FTC Reshapes Processor Role in Fraud

This regulatory pressure is not new but an intensification of a long-standing trend. The FTC has been targeting payment processors as "gatekeepers" that facilitate fraud for years, with this latest push signaling a more aggressive enforcement stance. The core of the issue lies in the financial incentive for processors, who often earn higher fees from chargebacks than from standard authorizations, creating a potential conflict in aggressively policing fraudulent merchants. The FTC's actions often invoke Section 5 of the FTC Act, which prohibits unfair or deceptive business practices, and the Telemarketing Sales Rule (TSR). Enforcement isn't limited to domestic firms; international companies that process payments for schemes targeting U.S. consumers are also in the crosshairs. Penalties are substantial, with settlements reaching tens of millions of dollars, such as the $40.2 million judgment against First Data Merchant Services for ignoring clear signs of merchant fraud. This shift has historical echoes of "Operation Choke Point," a controversial DOJ initiative from 2013 that pressured banks to cut ties with merchants in high-risk industries. While officially ended, its legacy persists in the current regulatory climate, which expects financial institutions to actively vet and sever relationships with clients likely to defraud consumers. In response, processors are overhauling underwriting and monitoring. This includes deeper investigation into merchant business models, sales practices, and histories, particularly for card-not-present (CNP) transactions which inherently carry more risk. Some consent orders now mandate specific chargeback rate thresholds that trigger investigation, forcing a more data-driven approach to risk management. The impact extends to the broader payments ecosystem, including Independent Sales Organizations (ISOs) and acquiring banks, who are also being held to stricter oversight standards. This heightened scrutiny is compelling investment in advanced fraud detection technologies, including AI and machine learning, to analyze transaction patterns in real-time and identify suspicious activity before it scales. New rules from entities like Nacha, which governs the ACH network, are also adding pressure. Starting in 2026, new regulations will require businesses and processors to enhance fraud monitoring for ACH transactions, specifically targeting scams where payments are authorized under false pretenses. This reflects a broader industry move towards proactive, risk-based fraud prevention across all payment rails.