Skip to content
Sign in
An image of the Stripe logo
Create account
Sign in
Home
Payments
Finance automation
Banking as a service
Developer tools
No-code
All products
Home
Payments
Finance automation
Home
Payments
Finance automation
Banking as a service
Developer tools
Overview
Online payments
In-person payments
Multiparty payments
After the payment
Add payment methods
Fraud detection
    Overview
    Risk evaluation
    Risk settings
    Reviews
    Lists
    Rules
    Radar Session
    Testing
    Integration
    Disputes and fraud
      How disputes work
      Responding to disputes
      Dispute withdrawals
      Fraud prevention
      Measuring disputes
      Disputes on Connect
      Monitoring programs
        FAQs
      High risk merchant lists
    Analytics
Payment Links
Stripe Checkout UI
Stripe Elements UI
Financial Connections
Crypto
Identity
Climate
About the APIs
Regulation support
Implementation guides
Testing
Radar
·
HomePaymentsFraud detectionDisputes and fraud

Dispute and fraud card monitoring programs

Learn about the monitoring programs operated by the card networks, and what you should do if you're placed into one.

Preventing disputes and fraud

To learn more about the steps you can take to prevent disputes and fraud, refer to our prevention guide.

As part of your financial obligations to the card networks, you must ensure that disputes (also called chargebacks) and fraud are kept at acceptable levels. If these exceed the thresholds dictated by each network (for example, Visa or Mastercard), they place you into one of their monitoring programs. As part of a program, you can incur monthly fines and additional fees until you reduce your dispute or fraud levels in a sustained way.

Stripe can work with you on a remediation plan to reduce the levels of disputes or fraud related to your account. We also communicate directly with the networks and relay information on a monthly basis. Download our remediation template to get started.

While monitoring programs are comparatively rare, you should take them seriously. If you’re identified into one, you must take immediate action to address the situation. Failure to comply with the requirements of a program within the specified time period (what the networks call a timeline) can result in the network refusing to process further payments to you using their cards. Your entire ability to accept credit card payments could be at risk.

Visa monitoring programs

The Visa Fraud Monitoring Program (VFMP) and Visa Dispute Monitoring Program (VDMP) apply to businesses in all of our supported countries. The Visa Fraud Monitoring Program-3DS (VFMP-3DS) is a third program that only applies to businesses based in the United States. The timelines used by either program depend on the country and the threshold—Standard or Excessive—that’s been exceeded.

Each timeline spans a 12-month period and determines what actions to take on a monthly basis. At the beginning of each month Visa reviews your previous month’s activity to see if it has exceeded any of their established thresholds. If so, we’ll reach out and discuss this with you.

For users in the US, Europe, Canada, Australia, and Brazil, domestic and cross-border activity counts towards their monthly totals. For users outside of those regions, only cross-border activity is counted.

Early warning notifications

Visa operates an early warning system that warns users—through Stripe—who are at risk of being placed into a monitoring program. Users who meet the early warning threshold aren’t immediately placed into the program. Instead, they’re given the opportunity to reduce the level of fraud on their account to avoid placement.

Warning

Early warning notifications might not occur if your account immediately matches or exceeds the Standard or Excessive thresholds of either program.

Remediation

Visa removes you from its programs when your level of disputes or fraud drops below the Standard threshold for 3 consecutive months. They consider these 3 months to be the “tracking” period. If you breach the Standard or Excessive threshold without completing the tracking period, your original timeline resumes (a new timeline doesn’t start).

Monitoring your dispute (chargeback) and fraud levels accurately is important. For example, Visa counts disputes regardless of whether the dispute was hidden due to a refund or liability shift, and regardless of whether you won the dispute. Disputes and fraud are counted by the date the dispute or early fraud warning notification arrives, not when the payment was made.

As part of the remediation process, you might be required to provide Stripe with details on the steps you’re taking and your timeline for implementation.

VDMP: Visa Dispute Monitoring Program

VDMP applies to users with an unusually high level of disputed payments on their account. Users are placed into this program if they meet or exceed the thresholds for both of the following criteria:

  • The total number of payments that have been disputed (dispute count)
  • The ratio of disputed payments to all payments (dispute rate)
Dispute Count Dispute Rate Fines
750.65%None. You have the opportunity to take action that reduces your dispute level before it exceeds a threshold where fines are incurred.

Early warning notifications may not occur if your account immediately matches or exceeds the Standard or Excessive thresholds of VDMP.

VFMP: Visa Fraud Monitoring Program

VFMP applies to users with an excessive level of fraud on their account, which Visa calculates using early fraud warning data sourced from their “TC40” reporting. Users are placed into this program if they meet or exceed the thresholds for both of the following criteria:

  • The total volume in US dollars of Visa payments that are fraudulent (Fraud Volume)
  • The ratio of the volume in fraudulent Visa payments to all payments (Fraud Rate)
Fraud Volume Fraud Rate Fines
50,000 USD0.65%None. You can take action that reduces your fraud level before it incurs penalties.

Early warning notifications may not occur if your account immediately matches or exceeds the Standard or Excessive thresholds of VFMP.

VFMP: Visa Fraud Monitoring Program-3DS (US-only)

VFMP-3DS applies to US users with an excessive level of domestic 3D-Secure fraud on their account. Users are placed into this program if they meet or exceed the thresholds for both of the following criteria:

  • The total volume in US dollars of Visa 3DS domestic payments that are fraudulent (fraud volume)
  • The ratio of the volume in fraudulent payments to 3DS domestic payments (fraud rate)
Fraud Volume Fraud Rate Fines
50,000 USD0.50%None. You have the opportunity to take action that reduces your fraud level before it exceeds a threshold where penalties are incurred.

