GuestyPay Protect is our comprehensive fraud prevention and payment security solution designed specifically for GuestyPay and Merchant Warrior users. This feature helps safeguard your business from chargebacks and unauthorized transactions by combining AI-driven fraud detection with 3D Secure (3DS) authentication across all your booking channels.
-
Reduced financial risk: Identify and block fraudulent credit cards before they impact your business
-
Channel-wide protection: Secure both direct bookings and Online Travel Agency (OTA) reservations
-
Enhanced payment security: Leverage 3DS authentication for transactions in the USA, Canada, and Australia
-
Complete visibility: Track all fraud detection and 3DS activities through dedicated reports
GuestyPay Protect is currently available for:
- Guesty Pro users with GuestyPay and Merchant Warrior in the USA, Canada, or Australia.
- Users accessing via Guesty's Open API.
How it works
GuestyPay Protect automatically blocks fraudulent cards for direct bookings and sends alerts for suspicious OTA reservations. When collecting payments, the system handles 3DS authentication behind the scenes, with most transactions requiring no guest action. Everything is tracked in simple reports, giving you full visibility with minimal effort. In the USA, about 65% of 3DS transactions are frictionless, requiring no action from your guests.
The feature activates on your Guesty account and covers all connected GuestyPay / Merchant Warrior accounts.
For your direct reservations
- During checkout, Guesty automatically verifies the credit card.
- If a card is flagged as potentially fraudulent, the reservation is blocked entirely.
- 3DS authentication triggers when it's time to collect payment, based on your automation rules. By default, it is required for transactions above $1,000. To change this threshold, contact the GuestyPay Risk team.
- If guest verification is needed, they'll receive an email to authenticate the transaction.
For your OTA reservations
- While we can't block OTA reservations automatically, we still validate every credit card.
- When Guesty detects a potentially fraudulent card, you'll see a fraud icon on the reservation and receive a notification.
- The 3DS authentication process works the same way as with direct reservations.
Whitelisting Guesty domains on Booking.com
For reservations from Booking.com that require 3DS authentication, guests receive an email with authentication links. To ensure these emails work properly, follow the steps below to whitelist Guesty domains in your Booking.com account.
Step by step:
- Sign in to your group account on the Booking.com extranet.
- On the homepage, select one property.
- Click Property and then click Messaging preferences.
- Click Security settings.
- Complete two-factor authentication.
- Click Add a link and enter two domains: www.guesty.com and guesty.com.
To add more links, click +.
- To apply the same settings to all properties in your account, click Apply to all properties.
- Check the approved email addresses and click Apply to all properties in the popup.
- Changes are now applied across all properties.
If any new properties are added to your Booking.com account after whitelisting all existing properties, repeat the steps again.
Access your protection reports
Follow the steps below to access your protection reports.
Step by step:
- Sign in to your Guesty account.
- In the top navigation bar, click the mode selector and select Financials mode.
- Select Guesty Pay Protect.
- Select one of the following:
-
Fraud report: View all fraud validation attempts, both approved and declined
-
3DS report: See all 3DS transactions, including authentication status