E-commerce Payment Solutions

Set up online payments for your e-shop

The widest range of purchase payment options
Various integration possibilities
Fast and secure checkout
No activation or monthly fee!

Now at an even better price! Find out more

Fill in an application in 2 minutes

Get a consultation remotely

Sign the agreement in your Internet Bank

For Swedbank customers, a free-of-charge guide “DIY Digital Marketing” and a special offer on Omniva services.

Choice of nearly 90% of shoppers in the Baltics! A single agreement for payments via all the most popular internet banking platforms in Baltics.

Ideal for selling globally. It’s easy for customers to checkout, start a subscription or take care of a recurring payment.

The popular e-wallet payments Apple Pay and Google Pay are an alternative to paying by card.

Accept payments from customers all over the world, with PayPal.

Link payments – ideal to sell online without a website. No more manual payment orders resulting in abandoned purchases!

Allow customers to initiate instant internet banking payments from any major Baltic bank:

Swedbank (LV, LT, EE)
SEB (LV, LT, EE)
Citadele (LV, LT, EE)
Luminor (LV, LT, EE)
Revolut (LT)
Urbo bankas (LT)
Šiaulių bankas (LT)
Coop (EE)
LHV (EE)

See the payment initiation process with the eyes of your customers. To do that please make a payment to a charity fund.

Go here to make a payment

Fast and easy integration via plugins or APIs
Seamless payment flow
Reports tailored to Latvian accounting software available in EveryPay portal
Customizable checkout design
Possibility for checkouts without a website through “LinkPay” payment links

Accept payments from clients with Visa and Mastercard, as it is one of the most common payment methods worldwide. Acceptance of card payments also means greater overall trustworthiness of the site as the cardholder gets extra protection thanks to the 3-D Secure 3-D Secure is a technology developed by Mastercard and VISA which is designed to give greater safety in e-commerce for merchants and card users for payment card transactions performed over the Internet. With 3-D Secure, the card issuer authenticates the cardholder online, thus helping online retailers to drastically reduce the number of card fraud cases. technology.

Finally here! Apple Pay is a popular mobile payment system that gives customers an alternative way to pay with a card.

Fast and easy integration via plugins or APIs
Customizable checkout page design
Possibility to send LinkPay payment links as an alternative to immediate checkout on the website
Setting up standing orders
Possibility to save customer’s card details for future payments (tokenization)
Reports tailored to Latvian accounting software available in on Internet Banking site and EveryPay portal
Reports tailored to Latvian accounting software available in EveryPay portal
Multi-currency options

Digital wallets are mobile friendly payment options. It enables online shoppers to checkout within a blink of an eye.

How to enable Apple Pay?

To enable Apple Pay, the company's authorised signatory must approve it here (make sure the agreement for online payments is signed and activated before approving).

How to enable Google Pay?

Follow the instruction on the EveryPay portal to review and confirm the Google Pay Terms and perform the necessary integration.

Biometric (face or fingerprint) authorization
Self-service & technical support
Fast and easy integration via plugins, hosted ecommerce platforms or APIs
The hosted checkout technology

PayPal checkout is used by millions of consumers around the world.

Easy integration
Access to clients across the world that use PayPal

“LinkPay” payment links – ideal to sell online without a website. No integration needed, yet experience of online shopping inns kept. No more manual payment orders resulting in abandoned purchases!

Opportunity to send payment links in e-mails, SMS, invoices, online chats
Customizable payment fields and page design with the possibility to have merchant’s logo and layout
Possibility to set payment link re-usage limitations
Both one-time and recurring payments available

Set up your online store and make sure you’re compliant with Visa and Mastercard requirements.

Fill out the application and we will contact you within 1 business day.

Sign the agreement.

Carry out the integration and start selling!

Pricelist	Price
Monthly fee	Free of charge
Acceptance of EEA cards and payment initiation	1.2% + EUR 0.10*
Acceptance of non-EEA cards	2.3% + EUR 0.10*

* VAT applicable to the fixed part of the fee.

