Strong Customer Authentication

Enhanced security process for Commercial Card online purchases

Strong customer authentication security process

Strong Customer Authentication (SCA) is a European regulatory requirement under the Second Payment Services Directive (PSD2) which enhances payment security and protects cardholders from fraud.  The SCA security process applies to electronic payments, including in-person payments and internet purchases, within the European Economic Area (EEA).  Payment transactions without SCA verification will be declined unless the transaction qualifies for an exemption.  This process applies to all Bank of America branded Commercial Cards issued in Europe.


Electronic payments require that the cardholder verify their identity using elements that fulfil SCA requirements.


  • For in-person payments:  The cardholder is required to insert their card into the merchant’s POS terminal and enter their PIN to complete the verification. 
  • For internet purchases (e-commerce):  The cardholder is required to verify the purchase using the Global Card Access app or by completing authentication at checkout on the merchant website.

Watch this video and learn how to complete authentication using the Global Card Access app:

For more information, including how SCA works, please review the below guides.