A compromised card refers to a credit or debit card whose information has been stolen, exposed, or accessed by unauthorized individuals, potentially allowing them to make fraudulent transactions.
Common ways a card can be compromised
Data breaches – Hackers gain access to card information from retailers, banks, or payment processors.
Skimming – Devices placed on ATMs or gas pumps capture card data when you swipe.
Phishing scams – Fraudsters trick you into giving your card details through fake emails, texts, or websites.
Lost or stolen cards – If someone physically steals your card, they may use it fraudulently.
Online theft – Malware or insecure websites can capture your card details during online shopping.
Signs your card may be compromised
Any of the following signs can indicate that your Payhawk card has been compromised:
Unauthorized or unfamiliar charges on your account.
Alerts from Payhawk about suspicious activity.
Your card is suddenly declined.
You receive a notice from Payhawk or a merchant about a data breach.
What to do if your card is compromised
When a card is compromised and subsequently frozen or closed, no further transactions can be processed. Unauthorized attempts will be automatically rejected to ensure the security of your account.
Immediately freeze the compromised card to prevent further unauthorized transactions. The card can remain frozen while investigations are underway.
Notify a Payhawk administrator at your company about the case. Payhawk administrators are authorized to close compromised cards permanently and issue secure replacement cards in your name.
For security reasons, Payhawk will not automatically issue a new card to replace the compromised one.
Request a new card as a replacement for the compromised one from the Cards app in the Payhawk mobile app or web portal.
A Payhawk administrator at your company can issue a replacement virtual or physical card on your behalf, too, from the Payhawk web portal.
Close the compromised card permanently after the replacement card has been issued and any disputes resolved to prevent further use under any circumstances. Note that a compromised card will not be reopened under any circumstances, as reopening it can jeopardize ongoing fraud disputes.
Closing a compromised card
Only a Payhawk Administrator can permanently close a card. To close a compromised card:
Go to Cards > Cards in the Payhawk Web Portal or Payhawk Mobile App.
Select the compromised card.
Open the three-dot menu next to the card.
Select Close card.
Tick the confirmation checkbox and click Close card to confirm.
When closing a card, note the following:
Closing a card is permanent and cannot be undone. Past transactions remain available for accounting purposes.
If the card has linked team cards, close those individually first.
Closing a card frees up card capacity starting from the next billing period.
If the cardholder needs to make purchases urgently, issue a temporary virtual card before closing the compromised one.
Issuing a replacement card
A Payhawk Administrator can issue a replacement virtual or physical card from the Payhawk Web Portal. Replacement cards are billed as part of the monthly subscription.
When issuing a replacement card, note the following:
Virtual cards are active immediately after issuance.
Physical cards require activation upon delivery.
For recurring payments linked to the compromised card, update merchants with the new card details to avoid interruptions.
Best practices for handling compromised cards
During investigations, always freeze the card to allow any fraudulent transactions to be contested while preserving evidence of misuse.
Promptly report the case to your Payhawk administrator as soon as possible to initiate the replacement and secure your account.
Only authorized Payhawk account administrators can manage card replacements and closures to maintain Payhawk's secure procedures.
Regularly monitor your account activity feed for unauthorized attempts.
Follow up on fraud disputes to ensure they're resolved without complications.