Navigate to main page content
PrivateBusiness

Online payments

Application for Accepting payments online

Area of activity*

Please make sure that your e-store is compliant with the requirements.

The Bank Link can be installed by partners of Swedbank

Necessary plugins

Technical specifications

Installation of card payment solutions is carried out by our partners

Requirements for web stores for the use of e-commerce service

The web store of a company selling product and services is obligated to display the following information on their website to the client:

The contact information of the company

  • the business name and registration number
  • the country-based address of the web store
  • in the payment confirmation stage, the registered business address and country of the company must be displayed
  • helpline’s e-mail address and contact phone number

The logo of VISA and/or Mastercard (valid only when collecting card payments)

  • the logos of the card organisations, the cards of which are suitable for making payments

Displaying the information pursuant to goods and services

  • the descriptions of goods and services must be clear and factual
  • the final prices of goods and services must be presented with taxes and in euros
  • the postage, transport or other delivery related rates and prices must be separately displayed, if they are payed by the client

Payment for goods and services, the terms and conditions and time of delivery

  • the description and terms and conditions of the purchasing process have to be laid out in a clear manner and easy to find
  • the terms and conditions of the purchasing process have to include payment options, descriptions of all delivery methods and the maximum time of delivery

Client information

  • the information on the processing and use of clients personal information must be displayed and easy to find

The terms and conditions of returning goods, services and money, and warranty

  • the information on the options of returning goods, services and money and the terms and conditions of the warranty have to be displayed and easy to find
  • before the final confirmation of the order, the merchant is obligated to present the client the terms and conditions of the purchase, return and warranty and receive consent by the client on accepting the terms and conditions in a format that is reproducible

Disputed card transactions (chargeback)

The cardholder shall have the right to contest a transaction made with the Mastercard or Visa card. Such an appeal shall be settled as chargeback in accordance with the rules established by the international card organisations.

In case of chargeback, the merchant shall provide additional documents at the request of the bank in order to prove that the transaction took place in accordance with the requirements of the card organisations. If the merchant fails to do so or does not respond on time, the merchant shall be financially liable for the contested transaction. The most common reasons for chargeback are:

  • the cardholder confirms that he or she has not made the transaction (may indicate fraud);
  • the service provided by a regular card payment was cancelled by the client;
  • the goods do not correspond to the product information provided in the e-shop;
  • the goods are defective;
  • the cardholder has not received the ordered product/service within the time period established by the e-shop terms.

Recommendations for the merchant to prevent possible chargeback:

  • use the transport service, which also includes confirmation of delivery of the goods;
  • make sure that the goods return policy of your company has clearly established the process of returning the goods and the time period during which the cardholder may file a complaint;
  • always ensure that you have delivery insurance for any fragile products;
  • make sure that you always have the order documents in a format which can be reproduced and the cardholder’s confirmation on agreeing with the terms and conditions of the order;
  • if possible, contact the cardholder in writing so that you could have written material about the communication with the client.
  • If the goods or services ordered by the client are not available, you have to inform the client and offer the replacement product/service of the same quality and price, or cancel the card transaction at the client’s request.

The consumer protection regulations have established the requirements for information that should be communicated to the client before entering into a contract. These requirements shall be applied to all who deliver goods or provide services under a distance contract.

We offer a solution to facilitate and shorten the time to implement the accept card payments in your e-shop.

The tool is API (Application Programming Interface) library in PHP programming, available from these sites:

Set up online payments for your e-shop

Without activation fee and first three months without monthly fee.*

  • A single Bank Link agreement allows you to collect payments from the customers of Swedbank, SEB, LHV, Citadele, Luminor and Coop. All you need is a bank account with Swedbank.
  • Our solutions can be integrated with most e-commerce platforms.
  • In the case of Bank Link payments, the money usually reaches the company’s account immediately; payments made by card are cleared the following day.
Receive consultationApply

If you have any further questions, you can now sign up for a video consultation.

Sign up
  • Receiving Bank Link payments from Swedbank, SEB, LHV, Citadele, Luminor and Coop customers under a single agreement.
  • Card payments with Visa and Mastercard.
  • Intuitive and user-friendly payment environment compatible with any customer device and user.
  • A single Bank Link agreement for accepting customer payments from the biggest banks of Estonia.
  • User-friendly reporting system through the portal – a possibility to view all transactions, their status, to cancel transactions and provide refunds. Possibility to download the appropriate reports.