Mastercard monitoring programs

Mastercard’s Excessive Chargeback Program (ECP) consists of two levels: Excessive Chargeback Merchant (ECM) and High Excessive Chargeback Merchant (HECM), and it applies to users in all supported countries. The Excessive Fraud Merchant (EFM) Compliance Program is a separate program that applies to users in all supported countries besides Germany, India, and Switzerland.

If your account exceeds program thresholds, Mastercard places you into this program and Stripe notifies you. If you exceed both EFM and ECP thresholds, you’re placed in EFM but not ECP. For example, you exceed EFM and ECP thresholds in March and April but only exceed ECP thresholds in May. In April, you’d be placed in month 2 of EFM and fined accordingly. In May, you’d be placed in month 3 of ECP despite the EFM identifications taking precedent in prior months.

Remediation

You exit ECM as soon as your level of disputes drops below the ECM threshold for 3 consecutive months. If you’re in HECM and your dispute level drops but still exceeds ECM thresholds (between 1.5-2.99%), you move to that program. To be removed from EFM, you need to avoid at least one of the conditions for 3 consecutive months.

Monitoring your dispute (chargeback) and fraud levels accurately is important. For example, Mastercard counts disputes regardless of whether the dispute was hidden due to a refund or liability shift, and regardless of whether you won the dispute. Disputes and fraud are counted by the date the dispute or early fraud warning notification arrives, not when the payment was made.

As part of the remediation process, you must provide Stripe with details on the steps you’re taking to prevent disputes and your timeline for implementation.

ECP: Mastercard Excessive Chargeback Program

Users are placed into ECP if they meet or exceed the thresholds for both of the following criteria:

  • The total number of Mastercard payments that have been disputed (chargeback count)
  • The chargeback-to-transaction ratio (chargeback rate)

The chargeback rate is a ratio of disputed payments to all payments. It’s calculated as the number of Mastercard disputes received in a calendar month compared to the total number of Mastercard payments from the preceding month. You must exceed both thresholds to qualify for ECM.

ECM: Mastercard Excessive Chargeback Merchant

Dispute Count Chargeback Rate Fines
100-2991.5-2.99%Fines begin in month two and continue at increasing rates in subsequent months. See the timeline below for details.
Number of months above ECM thresholds Fine Issuer recovery assessment
10 USDNo
21,000 USDNo
32,000 USDNo
4-65,000 USDYes
7-1125,000 USDYes
12-1850,000 USDYes
19+100,000 USDYes

Issuer recovery assessment applies an additional 5 USD per chargeback fee for each chargeback over 300 chargebacks. For example, a merchant identified in month 4 of ECM with 400 disputes will be assessed a 5,500 USD fine (5,000 USD + (400-300) x 5 USD).

HECM: Mastercard High Excessive Chargeback Merchant

Dispute Count Chargeback Rate Fines
300+3%Fines begin in month two and continue at increasing rates in subsequent months. See the timeline below for details.
Number of months above ECM thresholds Fine Issuer recovery assessment
10 USDNo
21,000 USDNo
32,000 USDNo
4-610,000 USDYes
7-1150,000 USDYes
12-18100,000 USDYes
19+200,000 USDYes

Mastercard communicates total fine amounts to merchants through Stripe.

EFM: Mastercard Excessive Fraud Merchant Compliance Program

Users are placed into EFM if they meet or exceed the thresholds for all of the following criteria:

  • Number of e-commerce Mastercard payments
  • The total volume in US dollars of Mastercard payments that result in fraudulent chargebacks (net fraud volume) calculated by dispute reason code (reason code 4837 and 4863)
  • The fraud-count-to-transaction ratio (fraud chargeback rate)
  • The ratio of 3DS Mastercard payments to all Mastercard payments

The fraud chargeback rate uses a similar calculation to the chargeback rate found in ECM or HECM. The only difference is that the fraud chargeback rate is calculated using only fraudulent chargebacks.

EFM applies to users who meet all of the following conditions:

  • Minimum of 1,000 e-commerce Mastercard payments
  • Net fraud volume is greater than 50,000 USD
  • Fraud chargeback rate is greater than 0.50%
  • Total 3DS Mastercard payment count is less than:
    • 10% of total Mastercard payment count (non regulated countries)
    • 50% of total Mastercard payment count (regulated countries)
Number of months above ECM thresholds Fine
10 USD
2500 USD
31,000 USD
4-65,000 USD
7-1125,000 USD
12-1850,000 USD
19+100,000 USD

You can request that Mastercard suspend an assessed fine once during an open case, meaning that the request should happen when you’re confident you’ll be below thresholds in the next 3 consecutive months. If you request a suspension of fines, avoid identification in the next 2 months, but then exceed the thresholds in the following month, fine assessments would continue until you exit the program.

Was this page helpful?
Need help? Contact Support.
Watch our developer tutorials.
Check out our product changelog.
Questions? Contact Sales.
Powered by Markdoc
You can unsubscribe at any time. Read our privacy policy.
On this page
Visa monitoring programs
Mastercard monitoring programs
Stripe Shell
Test mode
Welcome to the Stripe Shell! Stripe Shell is a browser-based shell with the Stripe CLI pre-installed. Login to your Stripe account and press Control + Backtick on your keyboard to start managing your Stripe resources in test mode. - View supported Stripe commands: - Find webhook events: - Listen for webhook events: - Call Stripe APIs: stripe [api resource] [operation] (e.g. )
The Stripe Shell is best experienced on desktop.
$