If a recurring payment authorization is stolen, does it need to be cancelled?

If a recurring payment authorization is stolen, does it need to be cancelled?

There is no reason to cancel a recurring payment, even if it has been stolen, because that token can only be used for the service and account it is tied to.

All recurring payments contain the merchant identifier and your account number with that merchant, and so they cannot be used for purchases for any other customer, even at that same merchant.

This is one of the most important aspects of how the PocketKey protects you because often times, merchants do not know they have been hacked for several months, when most of the damage is already done.

Leave a Comment