Plugins for the most popular platforms: WooCommerce, OpenCart, Magento2, PrestaShop.
Integration through e-commerce cloud platforms: Mozello.
Integration through standardized API.
SDK tools for mobile applications.

Websites of a merchant wishing to use the service must meet the certain criteria. Check requirements for Mastercard and Visa.

Payment initiation service

EveryPay technical solution self-service portal:
Phone (working days 8:00 – 17:00): +371 25893803
Email: support@every-pay.com
Swedbank technical solution self-service portal
Email: cashmanagement@swedbank.lv

Card acquiring service

EveryPay technical solution self-service portal:
Phone (working days 8:00 – 17:00): +371 25893803
Email: support@every-pay.com
Technical solution from Worldline Latvia SIA:
Phone (working days 8:30 – 17:30): +371 67092555
Email: ecomm_support.lv@worldline.com

How do card transactions work?

In this video, you will find out about:

the card ecosystem and authorization flow;
possible transaction types;

How to start accepting payment cards?

In this video, you will learn about:

available card acceptance solutions;
how to obtain the terminal and how to quickly set it up;
where to get technical support.

Online card acceptance

In this video, you will get information about:

what is online card acceptance;
what are the benefits of online acceptance;
how do online payments work;
what are the requirements for online merchant;
how can the risk be minimized in online environment.

What is chargeback?

In this video, you will get to know about the chargebacks – the process, timeframe, responsibilities, and solutions to avoid them.

What is card fraud?

This will explain the key things about fraud:

what to do in case of suspected fraud;
how to minimize it.

What a merchant needs to do to be compliant?

This video will explain:

what are the main responsibilities of the merchant
how to ensure compliance with rules of the international card organizations and the bank.

What is the PCI DSS?

With this video, you will understand:

what is the Payment Card Industry Data Security Standard (PCI DSS);
how card data can be stolen;
what are the consequences of the merchant not following the PCI DSS rules;
what can a merchant do to comply with the PCI DSS.

Payment Card Industry Security Standards Council (PCI SSC) has been established by the leading international cards organizations Visa, Mastercard, Amex, Diners, Discovery, JCB. PCI SSC had been worked out as PCI DSS rules and documents to regulate and define card security principles and policies. PCI DSS is intended for all entities that store, process, or transmit cardholder data and/or sensitive authentication data or could impact the security of the cardholder data environment. This includes all entities involved in payment account processing – merchants, processors, acquirers, issuers, and other service providers. These rules set the technical and operational requirements for organizations accepting or processing payment transaction.

Please see the latest version of requirements and standards here

All merchants that store, process or transmit cardholder data and/or sensitive authentication data must be PCI DSS compliant. Some PCI DSS requirements may also apply to entities with environments that do not store, process, or transmit account data – for example, entities that outsource payment operations or management of their cardholder data environment.

Account data (card data and sensitive authentication data) elements:

	Data Elements	Storage Restrictions	Required to Render Stored Data Unreadable
Cardholder data
	Primary Account Number (PAN)	Storage is kept to a minimum	Yes Standard requires that the PAN must be rendered unreadable
	Cardholder Name	Storage is kept to a minimum	No
	Service Code	Storage is kept to a minimum	No
	Expiration Date	Storage is kept to a minimum	No
Sensitive Authentication Data Sensitive authentication data must not be stored after authorisation, (even if encrypted)
	Full Track Data Full track data from the magnetic stripe, equivalent data on the chip, or elsewhere	Cannot be stored after authorization	Yes, data stored until authorization is complete must be protected with strong cryptography
	Card verification code (CVV2/CVC2) The three or four-digit value printed on the front or back of a payment card	Cannot be stored after authorization	Yes, data stored until authorization is complete must be protected with strong cryptography
	PIN/PIN Block Personal Identification Number entered by cardholder during a transaction, and/or encrypted PIN block present within the transaction message	Cannot be stored after authorization	Yes, data stored until authorization is complete must be protected with strong cryptography

How to be sure that you are compliant with PCI DSS requirements?

