Business Update – New e-commerce Turkish regulation

Effective 31 December 2017, a new local e-commerce regulation published by the Banking Regulations and Supervision Agency (BRSA) will require issuers in Turkey to obtain consent from their cardholders to enable cards to perform e-commerce transactions. Turkish issuers are also required to decline any e-commerce transactions attempted with cards for which cardholders have not yet provided consent. In light of that, merchants are encouraged to invite cardholders to contact their issuer to ensure their card is enabled for e-commerce transactions.

Furthermore, to ensure that declines are handled properly, issuers in Turkey should use Decline Response Code 93—Transaction Cannot Be Completed: Violation of Law when declining an e-commerce transaction on a card that has not received consent for this type of transaction from the cardholder. And when receiving Decline Response Code 93 for an e-commerce transaction attempted with a Turkey-issued card, all merchants should provide the following message to their customers: “Contact your card issuer to enable your card for e-commerce transactions.”

Moreover, when receiving all other decline response codes (with the exception of Decline Response Code 51—Insufficient Funds) for Turkey-issued card transactions, merchants should modify their general decline message to specify that the decline may be due to the new block because it is possible that not all issuers will be able to comply with the Visa decline response code recommendation.