surprisingly, the vast state of California led in the total number of fees paid overall, at over $97 million. What is more surprising is some of the smaller states that made the list. While Hawaiian merchants paid significantly less in fees overall, they had by far the highest swipe fees per capita and transaction. Massachusetts had the second highest swipe fees per capita and per transaction, despite lower fees overall.

Top 10 Swipe Fees by State

1. California

Total in Swipe Fees Paid – $97,474,291.77

Swipe Fees Per Capita – $2.47

Swipe Fee Per Transaction – $0.24

2. Massachusetts

Total in Swipe Fees Paid – $19,058,468.49

Swipe Fees Per Capita – $2.73

Swipe Fee Per Transaction – $0.27

3. New York

Total in Swipe Fees Paid – $46,220,401.28

Swipe Fees Per Capita – $2.30

Swipe Fee Per Transaction – $0.23

4. Hawaii

Total in Swipe Fees Paid – $4,778,915.38

Swipe Fees Per Capita – $3.29

Swipe Fee Per Transaction – $0.33

5. Maryland

Total in Swipe Fees Paid – $13,495,908.71

Swipe Fees Per Capita – $2.19

Swipe Fee Per Transaction – $0.22

6. Washington

Total in Swipe Fees Paid – $16,104,301.90

Swipe Fees Per Capita – $2.11

Swipe Fee Per Transaction – $0.21

7. Oregon

Total in Swipe Fees Paid – $8,894,631.86

Swipe Fees Per Capita – $2.11

Swipe Fee Per Transaction – $0.21

8. Alaska

Total in Swipe Fees Paid – $1,681,632.73

Swipe Fees Per Capita – $2.28

Swipe Fee Per Transaction – $0.23

9. New Jersey

Total in Swipe Fees Paid – $19,352,564.08

Swipe Fees Per Capita – $2.10

Swipe Fee Per Transaction – $0.21

10. New Hampshire

Total in Swipe Fees Paid – $2,898,472.70

Swipe Fees Per Capita – $2.11

Swipe Fee Per Transaction – $0.21

 

Chart: The Top 10 States Most Affected by Swipe Fees in 2023

No matter where your business is located, Merchant Advocate can help reduce your costs without switching processors. Find out what they can do for you with a FREE, no-commitment analysis.

Get a Free Analysis

New Surcharge Law for New York State

By Zena Tsarfin for Merchant Advocate

On February 11, New York became the latest state to institute guidelines and regulations regarding surcharging programs which pass the cost of credit card acceptance to consumers. In a nutshell, the new law essentially restricts businesses from imposing credit card surcharges that are higher than the actual transaction cost. But how that amount is calculated and how to ensure compliancy can be confusing.

For example, while it is still legal to charge different prices for cash versus credit transactions in New York, the highest price that a consumer might pay for a good or service must be clearly posted. This means businesses will need to adjust POS systems for two-tier pricing, as well as train employees about the new mandates.

In addition, merchants must now accommodate for a bevy of new signage that clearly “and conspicuously” displays two sets of prices, one for cash and debit cards, and the other for credit card purchases. Failure to do so can cost businesses a hefty fine of $500 for each and every violation!

More specific examples of dos and don’ts can be found on the state of New York’s website.

If you are still unsure of how this might affect your business and would like to speak to one of our experts, please contact Merchant Advocate.

Get a Free Analysis

Double Trouble: PCI Compliance, the HIPAA Overlap and How to Mitigate Your Practice’s Risk

By Zena Tsarfin for Merchant Advocate

Any business that accepts credit cards needs to take precautions to protect their customers’ personal data, but that is even more important for medical and dental practices which store precious health information. Healthcare is by far the largest sector targeted by cyberthieves; according to IBM’s cost of a data breach report, the average total cost of a breach in the healthcare industry was $10.1 million in 2022.

To keep healthcare security standards current as technology evolves, two organizations have rolled out related legislation.  The U.S. Health Department issued the Health Insurance Portability and Accountability Act (better known as HIPAA), and the PCI Security Standards Council introduced Payment Card Industry Data Security Standards, or PCI DSS.

