Home > Glossary > What is a Credit Card EMV?

What is a Credit Card EMV?

EMV has become the standard used for chip-enabled payment cards, and it’s made to help protect merchants from those expensive fraud-related chargebacks. Customers insert or tap their chip cards at your terminal, and you automatically get protection from liability if that transaction turns out to be fraudulent.

This protection wasn’t always available, and plenty of business owners learned the hard way just how expensive fraudulent transactions can be before EMV technology came around.

The way EMV actually works is easy and brilliant – each time that a customer uses their chip card at your business, the system gives you a one-of-a-kind transaction code that can be used only once. This one-time code makes it nearly impossible for criminals to create counterfeit cards that would actually work at your store. Before chip cards became common, fraudsters could just copy magnetic-stripe data and create fake cards that looked just like the real card to your payment system.

Since October 2015, there’s been a big liability change that has completely changed who has to pay for fraudulent transactions. Without an EMV terminal, if a customer uses a counterfeit chip card at your business, you’ll be responsible for that entire loss. The bank won’t cover it anymore. But accepting chip cards means that the liability moves back to the card issuer, where it belongs.

It’s made a difference for merchants who’ve taken the time to upgrade their terminals. They don’t have to eat the cost of fraudulent purchases anymore, and they’re now protected as long as they follow the right steps and make sure their systems stay up to date.

How It Works

When a customer slides their card into your terminal, the EMV chip actually starts to talk with your payment system, and the whole process takes a few seconds longer than the old swipe way because there’s actual communication that happens between the two devices. The chip sends your terminal the encrypted card information, and your terminal sends the transaction info right back to the chip.

Your terminal then contacts the card company to make sure everything looks okay on their end. The card company confirms that the card is valid and has enough available funds to cover the sale. EMV technology shows its worth when it’s compared to old magnetic stripe cards right here. The chip actually generates a one-of-a-kind code for just that one transaction. Even if a thief somehow stole the code, they couldn’t use it for anything else because it becomes completely useless after that single transaction.

You’ve probably seen that customers have to leave their cards in the terminal during the entire process, and it’s because the chip and terminal need to continue their conversation until everything gets completely worked out. With contactless EMV payments, the same safe conversation still happens through radio waves when customers just tap their cards or their phones. All the same security measures work behind the scenes, but without the need to physically insert the card.

Some cards ask for a PIN, and others just need a signature. PIN cards give you extra security since the customer has to know something that only they would know. Signature cards depend more on the chip technology itself to make everything safe. Either way, you get much better protection against fraud than old magnetic stripe cards ever gave because counterfeit cards just can’t duplicate these one-time transaction codes.

How it Affects Chargeback Prevention

EMV card readers completely changed how merchants work with chargeback costs, and the change was huge. Back before 2015, banks would usually cover the cost when a scammer used a fake credit card at your store. That system worked fine for business owners. But the payment industry decided to change that. When a merchant runs a counterfeit card without an EMV reader now, they pay for the entire fake transaction. The bank doesn’t cover it anymore.

This change makes EMV readers critical for keeping your profits safe. Every time you run a chip payment, you get paperwork that shows you followed all the right security steps. That paperwork can be worth quite a bit if a customer later challenges the bill – you have proof on your side.

The chip technology works well against counterfeit card programs. Fake magnetic stripe cards that scammers used to make don’t work against EMV readers. Every chip gives you a one-of-a-kind code for each purchase, and there’s no way scammers can copy or predict it. Most merchants watch their counterfeit fraud numbers drop by 75% or more once they make the switch.

EMV does have a few blind spots, though – it won’t help you at all with friendly fraud when customers dispute purchases that they made. The protection only works for face-to-face transactions at your store, too. Online sales stay just as risky as they have always been since customers never insert their chip when they’re shopping from their couch. Payment processors closely watch the number of chargebacks that you get. Getting too many disputes can cause higher processing fees or the loss of your merchant account.

Example Scenarios

EMV technology is pretty helpful. But it won’t protect you from every chargeback that comes your way. Even when businesses buy all the right EMV equipment and follow every law, chargebacks can still happen. Customers can complete transactions with their chip cards without any problems. Everything processes well.

Months later, those same customers might file chargebacks and claim that they were never at the business – that’s friendly fraud, and EMV technology can’t stop it. Business owners still have to get together all their receipts, transaction records, and whatever other evidence they can find, just like they would have had to before EMV technology was around.

International customers bring their own set of payment challenges to your business. A lot of European visitors carry chip-and-PIN cards, and these cards ask customers to enter their PIN number to finish the transaction. American payment terminals work differently – they usually just ask for a signature on the screen or on a receipt instead of a PIN. Problems happen when these international visitors try to use their cards at your store because their payment cards don’t work the same way as the domestic cards that you process every day.

Requirements and Timeframes

EMV compliance isn’t something business owners can ignore anymore. Credit card acceptance means that chip card laws apply to your business – even if the transition feels inconvenient. That big deadline from October 2015 has already come and gone, and missing it doesn’t make the problem disappear.

What actually changed with that deadline matters quite a bit. Before 2015, when fraudulent card transactions happened at retail locations, the bank usually covered the loss. After the laws changed, businesses without EMV terminals became responsible for those losses. That change in liability has owners rushing to catch up.

New businesses now need EMV terminals from day one. Most payment processors won’t even look at approving merchant accounts without them because they want chip card readers in place first.

Most owners can have new terminals installed within 1-2 weeks after they place the order. Staff training on the new system takes only a few days, and the whole process usually wraps up in about a month from the first call.

