What are EMV chip cards?
EMV — which stands for Europay, MasterCard and Visa — is a global standard for cards equipped with computer chips and the technology used to authenticate chip-card transactions. In the wake of numerous large-scale data breaches and increasing rates of counterfeit card fraud, U.S. card issuers are migrating to this new technology to protect consumers and reduce the costs of fraud.
“These new and improved cards are being deployed to improve payment security, making it more difficult for fraudsters to successfully counterfeit cards,” says Julie Conroy, research director for retail banking at Aite Group, a financial industry research company. “It’s an important step forward.”
For merchants and financial institutions, the switch to EMV means adding new in-store technology and internal processing systems, and complying with new liability rules. For consumers, it means activating new cards and learning new payment processes.
Most of all, it means greater protection against fraud.
Approximately 120 million Americans have already received an EMV chip card and that number is projected to reach nearly 600 million by the end of 2015, according to Smart Card Alliance estimates.
Want to know more about the transition and your new chip-equipped card? Here are more frequently asked questions to help you understand the changes.
Why are EMV cards more secure than traditional cards?
It’s that small, metallic square you’ll see on new cards. That’s a computer chip, and it’s what sets apart the new generation of cards.
The magnetic stripes on traditional credit and debit cards store contain unchanging data. Whoever accesses that data gains the sensitive card and cardholder information necessary to make purchases. That makes traditional cards prime targets for counterfeiters, who convert stolen card data to cash.
“If someone copies a mag stripe, they can easily replicate that data over and over again because it doesn’t change,” says Dave Witts, president of U.S. payment systems for Creditcall, a payment gateway and EMV software developer.
Unlike magnetic-stripe cards, every time an EMV card is used for payment, the card chip creates a unique transaction code that cannot be used again.
If a hacker stole the chip information from one specific point of sale, typical card duplication would never work “because the stolen transaction number created in that instance wouldn’t be usable again and the card would just get denied,” Witts says.
EMV technology will not prevent data breaches from occurring, but it will make it much harder for criminals to successfully profit from what they steal.
Experts hope it will help significantly reduce fraud in the U.S., which has doubled in the past seven years as criminals have shied away from countries that already have transitioned to EMV cards, Conroy says.
“The introduction of dynamic data is what makes EMV cards so effective at bringing down counterfeit card rates in other countries,” she says.
How do I use an EMV card to make a purchase?
Just like magnetic-stripe cards, EMV cards are processed for payment in two steps: card reading and transaction verification.
However, with EMV cards you no longer have to master a quick, fluid card swipe in the right direction. Chip cards are read in a different way.
“Instead of going to a register and swiping your card, you are going to do what is called ‘card dipping’ instead, which means inserting your card into a terminal slot and waiting for it to process,” Conroy says.
When an EMV card is dipped, data flows between the card chip and the issuing financial institution to verify the card’s legitimacy and create the unique transaction data. This process isn’t as quick as a magnetic-stripe swipe.
“It will take a tiny bit longer for that transmission of data to happen,” Witts says. “If a person just sticks the card in and pulls it out, the transaction will likely be denied. A little bit of patience will be involved.”
Is card dipping the only option?
Not necessarily. EMV cards can also support contactless card reading, also known as near field communication.
Instead of dipping or swiping, NFC-equipped cards are tapped against a terminal scanner that can pick up the card data from the embedded computer chip.
“Contactless transactions are more consumer-friendly because you just have to tap,” said Martin Ferenczi, president of Oberthur Technologies, the leading global EMV product and service provider. “Around the world, there is a move to make EMV cards dual-interface, which means contact and contactless. However, in the U.S., most financial instructions are issuing contact cards.”
Dual-interface cards and the equipment needed to scan them are expensive. Right now, the first step is to successfully integrate EMV cards into the U.S. shopping scene. Dual interface will arrive later, according to Ferenczi.
Will I still have to sign or enter a PIN for my card transaction?
Yes and no. You will have to do one of those verification methods, but it depends on the verification method tied to your EMV card, not if your card is debit or credit.
Chip-and-PIN cards operate just like the checking-account debit card you have been using for years.
Entering a PIN connects the payment terminal to the payment processor for real-time transaction verification and approval. However, many payment processors are not equipped with the technology needed to handle EMV chip-and-PIN credit transactions. So it is not likely you will have to memorize new PINs anytime soon, according to Conroy.
“There aren’t going to be many issuers requiring a PIN,” she says. “A vast majority will be issuing chip-and-signature cards, which aren’t all that different from how credit cards work now.”
As with a magnetic-stripe credit card, you sign on the point-of-sale terminal to take responsibility for the payment when making a chip-and-signature card transaction.
Once the transition to EMV is under way in the U.S., chip-and-PIN cards will be transitioned in. Again, it is one step at a time, according to Ferenczi.
