Card-Present vs. Card-Not-Present Transactions: What's the Difference?
The card in a wallet and the card number typed into a checkout form aren’t treated the same way behind the scenes, even for an identical purchase.
The short answer
A card-present transaction happens when the physical card is used directly at a terminal, through a chip insert, tap, or swipe, allowing the terminal to verify certain physical and electronic details about the card itself. A card-not-present transaction happens when only the card’s number and related details are provided, such as for an online purchase, a phone order, or a mail-in payment, without the terminal ever seeing the physical card. This distinction matters because it directly affects how fraud risk is assessed and how disputes over a transaction tend to be handled.
Why the distinction exists
When a card is physically present, a terminal using chip or contactless processing can confirm details that are much harder to fake, like a unique transaction code generated by the chip itself. A card-not-present transaction has no equivalent physical verification — it relies instead on the accuracy of the numbers entered, which is inherently easier for someone to obtain fraudulently since no physical card needs to be stolen or copied, just the information on it.
How this affects fraud risk
Because card-not-present transactions lack the physical verification layer, they’re generally considered a higher fraud risk category, and issuers and networks often apply additional scrutiny to them, such as requiring a card’s security code or verifying the billing address against what’s on file. This is also part of why some transactions get declined at checkout online more readily than the same transaction would be in person — the system is compensating for the missing physical verification with other checks.
How this affects disputes
If a card-not-present transaction turns out to be fraudulent, the process for disputing it and the way liability is typically allocated between the merchant and the issuer can differ from a card-present dispute. Generally, the party with less ability to verify the transaction at the time it occurred bears more of the risk, which is one reason merchants that process a lot of online or phone orders often invest more heavily in fraud-screening tools. Cardholders themselves are typically protected from liability either way under standard fraud protections, but the underlying handling process differs.
Everyday examples of each
A tap at a coffee shop, a chip insert at a gas station, and a swipe at a grocery store are all card-present transactions. An online purchase, a subscription charged automatically each month, and a purchase made by reading a card number over the phone are all card-not-present transactions, even though the same physical card and account are involved in every case.
The bottom line
The core difference isn’t about the merchant or the purchase amount — it’s whether the terminal or system processing the payment ever had direct contact with the physical card. That single distinction shapes how much verification is possible in the moment and how a dispute gets handled if something goes wrong later.