A dealer payment link is a secure web link that a dealer or company sends to a customer to take a payment by credit or debit card. The customer clicks the link, enters their card details directly into the bank's 3D Secure screen, and confirms the payment with the one-time code sent to their phone. The collection is completed without the parties meeting face to face, without card details passing from hand to hand, and without the need for a POS terminal.
This method is becoming increasingly common in wholesale and dealer (B2B) sales: it is used in situations such as taking an order by phone and collecting the balance that has come due, a field sales rep taking payment on site, or a dealer collecting money from its own end customer. In this guide, we explain what a dealer payment link is, what security layer 3D Secure adds to the process, which risks it reduces, and how it fits into the B2B collection flow, with concrete examples.
What is a dealer payment link, and how does it differ from a traditional POS?
A dealer payment link is a unique payment link tied to a specific collection amount. The company or dealer generates the link by selecting the amount and the relevant customer account in the system, then sends this link to the customer via SMS, WhatsApp, email, or QR code. The customer opens the link on their own phone or computer, enters their card details, and completes the payment. In the background, the collection takes place through a connected virtual POS or payment provider (such as iyzico, PayTR, or Sipay).
With a traditional physical POS, the parties must be in the same place and the card must be run through the device. With a payment link, distance is no obstacle: a wholesaler in Istanbul can collect from its dealer in Antalya within seconds. It is also more secure than the method of having the card number read out over the phone (MO/TO), because the card details are entered directly into the bank's secure screen rather than into the seller's ear or notebook. The seller never sees the card number; this both protects the cardholder and largely relieves your company of data responsibility.
Who creates the link and who it is sent to also makes a difference. In some cases the company sends the link directly to its dealer and collects the amount due; in others the dealer sends the link to its own end customer, and the collection cascades up the chain from the bottom. B2BPro's Dealer Payment Link module focuses in particular on this second setup: your dealer sends the secure link to its end user, the payment is completed with 3D Secure, and the entire transaction remains visible in your panel.
How does remote collection with 3D Secure work?
3D Secure (3DS) is the shared security protocol that Visa and Mastercard developed for online card transactions; the "three domains" in its name represent the three parties involved in the transaction: the card-issuing bank, the seller's bank, and the verification infrastructure in between. Here is how it works: after the card details are entered, the transaction is redirected to the verification screen of the issuing bank; the one-time password (OTP) sent by SMS to the mobile phone registered with the bank is entered, or the notification from the bank's mobile app is approved. Without this confirmation, the payment is not completed.
With a dealer payment link, the flow proceeds step by step as follows: (1) the link is generated by selecting the collection amount and the customer account, (2) the link is sent to the customer via SMS/WhatsApp/QR, (3) the customer opens the link and enters their card details into the bank's secure area, (4) they confirm the 3D Secure code sent to their phone, (5) the bank approves the transaction and the collection is completed within seconds, (6) the payment information is automatically posted to the relevant customer account in the system and the balance is updated. No additional action is required on the seller's side; the moment the payment is made, the collection is considered confirmed.
Version 3D Secure 2.0 noticeably accelerated this experience for mobile devices; for low-risk transactions, the bank can calculate a risk score in the background and approve the transaction without requiring an additional password step ("frictionless" flows). Because the responsibility for verification still lies with the bank, the security layer is preserved. Since all major banks and card brands in Turkey support 3D Secure, link-based collection works smoothly regardless of which bank your dealer or customer uses.
Which risk does 3D Secure reduce: chargebacks and liability shift
The best-known risk for sellers in card-based collection is the chargeback. A chargeback occurs when the cardholder reclaims the money from their bank with the objection "I did not make this transaction" or "I do not recognize this charge"; if the objection is upheld, the amount is taken back from the seller's account. This risk is highest in collections made over the internet, without the card physically present, and the seller is forced to prove that the transaction was genuinely made by the cardholder.
This is where 3D Secure comes in. When a transaction is successfully verified with 3DS, for chargebacks stemming from fraud (lost/stolen card, the cardholder not recognizing the transaction), liability generally shifts from the seller to the card-issuing bank; this is called liability shift. This is because it is the bank that performs the identity verification and has the OTP confirmed. This provides significant protection for companies that take high-value card collections in B2B.
A word of caution is essential here: liability shift does not cover every objection. For the protection to apply, the transaction must have been successfully verified with 3DS and the objection must be fraud-based. Commercial/consumer disputes such as "the goods arrived incomplete," "the product was defective," or "the service was not as agreed" fall outside this scope; in these cases liability remains with the seller, and evidence such as delivery documents, waybills, and contracts is required. 3D Secure largely transfers fraud risk, but it does not remove responsibility for delivery and product quality.
Why does a dealer payment link work in B2B collection?
The cash flow of wholesale and dealer sales depends on receivables on term being collected on time and in full. A dealer payment link speeds up this collection. A distributor that takes an order by phone sends the payment link for the amount to its dealer while confirming the order; the dealer pays via 3D Secure, the collection is instantly posted to the customer account, and the order moves to shipment without being held up. There is no need for the question "Has the payment come in?" to bounce back and forth repeatedly between accounting and sales.
