We implemented solutions for handling two-factor authentication when setting up PBS (Betalingsservice) direct debit agreements, for Kobborg Consult's online fundraising platform and their call centre system.
The background is that Nets/PBS has tightened the rules for setting up Betalingsservice agreements: the donor now has to actively confirm the agreement — typically via MitID or a one-time code by SMS — before any money can be withdrawn. That protects both the donor from unauthorised charges and the organisation from agreements that would otherwise be rejected later.
Our work was to bake the two-factor flow into the existing systems so that both online sign-ups on the fundraising platform and phone sign-ups through the call centre walk the donor through the confirmation step without breaking the flow fundraisers and donors are already used to. The solution also handles the error cases (abandoned confirmations, expired codes, retries) cleanly, so the system never ends up with half-completed agreements hanging around.
