Title Page Chase Paymentech Solutions Direct Debit Services Using the SCMP API September 2015 CyberSource Corporation HQ | P.O. Box 8999 | San Francisco, CA 94128-8999 | Phone: 800-530-9095 CyberSource Contact Information For general information about our company, products, and services, go to http://www.cybersource.com. For sales questions about any CyberSource Service, email [email protected] or call 650-432-7350 or 888-330-2300 (toll free in the United States). For support information about any CyberSource Service, visit the Support Center at http://www.cybersource.com/support. Copyright © 2015 CyberSource Corporation. All rights reserved. CyberSource Corporation ("CyberSource") furnishes this document and the software described in this document under the applicable agreement between the reader of this document ("You") and CyberSource ("Agreement"). You may use this document and/or software only in accordance with the terms of the Agreement. Except as expressly set forth in the Agreement, the information contained in this document is subject to change without notice and therefore should not be interpreted in any way as a guarantee or warranty by CyberSource. CyberSource assumes no responsibility or liability for any errors that may appear in this document. The copyrighted software that accompanies this document is licensed to You for use only in strict accordance with the Agreement. You should read the Agreement carefully before using the software. Except as permitted by the Agreement, You may not reproduce any part of this document, store this document in a retrieval system, or transmit this document, in any form or by any means, electronic, mechanical, recording, or otherwise, without the prior written consent of CyberSource. Restricted Rights Legends For Government or defense agencies. Use, duplication, or disclosure by the Government or defense agencies is subject to restrictions as set forth the Rights in Technical Data and Computer Software clause at DFARS 252.227-7013 and in similar clauses in the FAR and NASA FAR Supplement. For civilian agencies. Use, reproduction, or disclosure is subject to restrictions set forth in subparagraphs (a) through (d) of the Commercial Computer Software Restricted Rights clause at 52.227-19 and the limitations set forth in CyberSource Corporation's standard commercial agreement for this software. Unpublished rights reserved under the copyright laws of the United States. Trademarks CyberSource, The Power of Payment, CyberSource Payment Manager, CyberSource Risk Manager, CyberSource Decision Manager, CyberSource Connect, Authorize.Net, and eCheck.net are trademarks and/or service marks of CyberSource Corporation. All other brands and product names are trademarks or registered trademarks of their respective owners. 2 Contents CONTENTS Recent Revisions to This Document 5 About This Guide 6 Audience and Purpose 6 Conventions 6 Note and Important Statements 6 Text and Command Conventions 7 Related Documents 7 Customer Support 7 Chapter 1 Introduction to the Direct Debit Services 8 Terminology 8 Transaction Types 9 SEPA Direct Debit Services 9 UK Direct Debits 10 Supported Countries 10 Transaction Endpoints 11 Testing Responses 11 Reporting 11 Chapter 2 Requesting Direct Debit Services 12 SEPA Direct Debits 12 Standalone Direct Debit Services 12 Direct Debit Validation 12 Direct Debit 14 Direct Debit Refund 15 Follow-On Direct Debit Services 17 Direct Debit 17 Direct Debit Refund 18 Direct Debit Void 19 Direct Debit Refund Void 20 Chase Paymentech Solutions Direct Debit Services Using the SCMP API | September 2015 3 Contents UK Domestic Direct Debits (BACS) 22 Direct Debit Mandate Lodgement 22 Direct Debit 23 Appendix A SCMP API Fields 25 Formatting Restrictions 25 Data Type Definitions 25 Request Fields 26 Offer-Level Fields 34 Reply Fields 36 Reply Flags 40 Appendix B Product Codes 41 Chase Paymentech Solutions Direct Debit Services Using the SCMP API | September 2015 4 REVISIONS Recent Revisions to This Document Release Changes September 2015 Added the “Terminology” section (see page 8). Added the “Transaction Types” section (see page 9). Updated the “Supported Countries” section (see page 10). Added the “Transaction Endpoints” section (see page 11). Restructured the document to include SEPA direct debit services and UK direct debit services: Added examples for SEPA direct debit services (see page 12). Added examples for UK direct debit services (see page 22). August 2015 Added the “Direct Debit Mandate” section. Updated the direct_debit_recurring_type request-level field. See page 30. Removed the prenote_transaction request-level field for standalone direct debit with the BBAN requests. May 2015 Added the prenote_transaction request-level field (see page 