UK contactless cap removed: what changed on 19 March 2026
The FCA removed the regulatory £100 contactless cap on 19 March 2026. In practice, every major UK bank is holding the £100 limit voluntarily. The cumulative £300 cap was also removed; banks now set their own thresholds. The mobile-wallet path (Apple Pay, Google Pay) is unaffected and remains the cleanest route to higher-value contactless because biometric authentication on the phone counts as SCA.
The history of the UK contactless cap
- 2007: First UK contactless rollout. £10 cap.
- 2010: Cap raised to £15.
- 2012: £20.
- 2015: £30.
- April 2020: Raised to £45 to reduce PIN-pad contact during the pandemic.
- October 2021: Raised to £100 (alongside introduction of the £300 cumulative cap).
- 19 March 2026: Regulatory cap removed entirely. £300 cumulative cap also removed.
What the FCA actually did
The FCA removed the regulatory limit. It did not mandate an increase. Banks and card issuers are free to set their own limits at any level. Most major UK banks have chosen to hold the £100 limit voluntarily for fraud-control reasons. The regulatory cap is gone; the practical cap, for now, remains £100 at most issuers.
The change was part of a smarter-regulation review of UK financial rules post-Brexit and aligned with the broader Payment Systems Regulator and FCA work on cross-border interchange and authentication. See our cross-border interchange guide for the related PSR cap appeal.
Bank positions as of May 2026
| Issuer | Single-transaction limit | Cumulative limit |
|---|---|---|
| Lloyds, Halifax, Bank of Scotland | £100 | £300 cumulative; PIN periodic |
| Barclays | £100 | £300 cumulative |
| NatWest, RBS, Ulster | £100 | £300 cumulative |
| HSBC, First Direct | £100 | £300 cumulative |
| Santander UK | £100 | £300 cumulative |
| Monzo | £100, with selective opt-in to £200 for verified cardholders | £300 cumulative |
| Starling | £100 | £200 cumulative |
| Revolut UK | £100 | £300 cumulative |
| Tide | £100 | £200 cumulative |
Issuer positions verified against bank help pages May 2026. Subject to change.
Mobile wallet is the cleaner path above £100
Apple Pay, Google Pay, Samsung Pay and similar mobile wallets are not affected by the contactless cap because the wallet itself authenticates the cardholder via biometric (Face ID, Touch ID, fingerprint) before initiating the transaction. That authentication satisfies SCA. Mobile-wallet contactless transactions can run to any amount the issuer accepts, with no chip-and-PIN required.
For higher-ticket UK merchants (jewellers, dentists, hotels, premium restaurants), encouraging mobile-wallet use is the cleanest route to higher-value contactless. Practical steps:
- Train staff to check the customer's phone is unlocked and ready before tapping
- Add Apple Pay and Google Pay to the customer-facing terminal display
- Brief customers that mobile wallet skips the PIN step
Strong Customer Authentication (SCA) and the cap
Under PSD2, transactions in the UK must be SCA-authenticated unless an exemption applies. The historical £100 contactless cap aligned with the "low-value contactless" exemption (no SCA needed for transactions under £100, up to a cumulative spend before SCA was triggered).
With the cap removed, the SCA exemption logic still applies in the same way:
- Card contactless under the issuer's threshold: SCA-exempt
- Card contactless above the issuer's threshold: SCA required, terminal prompts for chip-and-PIN
- Mobile-wallet contactless: SCA satisfied by phone biometric, no terminal prompt regardless of amount
For practical merchant impact: nothing changes for the customer experience. The cap was already enforced by the issuer; it is still enforced by the issuer.
Acquirer position by major UK acquirer
- Dojo Go: respects issuer decision. Per-merchant ceiling configurable via Dojo Hub.
- SumUp Solo: respects issuer decision. £100 hard floor for chip-and-PIN prompt as of May 2026.
- Stripe Reader S700: respects issuer decision. Stripe Terminal SDK allows custom ceiling.
- Square Terminal: respects issuer decision. Square dashboard allows merchant ceiling.
- Zettle Reader 2: respects issuer decision. PayPal Zettle does not expose merchant ceiling.
- Adyen and Worldpay: respect issuer decision. Tier-one terminals allow per-merchant ceilings via account manager.
Should you raise your own contactless ceiling?
Three considerations:
- Customer experience. Higher-ticket merchants benefit when customers can tap-and-go on a £150 transaction. Currently mobile wallet is the only practical route.