Its value is also great in field sales: instead of cash or checks during a customer visit, the field sales rep can have the customer pay by card from their own phone; there is no need to carry a POS device, and the collection is posted to the central system instantly. In the chain model where the dealer collects from its own end customer, the dealer forwards the link to the end user, and when the payment is completed both the dealer and the supplier company see the transaction in their own panel. This transparency increases trust and the speed of reconciliation in the dealer channel.
In B2BPro, this flow does not work as a separate tool but as part of the platform. The Dealer Payment Link module operates on the same data as the Collection Management (due date tracking and reminders), Customer Account Management (real-time balance), Payment Gateway Management (customer-based virtual POS and commission routing), and Bank Account Integration modules. The incoming card collection is automatically posted to the correct customer account, closes the overdue item, and is transferred bidirectionally to your ERP/accounting systems such as Logo, Mikro, SAP, Netsis, Nebim, or Paraşüt; manual receipt matching and duplicate data entry are eliminated.
Security, commissions, and compliance: what to watch out for
In card-based collection, data security is not a technical preference but an obligation. The storage, processing, and transmission of card data is subject to the PCI DSS standard; in a payment link solution, because the card details are entered directly into the PCI DSS-compliant environment of the licensed payment provider or bank, a significant part of this burden is moved away from you. The processing of customers' personal data also falls within the scope of KVKK (Turkey's data protection law); make sure your solution correctly sets up its explicit consent, disclosure, and data retention processes. B2BPro runs the collection flow in compliance with KVKK, PCI DSS, and ISO 27001 standards.
On the cost side, card-based collection carries a commission burden, and this rate varies according to the bank, the payment provider, the card type, and the number of installments. Because this burden can reach significant amounts depending on volume in B2B, it is important to be able to see which collection passes through which gateway and at what commission. B2BPro's Payment Gateway Management module lets you define a separate payment provider and commission rate for each customer account, automatically route the payment to the most cost-effective gateway, and report commissions transparently.
Operationally, there are also a few points to watch: the link should go only to the relevant customer, be single-use and time-limited, the customer account the collection belongs to should be clearly selected, and failed/incomplete payments should be trackable. In a well-designed system, because each link is matched to a specific customer account and amount, the payment is automatically posted to the correct account the moment it is completed; this eliminates the risk of incorrect matching and overlooked collections.
Key takeaways
- A dealer payment link lets you take card collections remotely via 3D Secure without sharing card details or needing a POS device; the seller never sees the card number.
- 3D Secure verifies identity through an OTP/redirection to the bank, and on successful verification shifts liability for fraud-based chargebacks from the seller to the bank.
- Liability shift covers only fraud-based objections; in commercial disputes such as "goods incomplete/defective," liability remains with the seller and proof of delivery is required.
- In B2B, link-based collection speeds up due payments, enables device-free collection in the field, and provides transparent tracking across the dealer-to-end-customer chain.
- Card-based collection requires compliance with KVKK, PCI DSS, and ISO 27001 along with commission tracking; customer-based gateway routing makes the cost transparent.
Frequently asked questions
What is the difference between a dealer payment link and taking payment by reading out a card number over the phone?
In the method of having the card number read out over the phone (MO/TO), the card details are passed to the seller and 3D Secure verification is generally not performed; this is risky in terms of both security and chargebacks. With a payment link, the customer enters the card details directly into the bank's 3D Secure screen and confirms with an OTP. The seller never sees the card number, the transaction is verified, and the opportunity arises to benefit from liability shift on fraud-based objections.
Are collections made via a payment link automatically posted to the customer account and to accounting?
In B2BPro, yes. Because each link is matched to a specific customer account and amount, the moment the customer completes the payment the collection is automatically posted to the relevant customer account, closes any overdue item, and updates the balance. The same record appears in the Collection and Customer Account Management modules; it is transferred bidirectionally to your ERP/accounting systems such as Logo, Mikro, SAP, Netsis, Nebim, and Paraşüt, so there is no manual data entry or reconciliation mismatch.
Does every payment made with 3D Secure completely eliminate chargeback risk?
No. For transactions successfully verified with 3D Secure, liability for chargebacks stemming from fraud (lost/stolen card, not recognizing the transaction) generally shifts to the card-issuing bank. However, commercial/consumer disputes such as "the goods arrived incomplete," "the product was defective," or "the service was not as agreed" fall outside this protection; in these cases liability remains with the seller, and evidence such as a waybill, delivery document, or contract may be required.
Which banks and payment providers does payment link collection work with?
Because all major banks in Turkey and Visa/Mastercard cards support 3D Secure, link-based collection works regardless of your customer's bank. In the background, B2BPro is integrated with payment providers such as iyzico, PayTR, and Sipay and with connected virtual POS terminals; with the Payment Gateway Management module you can define a separate gateway and commission rate for each customer account and automatically route the payment to the most cost-effective channel.