An authorization rule (Auth Rule) is a control you can set to better manage the transactions on your cards. It enables you to allow or block transactions in specific countries, and allow or block transactions at specific merchant types.

To minimize conflict, any given entity (program, account, card) that makes up your program can only have one Auth Rule directly applied to it. However, any higher-level entity's Auth Rule will apply to all entities below it - e.g., a given card's transactions will be subject to the Auth Rule applied to the account that the card belongs to AND the Auth Rule applied to the program that the card belongs to.

Auth Rule Schema

{
  "token": String,
  "allowed_countries": List, 
  "blocked_countries": List, 
  "allowed_mcc": List,
  "blocked_mcc": List, 
  "state": String,
  "program_level": Boolean, 
  "card_tokens": List,
  "account_tokens": List
}


token	Globally unique identifier for the Auth Rule
allowed_countries	Countries in which the Auth Rule will permit transactions, listed in uppercase ISO 3166-1 alpha-3 three character abbreviations. Note that Lithic maintains a list of countries in which all transactions are blocked; "allowing" those countries in an Auth Rule will not override the Lithic-wide restrictions
blocked_countries	Countries in which the Auth Rule will decline transactions, listed in uppercase ISO 3166-1 alpha-3 three character abbreviations
allowed_mcc	Merchant category codes for which the Auth Rule will permit transactions, listed in ISO 18245 four-digits. Note that Lithic maintains a list of MCCs for which all transactions are blocked; "allowing" those MCCs in an Auth Rule will not override the Lithic-wide restrictions
blocked_mcc	Merchant category codes for which the Auth Rule will decline transactions, listed in ISO 18245 four-digits
state	Indicates whether the Auth Rule is `ACTIVE` or `INACTIVE`
program_level	Boolean indicating whether the Auth Rule will be applied at the program level
card_tokens	Array of card_token(s) identifying the cards that the Auth Rule will apply to
account_tokens	Array of account_token(s) identifying the accounts that the Auth Rule will apply to

🚧
Note that the use of MCC or country restrictions beyond the terms included in your cardholder agreement with end-users may require additional steps to ensure compliance with card network policies. Use of these restrictions is an agreement from the API user that the restrictions are in compliance with your cardholder agreement terms. Reach out to your Customer Success rep for additional support.

Create Auth Rules

Creates an authorization rule and applies it at the program, account, or card level.

📘
This endpoint will reject an attempt to create an Auth Rule that conflicts with an existing Auth Rule that applies to the target entity. For example, if a program level Auth Rule blocks transactions in Canada, and an attempt is made to create a card level Auth Rule to allow transactions in Canada (on a card belonging to that program), the POST /auth_rules call will be rejected.

POST https://api.lithic.com/v1/auth_rules

Sample Request

curl https://api.lithic.com/v1/auth_rules \
  -X POST \
  -H "Authorization: YOUR_API_KEY" \
  -H "Content-Type: application/json" \
  -d '
{
      "allowed_countries":["USA"],
      "allowed_mcc":["3000", "3001"],
      "program_level": true
}
'

Sample Response

{
    "allowed_countries": ["USA"],
    "blocked_countries": [],
    "allowed_mcc": ["3000", "3001"],
    "blocked_mcc": [],
    "token": "d39e680e-af95-47ad-a78e-2415a0c8a81f",
    "program_level": true,
    "state": "ACTIVE",
    "card_tokens": [],
    "account_tokens": []
}

To successfully create an Auth Rule, at least one type of control parameter (country control, MCC control) and only one type of entity parameter (card, account, program-level) should be included in the request.


