Compromised Accounts Decision Matrix

The Shared Client Compromised Account Matrix and Nonshared Client Compromised Account Matrix are tools that assist clients in making an educated decision on what action to take on your card portfolio in the event of a compromise.

The matrix looks at all the aspects of the breach, taking into account the direct impact the compromise had on your portfolio. Each element is assigned a weight value based on the severity of the breached element.

Example: A breached account number isn’t as severe as a combination of a breached account number, expiration date and CVV/CVC because you can not commit fraud with an account number alone.

The matrix is segmented into 4 sections. The first 3 sections need to be filled out by the issuer. The last section gives the suggested option based on the overall risk score (made up of the total values of sections 1-3.)

Section 1 – Type an X next to each element listed on the Compromised Account Report that was breached during the compromise.
Section 2 – Include the fraud exposure details listed on the Compromised Account Report.
Section 3 – Input your specific financial institution information, including:

• Number of accounts in portfolio
• Number of accounts compromised
• Number of accounts that were closed prior to the compromise

Based on the data entered the matrix will calculate the total number of affected accounts and provide a percentage of impact in the third section.

Based on the values entered in sections 1-3, the matrix then makes a recommendation on an action the Issuer can take on the affected cards.

Decision Matrix Sample