- Fraud risk. Higher-value contactless without PIN carries marginally higher fraud exposure. UK chargeback liability rules treat contactless-fraud disputes against the issuer (not merchant) for properly authenticated transactions, but acquirer-side risk profiling still applies.
- Customer queue impact. PIN-fallback adds 5-10 seconds per transaction. For peak-hour hospitality, mobile-wallet adoption matters.
Most UK SMBs have no need to change their setup. The change matters most for jewellers, dentists, premium restaurants and other higher-ticket merchants where contactless-above-£100 friction was a real-world pain point.
What to expect over 2026-2027
Three plausible trajectories for the UK contactless landscape:
- Stable at £100: banks continue to hold £100 voluntarily; no material change for most merchants.
- Selective higher tiers: challenger banks lift the limit selectively for verified cardholders (Monzo already piloting £200 opt-in).
- Industry-wide step: Visa or Mastercard mandate a higher industry limit (£150 or £200) and major banks comply. This requires a card-scheme decision, not an FCA decision.
No UK industry timeline is announced for option 3 as of May 2026.
Frequently asked questions
What changed on 19 March 2026?
The Financial Conduct Authority removed the regulatory £100 limit on contactless transactions in the UK. The limit had been £30 (until April 2020), then £45, then £100 since October 2021. The 19 March 2026 change leaves the limit to be set by individual banks and card schemes rather than by regulation.
Has the contactless limit actually gone up in practice?
Mostly no. As of May 2026, the major UK card issuers (Lloyds, Barclays, NatWest, HSBC, Santander, plus the challenger banks Monzo, Starling, Revolut, Tide) are holding the £100 limit voluntarily. The regulatory cap is gone but the practical cap remains £100 at most issuers. Some smaller credit-only providers have raised individual cardholder limits selectively.
Why did the FCA remove the cap?
The cap was originally a fraud-control measure and a Strong Customer Authentication (SCA) anchor under PSD2. With biometric SCA now widespread (mobile wallet authentication via Face ID, Touch ID), and chip-and-PIN remaining available as a fallback, the FCA judged the regulatory cap was no longer necessary. The cap removal was part of a broader smarter-regulation review of post-Brexit UK financial rules.
What about the cumulative spend cap (£300)?
The £300 cumulative spend cap (no more than £300 of contactless without a chip-and-PIN verification) was removed at the same time. Card issuers can still apply their own cumulative limits. In practice most major UK issuers retain a cumulative threshold of £200 to £400, with chip-and-PIN periodically requested.
Do I need to update my card terminal?
For most UK terminals (Dojo Go, Stripe Reader S700, SumUp Solo, Square Terminal, Zettle Reader 2), no. The terminal hardware does not enforce the cap; it transmits the transaction and the issuer decides whether to authorise. If the terminal has a hard-coded £100 floor for prompting chip-and-PIN, the acquirer will push a software update.
What is Strong Customer Authentication (SCA) and how does the cap interact with it?
SCA is a PSD2 requirement that high-value or unauthenticated card transactions need two-factor authentication. The historical £100 cap aligned with the SCA "low-value contactless" exemption. Now that the cap is removed, contactless transactions above £100 still trigger the SCA requirement, which on a card means chip-and-PIN. On a mobile wallet (Apple Pay, Google Pay), the biometric authentication on the phone counts as SCA, so larger contactless via mobile wallet works without a PIN.
Should I encourage customers to use mobile wallets?
For higher-ticket merchants (jewellers, dentists, hotels, restaurants with cover charges), yes. Mobile wallets let customers tap-and-go above £100 without a PIN because the wallet itself authenticates. For UK merchants this reduces friction and chargeback risk on higher-value contactless. Apple Pay and Google Pay both count as fully SCA-authenticated transactions.
Do chargebacks change with the cap removal?
Slightly. Higher-value contactless transactions carry higher fraud risk simply because the absolute amounts are bigger. Mastercard and Visa issuer rules around contactless-fraud chargebacks apply identically to amounts above £100. The merchant who wants to limit exposure can still set a custom contactless ceiling at the terminal level (most acquirers allow this).
Need a UK terminal that handles higher contactless cleanly?
Higher-ticket merchants benefit from terminals that support strong mobile-wallet UX, configurable contactless ceilings and reliable chip-and-PIN fallback. Our matcher surfaces the right pick by trade and ticket size. No obligation, no upfront fees.
Open quote form →Director, AcceptCard
Oliver leads AcceptCard's editorial and comparison research. With a background in UK commercial finance, he oversees provider analysis, rate verification, and industry reporting across all verticals.
Last reviewed: 10 May 2026