Bank Link:

Installation of Bank Link is carried out by our partners

Card payments:

  • Integration with most common e-commerce platforms: WooCommerce, Voog, Magento2, OpenCart, PrestaShop, Android SDK, iOS SDK. Necessary plugins.
  • PHP API library for convenient custom-tailored integration.
  • Technical specification of EveryPay and the Swedbank Payment Portal

Installation of card payment solutions is carried out by our partners

Set up your online store and make sure that your e-store is compliant with the requirements. Fill out the application – we will contact you as soon as possible, not later than on the third business day from your request. Sign the agreement. Integrate the payment acceptance solution with your e-store and start selling. Accept card payments and expand your business by selling products worldwide 24/7. As a rule, the money for the purchases will reach the company’s account the next day. Payment card acceptance also means greater trustworthiness of the site as the cardholder gets extra protection via the 3D Secure protocol.

E-store card payments provide the following possibilities:

Payments with Mastercard or Visa in euros.

3D Secure – a secure solution created by Mastercard and Visa through which the card issuer verifies the identity of the card holder to protect merchants against potential fraud.

Merchant Portal for managing card transactions:

  • possibility to oversee all card payments and their statuses;
  • payment cancellation and full or partial refunds to customers;
  • reports and overviews for sales and accounting needs in various formats (CSV, XML);
  • automatic closing of the day, which, as a rule, ensures receiving money for customer purchases in your company’s account in the morning of the next day.

Saving the card number securely (tokenisation) allows you to offer a simplified payment method to repeat customers. The card data is saved in a safe environment and only a token is sent to the merchant. Once the customer’s card is registered in your e-shop, all future payments can be executed with a single confirmation – a one-click payment.

One-click payment allows registered users to make transactions fast and conveniently using previously saved card data.

Card status query makes it possible to verify whether the card account is active without reserving any amounts.

Recurring payments – a tool that allows setting up payments for repeated orders in accordance with an agreement with the customer. Once the customer has entered all the card details and given confirmation, all future payments will be debited automatically.

Cancellation of transaction – it is possible to cancel a transaction that has been confirmed by the customer, as long as the transaction has not yet been sent. After that, a query for releasing the reservation will be sent to the card holder’s bank.

Refund – full or partial refund to a customer.

LinkPay – a payment solution that allows fast and convenient payments by clients through a payment link. A payment link will be created that can be sent to the client via e-mail, SMS or another channel. The merchant can determine the payment data requested through the link.

  1. The customer selects a product or service and chooses paying by card as the payment method.
  2. The customer enters data - first name, surname, card number, expiry date and security code (CVV/CVC).
  3. After online verification of card details the customer is redirected to the 3D Secure verification page to confirm the cardholder’s identity.
  4. After successful verification, money for the payment is reserved in the cardholder’s account and the company receives transaction confirmation.
  5. Money is credited to the company’s account, usually the next day.

A Bank Link is a fast and convenient solution for real-time payment processing. It simplifies the process between the merchant and the bank, making it possible to pay for purchases quickly and securely in e-shops.

  • In addition, the Bank Link service also allows customer verification. You can choose to use these options separately or together.
  • The customer pays for the purchase immediately, through a pre-filled internet bank payment order.
  • The bank will immediately notify you of successful payments – you do not have to wait and look for payment confirmations in account statements and will be able to fulfil customer orders faster.

Bank Link payment initiation service with a single Bank Link agreement allows you to collect e-payments from the customers of different payment institutions (see technical specification).


NEW! Answers to common questions and explanations of error messages when using the service

How does the payment flow work?

  1. The customer selects a product or service and chooses one Bank Link – that of Swedbank, SEB. LHV, Citadele, Luminor or Coop – as the payment method.
  2. Payment details are sent to the bank in the course of automatic data exchange.
  3. The customer is redirected to the pre-filled payment order in the internet bank or the mobile app.
  4. Customer gives a consent (in case of Bank Link payment initiation service).
  5. Customer confirms payment.
  6. The company is notified of the transaction and money for the payment is transferred within seconds.

