Archive for the ‘Best Practices’ Category

ROSCA – Federal Law Changes for Subscription Programs

Tuesday, January 18th, 2011

The President signed the “Restore Online Shoppers’ Confidence Act” at the beginning of this year. The act was primarily a response to the Rockefeller hearings into poor online marketing practices around passing data from a primary merchant to a secondary merchant.  Rumor has it that the wife of the counsel to the Senate Commerce committee had her card number shared and opted into a program of one of the major continuity marketers and that prompted these hearings.

Two major consequences of bill S 3386 include eliminating the charging of a post transaction sign up without disclosure or without getting the card data directly from the end user, and banning the passing of card data to a third party after the transaction by a merchant. These so-called “Data-Pass” methods of co-marketing and co-selling were conducted only by a limited set of merchants.

However, this bill will impact almost all subscription merchants. The bill requires that any online subscription merchant – not just those working with continuity marketing partners – observe the following:

  • Clearly disclose all material terms of the subscription;
  • Obtain consent before charging an account of any type; and
  • Provide a simple way to stop ongoing charges.

The FTC has provided some initial comments. Our interpretation is that few merchants who are following best practices will need to make any changes. However, a basic review of your sign up flows is warranted to make sure that both your team and your counsel are comfortable that you are being clear and that you are getting consent.

There are two red flags to watch. The law requires that a merchant “obtains a consumer’s express informed consent before charging the consumer’s credit card, debit card, bank account, or other financial account for products or services through such transaction.”  The key is understanding what “express informed consent” means in practice. The reason for that is the second red flag. Not only did the law authorize the FTC to enforce the law, but it also specifically allows the attorney generals of all 50 states to enforce it as well.

We’re of the opinion that if it’s clear to a lay person that she is signing up for an ongoing subscription at an explicitly stated price, and that the timing of her next payment is well known to her before you perform the initial transaction, your buy process should be fine. In its settlement with AOL in 2003, the FTC used the term “express informed consent” and said, “[for] the subscriber’s consent to be deemed ‘informed,’ the respondents must clearly and conspicuously disclose, before the subscriber consents, certain specified information, including a description of the pricing plan to which the subscriber is agreeing.” The agreement with AOL which includes the specified information is available from the FTC’s AOL action microsite.

One important component of informed consent is the best practice that a confirmation of the initial sign up is sent promptly after subscribing. Though it isn’t specifically called out, it would serve merchants well to include the terms that the end user consented to in the welcome email with a pointer to the customer self service portal for opting out.

On behalf of our clients and readers, we will continue to keep an eye on the definition of “express informed consent” to see if anything more is asked for by the various regulators.

Gene HoffmanTags:
Posted by Gene Hoffman in Best Practices, CEO Blog, Industry News | No Comments »

Payment Ecosystem Myths – Part 3

Wednesday, January 5th, 2011

Happy New Year!  Last month we posted Parts 1 and 2 of the Payment Ecosystem Myths series in which we highlighted topics ranging from being the “Merchant of Record” to the customer buying experience.  We have a few more myths to slay in this latest installment…

“There is no way to keep my chargeback rate below the 1% limit imposed by Visa” – This is a myth from companies that have a naturally high chargeback rate, such as gaming and dating, and that haven’t been able to control their chargeback rates in the past. This is simply not true and is a symptom that the company has limited resources and an incomplete knowledge of the possibilities afforded today by technology. As a reference point, we consistently help our clients stay under 1%.

“I don’t have a chargeback problem, our rate is at 0.2%” – On the flip side, many merchants have taken the opposite approach and dedicated resources to eliminating chargebacks altogether. This approach is also flawed for digital goods merchants. For a company with a cost of goods sold that is nearly zero, it makes no sense to turn potentially good customers away — the “false positive” problem of unwittingly turning away customers who could generate significant long-term value.  The cost of turning a good customer away — their lifetime value — often far outweighs the cost of a chargeback.

“Customers don’t like  _____________ (virtual goods, virtual currency, automatically recurring subscriptions).” – Companies regularly make decisions about their business models and customer experience based on incomplete knowledge or stories gleaned from bad past experiences. As many have advocated, testing is the best way to find what really works for your community.  The examples given in the title are encountered often and deserve special mention.

  • Virtual Goods / Virtual CurrencyVirtual goods are a proven method to engage and monetize communities and the market is estimated to be worth several billion dollars, and virtual currency is the best method to date of enabling virtual goods purchases. Virtual currencies are ideal for many digital businesses and should be considered as an option for online monetization.
  • Automatically Recurring Subscriptions – In the same vein, many companies are afraid to offer subscriptions. Subscriptions come with their own set of complications (managing them requires additional thought and solutions), but they are the best method for monetizing digital goods and content that is available. Subscriptions work very well standalone, or in conjunction with a virtual goods business and create a fantastic and predictable revenue stream. Some companies are timid about making their subscriptions renew automatically, but the most common feedback from customers is that they are thankful to not bear the burden of managing their payment.