allowed_countries (optional)	List of countries in which the Auth Rule will permit transactions. E.g., to allow transactions in the US and Canada only, input "USA" and "CAN". List. Permitted values: List of uppercase ISO 3166-1 alpha-3 three character abbreviations. Note that only this field OR `blocked_countries` can be used for a given Auth Rule.
blocked_countries (optional)	List of countries in which the Auth Rule will automatically decline transactions. E.g., to block transactions in the US and Canada only, input "USA" and "CAN". List. Permitted values: List of uppercase ISO 3166-1 alpha-3 three character abbreviations. Note that only this field OR `allowed_countries` can be used for a given Auth Rule.
allowed_mcc (optional)	List of merchant category codes for which the Auth Rule will permit transactions. E.g., to permit transactions only at Shoe Stores, input "5661". List. Permitted values: List of ISO 18245 four-digit MCCs. Note that only this field OR `blocked_mcc` can be used for a given Auth Rule.
blocked_mcc (optional)	List of merchant category codes for which the Auth Rule will automatically decline transactions. E.g., to block transactions only at Shoe Stores, input "5661". List. Permitted values: List of ISO 18245 four-digit MCCs. Note that only this field OR `allowed_mcc` can be used for a given Auth Rule.
card_tokens (optional)	List of cardtoken(s) identifying the cards that the Auth Rule will apply to. _List. Permitted values: List of 36-digit version 4 UUIDs (including hyphens). Note that if this parameter is included, `account_tokens` and `program_level` cannot. However, one of the three parameters must be included.
account_tokens (optional)	List of accounttoken(s) identifying the accounts that the Auth Rule will apply to. _List. Permitted values: List of 36-digit version 4 UUIDs (including hyphens). Note that if this parameter is included, `card_tokens` and `program_level` cannot. However, one of the three parameters must be included.
program_level (optional)	Boolean indicating whether the Auth Rule should be applied at the program level (`true` if yes; `false` if no) String. Permitted values: `true`, `false`. Note that if this parameter is included, `card_tokens` and `account_tokens` cannot. However, one of the three parameters must be included.

Update Auth Rules

Update the properties associated with an existing authorization rule.

PUT https://api.lithic.com/v1/auth_rules/{auth_rule_token}

Sample Request

curl https://api.lithic.com/v1/auth_rules/d39e680e-af95-47ad-a78e-2415a0c8a81f \
  -X PUT \
  -H "Authorization: YOUR_API_KEY" \
  -H "Content-Type: application/json" \
  -d '
{
      "allowed_countries":["USA","CAN"],
      "blocked_mcc":["3000","3001"]
}
'

Sample Response

{
    "allowed_countries": ["USA","CAN"],
    "blocked_countries": [],
    "allowed_mcc": ["3000","3001"],
    "blocked_mcc": [],
    "token": "d39e680e-af95-47ad-a78e-2415a0c8a81f",
    "program_level": true,
    "state": "ACTIVE",
    "card_tokens": [],
    "account_tokens": []
}

To update an Auth Rule, at least one type of control parameter (country control, MCC control) should be included in the request. Note that using this endpoint will update the entire configuration of the Auth Rule, not just the parameters passed in.


allowed_countries (optional)	List of countries in which the Auth Rule will permit transactions. E.g., to allow transactions in the US and Canada only, input "USA" and "CAN". List. Permitted values: List of uppercase ISO 3166-1 alpha-3 three character abbreviations. Note that only this field OR `blocked_countries` can be used for a given Auth Rule.
blocked_countries (optional)	List of countries in which the Auth Rule will automatically decline transactions. E.g., to block transactions in the US and Canada only, input "USA" and "CAN". List. Permitted values: List of uppercase ISO 3166-1 alpha-3 three character abbreviations. Note that only this field OR `allowed_countries` can be used for a given Auth Rule.
allowed_mcc (optional)	List of merchant category codes for which the Auth Rule will permit transactions. E.g., to permit transactions only at Shoe Stores, input "5661". List. Permitted values: List of ISO 18245 four-digit MCCs. Note that only this field OR `blocked_mcc` can be used for a given Auth Rule.
blocked_mcc (optional)	List of merchant category codes for which the Auth Rule will automatically decline transactions. E.g., to block transactions only at Shoe Stores, input "5661". List. Permitted values: List of ISO 18245 four-digit MCCs. Note that only this field OR `allowed_mcc` can be used for a given Auth Rule.

List Auth Rules

List the properties and entities (program, accounts, and cards) associated with an existing authorization rule. If no Auth Rule token is provided, this endpoint will return all of the Auth Rules under the program.