We inform merchants once per year via e-mail what kind of action must be taken to comply with PCI DSS. Requirements are presented in the table below.

Merchants are categorized into 4 levels based on the annual number of card payment transactions by one card brand (i.e., MC, VISA, Amex etc.). Level 1- Level 3 merchants are required to report their compliance status and Level 4 merchants are required to report filled SAQ directly to their bank.

Merchant level	Merchants’ transaction criteria	Required actions from merchants	Frequency
Level 1	Merchants with 6 million and more annual transactions in total for Mastercard or VISA	External security audit made by Qualified Security Assessor(QSA)	once per year
Level 1		Network Scan conducted by an Approved Scanning Vendor (ASV) or Qualified Security Assessor (QSA)	once per quarter
Level 2	Merchants with 1 to 6 million annual transactions in total by Mastercard or VISA	Qualified Security Assessor(QSA) or Internal Security Assessor (ISA) Merchants completing SAQ A, A-EP or D are required to engage a QSA or ISA for annual compliance validation. Merchants completing SAQ B, B-IP, C-VT, C or P2PE may now self-assess without the use of a QSA or ISA for compliance validation.	once per year
Level 2		Network Scan conducted by an Approved Scanning Vendor (ASV) or Qualified Security Assessor (QSA)	once per quarter
Level 3	Online merchants with 20 000 to 1 million annual transactions in total by Mastercard or VISA	Completing annual self-assessment (SAQ) form required	once per year
Level 3		Network Scan conducted by an Approved Scanning Vendor (ASV) or Qualified Security Assessor (QSA)	once per quarter
Level 4	All other merchants	Annual self-assessment (SAQ) at merchant discretion	Recommended once per quarter
Level 4	All other merchants	Network Scan conducted by an Approved Scanning Vendor (ASV) or Qualified Security Assessor (QSA)	Recommended once per year

Keep in mind, that you’ll need to perform:

Security audit, that is made by a certified auditor acting as Qualified Security Assessor (QSA) at the legal entities, who are presented on the PCI DSS official website.
Scanning of the network, that is made by a qualified net scanning vendor acting as Approved Scanning Vendor (ASV) or Qualified Security Assessor (QSA). ASV can conduct a scanning procedure for in-store and online merchants but have no rights to perform annual audits.
Internal audit, during which questions in SAQ (Self-Assessment Questionnaire) have to be answered. The questionnaire content depends on technical solution.

PCI DSS requirements and goals

The 12 requirements and goals in the table below will help you to understand what important actions must be performed to be compliant with PCI DSS rules.

Goals	PCI DSS Requirements
Build and maintain a secure network and system	1. Install and maintain network security controls. 2. Apply secure configurations to all system components.
Protect cardholder data	3. Protect stored account data. 4. Protect cardholder data with strong cryptography during transmission over open, public networks.
Maintain a vulnerability managemenet program	5. Protect all systems and networks from malicious software. 6. Develop and maintain secure systems and software.
Implement strong access control measures	7. Restrict access to system components and cardholder data by business need-to-know. 8. Identify users and authenticate access to system components. 9. Restrict physical access to cardholder data.
Regularly monitor and test networks	10. Log and monitor all access to system components and cardholder data. 11. Test security systems and networks regularly.
Maintain an information security policy	12. Support information security with organizational policies and programs.

For more information please visit https://www.pcisecuritystandards.org/

Cardholders have the right to dispute any card transaction processed on a Mastercard or Visa card. Such disputes are resolved as chargebacks and are governed by a series of rules set forth by the international card organizations. In the chargeback process, the burden of proof lies with the merchant who is given the opportunity to provide supporting documentation to prove the legitimacy of the transaction. If the merchant is successful, the value of the transaction is credited back to their account. If the merchant is unsuccessful or does not respond in a timely fashion, they are held financially responsible for returning funds to the consumer who filed the complaint.

What are the most common Chargeback reasons?

