To review your Stripe integration to ensure compliance with Strong Customer Authentication (SCA) and PSD2 regulation:
Review recent objects in the Dashboard, specifically on the Payments page, to verify the integration is using PaymentIntents
or the new Stripe Checkout.
Review Stripe-related code to ensure everything is running on PaymentIntents
or Checkout.
Check logs page for payment patterns. Charges created using the /v1/charges
endpoint are not SCA ready.
If some of your code still runs on /v1/tokens
and /v1/charges
, you might not be SCA-ready and should update that code to use PaymentIntents
or Checkout.
Tokenization and secure collection of payment details falls under PCI compliance and is not a focus for SCA.
One-time Payments with the Payment Intents API (Stripe Docs)
Creating Payment Intents (Stripe Docs)
Responsibility for Strong Customer Authentication (SCA)-Related Integration Changes