Visa 11.3 - No Authorization
Transaction was processed without obtaining authorization from the issuer.
Overview
Every card transaction requires authorization. Processing without auth creates automatic liability for the merchant. This commonly occurs with offline terminals, floor limits, or system failures.
When This Code Applies
- No authorization request sent
- Transaction below floor limit (if applicable)
- System failure prevented auth
- Manual transaction without auth
- Voice auth not properly documented
Conditions for Valid Dispute
Issuer Must Verify
- No authorization on file
- Transaction was processed
- Cardholder did not authorize
Scenarios
- Offline terminal processing
- Floor limit transactions
- Backup/manual processing
- System timeout without retry
Time Frames
| Scenario | Dispute Window |
|---|---|
| Standard | 120 days from transaction date |
Floor Limits
Current Floor Limits
Most card-not-present transactions have zero floor limit meaning all transactions require authorization.
| Transaction Type | Typical Floor Limit |
|---|---|
| E-commerce | $0 (auth required) |
| Card-present | $0-$25 (varies) |
| Some hospitality | Higher limits may apply |
Floor Limit Rules
- Zero floor limit is standard for CNP
- Even small transactions need auth
- Floor limits are processor/acquirer dependent
- Airlines and hotels have special rules
Representment Options
Limited options:
1. Authorization Was Obtained
Evidence required:
- Authorization code
- Auth request/response logs
- Network records
- Matching timestamps
2. Voice Authorization
Evidence required:
- Voice auth approval code
- Call recording (if available)
- Operator reference number
- Time and date of call
3. Special Circumstances
Evidence required:
- System outage documentation
- Processor confirmation
- Good faith processing proof
Why This Happens
Common Causes
- Offline mode - Terminal not connected
- Floor limit assumption - Thinking small amounts don't need auth
- System failure - Auth system down
- Manual processing - Paper backup without auth
- Incremental transactions - Adding to existing auth
Prevention Strategies
System Configuration
- Always online - No offline processing
- Zero floor limit - Require auth for all amounts
- Auth validation - Block capture without auth
- Backup procedures - Have proper offline protocol
Technical Controls
- Real-time monitoring - Know when auth is down
- Queue and retry - Don't skip auth, wait for it
- Auth code validation - Verify before capture
- Fallback alerts - Notification when offline
Process Controls
- No paper backup - Or strict auth requirements for paper
- Voice auth procedures - Documented process
- Training - Staff knows auth is mandatory
- Daily reconciliation - Catch missing auths
Win Rate Expectations
| Defense Type | Expected Win Rate |
|---|---|
| Proof of authorization | 85-95% |
| Voice auth documented | 60-80% |
| No authorization on file | Under 10% |
Common Mistakes
- Assuming offline is okay - It's not for CNP
- Floor limit misunderstanding - Zero floor limit is standard
- Voice auth without code - Need actual approval code
- Incremental without new auth - Each increment needs auth
Related Codes
- 11.1 - Card Recovery Bulletin
- 11.2 - Declined Authorization
- 12.1 - Late Presentment
Next Steps
Got this chargeback?
- Pull authorization logs → Was auth actually obtained?
- Check for voice auth → Do you have an approval code?
- Verify system records → Auth request/response logs?
- If no auth exists → Accept the chargeback (limited defense)
Prevent future 11.3 chargebacks:
- Never process without authorization
- Set zero floor limits for CNP transactions
- Implement queue-and-retry for system outages
- Review authorization basics