GET https://api.lithic.com/v1/auth_rules/{auth_rule_token}

Sample Request

curl https://api.lithic.com/v1/auth_rules/d39e680e-af95-47ad-a78e-2415a0c8a81f \
  -H "Authorization: YOUR_API_KEY" \
  -H "Content-Type: application/json"

Sample Response

{
    "allowed_countries": [
            "USA",
            "CAN"
    ],
    "blocked_countries": [],
    "allowed_mcc": [],
    "blocked_mcc": [
            "3000",
            "3001"
    ],
    "token": "d39e680e-af95-47ad-a78e-2415a0c8a81f",
    "program_level": true,
    "state": "ACTIVE",
    "card_tokens": [],
    "account_tokens": []
}

Apply Auth Rule to Entity

Applies an existing authorization rule to a program, account(s), or card(s).

POST https://api.lithic.com/v1/auth_rules/{auth_rule_token}/apply

Sample Request

curl https://api.lithic.com/v1/auth_rules/d39e680e-af95-47ad-a78e-2415a0c8a81f/apply \
  -X POST \
  -H "Authorization: YOUR_API_KEY" \
  -H "Content-Type: application/json" 
  -d '
{
      "account_tokens": ["ecbd1d58-0299-48b3-84da-6ed7f5bf9ec3"]
}
'

Sample Response

{
    "allowed_countries":["USA","CAN"],
    "blocked_countries": [],
    "allowed_mcc": [],
    "blocked_mcc": ["3000","3001"],
    "token": "d39e680e-af95-47ad-a78e-2415a0c8a81f",
    "program_level": true,
    "state": "ACTIVE",
    "card_tokens": [],
    "account_tokens": ["ecbd1d58-0299-48b3-84da-6ed7f5bf9ec3"]
}


card_tokens (optional)	List of card_token(s) identifying the cards that the Auth Rule will apply to. List. Permitted values: List of 36-digit version 4 UUIDs (including hyphens). Note that if this parameter is included, `account_tokens` and `program_level` cannot. However, one of the three parameters must be included.
account_tokens (optional)	List of account_token(s) identifying the accounts that the Auth Rule will apply to. List. Permitted values: List of 36-digit version 4 UUIDs (including hyphens). Note that if this parameter is included, `card_tokens` and `program_level` cannot. However, one of the three parameters must be included.
program_level (optional)	Boolean indicating whether the Auth Rule should be applied at the program level (`true` if yes; `false` if no) String. Permitted values: `true`, `false`. Note that if this parameter is included, `card_tokens` and `account_tokens` cannot. However, one of the three parameters must be included.

Remove Auth Rule from Entity

Remove an existing authorization rule from a program, account(s), or card(s). Note that any Auth Rule not applied to an entity will be automatically deactivated (i.e., status will be set to INACTIVE).

DELETE https://api.lithic.com/v1/auth_rules/remove

Sample Request

curl https://api.lithic.com/v1/auth_rules/remove/ \
  -X DELETE \
  -H "Authorization: YOUR_API_KEY" \
  -H "Content-Type: application/json" 
  -d '
{
    "account_tokens":["ecbd1d58-0299-48b3-84da-6ed7f5bf9ec1"]
}
'

Sample Response

{
    "account_tokens": ["ecbd1d58-0299-48b3-84da-6ed7f5bf9ec1"],
    "card_tokens": [],
    "program_level": false
}


card_tokens (optional)	List of card_token(s) identifying the cards that the Auth Rule will apply to. List. Permitted values: List of 36-digit version 4 UUIDs (including hyphens). Note that if this parameter is included, `account_tokens` and `program_level` cannot. However, one of the three parameters must be included.
account_tokens (optional)	List of account_token(s) identifying the accounts that the Auth Rule will apply to. List. Permitted values: List of 36-digit version 4 UUIDs (including hyphens). Note that if this parameter is included, `card_tokens` and `program_level` cannot. However, one of the three parameters must be included.
program_level (optional)	Boolean indicating whether the Auth Rule should be applied at the program level (`true` if yes; `false` if no) String. Permitted values: `true`, `false`. Note that if this parameter is included, `card_tokens` and `account_tokens` cannot. However, one of the three parameters must be included.

Merchant Category Codes (MCCs)

The below set of merchant category codes (MCCs) is provided for reference as you create and update Auth Rules.