This list, spread over three posts, spreads some of the knowledge we’ve learned while helping digital goods merchants become successful. We’re always happy to chat with you further about these or other issues — just let us know if you have something else that you’ve always wondered about digital goods or payments.

Sanjay SarathyTags: , , , ,
Posted by Sanjay Sarathy in Best Practices, Marketing Fury, Payments 101.201.301 | No Comments »

Payment Ecosystem Myths – Part 2

Wednesday, December 8th, 2010

In part 1 of this topic, we discussed common myths around chargebacks and the difficulties of being the merchant of record.  Here are some additional myths that we’d like to refute:

“The more payment methods, the better” – This revolves around the “bright, shiny object” theory. Companies are easily swayed by new payment methods and promises of better monetization, leading to a plethora of options available for customers. Studies have shown that three payment methods are optimal for most online purchases. More can be provided, but not on the initial purchase page; otherwise they’ll just confuse your customers.

Another way of looking at payment methods is to look at the margins, the customer dispute process, and the potential for cannibalization.  The most common payment methods in the US are still credit and debit cards. You’ll obviously need to modify this thinking based on the geographical focus for your service and the demographics of your audience, but implementing 10 payment methods is rarely profitable.

“Everyone pays with PayPal, that’s all I need” – PayPal is a very ubiquitous payment method, especially for digital goods. However, offering only PayPal for payments excludes a much broader market of potential buyers. The customer purchasing process for credit cards is much smoother outside of the PayPal flow. Your users should be incentivized to spread the word about your product, not sign-up for PayPal.

“The customer payment experience is less critical than new product features” – The customer’s purchasing experience is incredibly important and companies ignore it at their own peril. Companies like Zynga and Netflix are hugely successful and known for their optimized and customer-centric purchasing process as well as their products. Dedicated customers will find a way to pay despite the experience, but the broader population of customers will abandon purchases if the process seems too difficult or unsecured.

“I don’t need to worry about fraud” – Fraud is a reality for any company selling services and content online, especially digital goods. Companies that ignore fraud will soon find themselves in severe trouble with the card networks (and their payment processors).  The path to online success is littered with the stories of companies that were driven out of business by ignoring the fraud risk.

Read the final set of myths in part 3 of this series.

Sanjay SarathyTags: , , , ,
Posted by Sanjay Sarathy in Best Practices, Marketing Fury | 1 Comment »

Subscription Billing’s Opposing Forces

Monday, December 6th, 2010

When going to market using subscription billing there are three diametrically opposed forces fighting you, the person who owns the active subscriber count as you try to acquire and retain the most customers possible. These forces are PCI, Account Updater, and customer data ownership. I want to focus on the balancing act between the first two.

These days, one of the primary mechanisms (other than using something like HOA on CashBox) to lowering the compliance burden and the actual risk of card disclosures is to use tokenization of those cards from your merchant acquirer, or gateway. Tokenization is simply an infrastructure at, for example, your gateway that will take the card you obtain from your customer on your checkout page, encrypt it for storage in their database, and hand you back a ‘handle’ to that card for future use. It doesn’t remove much of the compliance burden as credit cards still flow through your webserver and thus you still have to fully comply with PCI, but it does lower the risks of actual disclosure and shrinks the scope of your compliance efforts.

A surprising number of merchants are unaware of or don’t implement Account Updater, which is available from Visa and Mastercard in North America and some of Europe (Visa’s overview.) Account Updater functions in two ways. The primary way will automatically send card changes for customers that you’ve billed in the last six months to you so that you can seamlessly update their card before a billing event. The alternative way is for you to either proactively or after a billing failure ask if there has been an update on any given card. We’ve found that the absolute best result is to run Account Updater in both modes and spend time optimizing the latter mode for specific billing plan frequencies.

Unfortunately, the requirements of Account Updater and its impact on customer retention are at odds with the requirements of tokenization in support of PCI. Most of the tokenization projects at the various vendors do not take the product requirements of Account Updater into consideration. How does one query the Account Updater service for the new card that may have replaced the one that failed when all you have is a handle to the old card? Unless your vendor has specifically added this to their tokenization implementation you are hostage to their product roadmap to save some significant percentage of subscriber churn. When you recall that few vendors are focused on the challenges of digital content and services with subscriptions, and instead get the bulk of their revenue from one time purchase physical goods merchants it makes sense that these tokenization projects have usually not addressed Account Updater functionality.

At Vindicia, we’ve built CashBox to both take you completely out of the PCI compliance burden with HOA and to directly and richly implement Account Updater with our merchant acquirer partners. We’ve also made the commitment to you that your customer data is yours should you want to move on. Once you experience the revenue increase we deliver through increased customer retention, we doubt you will. But that commitment is there to help end the tension between customer data ownership and tokenization as well – which is something I’ll touch on in a later post.

Gene HoffmanTags: , , , , , , , , , , , , , ,
Posted by Gene Hoffman in Best Practices, CEO Blog | 1 Comment »
  1. Pages:
  3. 1
  4. 2
  5. 3
  6. 4
  7. 5
  8. 6
  9. 7