2026-03-26 (Upcoming Change)

Acquiring

[BREAKING] Acquiring API Response Structure Updated: Risk and Authentication Fields Added for Card Transactions

• Affected Endpoints (response only):
  • Create a PaymentIntent
  • Retrieve a PaymentIntent
  • Update a PaymentIntent
  • Confirm a PaymentIntent
  • Capture a PaymentIntent
  • Cancel a PaymentIntent
  • List all PaymentIntents
  • Retrieve a PaymentAttempt
  • List all PaymentAttempts
• Changes:
  • PaymentIntent endpoints: latest_payment_attempt.payment_method type changed from string to object
  • PaymentAttempt endpoints: payment_method type changed from string to object
  • PaymentIntent — new fields added to latest_payment_attempt: auth_code, arn, rrn, advice_code
  • PaymentAttempt — new top-level fields: auth_code, arn, rrn, advice_code
  • PaymentIntent — new object added: latest_payment_attempt.authentication_data
    • Fields: cvv_result, avs_result
    • authentication_data.three_ds fields: ds_transaction_id, three_ds_version, eci, cavv, three_ds_authentication_status, three_ds_cancellation_reason
  • PaymentAttempt — new object added: authentication_data (same structure as above)
• Notes: Effective 2026-03-26

[NEW] PaymentAttempt Webhooks: New Risk and Authentication Fields for Card Transactions

• Affected Webhooks:
  • acquiring.payment_attempt.created
  • acquiring.payment_attempt.capture_requested
  • acquiring.payment_attempt.cancelled
  • acquiring.payment_attempt.failed
• Scope: Card payment transactions only (payment_method.type = "card" or "card_present")
• Changes:
  • New fields added to the notification body: auth_code, arn, rrn, advice_code
  • New object added: authentication_data
    • Fields: cvv_result, avs_result
    • authentication_data.three_ds fields: ds_transaction_id, three_ds_version, eci, cavv, three_ds_authentication_status, three_ds_cancellation_reason
• Notes: Effective 2026-03-26