Note that codes are subject to change and may differ by card network. The below codes and descriptions are for informational purposes only, and Lithic cannot guarantee that each will match those maintained by the networks. Additional MCCs not listed below can be passed in to the Create Auth Rules and Update Auth Rules endpoints to fit your use case.

Please refer to network-published MCC materials for the most recent information. We also recommend referring to actual data from past transactions on your cards to build the list of MCCs that you would like to allow or block via an Auth Rule.

Supported MCCs:

MCC	Description
0742	Veterinary Services
0763	Agricultural Co-operatives
0780	Horticultural and Landscaping Services
1520	General Contractors-Residential and Commercial
1711	Air Conditioning, Heating, and Plumbing Contractors
1731	Electrical Contractors
1740	Insulation, Masonry, Plastering, Stonework, and Tile Setting Contractors
1750	Carpentry Contractors
1761	Roofing and Siding, Sheet Metal Work Contractors
1771	Concrete Work Contractors
1799	Contractors, Special Trade – Not Elsewhere Classified
2741	Miscellaneous Publishing and Printing
2791	Typesetting, Plate Making, and Related Services
2842	Sanitation, Polishing, and Specialty Cleaning Preparations
3000-3299, 4511	Airlines, Air Carriers
3351-3441	Car Rental Agencies
3501-3790, 3816, 3835	Lodging – Hotels, Motels, Resorts
4011	Railroads – Freight
4111	Transportation – Suburban and Local Commuter Passenger, including Ferries
4112	Passenger Railways
4119	Ambulance Services
4121	Limousines and Taxicabs
4131	Bus Lines
4214	Motor Freight Carriers, Trucking – Local/Long Distance, Moving and Storage Companies, Local Delivery
4215	Courier Services – Air and Ground, Freight Forwarders
4225	Public Warehousing – Farm Products, Refrigerated Goods, Household Goods Storage
4411	Cruise Lines
4457	Boat Leases and Boat Rentals
4468	Marinas, Marine Service/Supplies
4511	Air Carriers, Airlines – Not Elsewhere Classified
4582	Airports, Airport Terminals, Flying Fields (does not include merchants located within airport terminals)
4722	Travel Agencies and Tour Operators
4784	Bridge and Road Fees, Tolls
4789	Transportation Services – Not Elsewhere Classified
4812	Telecommunications Equipment Including Telephone Sales
4814	Telecommunication Services (Including Prepaid and Recurring Phone Services)
4816	Computer Network/Information Services
4821	Telegraph Services
4829	Money Transfer
4899	Cable, Satellite, and Other Pay Television and Radio Services
4900	Utilities – Electric, Gas, Heating Oil, Sanitary, Water
5013	Motor Vehicle Supplies and New Parts
5021	Office and Commercial Furniture
5039	Construction Materials – Not Elsewhere Classified
5044	Office, Photographic, Photocopy, and Microfilm Equipment
5045	Computers, Computer Peripheral Equipment, Software
5046	Commercial Equipment – Not Elsewhere Classified
5047	Dental/Laboratory/Medical/Ophthalmic Hospital Equipment and Supplies
5051	Metal Service Centers and Offices
5065	Electrical Parts and Equipment
5072	Hardware Equipment and Supplies
5074	Plumbing and Heating Equipment
5085	Industrial Supplies – Not Elsewhere Classified
5094	Precious Stones and Metals, Watches and Jewelry
5099	Durable Goods – Not Elsewhere Classified
5111	Stationery, Office Supplies, Printing, and Writing Paper
5122	Drugs, Drug Proprietors, and Druggists Sundries
5131	Piece Goods, Notions, and Other Dry Goods
5137	Men's, Women's, and Children's Uniforms and Commercial Clothing
5139	Commercial Footwear
5169	Chemicals and Allied Products – Not Elsewhere Classified
5172	Petroleum and Petroleum Products
5192	Books, Periodicals, and Newspapers
5193	Florists Supplies, Nursery Stock, and Flowers
5198	Paints, Varnishes, and Supplies
5199	Nondurable Goods – Not Elsewhere Classified
5200	Home Supply Warehouse Stores
5211	Building Materials, Lumber Stores
5231	Glass, Paint, Wallpaper Stores
5251	Hardware Stores
5261	Lawn and Garden Supply Stores
5271	Mobile Home Dealers
5300	Wholesale Clubs
5309	Duty Free Stores
5310	Discount Stores
5311	Department Stores
5331	Variety Stores
5399	Miscellaneous General Merchandise Stores
5411	Grocery Stores, Supermarkets
5422	Freezer, Locker Meat Provisioners
5441	Candy, Nut, Confectionery Stores
5451	Dairy Products Stores
5462	Bakeries
5499	Miscellaneous Food Stores – Convenience Stores, Markets, Specialty Stores
5511	Automobile and Truck Dealers – Sales, Service, Repairs, Parts, and Leasing
