The Automated Clearing House (ACH) is a federally-regulated electronic network used by banks to send and receive bill payments, eChecks, direct deposit statements, and other types of transfers. This interbank network is similar to what financial institutions use for wire transfers, but ACH usually works best for batched, automated, or recurring payments.
When compared to traditional credit card processing, ACH offers important cost savings — for merchants and customers alike. Some types of ACH transfers are even free.
However, how secure is the ACH network?
Like all payment technologies, there are certain risks. Even cash doesn’t protect you 100 percent from theft or fraud. However, there exist a number of steps users can take to protect themselves when sending or receiving payments through the ACH network.
ACH is regulated by the federal government and managed by the National Automated Clearing House Association (NACHA). In order to register within the network, users must register:
These steps are comparable to what one finds in the credit card industry. However, ACH payments aren’t required to follow PCI-compliant standards. This is why merchants are encouraged to employ additional layers of protection, including:
Users must formally create individual relationships with payees and recipients by supplying the necessary routing number and bank account information.
After creating a relationship with a merchant, the payment processor adds two “micro deposits” into a user’s bank account. The user must then verify the exact penny amount of those deposits in order to begin sending or receiving money. If you’ve ever set up PayPal, you’ve gone through a similar validation process.*
Some payment providers include data encryption and tokenization with their ACH offerings. These security steps are similar to what you already find in the credit card industry.
Secure Vault Payments (SVP) is an online payment option that is added to a checkout page on a website. It allows users to initiate ACH transactions without ever sharing sensitive financial data on the merchant’s website. Users authorize all transactions directly through their online bank accounts.
As a customer, you should look for merchants who employ some or all of the above security features. However, there are also steps you can take to protect your information from prying eyes. NACHA offers a list of best practices, but these tips apply equally to all types of electronic transactions, including ACH transfers, credit card payments, and online banking.
**Here are some important tips:
Contact the Clover sales team to find out which Clover or partner solution is right for you.
*“Account Validation: A Tool for Businesses to Improve ACH Transactions,” NACHA**“24 Tips to Avoid ACH Fraud,” Bank Info Security, 10 May 2010
United States (English)