Credit Card Security Code Guide

A CVV is usually three digits, but it can be four digits on some cards. Visa, Mastercard, and Discover cards all use a three-digit CVV, while American Express is the exception that uses a four-digit CVV on its credit cards.

The CVV is required anytime you cannot provide a merchant with a physical card, such as an online or phone purchase. This security code is necessary because it allows the merchant to confirm that you have the card with you at the time of the purchase.

A CVV number is a 3-digit or 4-digit security code that's used to prevent fraudulent charges on a credit card or debit card. The CVV, or card verification value, can be found on the back of all Visa, Mastercard, and Discover cards as well as on the front of American Express cards. A CVV number is often referred to by other names, such as a card verification code (CVC), card verification number (CVN), and card security code (CSC), among others.

You will need to provide a CVV number anytime you make a “card not present” purchase. These are transactions in which you are unable to pay with a physical credit card, such as online or phone purchases. The CVV number confirms that you are in possession of the card at the time of purchase, and increases the likelihood that the transaction is legitimate. A merchant may also ask you to provide your billing address, card expiration date, or other information to ensure the card is not being used for unauthorized transactions.

To protect your CVV, never write down your code where someone may be able to view it, and provide it only when you're paying for an online or phone transaction with a reputable merchant. If your CVV is ever stolen and used for an unauthorized purchase, your card provides a $0 fraud liability benefit that protects you from having to pay for any fraudulent transactions.

Your Visa card number and security code help verify the card's authenticity. You need them, along with the card's expiration date, to make purchases online or over the phone. Luckily, your Visa card number and security code are easy to distinguish once you know what you're looking for.

How Visa card numbers and security codes work:

• Card number: A Visa credit card number can be 13-to-19 digits long. It's usually printed right on the front of your card. But some cards have begun to put the number on the back as an extra security measure. Either way, you can't miss it. Your card number is completely unique. It's the primary piece of information merchants use to identify your account.
• Security code: A Visa card's security code is a 3-digit number printed on the back, to the right of the signature box. It plays a big role in online and phone transactions, since you can't just swipe, tap or insert your card. The code helps confirm that a card is legitimate. If someone just has your card number but not the security code, they can't use it.
• Expiration date: The month and last two numbers of the year in which your Visa credit card expires are printed on the front of your card. It might say “08/24,” for example. It's the date through which the card remains valid. In other words, your card will work through the last day of the month listed. This is the last big piece of information you'll need to make purchases online or by phone.

When you swipe, tap or insert your card at a store, you won't have to worry about your Visa card number and security code, as the computer system deals with them automatically. But it's good to know where everything is when you need to make a purchase manually. For example, the security code for Visa, Mastercard and Discover is 3 digits on the back of your card. For American Express cards, it's 4 digits on the front.

The American Express security code is a 4-digit number on the front of the card – located above the card number, on the right side. The security code is important for making purchases online or over the phone, when the cardholder can't swipe or insert their Amex card in person. Those transactions will require three components – the card number, the security code and the card's expiration date. So if someone gets access to the card number but doesn't have the security code, they cannot use the card to make fraudulent purchases.

You might also see an American Express security code referred to as a CSC or CID. Those stand for Card Security Code and Card Identification Number. Other card networks may use terms like Card Verification Value, Card Verification Code or Card Verification Data.

If you get a replacement American Express card, it will come with a new security code and expiration date for added protection.

You can find your Walmart Credit Card security code on the back of your card. The 3-digit number printed on the back of your card to the right of the signature panel is the security code that is unique to your card.

When making a transaction, the security code, along with other card details are sent to your issuer for authentication. This happens automatically when the credit card is swiped, "dipped" into an EMV chip reader or tapped onto a contactless terminal.

But you will almost always need to provide it for transactions where the physical card is not part of the payment process. So credit card transactions completed online or over the phone generally require cardholders to produce this number to ensure that the transaction is not fraudulent.

A security code is the same thing as a CVV, or card verification value. A CVV, also known as a card security code (CSC) or card identification number (CID), among other names, is a 3-digit or 4-digit number used to help prevent fraud.

Visa, Mastercard and Discover cards all assign 3-digit security codes, which typically appear on the back of the card, next to the signature panel. American Express credit cards have a 4-digit security code, which you will find on the front of the card.

Regardless of what it's called, the security code is designed to minimize unauthorized transactions on your account. When you make a “card not present” transaction, such as those completed online or over the phone, you will almost always have to provide the merchant with this code to complete the purchase. Aside from this, you should never share your code with anyone else.   