Common reasons for chargebacks include:

the cardholder did not perform the transaction (frequently an indication of fraud);
cancelled recurring transaction;
goods not as described;
goods faulty or defective;
failure to respond to voucher requests.

Chargebacks may also be made for other reasons, including goods or services not having been received.

How to avoid Chargebacks?

Tips on dealing with chargebacks:

In order to prevent undelivered product claims it is highly recommended to use a delivery service that offers delivery confirmation.
In order to prevent broken merchandise claims during shipping, always purchase shipping insurance if your items are fragile. Make sure you clearly document the timeframe in which such claims will be processed.
There are two ways of handling claims concerning merchandise breakage not caused by shipping: have the customer contact the manufacturer directly if the item is under warranty or ask the customer to ship the item back to you. Make sure your returns policy is very clear about the timeframe and the returned merchandise authorisation process.
If the customer claims they never ordered the product, make sure you have clear documentation of their order.
Whenever possible handle communication via e-mail as that way you will have a precise record of all conversations.
The requirement is to have terms and conditions clearly presented on the website where the online services are provided. The Consumer Protection Regulations set out the information that must be provided to customers prior to entering into an agreement. The regulations apply to anyone who supplies goods or services under a distance contract; you cannot opt out of them.
The information must be provided in a clear and comprehensible manner appropriate to the means of distance communication used. The information you need to provide includes specific details of the goods or services in question, their price (including VAT and other taxes) and delivery charges, as well as the details of customers' cancellation rights. You also need to include the full contact details of your business.
If the goods or services ordered by the customer are likely to be unavailable, you must inform them if you wish to provide substitute goods or services of equivalent quality and price.

Merchants face various risks when accepting card transactions. This information has been put together to help you understand the types of risk you face and the steps to take in order to reduce the risk of loss. One of the greatest risks to merchants is that of fraudulent transactions. If you are not careful, fraud could cost your business dearly. Some types of merchants - depending on the type of goods sold - are more vulnerable to fraudulent transactions than others. Merchants should be aware that they may be targeted.
It is essential to understand the term "authorisation" - what it does and does not mean.

What does “authorization” mean?

What authorisation does mean:

The account number is valid
The card has not been reported as lost or stolen (although it may still be lost, stolen or compromised, i.e. the card details may have been unduly obtained or copied) and the card owner may be unaware of this)
There are sufficient funds available to cover the transaction

What “authorization” does not mean?

What authorisation does not mean:

Authorisation does not confirm that the person providing the card number is the legitimate cardholder - the risk remains that the person providing the number has either stolen or unduly obtained the card
There is also a risk of the purchaser having unduly obtained the card number without being in possession of the card

Although it is important to obtain authorisation for each transaction, this alone does not protect you against the risk of fraud or chargeback. These risks remain even if authorisation has been obtained.

What products are sold by e-shops that are subject to the risk of fraud the most?

Due to their high value and suitability for resale, the following types of goods are frequently targeted by fraudsters:

Electronics
Household appliances
Jewellery
Computers
Furniture
Goods easily sold for cash

If you trade in any of these goods, be extremely careful before handing over/shipping items. Make sure you take all possible steps to confirm that the purchaser is the actual cardholder.

Examples of transactions that warrant extra precaution

The following are indications of potentially suspicious transactions. Often it is the existence of more than one indication that suggests a potentially fraudulent activity.

First-time shopper - Criminals are always looking for new merchants to steal from
Larger-than-normal orders - Because stolen cards and account numbers have use only for a limited time period, criminals need to maximise their purchases
Orders that include several varieties of the same item - Having more than one of the same item increases the criminal's profits
"Urgent" or "overnight" shipping - Criminals want their fraudulently obtained items as soon as possible for quick resale and are not concerned about extra delivery charges
Shipping outside of the merchant's country - There are times when items purchased in fraudulent transactions are shipped to criminals outside of the home country
Inconsistencies - Information in order details such as a mismatch in the billing and shipping addresses, telephone area codes with corresponding near post office codes, e-mail addresses that do not look legitimate and irregular times of day when orders are placed.
Multiple transactions on one card during a short period of time - This could be an attempt to 'run a card' until the account is closed
Shipping to a single address via transactions on multiple cards - This could involve an account number generated using special software or even a batch of stolen cards
Multiple transactions on one card or a similar card with a single billing address, but multiple shipping addresses - This could represent an organised activity, rather than one individual at work
For online transactions, multiple cards used from a single IP (Internet Protocol) address - More than one or two cards could indicate a fraudulent scheme
Orders from Internet addresses that make use of free e-mail services - These e-mail services involve no billing relationships and often neither an audit trail nor verification that a legitimate cardholder has opened the account

