Like most of us, since the Target hack, I’ve heard statements on how EMV is THE answer to credit card fraud, and how it’s been working great in Europe which has had it for 20 years. If the business case were so compelling, wouldn’t EMV have made the trip across the Atlantic a long time ago? Let’s take a look at the numbers.
According to a report from Aite and ACI, with just 10% of credit card users reporting they’ve experienced fraud in the last five years, Germany’s fraud rate would seem to be very low as compared to the US (37%). While there must be many factors than just technology involved, at first blush, with such a huge disparity, this looks very promising for EMV. But then, taking a look at the UK, which adopted EMV in 2006, the fraud rate for Britons is 31% — not so far behind the US. So is credit card fraud in the UK really three times that in Germany?
Perhaps there could be other factors involved. According to data from the European Central Bank, Britons use their cards more. With twice as many transactions per card and more cards per person, 2.4 for each Briton and 1.68 for each German according to the ECB, Britons have almost three times as many transactions per inhabitant. So, Britons use their cards three times as much as Germans, and they have three times the fraud. That’s at least one way of looking at the data – I’m sure there are others.
So, perhaps culture and payment habits have something to do with the fraud rate.
Now let’s take a look at the US where the number of credit cards is 3.5 per person. Is the US fraud rate really that much higher than the UK? Americans have a consumer lifestyle much like Britons and I would think would use their cards in a similar fashion. That’s just a working assumption and certainly open to challenge.
As noted above, 37% of Americans and 31% of Britons report experiencing credit card fraud. Since Americans have 3.5 cards per person and Britons 2.4, this would mean a fraud probability of 10.6%/card/person in the U.S. and 12.9%/card/person in the UK. Hence, one reason that Americans may experience more incidents of fraud than Britons is that they have more cards per person. There are other reasons as well – such as the percentage of cards that are authorized online or offline in a particular country. All I am trying to point out here is that EMV is not going to solve the problem of consumer credit card fraud.
No doubt, EMV chip and pin could have a big impact on point-of-sale face-to-face fraud, but it will push fraud to other means, and once the big honeypot of US consumers is on EMV, I’d expect that Europe will see an uptick in cross-border fraud. The numbers as best as I can tell for the fraction of transaction fraud in US is 0.0005, and for Europe it is roughly 0.0004, with many countries well below that and several well above it.
With fraud incidence per card roughly equal in US and Europe and the cost of fraud only a tiny fraction of the transaction value — much less even than card fees — it’s easy to see why EMV has not yet made the leap across the Atlantic. EMV will be helpful, yes – particularly for merchants doing face to face transactions – but looking at the data, the best way to avoid credit card fraud is to follow the German example and just avoid using credit cards.
Read Complimentary Relevant Research
Top Strategic Predictions for 2019 and Beyond: Practicality Exists Within Instability
Technology-based change is happening continuously, and most organizations struggle to see the change in advance. Continuous change can...
View Relevant Webinars
Comments or opinions expressed on this blog are those of the individual contributors only, and do not necessarily represent the views of Gartner, Inc. or its management. Readers may copy and redistribute blog postings on other blogs, or otherwise for private, non-commercial or journalistic purposes, with attribution to Gartner. This content may not be used for any other purposes in any other formats or media. The content on this blog is provided on an "as-is" basis. Gartner shall not be liable for any damages whatsoever arising out of the content or use of this blog.