You can check out our credit card security code guide to learn more about how CVVs work.

The code on the back of a credit card is a three-digit number known as a Card Security Code (CSC) or Card Verification Value (CVV), among other names. This code is on the back of credit cards because it helps to prevent fraudulent purchases from being made online or over the phone. You'll need to provide it whenever you make a so-called “card not present” transaction – such as a purchase from an online merchant. A credit card's security code is not always three digits long or on the back of your card, however. American Express cards are the exception – they have a four-digit security code on the front.

That's the simple explanation, at least. But there are a few other important things you should know about your security code.

Here's some more info about the code on the back of your credit card:

• The CSC is also known as a Card Verification Code (CVC) or Card Verification Value (CVV). It is usually a 3- or 4-digit number printed on a credit card, not embossed like the card number.
• When you make a “card not present” purchase, either online or over the phone, you will have to provide the code. This confirms you are in possession of the card and the transaction is most likely legitimate.
• You don't have to provide the code on the back (or front) of your credit card when you make purchases in person. The CSC is read when the card is swiped, dipped or tapped.
• The length and location of the security code on a credit card depends on the card's network. On a Visa, Mastercard or Discover card, it is a three-digit number on the back of the card, to the right of the signature panel. With an American Express card, the code is four digits on the front of the card, above and to the right of the card number.
• The security code on a credit card is not the same as a card's PIN. A PIN, which you might use to do a cash advance or verify an in-person purchase with some card readers, is not printed on your card. You generally have to request one by phone.

Remember, the code on the back (or front) of a credit card is a safety feature, so be sure to protect it. Never provide your code to anyone but a merchant when you're paying them. And never send it in an e-mail, which is almost always an unsecured transmission.

If someone has access to your card number, expiration date, and security code, an online merchant would have no reason to suspect a purchase is fraudulent. The good news is that credit cards all give you a $0 fraud liability guarantee. As long as you report any unauthorized purchases to your card's issuer, you won't have to pay for them.

Your Mastercard security code is a 3-digit number on the back of the card, just to the right of the signature panel. Also known as a Card Verification Value (CVV), among other names, its purpose is to verify that the card is legitimate when making phone or online purchases. You're not required to provide a Mastercard security code when you make purchases in person. The merchant's card reader will read the code when you swipe, insert, or tap your credit card.

It's important to note that the Mastercard security code is a protective measure, so you should never share your code (aside from providing it to a merchant when paying for a transaction). That said, credit cards come with a $0 fraud liability guarantee, so if your Mastercard security code is compromised, contact the issuer immediately to avoid being charged for any unauthorized transactions.

Mastercard SecureCode

Mastercard also offers cardholders an extra layer of protection through its SecureCode feature, which requires users to enter a PIN to validate online purchases. Mastercard SecureCode will eventually be replaced by Identity Check, which will serve a similar purpose.

Your Visa security code is the three-digit number located on the back of a Visa credit card, debit card or gift card, typically to the right of the signature panel. This number is used in combination with the card number and expiration date to authenticate your card when you make a purchase online or over the phone.

Key Facts About Visa Security Codes

• Types of cards that have it: Credit cards, debit cards and gift cards
• Location: Back of card, typically to the right of the signature panel
• Number of digits: 3
• Purpose: Helps authenticate your card
• When you have to give it: When making a purchase online or over the phone

When you make a purchase with your Visa credit card in person, you don't need to provide the security code, as the card reader will get the information automatically. You will need it when making transactions online and over the phone, though.

Your Visa security code is necessary because it helps prevent credit card fraud. You should only provide this number to merchants. If someone else has your security code, card number and expiration date, they can make transactions using your card even if they don't have the physical card.

Yes, in some cases, retailers might need your CVV for a credit card charge refund. Depending on the method used to issue the refund, it is possible that you might be asked for a CVV, PIN, expiration date and so on.

The CVV code is required as proof of card ownership when making an online or over the phone purchase. The same proof might be required when issuing a refund.

Key Things to Know About Providing Retailers Your CVV Number

• If a retailer asks for your CVV number in order to issue a refund, make sure that it is the same retailer that you made the purchase from. If they're not a reputable retailer, or you're not sure about their identity, then it would be best not to provide your CVV number.

• If you still have doubts, you can always call the credit card issuer and ask for advice. They might also be able to provide you with a chargeback for your purchase.

• You don't have to worry too much about credit card fraud as long as you catch it. All major issuers have $0 fraud liability guarantees, meaning they won't require you to pay for fraudulent transactions.