“The card production demand today is really based on chip-and-signature cards,” he says. “It will probably take two to three years to fully convert to chip-and-PIN.”
Despite a slow transition overall, those who get chip-and-PIN cards will be able to use them right away.
“If a terminal doesn’t have the ability to accept a PIN, it will then step down to accepting a signature,” says Randy Vanderhoof, executive director of the Smart Card Alliance. “There will always be a secondary option.”
If fraud occurs after EMV cards are issued, who will be liable for the costs?
Today, if an in-store transaction is conducted using a counterfeit, stolen or otherwise compromised card, consumer losses from that transaction fall back on the payment processor or issuing bank, depending on the card’s terms and conditions.
After an Oct. 1, 2015, deadline created by major U.S. credit card issuers MasterCard, Visa, Discover and American Express, the liability for card-present fraud will shift to whichever party is the least EMV-compliant in a fraudulent transaction.
Consider the example of a financial institution that issues a chip card used at a merchant that has not changed its system to accept chip technology. This allows a counterfeit card to be successfully used.
“The cost of the fraud will fall back on the merchant,” Ferenczi says.
The major credit card issuers each have published detailed schedules about the upcoming shift in liability. The change is intended to help bring the entire payment industry on board with EMV by encouraging compliance to avoid liability costs.
Any parties not EMV-ready by October 2015 could face much higher costs in the event of a large data breach.
Automated fuel dispensers will have until 2017 to make the shift to EMV. Until then, they will follow existing fraud liability rulings.
So by Oct. 1, 2015, the transition to EMV technology will be complete?
Although the upcoming deadline is strong encouragement for all payment processing parties to become EMV-compliant as soon as possible, experts do not believe everyone will comply by that date.
“Don’t expect a big bang in October of 2015,” says Doug Johnson, vice president of risk management policy for the American Bankers Association. “It’s going to take a little time to adapt.”
Aite Group estimates that by the end of 2015, approximately 70 percent of credit cards and 41 percent of debit cards in the U.S. –1.1 billion cards total — will support EMV.
“We are the most fragmented and the largest market that has ever gone to the EMV standard,” Conroy says. “There’s going to be varied customer experiences over the first year, year-and-a-half of this transition.”
While many chip cards have already been issued, some people may have to wait longer than others before sent a new EMV card, according to Johnson.
“If consumers have cards that are expiring between now and October, those will likely be first in line to transition to chip cards,” he says. “Different companies will have different rollout strategies. Some will base their actions on card expiration dates; others will work to get chip cards into the consumer’s hands by the October liability deadline regardless,” says Johnson.
So far, the large majority of chip cards going into the hands of cardholders are coming from larger issuers like Bank of America and Chase, according to the Federal Reserve Bank of Chicago. The cost of this EMV transition is causing smaller banks to convert their cards more slowly.
EMV debit cards may be issued to consumers at an even slower pace due as banks retailers have to prep their software to accept those cards as well, according to Ferenczi.
“Very few point-of-sale systems can accept debit EMV in the U.S. right now and the upgrade specs were issued only late last year,” he said. “But I can tell you that the cards have been produced, they just aren’t in consumer hands right now. I predict the debit delay will catch up by the deadline.”
If I want to use my chip-card at a retailer that doesn’t support EMV technology yet, will it work?
Yes. The first round of EMV cards — many of which are already in consumers’ hands — will be equipped with both chip and magnetic-stripe functions so consumer spending is not disrupted and merchants can adjust.
If you find yourself at a point-of-sale terminal and are not sure whether to dip or swipe your card, have no fear. The terminal will walk you through the process.
“For example, if you enter a card into the chip reader slot but the reader isn’t activated yet, it will come up with an error and you’ll be prompted to swipe the card in order to use it,” Vanderhoof says.
“If a consumer tries to swipe a chip card instead of inserting it, an error will appear and they will be prompted to insert the card for chip processing instead,” Vanderhoof says.
If chip-card readers are not in place at a merchant at all, your EMV card can be read with a swipe, just like a traditional magnetic-stripe card.
“You can still conduct transactions, you just lose that extra level of chip security,” Johnson says.
Many large retailers, such as Walmart, Target and Costco, have upgraded their POS terminals and are activating them for chip card acceptance, but smaller businesses are lagging when it comes to upgrading their payment technology. A survey conducted in July 2015 found that less than half of small business owners (49 percent) who take card payments are aware of the upcoming EMV liability shift. Only 31 percent reported that their existing point-of-sale payment systems accept chip-equipped cards and another 34 percent said they will upgrade “at some point” after October.
Will I be able to use my EMV card when I travel outside the country?
Yes and no.
The U.S. is the last major market still using the magnetic-stripe card system. Many European countries moved to EMV technology years ago to combat high fraud rates. That shift has left many U.S. consumers who have magnetic-stripe cards looking for other forms of payment when they travel.