Some types of businesses did get a bit more time. Gas stations didn’t have to upgrade their pump readers until 2020, and that gave them extra time to figure out the upgrade. Retail stores should have made this switch years ago. Each fraudulent transaction hits the business account immediately, and that ends up costing far more than the terminal upgrade.

Frequently Asked Questions

How does the EMV liability shift affect my chargeback responsibility?

The 2015 EMV liability change completely reshaped how fraud costs are handled in the payment world. Banks used to cover most of the losses after criminals used fake cards at stores. But now the liability laws work quite a bit differently and the changes affect business owners.

The liability part is always the biggest worry for merchants - who ends up paying when fraud happens in your store. If somebody uses a fake chip card at your old magnetic-stripe terminal you're the one who gets stuck with that bill. The bank doesn't have to pay anything and you're left covering the entire loss. That could mean thousands of dollars lost from one single fraudulent transaction.

But once you upgrade your system to accept EMV chip cards you get strong protection against counterfeit fraud. The bank steps back in to cover those losses, returning to the old setup where they paid the costs. You do need to run the cards though. Even with a brand-new EMV-capable terminal you still have to insert the chip and wait for the authorization to finish.

This liability protection only covers counterfeit fraud cases. You're still responsible for other types of payment disputes. Mistakes in processing and other technical problems also land on you as the merchant.

Small businesses could face financial losses when they skip this upgrade. I worked with one merchant who lost more than $8,000 in a single month because criminals kept targeting his store with fake chip cards. His terminal was so old that it couldn't read the chip data so he had to cover every fraudulent transaction that went through. Once he saw how much money he was losing he finally upgraded his equipment. Most business owners who delay this upgrade usually find out the expensive way that EMV compliance isn't optional anymore - it's a must for keeping your business safe.

Can EMV technology prevent friendly fraud chargebacks?

EMV cards have one big weakness that most businesses forget. The chip does a great job at stopping counterfeit card fraud. But it won't do anything to protect you from friendly fraud - those situations where customers claim they never authorized an order that they actually did make.

The chip on the card gives you a new transaction code each time a customer buys something. That code is proof that a real physical card was present during the sale - this gives you some evidence to work with when disputes come up later. Of course there's still one big limitation with chip technology - it can't actually prove that the cardholder was the person who used the card. Maybe another person in their family has a hold of the card and maybe the customer is completely lying about the whole transaction.

Fraudulent chargebacks like these have become a big headache for businesses in just about every industry. Fortunately you can protect your business from these bogus claims pretty easily. Records of each transaction give you a much better shot at winning when these disputes inevitably pop up. Proof of delivery is another tool in your arsenal - it shows that your customer received just what they ordered and paid for. Savvy business owners have also started adding extra verification steps to their checkout process and it helps when they have to fight these claims.

EMV technology actually does a pretty effective job at solving one big problem - it makes any stolen card data completely worthless to criminals who want to create fake cards with it. Most merchants believe that the chip will be their answer against every type of fraud. But that assumption is probably going to leave them pretty disappointed.

What happens if my business doesn't accept EMV cards?

If your business doesn't accept EMV payments, you need to know what you're putting on the line. The biggest issue is the liability - you'll be personally responsible for any counterfeit fraud losses that happen at your location. When a customer disputes a fraudulent charge and you didn't use an EMV reader to process it, you automatically lose that chargeback dispute. There's just no way to win that fight.

Your payment processor is going to find these problems pretty fast when the chargebacks start piling up on your account. Once they see the pattern, you can expect them to bump up your processing rates or tack on extra fees to your merchant account as a way to offset their exposure. The most frustrating part is that some processors will actually pull the plug on your entire account if the fraudulent transactions get too out of control (this tends to leave most business owners feeling helpless - even when they think they're doing everything right).

Another point worth mentioning - criminals actually network with one another and share information about which businesses make for easy targets. Once word gets around that your store is still running those old swipe-only terminals you'll probably start seeing more fraudulent activity headed your way. Card fraudsters hunt for businesses that don't have chip readers because they know that their counterfeit cards will work much better at those locations.

Your customers have become used to inserting their chip cards just about everywhere by now. When they can't use their chip at your business, they see it right away. Some will actually walk out and head to the competitor down the street basically because they feel safer there. The actual security benefits matter less - sometimes they just want to feel like you're making an effort to protect their payment information.

Do EMV chip cards work for online transactions?

Chip technology has changed how businesses and consumers think about payment security and it's been interesting to watch this develop. Before chip cards came along, cardholders didn't see how easy it was for criminals to steal their card information. The payment industry introduced these chip-based cards everywhere and it turned out to be one of the strongest moves they've made. I see the results in the data all the time - in-store fraud has dropped quite a bit since these little chips became standard at checkout counters everywhere.

This whole change makes one point pretty obvious about fraud prevention - you basically can't use one single answer and think that's enough. Those same chips that work great at the store are useless for online shopping and they put businesses in a tough spot because they have to protect both kinds of payments - this protection gap has pushed the entire payment industry to develop multiple layers of security and the end result is a stronger system for everyone involved.

The limitation with chip cards is pretty simple - they can only do their job during face-to-face transactions where a terminal reads the chip. Online purchases are different because they skip the chip altogether and still depend on the same card number and security code that old magnetic-stripe cards have always used - this puts merchants in a tight spot where they have to buy completely separate fraud-prevention tools for their e-commerce operations like address-verification systems and security-code checks and authentication services. What makes the situation even harder is that card-not-present fraud has been rising as chip technology drove down in-store fraud and it means that online protection now matters just as much as the measures used in person.

The smartest merchants lately know that online and in-store fraud prevention are two equal challenges that call for very different security strategies.