How to minimize the possibility of fraudulent purchases and chargebacks in e-shops?

Merchants can minimise the possibility of fraudulent purchases and chargebacks from online transactions by taking certain precautions:

request the name of the cardholder's bank - fraudsters who have unduly obtained account details will not have this information. If the purchaser hesitates in giving the name of their bank, caution should be exercised;
request the purchaser to provide a faxed copy of their driver's licence;
the risk of goods not being received should be evaluated if goods are forwarded to a post office box;
obtain a signed receipt from the cardholder when the goods are delivered;
in the case of orders for a large number of different goods, telephone the cardholder after the order is placed to confirm the order. Also, have the purchaser read back all details of the order. Frequently, where an order is fraudulent, the purchaser is unable to confirm these details, as they were ordering at random, with no record of what they ordered;
be suspicious in cases where multiple cards are used for a single purchase;
do not continue to attempt authorisation after receiving a decline;
exercise extra caution in relation to overseas orders - large orders should in all cases be held back for shipping until the enquiries above are made into the legitimacy of the purchaser. Merchants should not ship goods until satisfied that the purchase is legitimate.

By using the 3-D Secure authentication services, the merchant obtains chargeback protection (i.e. fraud liability shift) on a transaction in most events where a chargeback would normally be received on the basis of a claim that the customer did not actually participate in the transaction. These services provide customers, retailers and banks with greater security in online card payments.

Please contact us by calling 67 444 444 if you need a consultation or you wish to report a fraudulent situation. You can learn more about how to do your banking securely here.

The IT resources necessary for implementing online payments can be outsourced. Below you will find information about IT companies offering such a service.

SIA Mozello
support@mozello.com
26606765
mozello.lv
A ready-made online store platform provided by an internationally recognized Latvian company. Integrated marketing and CEO solutions, as well as payment systems.

SIA IDT MEDIA
info@magebit.com
27482923
magebit.com
External system integrations for various platforms: Magento, WooCommerce and other. A wide range of services for e-commerce solutions.

Caballero \| Digital agency (SIA Selected agency)
info@caballero.lv
25377773, 20400222
www.caballero.lv
External system integrations for various platforms: Woocommerce for tailor-made e-commerce solutions and systems. Custom-design online shop development, as well as friendly e-commerce solutions for small and medium-sized enterprises.

SIA Senet
info@senet.lv
26361815
senet.lv

SIA Wonderland Media
aigars@scandiweb.com
28346764
scandiweb.com
External system integrations for various platforms: Magento, Woocommerce, BigCommerce and other.

SIA iConcept
matiss@iconcept.lv, klavs@iconcept.lv
22300307 (Matīss), 26466176 (Klāvs)
iconcept.lv
External system integrations for various platforms:Woocommerce, Prestashop, Magento, Opencart.

SIA Datateks
info@datateks.lv
67299532
siadatateks.lv

SIA Webdev
info@webdev.lv
24400020
www.webdev.lv
External system integrations for various platforms: OpenCart, NomasVeikals, Woocommerce. Additional information: Online shop development and rent. Automatic integration of wholesaler products. Ready-made, rent-based and custom-made solutions for any industry.

These companies are listed as examples of such service providers and are not affiliated with Swedbank. The given list of IT companies is not in the order of priority and is not exhaustive. You are free to engage other IT companies providing the necessary services.