Though HIPAA compliance covers medical records and personal data, it does not cover credit card payment information—that’s where PCI DSS comes in. PCI and HIPAA both require that a business secures certain types of patient information. While the specific data they pertain to varies, there is some overlap between HIPAA and PCI in implementation. Essentially, both require policies, procedures, training, and annual assessments to uncover issues that require remediation. Patient health information and payment information represent the most sought-after data of cybercriminals.

Given the risk, medical and dental practices must remain vigilant and PCI compliance should never be ignored. Not only will the fines negatively affect your bottom line, but not becoming compliant could bankrupt your practice and ruin your reputation should there be a breach.

If a business suffers a breach while non-compliant with Payment Card Industry Data Security Standards, the business is responsible for all costs of reissuing credit cards. The practice must pay for all fraudulent credit card charges, which will likely include six to twelve months of personal credit monitoring for every affected patient. You may also be required to hire a Payment Card Industry Forensic Investigator. And all of that is on top of the fines themselves—which range from $50 to $90 per affected customer.

That’s why it is so important to be proactive and find out if your practice is compliant. Our best advice for medical professionals and office managers: Review your three most recent, consecutive statements. Most processors charge for non-PCI compliance monthly, but some charge quarterly, which is why you’ll need to check THREE consecutive statements. If you are compliant, you will probably only see one charge for PCI since processors levy a fee to access their PCI portals. If, given the high financial liability, you would prefer an outside expert ensures compliance, consider reaching out to an independent third party like Merchant Advocate.

Finally, PCI noncompliance fees and other hidden and junk fees can be siphoning as much as 5% of your total net revenue, directly from your bottom line. Instead, it is recommended that you find an independent, third party to conduct an audit to see if you are overpaying or noncompliant. Statements are complicated by design—Merchant Advocate can help you save money without switching processors and has saved clients more than $300 million in credit card processing fees. Contact us to receive a free analysis of your merchant account with just one, no-commitment phone call. Visit MerchantAdvocate.com/contact for more information.

 

 

What’s Hiding in Your Merchant Statements

By Merchant Advocate

Are You Being Overcharged?

If you have that sinking feeling that you are paying more for merchant services than you should be, you are not alone. More than 72% of businesses are being overcharged. And if you are familiar with the statements provided by processors, you might have a guess as to how they are getting away with this unfair practice.

Hundreds of different card types, mysterious coding, inconsistent fees—statements are intentionally written in a language that only an expert can understand. And while this makes them nearly impossible to decipher on your own (let alone find the fees hiding within their pages), we will discuss some key terms and information to look for. Let’s dive in!

Navigating Your Statements

Every processor configures statements differently (further adding to confusion), but your business name and merchant ID number(s)—also known as MIDs—should be at the top.

Also front and center is the summary, which provides a quick overview of the past 30 days’ activity and can include chargebacks (when a customer requests a refund directly from the credit card company) and reversals (the amount that was initially resolved against the merchant but was ultimately found in favor); adjustments; and fees charged.

The next section you’ll likely encounter is the pages-long “Deposit Details,” which breaks down each batch transaction, line-by-line for the previous 30 days. But as seen in this example, multiple batches were created each day, which as noted here, can number in the hundreds, and can take up huge swaths of paper.

After that, we come to the “Processing Detail Qualified” section, sometimes referred to as “Fees.” This section contains the most confusing jargon as it unfurls, denoting interchange fees (these go to card-issuing banks), assessments, the merchant’s pricing model, and all other various fees, each broken down by card type, ending with the fees’ grand total. Below is an example of what this looks like—this section takes up almost four pages alone on this resort’s statement and contains multitudes of confusing codes.

Finally, there is typically a section called something like “Important Information About Your Account.” As implied, this section is essential, and should not be overlooked since it contains news regarding rate fluctuations and new policies that your processing company may be implementing—aka new ways to charge you more money. Appallingly, your original processing agreement included language allowing processors to raise rates and add new fees for any reason, at any time. The only way to combat these increased costs is to go head-to-head with your processor, which can take significant time, resources, and an understanding of merchant statements that most businesses do not possess.

