Visa 11.2 - Declined Authorization
Transaction was processed even though the authorization request was declined by the issuer.
Overview
When a merchant receives a decline response and processes the transaction anyway, full liability falls on the merchant. This is one of the most clear-cut chargeback scenarios.
When This Code Applies
- Authorization returned a decline response
- Merchant processed despite decline
- Staff override of decline decision
- System processed without auth response
Conditions for Valid Dispute
Issuer Must Verify
- Authorization request was sent
- Decline response was returned
- Transaction was still processed
- Cardholder did not authorize
Response Codes That Decline
| Code | Meaning |
|---|---|
| 05 | Do not honor |
| 14 | Invalid card number |
| 51 | Insufficient funds |
| 54 | Expired card |
| 57 | Transaction not permitted |
| 62 | Restricted card |
| 63 | Security violation |
Time Frames
| Scenario | Dispute Window |
|---|---|
| Standard | 120 days from transaction date |
Representment Options
Very limited options:
1. Authorization Was Approved
Evidence required:
- Auth approval code
- Full auth request/response log
- Network transaction records
- Timestamp matching
2. Different Transaction
Evidence required:
- Transaction IDs don't match
- Declined and processed are separate transactions
- Approved auth for processed transaction
3. Technical Error
Evidence required:
- System logs showing error
- Processor confirmation of auth issue
- Proof of good faith processing
Why This Happens
Common Causes
- Staff override - "Just run it through"
- System timeout - Assumed approval
- Multiple attempts - Wrong auth matched
- Manual entry - Bypassed auth system
- Offline processing - Terminal stored and forwarded
Prevention Strategies
System Configuration
- No decline override - Block staff from forcing
- Auth matching - Verify approval before capture
- Timeout handling - Don't assume approval
- Online-only mode - Disable offline processing
Staff Training
- Decline = No sale - No exceptions
- Multiple attempts - Each needs fresh auth
- Response code awareness - Know what codes mean
- Escalation path - Who to call for edge cases
Process Controls
- Auth-capture matching - System validation
- Decline logging - Track all declines
- Override audit - Flag any bypasses
- Daily reconciliation - Catch mismatches
Win Rate Expectations
| Defense Type | Expected Win Rate |
|---|---|
| Proof of approval (with code) | 85-95% |
| Processing error (good faith) | 30-50% |
| Override was performed | Under 5% |
Common Mistakes
- Running declined card multiple times - Each decline is a violation
- Voice auth without actual approval - Must get real approval
- Assuming system error means approved - Never assume
- Staff bypassing for "good customers" - Still liable
Related Codes
- 11.1 - Card Recovery Bulletin
- 11.3 - No Authorization
- 12.1 - Late Presentment
Next Steps
Got this chargeback?
- Check auth logs → Did you get a valid approval code?
- Verify no "force" or override was used → Staff bypassed decline?
- If you processed after decline → Accept the chargeback (no defense)
Prevent future 11.2 chargebacks:
- Never process transactions after decline response
- Train staff to accept "no" from the authorization system
- Use proper retry logic for soft declines only
- Review auth optimization