Authorization

👍

Best Practice

Recipient card account holder address, card expiration date, and CVV2 are not required to be collected to initiate OCTs. Effective 1 April 2021, issuers must not decline OCTs solely due to the absence of expiration date or CVV2. If the expiration date is included, it must be accurate and not expired. From a risk management standpoint it is best practice to validate AVS and CVV2, and require that the cardholder provide an accurate expiration date.

Response Code

Description

PAN Eligible for Retry

Best Practices

05 - Do Not Honor

Generic issuer response for a variety of conditions

Yes

• Report systemic issues/high percentage of declines for a BIN
• Limit retries

14 - Invalid Account Number

Invalid account number

No

• $0 Authorization
• Mod-10 Check
• Account Verification

41 - Pick up Card – Lost

Cardholder reported card lost

No

• Account Verification

43 - Pick up Card – Cardholder reported card stolen

Cardholder reported card stolen

No

• Account Verification

54 - Expired Card/No Expiry Date

Expired card or expiration date missing

No

• Account Verification

57 - Transaction Not Permitted– Restriction at BIN level to block specific transaction type

Restricted BIN

No

• Account Verification
• Report systemic issues/high percentage of declines for a BIN

61 - Over Activity Amount Limit

Exceeds velocity limits

Yes

• Avoid resubmitting transactions that may exceed issuer transaction and velocity thresholds that caused the initial decline

62 - Restricted Card

Restricted card

No

• Account Verification

65 - Over Activity Count Limit

Exceeds velocity limits

Yes

• Avoid resubmitting transactions that may exceed issuer transaction and velocity thresholds that caused the initial decline

91 - Issuer/Switch Inoperative

Issuer host system down for maintenance or connectivity to issuer is lost

Yes

• Retry when host or network connectivity is resolved


Did this page help you?