MediaNama’s Shashidhar KJ published an article earlier today on the site titled, “How recurring payments are finally working in India”. You’d think the article would shed some light on how this was being made possible, but instead, we only get this:
While performing a recurring billing transaction, the customer has to give a consent before making the payment that they authorize the merchant to charge the card as per the subscription plan. The first transaction that is processed folllows two-factor authentication. The 1st transactions is processed with a 2FA
That’s right, the last two sentences mean the same thing.
Moving on, we get this:
CCAvenue will not store the 3D secure password for future recurring payments, and for subsequent payments, the merchant (Business Standard in this case) will send a request to CCAvenue, which will pass the request to the bank in a batch or API, for processing in the back-end.
These payments are processed through standing instructions left with the bank. We were unable to find an RBI circular clarifying this.We have written to CCAvenue and the RBI to clarify this and will update once we hear from them.
So how are recurring payments finally working in India?
— They are processed without 2FA, except for the first one (DUH!)
— The bank processes the transactions after a request from the merchant via the payment gateway. (DUH!)
— MediaNama couldn’t find an RBI circular clarifying this.