5521	Automobile and Truck Dealers – (Used Only) – Sales
5531	Auto Store, Home Supply Stores
5532	Automotive Tire Stores
5533	Automotive Parts, Accessories Stores
5541	Service Stations (with or without Ancillary Services)
5542	Fuel Dispenser, Automated
5551	Boat Dealers
5561	Camper Dealers, Recreational and Utility Trailers
5571	Motorcycle Shops and Dealers
5592	Motor Home Dealers
5598	Snowmobile Dealers
5599	Miscellaneous Automotive, Aircraft, and Farm Equipment Dealers – Not Elsewhere Classified
5611	Men’s and Boy’s Clothing and Accessories Stores
5621	Women's Ready to Wear Stores
5631	Women’s Accessory and Specialty Shops
5641	Children's and Infants' Wear Stores
5651	Family Clothing Stores
5655	Sports Apparel, Riding Apparel Stores
5661	Shoe Stores
5681	Furriers and Fur Shops
5691	Men’s and Women’s Clothing Stores
5697	Alterations, Mending, Seamstresses, Tailors
5698	Wig and Toupee Shops
5699	Accessory and Apparel Stores – Miscellaneous
5712	Equipment, Furniture, and Home Furnishings Stores (except Appliances)
5713	Floor Covering Stores
5714	Drapery, Window Covering and Upholstery Stores
5718	Fireplace, Fireplace Screens, and Accessories Stores
5719	Miscellaneous Home Furnishing Specialty Stores
5722	Household Appliance Stores
5732	Electronic Sales
5733	Music Stores – Musical Instruments, Pianos, Sheet Music
5734	Computer Software Stores
5735	Record Shops
5811	Caterers
5812	Eating Places, Restaurants
5813	Bars, Cocktail Lounges, Discotheques, Nightclubs, and Taverns – Drinking Places (Alcoholic Beverages)
5814	Fast Food Restaurants
5815	Digital Goods – Audiovisual Media Including Books, Movies, and Music
5816	Digital Goods – Games
5817	Digital Goods – Software Applications (Excluding Games)
5818	Digital Goods – Multi-Category
5912	Drug Stores, Pharmacies
5921	Package Stores, Beer, Wine, and Liquor
5931	Second Hand Stores, Used Merchandise Stores
5932	Antique Shops – Sales, Repairs, and Restoration Services
5933	Pawn Shops
5935	Salvage and Wrecking Yards
5937	Antique Reproduction Stores
5940	Bicycle Shops – Sales and Service
5941	Sporting Goods Stores
5942	Book Stores
5943	Office, School Supply, and Stationery Stores
5944	Clock, Jewelry, Watch, and Silverware Store
5945	Game, Toy, and Hobby Shops
5946	Camera and Photographic Supply Stores
5947	Card, Gift, Novelty, and Souvenir Shops
5948	Leather Goods and Luggage Stores
5949	Fabric, Needlework, Piece Goods, and Sewing Stores
5950	Crystal and Glassware Stores
5960	Direct Marketing – Insurance Services
5961	Mail Order Houses Including Catalog Order Stores
5962	Direct Marketing – Travel-Related Arrangement Services
5963	Door-to-Door Sales
5964	Direct Marketing – Catalog Merchants
5965	Direct Marketing – Combination Catalog and Retail Merchants
5966	Direct Marketing – Outbound Telemarketing Merchants
5967	Direct Marketing – Inbound Telemarketing Merchants
5968	Direct Marketing – Continuity/Subscription Merchants
5969	Direct Marketing – Other Direct Marketers – Not Elsewhere Classified
5970	Artist Supply Stores, Craft Shops
5971	Art Dealers and Galleries
5972	Stamp and Coin Stores – Philatelic and Numismatic Supplies
5973	Religious Goods Stores
5975	Hearing Aids – Sales, Service, Supply Stores
5976	Orthopedic Goods – Artifical Limb Stores
5977	Cosmetic Stores
5978	Typewriter Stores – Rentals, Sales, Service
5983	Fuel Dealers – Coal, Fuel Oil, Liquefied Petroleum, Wood
5992	Florists
5993	Cigar Stores and Stands
5994	News Dealers and Newsstands
5995	Pet Shops – Pet Food and Supplies
5996	Swimming Pools – Sales and Supplies
5997	Electric Razor Stores – Sales and Service
5998	Tent and Awning Shops
5999	Miscellaneous and Specialty Retail Stores
6010	Financial Institutions – Manual Cash Disbursements
6011	Financial Institutions - Automated Cash Disbursements (e.g., ATM)
6012	Financial Institutions – Merchandise and Services
6051	Quasi Cash – Merchant (e.g., travelers cheques, foreign currency, money orders)
6211	Securities – Brokers/Dealers
6300	Insurance Sales, Underwriting, and Premiums
6381	Insurance Premiums
6513	Real Estate Agents and Managers – Rentals
7011	Lodging – Hotels, Motels, Resorts – Not Elsewhere Classified
7012	Timeshares
7032	Recreational and Sporting Camps
7033	Campgrounds and Trailer Parks
7210	Cleaning, Garment and Laundry Services
7211	Laundry Services – Family and Commercial
7216	Dry Cleaners
7217	Carpet and Upholstery Cleaning
7221	Photographic Studios