Servicing payment cards (for merchants)

Effective as of 01.10.2021
Commission fee on the transaction amount as agreed
smart terminal transaction 1.45%
Fee for a technical device Minimum rental period for terminal is 3 months. If the terminal rental is terminated before the minimum rental period, the Bank shall have the right to debit the early return fee of terminal.
rent of a payment terminal in month VAT at the rate of 20% will be added to the price.  
stationary terminal VAT at the rate of 20% will be added to the price. 13 €
mobile terminal VAT at the rate of 20% will be added to the price. 19,50 €
stationary, mobile terminal VAT at the rate of 20% will be added to the price. 18 €
stationary terminal with bluetooth connection VAT at the rate of 20% will be added to the price. 18 €
installation of terminal within 2 banking days VAT at the rate of 20% will be added to the price. 84 €
installation of terminal starting from agreement signing witin 5 banking days free of charge
replacement of card payment terminal at the client’s request VAT at the rate of 20% will be added to the price. 21 €
penalty for failure to return payment terminal on time cost of terminal according to certificate
Fee for amendment of payment card service contract 15 €
Early return fee of terminal equal to the sum of rental fees still payable for that moment
Smart terminal purchase fee (Seller: Hansab AS) VAT at the rate of 20% will be added to the price. 104 €

Servicing card payments in e-commerce

 
E-commerce payments platform
Agreement fee free of charge
Monthly fee VAT at the rate of 20% will be added to the price. 10 €
Commission fee on the transaction as agreed
Fee for amendment of agreement 15 €
Swedbank Payment Portal
Agreement fee 50 €
Monthly fee VAT at the rate of 20% will be added to the price. 25-50 €
Bank link, commission fee as agreed
Servicing card payments in e-commerce, commission fee as agreed
Transaction processing fee as agreed
Amendments to the agreement 15 €

Bank link

 
Agreement fee free of charge
Amendments to the agreement 15 €
Authentication fee VAT at the rate of 20% will be added to the price. 0,11 €
Transaction fee
Payment initiation from Swedbank 1% of the purchase price, no less than 0,13 €, but no more than per transaction 3,20 €
Payments initiation from other financial institutions 0,85% of the purchase price, no less than 0,10 €, but no more than per transaction 2,60 €

Reports to be ordered - Shopper Profile Report VAT at the rate of 20% will be added to the price.

 
Basic 105 €
Standard 625 €
Detailed 1300 €

E-invoice

 
E-invoice sending service VAT at the rate of 20% will be added to the price.
subscription via bank representative 30 €
subscription via internet-bank free of charge
amendment 12,50 €
subscription to domestic e-invoice service The fee will be calculated for each e-invoice sending registration application sent to bank, who is member in cross-usage system. 8 €
The fee for sending a e-invoice (per invoice sent) VAT at the rate of 20% will be added to the price.
The monthly fee for e-invoices sent through Swedbank Gateway or the Operator Channel is calculated based on e-invoices sent during the previous month.
intra-bank invoice 0,19 €
domestic invoice 0,35 €
e-invoice credit note free of charge
Implementation of the company’s design template in the Swedbank Internet bank VAT at the rate of 20% will be added to the price. 120 €
Agreement about reports (based on e-invoice agreement) VAT at the rate of 20% will be added to the price.
e-invoice standing order agreements report fee 9,50€/month
e-invoice standing order agreements payments report fee 9,50€/month

How do card transactions work?

In this video, you will find out about:

  • the card ecosystem and authorization flow;
  • possible transaction types.

How to start accepting payment cards?

In this video, you will learn about:

  • available card acceptance solutions;
  • how to obtain the terminal and how to quickly set it up;
  • where to get technical support.

Online card acceptance

In this video, you will get information about:

  • what is online card acceptance;
  • what are the benefits of online acceptance;
  • how do online payments work;
  • what are the requirements for online merchant;
  • how can the risk be minimized in online environment.

What is chargeback?

In this video, you will get to know about the chargebacks – the process, timeframe, responsibilities, and solutions to avoid them.

What is card fraud?

This will explain the key things about fraud:

  • what to do in case of suspected fraud;
  • how to minimize it.

What a merchant needs to do to be compliant?

This video will explain:

  • what are the main responsibilities of the merchant
  • how to ensure compliance with rules of the international card organizations and the bank.