What Happens Next?

But what do you do if you see an increase? Or if you, understandably, don’t have the time to pour over pages of statements monthly, let alone keep up with the multitude of changes and new fees assessed by processors looking to drive up their profits?

That’s where the auditing experts at Merchant Advocate come in: not only do our trained analysts make an initial meticulous review of your statements to identify overcharges, inflated rates, and hidden fees—they keep checking your statements month after month to ensure there are no surprises.

Merchant Advocate has saved clients more than $300 million in excess fees, without switching processors. Contact us to receive a free analysis of your merchant account with just one, no-commitment phone call.

[Updated 2024] Magnetic Stripes to EMV Cards: The Business Impact

A New Era of Credit Card Acceptance is Here: Stop Accepting Magnetic Stripes in 2024

By Merchant Advocate

Nowadays, it’s all about that chip, commonly known as the EMV, for Mastercard, Visa and Europay—the companies that rolled out the technology stateside in 2015. It generates time-sensitive authentication codes for every transaction, adding a layer of encrypted security that helped bring down in-person counterfeiting by more than 76%.

In 2021, Mastercard officially announced a phase out of the magnetic stripe format over the next decade to provide better security and fraud prevention. The other credit card brands followed suit shortly thereafter. Tapping cards and using chip readers are now the most prevalent methods for paying with plastic.

What Does this Mean for My Business?

Processing Fees

What does this change mean for businesses accepting credit cards? For one thing, it means every swipe now comes with an avoidable fee. In their quest to phase out the magnetic stripes, processors are now assessing an EMV non-acceptance fee for those who do not accept chip cards. Merchants must upgrade their terminals to accept EMV chip card transactions.

Transaction Security

Stripes contain a myriad of sensitive information including the cardholder’s name, card number, and verification numbers, with no encryption. Over the years, this vulnerability has resulted in billions of dollars’ worth of chargebacks and fraud, including the large-scale spread of “skimming” card scams. Meanwhile, sophisticated hackers have found endless ways to exploit outdated magstripe cards, even infecting corporations’ credit card terminals with viruses to gain access to customer data.

What is a Magnetic Stripe Card?

The ubiquitous “magstripe” credit card from brands like Visa, American Express, Mastercard and Discover has a silver or black magnetic stripe on the back of it. An advent largely credited to IBM, the magnetic stripe has been a fixture of credit card transactions as far back as the 1960s. This stripe contains essential account information like the card number, expiration date and other issuing bank data.

When a customer swipes the card through a card reader, the information is read magnetically, allowing transactions to be processed. This single advancement catapulted the use of credit cards as everyday tender for all types of monetary transactions and changed our relationship with spending forever.

Do EMV Cards Have a Magnetic Stripe?

Despite the timed phase-out, many EMV credit cards still contain a magnetic stripe. Because not all card readers support EMV chip technology, this is still necessary as the transition to chip technology is still ongoing. The magnetic stripe serves as a secondary backup for processing transactions when chip readers are not available, often in the form of MSD (Magnetic Stripe Data) contactless payments.

When Will the Magstripe Go Away for Good?

By 2033, the antiquated magnetic stripe will have seen its last sunset with the United States expected to go completely magstripe-free by 2027. And while other security measures such as biometric markers including fingerprints and face recognition have been tested across the world, replacing hundreds of thousands of POS machines in the United States will be slow going.

Is Your Business Being Charged for Magnetic Swipes?

If you’re not sure how to check if your machines are updated to satisfy new EMV requirements, you’re not alone. Credit card processing statements are coded in ways that can mystify even the best accountants making it difficult to ascertain if you are complying. That’s why it helps to have an advisor like Merchant Advocate, who can help decipher your statements and advise you on any point of sale or other changes needed for compliance, as well as negotiate your rates and monitor merchant service accounts monthly. They work in real time to find overcharges and other errors, helping you to keep your profits.