7230	Barber and Beauty Shops
7251	Hat Cleaning Shops, Shoe Repair Shops, Shoe Shine Parlors
7261	Funeral Service and Crematories
7273	Dating Services
7276	Tax Preparation Service
7277	Debt, Marriage, Personal – Counseling Service
7278	Buying/Shopping Clubs, Services
7296	Clothing Rental – Costumes, Uniforms, Formal Wear
7297	Massage Parlors
7298	Health and Beauty Spas
7299	Other Services – Not Elsewhere Classified
7311	Advertising Services
7321	Consumer Credit Reporting Agencies
7332	Blueprinting and Photocopying Services
7333	Commercial Art, Graphics, Photography
7338	Quick Copy, Reproduction and Blueprinting Services
7339	Stenographic and Secretarial Support Services
7342	Exterminating and Disinfecting Services
7349	Cleaning and Maintenance, Janitorial Services
7361	Employment Agencies, Temporary Help Services
7372	Computer Programming, Data Processing, and Integrated Systems Design Services
7375	Information Retrieval Services
7379	Computer Maintenance, Repair, and Services – Not Elsewhere Classified
7392	Consulting, Management, and Public Relations Services
7393	Detective Agencies, Protective Agencies, Security Services including Armored Cars, Guard Dogs
7394	Equipment Rental and Leasing Services, Furniture Rental, Tool Rental
7395	Photo Developing, Photofinishing Laboratories
7399	Business Services – Not Elsewhere Classified
7512	Automobile Rental Agency – Not Elsewhere Classified
7513	Truck Rental
7519	Motor Home and Recreational Vehicle Rental
7523	Automobile Parking Lots and Garages
7531	Automotive Body Repair Shops
7534	Tire Retreading and Repair Shops
7535	Automotive Paint Shops
7538	Automotive Service Shops
7542	Car Washes
7549	Towing Services
7622	Electronic Repair Shops
7623	Air Conditioning and Refrigeration Repair Shops
7629	Appliance Repair Shops, Electrical and Small
7631	Clock, Jewelry, and Watch Repair Shops
7641	Furniture – Reupholstery and Repair, Refinishing
7692	Welding Repair
7699	Miscellaneous Repair Shops and Related Services
7800	Government Owned Lottery
7801	Government-Licensed Casinos (Online or Internet Gambling)
7802	Government-Licensed Horse/Dog Racing
7829	Motion Picture and Video Tape Production and Distribution
7832	Motion Picture Theaters
7841	Video Entertainment Rental Stores
7911	Dance Halls, Studios and Schools
7922	Theatrical Producers (except Motion Pictures), Ticket Agencies
7929	Bands, Orchestras, and Miscellaneous Entertainers – Not Elsewhere Classified
7932	Pool and Billiard Establishments
7933	Bowling Alleys
7941	Athletic Fields, Commercial Sports, Professional Sports Clubs, Sports Promoters
7991	Tourist Attractions and Exhibits
7992	Golf Courses, Public
7993	Video Amusement Game Supplies
7994	Video Game Arcades/Establishments
7995	Gambling Transactions
7996	Amusement Parks, Carnivals, Circuses, Fortune Tellers
7997	Clubs – Country Clubs, Membership (Athletic, Recreation, Sports), Private Golf Courses
7998	Aquariums, Dolphinariums, Zoos, and Seaquariums
7999	Recreation Services – Not Elsewhere Classified
8011	Doctors – Not Elsewhere Classified
8021	Dentists, Orthodontists
8031	Osteopathic Physicians
8041	Chiropractors
8042	Optometrists, Ophthalmologists
8043	Opticians, Opticians Goods, and Eyeglasses
8044	Optical Goods and Eyeglasses
8049	Chiropodists, Podiatrists
8050	Nursing and Personal Care Facilities
8062	Hospitals
8071	Dental and Medical Laboratories
8099	Health Practitioners, Medical Services – Not Elsewhere Classified
8111	Attorneys, Legal Services
8211	Schools, Elementary and Secondary
8220	Colleges, Universities, Professional Schools, and Junior Colleges
8241	Schools, Correspondence
8244	Schools, Business and Secretarial
8249	Schools, Trade and Vocational
8299	Schools and Educational Services – Not Elsewhere Classified
8351	Child Care Services
8398	Organizations, Charitable and Social Service
8641	Associations – Civic, Social, and Fraternal
8651	Organizations, Political
8661	Organizations, Religious
8675	Automobile Associations
8699	Organizations, Membership – Not Elsewhere Classified
8734	Testing Laboratories (Non-Medical)
8911	Architectural, Engineering, and Surveying Services
8931	Accounting, Auditing, and Bookkeeping Services
8999	Professional Services – Not Elsewhere Classified
9211	Court Costs including Alimony and Child Support
9222	Fines
9223	Bail and Bond Payments
9311	Tax Payments
9399	Government Services – Not Elsewhere Classified
9402	Postal Services – Government Only