26). September 2014 Updated the descriptions of the following request fields: bank_code (see page 27) branch_code (see page 29) August 2014 Added specific U.K. references. Updated the bill_address1 request field. See page 28. July 2014 Added the “Reporting” section. See page 11. Chase Paymentech Solutions Direct Debit Services Using the SCMP API | September 2015 5 About This Guide ABOUT GUIDE Audience and Purpose This guide is written for merchants who want to offer the Paymentech Direct Debit services to customers. This guide describes tasks a merchant must complete in order to process direct debit validate requests, direct debit transactions, and direct debit refund transactions. Conventions Note and Important Statements A Note contains helpful suggestions or references to material not contained in the document. Note An Important statement contains information essential to successfully completing a task or learning a concept. Important Chase Paymentech Solutions Direct Debit Services Using the SCMP API | September 2015 6 About This Guide Text and Command Conventions Convention Usage bold Field and service names in text; for example: Include the customer_firstname field. italic Filenames and pathnames. For example: Add the filter definition and mapping to your web.xml file. Related Documents Getting Started with CyberSource Advanced for the SCMP API (PDF | HTML) SCMP API Documentation and Downloads page. Refer to the Support Center for complete CyberSource technical documentation: http://www.cybersource.com/support_center/support_documentation Customer Support For support information about any CyberSource service, visit the Support Center: http://www.cybersource.com/support Chase Paymentech Solutions Direct Debit Services Using the SCMP API | September 2015 7 CHAPTER Introduction to the Direct Debit Services 1 Terminology Table 1 Terminology Term Description AUDDIS Automated Direct Debit Instruction Service. BACS Bankers’ Automated Clearing Services. See "UK Domestic Direct Debits (BACS)," page 22. BBAN Basic Bank Account Number. This can vary by country and can include up to four parts: bank account number bank code branch code check digit BIC Business Identifier Code. EDD European Direct Debit. IBAN International Bank Account Number. This number consists of three parts: country code check digits basic bank account number (BBAN) If you include the IBAN in direct debit requests, CyberSource recommends that you also include the SWIFT code. SEPA Single Euro Payments Area. See "SEPA Direct Debits," page 12. SWIFT Society for Worldwide InterBank Financial Telecommunication. Chase Paymentech Solutions Direct Debit Services Using the SCMP API | September 2015 8 Chapter 1 Introduction to the Direct Debit Services Transaction Types SEPA Direct Debit Services Table 2 SEPA Direct Debit Services Direct Debit Service Description Direct Debit Validation Chase Paymentech Solutions validates the customer’s IBAN or BBAN information. Direct debit validation does not include negative files, availability of funds, or account status (see page 12). Direct Debit CyberSource provides two types of SEPA direct debits: Standalone direct debit—You include all the required IBAN or BBAN information in the request (see page 12). Follow-on direct debit—The direct debit is linked to a previous direct debit validation request. A validation can have more than one follow-on direct debit. A follow-on direct debit must occur within 60 days of the associated direct debit validation. After 60 days, you must use a standalone direct debit (see page 17). Direct Debit Refund CyberSource provides two types of SEPA direct debit refunds: Standalone direct debit refund—You include all the required IBAN or BBAN information in the request (see page 15). Follow-on direct debit refund—The refund is linked to a previous direct debit. A direct debit can have more than one follow-on refund. A follow-on refund must occur within 60 days of the associated direct debit. After 60 days, you must use a standalone refund (see page 18). Note CyberSource does not prevent you from requesting a refund for an amount that exceeds the amount of the associated direct debit. It is your responsibility to keep track of the amounts you submit in your transaction requests. Void CyberSource provides follow-on direct debit voids—The void is linked to a previous direct debit or direct debit refund. See page 19. Chase Paymentech Solutions Direct Debit Services Using the SCMP API | September 2015 9 Chapter 1 Introduction to the Direct Debit Services UK Direct Debits Table 3 UK Direct Debit Services Direct Debit Service Description Direct Debit Mandate Based on the BACS (Bankers’ Automated Clearing Services) Automated Direct Debit Instruction Service (AUDDIS), U.K. merchants