What is the PCI DSS?

With this video, you will understand:

  • what is the Payment Card Industry Data Security Standard (PCI DSS);
  • how card data can be stolen;
  • what are the consequences of the merchant not following the PCI DSS rules;
  • what can a merchant do to comply with the PCI DSS.

The Payment Card Industry Security Standards Council (PCI SSC) has been established by the leading international card organizations Visa, Mastercard , Amex, Diners, Discovery, JCB. The PCI SSC has developed the PCI DSS rules and documents to regulate and lay down the card security principles and policies. Payment security guidance must be followed by all entities (including banks, merchants, payment processors) which store, process or transmit cardholder data. These rules set the technical and operational requirements for organizations accepting or processing payment transactions.

Please see the latest version of requirements and standards here.

All merchants that store, process or transmit cardholder data must be PCI DSS compliant.

Card data and sensitive authentication data elements:

Data Element Storage Permitted Render Stored Data Unreadable
Cardholder Data
Primary Account Number (PAN) Yes Yes Standard requires that the PAN must be rendered unreadable
Cardholder Name Yes No
Service Code Yes No
Expiration Date Yes No
Sensitive Authentication Data Sensitive authentication data must not be stored after authorisation, (even if encrypted)
Full Track Data Full track data from the magnetic stripe, equivalent data on the chip, or elsewhere No Prohibited
CVV2/CVC2 The three or four-digit value printed on the front or back of a payment card No Prohibited
PIN/PIN Block Personal Identification Number entered by cardholder during a transaction, and/or encrypted PIN block present within the transaction message No Prohibited

How to be sure that you are compliant with PCI DSS requirements?

We inform merchants once per year via e-mail what kind of action must be taken to comply with the PCI DSS. The requirements are presented in the table below.

Merchants are categorized into 4 levels based on the annual number of card payment transactions by one card brand (i.e. Mastercard, Visa, Amex etc.). We require Level 1 - Level 3 merchants to notify us of their compliance status after the required action has been taken. Level 4 merchants must notify us of their compliance status by sending a completed Self-Assessment Questionnaire (SAQ).

Merchant level Merchants transaction criteria Required actions from merchants Frequency
Level 1 Merchants with 6 million and more annual transactions in total for Mastercard or Visa External security audit made by Qualified Security Assessor(QSA) once per year
Network Scan conducted by an Approved Scanning Vendor (ASV) or Qualified Security Assessor (QSA) once per quarter
Level 2 Merchants with 1 to 6 million annual transactions in total for Mastercard or Visa Qualified Security Assessor (QSA) or Internal Security Assessor (ISA) Level 2 merchants who choose to complete an annual self-assessment questionnaire must ensure that staff engaged in the self-assessment attend PCI SSC ISA training and pass the associated accreditation program annually in order to continue the option of self-assessment for compliance validation. Alternatively, Level 2 merchants, at their own discretion, must complete an annual onsite assessment conducted by a PCI SSC approved Qualified Security Assessor (QSA) rather than complete an annual self-assessment questionnaire. once per year

1. Merchants completing the SAQ A, A-EP or D are required to engage a QSA or ISA for annual compliance validation.

2. Merchants completing the SAQ B, B-IP, C-VT, C or P2PE may now self-assess without the use of a QSA or ISA for compliance validation

Network Scan conducted by an Approved Scanning Vendor (ASV) or Qualified Security Assessor (QSA)

once per quarter
Level 3 E-commerce merchants with 20 000 to 1 million annual transactions in total for Mastercard or Visa Completing annual Self-Assessment Questionnaire (SAQ) required once per year
Network Scan conducted by an Approved Scanning Vendor (ASV) or Qualified Security Assessor (QSA) once per quarter
Level 4 All other merchants Annual Self-Assessment Questionnaire (SAQ) at merchant’s discretion Recommended once per quarter
Network Scan conducted by an Approved Scanning Vendor (ASV) or Qualified Security Assessor (QSA) Recommended once per year

Keep in mind, that you’ll need to perform:

  • Security audit by a certified auditor acting as Qualified Security Assessor (QSA) at the legal entities that are presented on the official PCI DSS website.
  • Scanning of the network by a qualified net scanning vendor acting as Approved Scanning Vendor (ASV) or Qualified Security Assessor (QSA). ASV can conduct a scanning procedure for in-store and online merchants but have no rights to perform annual audits.
  • Internal audit, during which questions in SAQ (Self Assessment Questionnaire) have to be answered. The questionnaire content depends on technical solution.

