# Countries in the European Economic Area (EEA) impacted by Strong Customer Authentication (SCA) regulation

As of 17 August 2020, the following countries have been considered to be part of the European Economic Area (EEA) and therefore fall under the scope of the Strong Customer Authentication (SCA) regulatory requirement:
* Austria = AT
* Belgium = BE
* Bulgaria = BG
* Croatia = HR
* Cyprus = CY
* Czech Republic = CZ
* Denmark = DK
* Estonia = EE
* Finland = FI
* France = FR
* Germany = DE
* Gibraltar = GI
* Greece = GR
* Hungary = HU
* Iceland = IS
* Ireland = IE
* Italy = IT
* Latvia = LV
* Liechtenstein = LI
* Lithuania = LT
* Luxembourg = LU
* Malta = MT
* Netherlands = NL
* Norway = NO
* Poland = PL
* Portugal = PT
* Romania = RO
* Slovakia = SK
* Slovenia = SI
* Spain = ES
* Sweden = SE
* Switzerland = CH*
* United Kingdom = GB*
\*_see Additional information below_
## Additional information
* Although the UK may not be a part of the EEA in the future, they intend to implement or follow the SCA regulatory requirement.
* Although Switzerland is outside of the European Economic Area (EEA), Swiss merchants will need to meet SCA requirements because Stripe's acquiring bank for Swiss merchants is located in the UK.
* [Strong Customer Authentication (SCA) enforcement date](/questions/strong-customer-authentication-sca-enforcement-date)