Since many foreign merchants are wary of magnetic-stripe cards, consumers who hold some type of chip card may run into fewer issues than those without one, according to Ferenczni.
“Just the existence of the chip will likely make European merchants more willing to accept transactions that they wouldn’t have likely accepted if a customer presented a mag-stripe card,” he says.
However, chip-and-PIN cards are the norm in most other countries that support EMV technology. So consumers with chip-and-signature cards may still find merchants who are unwilling or unable to process their card, even though it does have an embedded chip.
Unmanned payment kiosks in Europe — such as bike rental stations, train ticket stations and parking permit dispensers — may give U.S. travelers the most difficulty since most are set up to strictly accept chip-and-PIN card only, according to Ferenczi.
But despite any difficulties in the transition, Ferenczi says the change is a step in the right direction.
“Nobody likes to think that his or her card is being secretly used for other purposes,” he says. “So I think regardless, there is a level of comfort knowing that it will be far more difficult to counterfeit EMV cards.”
Online Banking is an extremely valuable tool in today’s fast paced world. Follow these tips and you can minimize the risks to your finances and bank safely online:
Create a strong password
Southwest Capital Bank requires a user-generated password in order to access online accounts make sure you choose one that is strong. The best way to achieve this is by making it long and a mix of upper and lower case letters, numbers, and special characters.
Always avoid using any common words or phrases and never create a password that contain your name, initials, or your date of birth. We recommend that you change your password every few months.
When setting up online banking, we ask you to provide answers to some standard security questions remember that the answer you give doesn’t have to be the real one. So you don’t have to answer “Thumper” to the name of your first pet – make it something else, as if it was a password. Use a password manager if you are concerned about how to remember everything!
Secure your computer and keep it up-to-date
Security software is essential these days, regardless of what you use your computer for.
As a minimum, make sure you have a firewall turned on and are running antivirus software. This will ensure you are protected from Trojans, keyloggers and other forms of malware that could be used to gain access to your financial data.
You’ll also want to keep your operating system and other software up-to-date to ensure that there are no security holes present.
Avoid clicking through emails
Southwest Capital Bank will never send you an email asking you to provide any of your login details. If you receive an email that appears to be from us that asks for such details then treat it with suspicion as it may well be a phishing attempt to trick you into handing your credentials over. It is always safer to access your online bank account by typing the address into your browser directly. While we may contact our customers by phone occasionally, we would never ask for passwords or PINs. If in doubt, do not be afraid to hang up and call us back via a telephone number that you have independently confirmed as being valid.
Access your accounts from a secure location
It’s always best practice to connect to your online banking using computers and networks you know and trust.
If you need to access your online banking from remote locations you might want to set up a VPN (Virtual Private Network) so that you can establish an encrypted connection to your home or work network and access your accounts from there.
Look for a small padlock icon somewhere on your browser and check the address bar – the URL of the site you are on should begin with ‘https’. Both act as confirmation that you are accessing your accounts over an encrypted connection.
Always log out when you are done
It is good practice to always log out of your online banking session when you have finished your business. This will lessen the chances of falling prey to session hijacking and cross-site scripting exploits.
You may also want to set up the extra precaution of private browsing on your computer or smart phone, and set your browser to clear its cache at the end of each session.
Set up account notifications
Southwest Capital Bank offers several options for customers to set up text or email notifications to alert them to certain activities on your account. For example, if a withdrawal matches or exceeds a specified amount or the account balance dips below a certain point then a message will be sent.
Such alerts could give quick notice of suspicious activity on your accounts.
Monitor your accounts regularly
It should go without saying that monitoring the your bank statement each month is good practice as any unauthorized transactions will be sure to appear there.
But why wait a whole month to discover a discrepancy? With Southwest Capital Banks online banking you have access 24/7 so take advantage of that and check your account on a regular basis. Look at every transaction since you last logged in and, if you spot any anomalies, contact us immediately.
|Paper (ex. Ordering Checks):||107000372|
|Electronic (ex. Direct Deposit/Automatic Payments):||107000372|
You can order checks for your account by visiting any one of our local branches, calling Customer Support or via online portal.
To order checks online:
Simply click on the "Check Reorder" link located at the bottom of our homepage.
First you will need to enroll.
- Click the Enroll button located on the Home page.
- Enter your new Southwest Capital Bank Username.
- Enter your new Southwest Capital Bank Password.
- Enter the Random code being displayed.
If you do not know your username or password, or if you are locked out, please contact customer service
- by emailing email@example.com
- or by calling 505-243-1890
- or toll free at 800-748-2406 during normal business hours.
The Federal Deposit Insurance Corporation's mission is to maintain the stability of and public confidence in the nation's financial system. You can find out about the FDIC's consumer outreach programs and publications that address the concerns of depositors and other customers of banks and savings associations by clicking here.