Server to Server

Dynamic 3D Secure

Dynamic 3D Secure

Based on a predefined set of rules, an order will be processed with or without 3D Secure.

A request to activate Dynamic 3D Secure is submitted via your account manager by email [email protected]

The following information is required:

  • The reason why your want to process Dynamic 3D Secure transactions
  • A fee can be requested for the use and/or implementation of the Dynamic 3D Secure
  • If multiple site are connected within a MultiSafepay Control account, we need to know for which sites the Dynamic 3D Secure should be implemented.

Minimum requirements to approve the use of Dynamic 3D Secure.

  • Current processing performance (especially the chargebacks) needs to be good
  • Merchant should be aware of the following:
    The merchant runs an increased fraud risk on orders processed without 3D Secure, because a layer of security is removed
  • There is no liability shift for orders processed without 3D Secure.
    The bank does not take liability for fraudulent orders, in other words the merchant runs the chargeback risk.

The rule set to Dynamic 3D Secure

We can create rules based on:

  • The amount of the transaction
  • The country involved (card country, ip country, country user)

Given that by default 3D Secure is enabled for all card orders, we decide with the use of the rules which transactions do not require 3D Secure.

Activate Server to Server credit card payments

Before you proceed with processing direct credit card transactions, check with your account manager at MultiSafepay if you are eligible for the payment method.

Activation and requirements

In order to process direct credit card transactions, the following is required of the merchant:

  1. Register for a MultiSafepay Control account.
  2. Make sure you are PCI compliant and receive final approval by MultiSafepay Risk Team [email protected] to enable this feature.
  3. Your merchant file and performance of the company will undergo screening and if you have received approval, our Integrations team will begin the integration of Server to Server.
  4. Integrate with MultiSafepay via JSON API following the instructions provided in this documentation after our Integrations team have activated the feature for you.
  5. Credit card transactions with MultiSafepay accounts are by default 3D secure enabled. Certain MultiSafepay accounts can be totally 3D disabled or can be processed with a 3D Dynamic filter based on a pre-configured set of rules.

All options require approval and enabling by our Risk Team.

3D Secure Processing

3D Secure is a protocol designed to reduce fraud and chargebacks during ecommerce Internet transactions. Cardholders are redirected during the payment process to their issuing bank in order to identify themselves before the purchase can be completed. This usually means entering a PIN or a password after entering their card details. In the event of a dispute with the transaction at a later date, the card issuer will usually take responsibility of the chargeback instead of the merchant. This only applies for charges with no authorization and/or fraud, not for situations where the product is not delivered or where customer is dissatisfied with the quality of the order.

The liability issues involved with 3D secure transactions are outside of the scope of this document. For a detailed indication of the liabilities involved, contact our Risk Team at [email protected]

MultiSafepay only supports Mastercard Secure Code, Verified by Visa, American Express Safekey and Bancontact 3D.

How to process Server to Server credit card payments?

3D enabled request

To process a direct credit card transaction (server to server), use the POST -/orders endpoint.

The transaction request type should be “direct”.

"type": "direct",
"gateway": "CREDITCARD",

When 3D secure verification is required, the HTML form will be returned and should be rendered.

"customer_verification": {
     "html": "<html>\n<head>\n<title>3D Html form</title>....",
     "type": "form" 

Once the customer has successfully processed the verification step to finalize the payment, the notification_url will notify the ecommerce platform with a completed status. Order details can be called through a GET -/orders/{order_id} .

Non 3D request

When no 3D verification is required, the transaction status response will be processed directly and no form will be sent.

    "success": true,
    "data": {

POST notification

Optionally, POST notification can be enabled, meaning that the transaction status is automatically sent to the notification_url via a POST call.

By default this parameter is ‘GET’.

"payment_options": {
        "notification_url": "https://my.notificatio.url",
        "notification_method" : "POST",
        "cancel_url": null,
        "redirect_url": null,

Use our API reference on server to server for more information on how to process a direct credit card payment.

Server to Server

What it is

By requesting the credit card details on the webshop, a ‘direct’ transaction can be created. Customers can finalize a credit card payment without being redirected to the payment page of MultiSafepay, resulting in a faster checkout experience and a higher level of control from the merchant’s perspective.

Types of Credit & Debit Cards supported for Server to Server direct payments.

Debit / Credit cards Supported for server to server direct payments
Visa 3D verified by Visa and NON 3D
Mastercard 3D secure code and NON 3D
Maestro Only 3D
American Express American Express Safekey. The only allowed exception from mandatory Safekey verification is for transactions lower than 30 EUR
Bancontact Only 3D

Transaction flow

The transaction flow shows the different ways a transaction can be processed. This differs per payment method.

  • Order status
    The order status indicates the status of the order, such as completed, pending or rejected. The order status is independent of the incoming or outgoing payment of the transaction.

  • Transaction status
    The transaction status indicates the payment status of the transaction, such as completed, pending or rejected. Once the transaction status is completed, the amount of the transaction is added to your MultiSafepay balance.

Credit card transactions received by MultiSafepay, will be processed through our fraud filter. The following statuses are important when receiving a credit card payment:

Order Status Transaction Status Description
Initialized Initialized A payment link has been generated, but no payment has been received yet.
Completed Completed A successful credit card transaction has been received and the funds will be added to your MultiSafepay Control balance.
Uncleared Uncleared Waiting for manual permission of the merchant to approve/disapprove the payment. Read more on accepting uncleared credit card payments, how and why?
Declined Declined Transaction has been rejected. read more on credit card status ‘declined’. What does this mean?
Expired Expired An unfinished transaction will automatically expire after a predefined period.
Void Cancelled Transaction has been cancelled.

Transaction flow when processing on own MID

When using an own MID (MerchantID) from American Express, the funds are not processed by MultiSafepay. Instead, the funds will be added to your own balance at American Express.

Order Status Transaction Status Description
Initialized Initialized A payment link has been generated, but no payment has been received yet.
Uncleared Initialized Waiting for manual permission of the merchant to approve/disapprove the payment. Read more on accepting uncleared credit card payments, how and why?
Completed Initialized A successful credit card transaction has been received and the funds will be added to your MultiSafepay Control balance.

Refund flow

Order Status Transaction Status Description
Reserved Reserved A refund has been requested.
Completed Completed Refund has been successfully processed.
Chargeback Completed Forced reversal of funds initiated by customer’s bank (issuer). Only applicable to Direct Debit and credit card payments. Information on how to proceed when receiving a chargeback

Read more about 3D Secure in our page What is 3D Secure?

Credit Card Settings to allow direct credit card 3D secure payments.

3D Secure is a technical standard to enhance security. Credit card transactions which are processed with the 3D Secure protocol require a form of authentication of the customer during the payment process. This is usually done via a password connected to the card.

By default, all card orders are processed with 3D Secure.

Read more about Dynamic 3D Secure in our FAQ page Dynamic 3D Secure

Other languages

Liever uitleg in het Nederlands? Neem contact op met uw accountmanager.

Vuoi ricevere informazioni in italiano? Contatta il tuo account manager.

Prefieres tener la explicación en Español? Contacta con tu gerente de cuentas.

Vous préférez une explication en français? Contactez votre gestionnaire de compte.