Ramp's fraud protection procedures

Note: This article primarily applies to Ramp Administrators. Cardholders may find other articles in the Ramp overview section to be more applicable.

Overview

Ramp is committed to providing a safe and secure platform by using industry best practices, best-in-class technology, machine learning, and innovative proprietary solutions.

To maintain the security of our users and our platform, we don’t disclose the full set of tools, methods, and procedures we use for fraud detection. However, in this article, we summarize a few of our platform’s anti-fraud and security features.

Preventing new account fraud

• We employ third-party identity verification solutions to vet the validity and authenticity of all applicants and businesses.
• We have internally developed solutions to quickly identify and address risk signals at every step of the process, from when businesses start the application process to join Ramp to new and existing accounts.

Preventing account takeovers

• We have multiple layers of defense to prevent unauthorized collection of credentials and brute force attacks on our platform.
• We require multi-factor authentication for all users who sign in with a password and use risk-based step-up authentication when a high-risk action is performed.
• We also use an automated monitoring and alert system to track suspicious user behavior, including transactions and other high-risk activities.
• If a certain transaction hits a certain risk score, our system prompts it to lock the card and alert the cardholder that the transaction may be considered fraudulent.

Advanced spend controls

• We offer merchant and transaction-level spend controls that allow customers to manage and secure all of their corporate cards and funds
• We use card network risk scores combined with internally developed logic modeled around user behavior to more accurately predict unauthorized activity and prevent fraudulent transactions.
• Lock your card or funds at any time using the steps here: How to lock my card

Ramp-specific safety advice for virtual cards and funds

• Avoid using your physical Ramp card for online purchases. Instead, use a virtual card from your dashboard.
• Avoid allowing your physical Ramp card to be taken outside your view, such as in a restaurant or parking garage. We understand this can't always be helped.
• Never give out your physical Ramp card information over the phone, via text, or email. If you must provide payment information over the phone or email, use a new virtual card for that transaction.
• Be on the lookout for suspicious, modified, or tampered terminals at gas pumps, parking garages, or other automated terminals.
• Consider provisioning a card to Apple Pay or Android Pay to use for purchases.
• Be careful when paying for things online and make sure that the website has proper security (e.g., the site URL begins with https).
• Aside from these tips, we have multi-factor authentication to provide a safeguard. You can also lock your card in real-time from your dashboard if you ever suspect fraud.

Legitimate transactions flagged as fraud

If Ramp's systems flag a transaction as fraudulent, it will be declined. This is because Ramp places a temporary lock on the card to protect against unauthorized activity.

How to resolve: Only the cardholder can clear the fraud flag. Administrators and Ramp Support cannot take this action on their behalf.

If the cardholder believes the transaction is legitimate, they canclear the fraud flag by:

• Replying 'Yes' to the SMS they receive from Ramp, confirming the transaction is legitimate, or
• Signing in to their Ramp account and manually unlocking their card.

Once the card is unlocked, the transaction can be retried. Encourage your team to respond quickly to fraud alerts to avoid disruption.

Note: If a transaction continues to be declined for fraud even after the cardholder responds to the fraud alert and/or manually unlocks the card, please contact Ramp Support.

Additional support

Learn how to recognize and respond to phishing and other scams at your business.

If you suspect your Ramp account is compromised, notice unfamiliar activity, or believe someone else may have access to your account:

• Lock any Ramp cards (physical or virtual) you believe may be compromised by following the steps in How to lock my card .
• Change your Ramp account password to a strong, unique password that you do not use for any other service.
• Enable multi-factor authentication (MFA) on your account if it is not already turned on.
• Review recent transactions on your Ramp account and cards. Flag and document any charges you do not recognize. You can follow the steps in ourDisputes at Ramp Help Center articleto let us know.