Strong Customer Authentication (SCA) allows for a few specific types of payments to be exempted from ongoing authentication requirements:
This exemption means that only the first charge of a fixed amount, fixed interval subscription for your customer would need to go through 3D Secure. If the amount changes, or the charge is outside the regular interval (e.g. a proration or an upgrade) it will likely need to go through 3D Secure again.
This exemption would apply to delayed payments, variable amount subscriptions, or bills for add-ons. In this flow, the first charge would go through 3D Secure. After that, you would be responsible for collecting a mandate that specifies that you are allowed to charge that specific customer, up to a certain amount.
Industry requirements for how merchant-initiated transactions will work in practice are still being finalized. Stripe Billing will automatically apply this exemption and is working on our solution now. Sign up to be notified as soon as this use case is supported.
Stripe Billing requests these exemptions for your recurring subscriptions automatically. The cardholder’s bank will ultimately decide whether to approve the exemption or whether authentication is still necessary. If the exemption is rejected, Stripe will automatically reissue your customer the authentication request.
Exemptions Guide (Stripe Docs)
Stripe Billing Implementation Guide for New Integrations (Stripe Docs)
Billing Migration Guide for Existing Integrations (Stripe Docs)