Auth Rules FAQ

How do Auth Rules at various entity levels interact with each other?

When multiple Auth Rules apply to a given transaction, the most restrictive set of conditions will apply. For example, if an account-level Auth Rule allows transactions in the US and Canada, and a card-level Auth Rule allows for only the US, transactions on that card will be restricted to the US only. In an example with MCC controls, if a program-level Auth Rule blocks MCC 1234 and a card-level Auth Rule allows MCC 5678, then transactions on that card will be permitted only on MCC 5678.

What are best practices to manage Auth Rules at scale?

We recommend applying Auth Rules at the highest-level entity possible. For example, if you know that all of your cards will only ever be used on a set of 3 MCCs, we recommend applying that Auth Rule to your program. This will make your Auth Rule easier to manage if you need to add a fourth MCC to the allowed list, as opposed to updating an Auth Rule and applying it to many individual cards.

How do country restrictions work for e-commerce?

Country restrictions are based on the country parameter contained in the merchant schema part of a transaction object - i.e., country of card acceptor. This data tends to be highly accurate for card-present transactions, but can be less accurate for e-commerce transactions. For cards that will have a large number of e-commerce use cases, we recommend conducting testing for specific merchants before implementing a country restriction.

How do Auth Rules work if I already have ASA implemented?

In the transaction flow, any Auth Rules that apply to your program, account, or card will be checked before you are sent an ASA request. In other words, the transaction will be automatically declined before an ASA request is generated if the transaction's attributes violate any of the configured Auth Rules.

How will I know if an authorization on my card program was declined because of an Auth Rule?

In the transaction object, the topline `result` field and the `result` field contained in the `events` array will indicate if it was declined because of an Auth Rule. See [this section]() of our documentation for more detail.