PCI DSS requirements and goals

The 12 requirements and goals in the table below will help you to understand what important actions must be performed to be compliant wiht PCI DSS rules.

Goals PCI DSS Requirements
Build and maintain a secure network and system 1. Install and maintain a firewall configuration to protect cardholder data.
2. Do not use vendor-supplied defaults for system passwords and other security parameters.
Protect cardholder data 3. Protect the stored cardholder data.
4. Encrypt transmission of cardholder data across open public networks.
Maintain a vulnerability managemenet program 5. Protect all systems against malware and regularly update anti-virus software or programs.
6. Develop and maintain secure systems and applications.
Implement strong access control measures 7. Restrict access to cardholder data under business need-to-know.
8. Identify and authenticate access to system components.
9. Restrict physical access to cardholder data.
Regularly monitor and test networks 10. Track and monitor all access to network resources and cardholder data.
11. Test security systems and processes on a regular basis.
Maintain an information security policy 12. Maintain a policy that addresses information security for all personnel.

For more information please visit https://www.pcisecuritystandards.org/

The cardholder shall have the right to contest a transaction made with the Mastercard or Visa card. Such an appeal shall be settled as chargeback in accordance with the rules established by the international card organisations.

In case of chargeback, the merchant shall provide additional documents in order to prove that the transaction took place in accordance with the requirements of the card organisations. If the merchant fails to do so or does not respond on time, the merchant shall be financially liable for the contested transaction.

The most common reasons for chargeback

Recommendations for the merchant to prevent possible chargeback

Please contact us by calling 613 2222 if you need a consultation or you wish to report a fraudulent situation. You can learn more about how to do your banking securely here.

Swedbank logo

Internet Exploreriga ei saa internetipanka avada.

Palun kasuta Google Chrome’i, Mozilla Firefoxi või Microsoft Edge’i.

Alates 23. märtsist ei ole võimalik Internet Exploreri veebibrauseri kaudu Swedbanki internetipanka avada.

Internet Exploreri kaudu ei saa teha ega kinnitada Swedbanki makseid ka teistel veebilehtedel.

Soovitame kasutada Internet Exploreri asemel Google Chrome’i, Mozilla Firefoxi või Microsoft Edge’i uusimat versiooni. Nende seadistamise juhendid leiad siit.

С 23.03.2021 Интернет-банк Swedbank недоступен в браузере Internet Explorer.

С помощью Internet Explorer невозможно авторизоваться или осуществлять платежи через Swedbank на сторонних веб-страницах.

Вместо браузера Internet Explorer мы рекомендуем использовать браузеры Google Chrome, Mozilla Firefox или Microsoft Edge. Инструкции по установке упомянутых браузеров можно найти здесь.

From 23.03.2021 Swedbank Internet Bank and Banklink is no longer available using Internet Explorer browser.

It is not possible to authorize or make payments from Swedbank on other web pages using Internet Explorer.

Instead, we suggest using Google Chrome, Mozilla Firefox or the newest version of Microsoft Edge. To find out how to install the suggested browsers, please click here.

Klienditugi - Инфо и помощь - Customer service: +372 6 310 310

Swedbank
  • Teie operatsioonsüsteem ja veebilehitseja ei ole kaasaegne ega toetatud Swedbank internetipanga poolt. Palun uuendage oma operatsioonsüsteem ja veebilehitseja või pöörduge vastava IT tehnilise spetsialisti poole.
  • The operating system of your device & your browser are too outdated to be supported by Swedbank Internet Bank. Please, update the operating system & browser or turn to IT specialist for technical help.
  • Ваш браузер или операционная система недостаточно современны для использования в интернет банке Swedbank. Пожалуйста обновите операционную систему и браузер или обратитесь за технической помощью к ИТ специалисту.

You have logged out of the Internet bank!

If you have any questions or suggestions, send a bank messages. We value your opinion!

To exit securely, please close all the browser windows!

Kind regards,
Swedbank