The purpose of an Authorization Restriction is to allow or refuse a transaction on an Account based on given rules.
These rules are implemented with an initial customer specific Product setup and are set per default set as blocked or unblocked
The standard Authorization Restrictions are permanent and can be changed by creating some Authorization Restriction Overrides.
The standard Authorization Restrictions for Card Control are to block or unblock of :
- Channels like
- ATM / cash
- Card present (POS)
- Card not present (eCommerce, telephone)
- Card not present recurring
- Contactless online (NFC online)
- Magstripe
- Single country, a list of single countries
- Regions (Geo Blocking)
- Merchant category codes (MCC Blocking)
When an account is created, the default Authorization Restrictions defined on Product level are applied
In order to List authorization restrictions for account, the API GET /issuers/{issuerId}/accounts/{accountReference}/authorization-restrictions should be used by providing the issuerId of the Issuer and accountReference identifying the Account
Each Authorization Restriction is identified by an authorizationRestrictionReference and it's possible to Retrieve authorization restriction using GET /issuers/{issuerId}/accounts/{accountReference}/authorization-restrictions/{authorizationRestrictionReference} API