Soft Decline

What Is a Soft Decline?

A soft decline occurs when an issuing bank temporarily refuses a payment authorization. Unlike a hard decline (where the card is stolen, the account is closed, or the cardholder has revoked permission), a soft decline signals that the transaction might succeed under different circumstances. The issuer is saying "not right now" rather than "never."

Soft declines account for 70 to 90 percent of all payment failures. Common causes include insufficient funds, daily spending limits, temporary fraud flags, and issuer system outages. Because the underlying condition is transient, the same transaction can often be approved hours or days later without any change to the card or account.

For merchants, especially those running recurring billing, the distinction between soft and hard declines determines whether a failed charge should be retried or abandoned. Getting this wrong in either direction costs money: retrying hard declines incurs penalty fees from card networks, while failing to retry soft declines leaves recoverable revenue on the table.

How It Works

Every card payment passes through an authorization chain: the merchant sends the transaction to their acquirer, which routes it through the card network (Visa, Mastercard) to the issuing bank. The issuer evaluates the request against the cardholder's account status, balance, spending limits, and fraud models, then returns a response code.

These response codes follow the ISO 8583 standard. Card networks classify them into categories that determine retry eligibility:

• Category 1 (hard declines): permanent refusals like stolen cards (code 43), closed accounts (code 46), or invalid card numbers (code 14). No retries permitted.
• Category 2 (soft declines, retryable): temporary conditions like insufficient funds (code 51), issuer system downtime (code 91), or generic "do not honor" responses (code 05). Safe to retry with appropriate timing.
• Category 3 (soft declines, fixable): issues that require updated data before retrying, such as expired cards (code 54), CVV mismatches (code 82), or requests for additional authentication (code 1A).

Common Soft Decline Response Codes

The following response codes represent the most frequent soft declines merchants encounter:

Retry Strategies

Recovering soft-declined transactions requires matching the retry approach to the decline reason. A one-size-fits-all retry schedule leaves significant revenue unrecovered.

Decline-Aware Scheduling

The most effective retry strategies tailor timing to the specific decline code:

1. Insufficient funds (code 51): wait 1 to 3 days and align retries with common payday cycles. Merchants recover 15 to 20 percent of code 51 declines by retrying after 72 hours.
2. Issuer downtime (codes 91, 96): retry within 15 to 60 minutes through an alternate processing path.
3. Velocity limits (codes 61, 65): wait for the daily or weekly counter reset window.
4. Fraud flags (codes 05, 59): route through 3D Secure authentication before retrying. The cardholder's successful authentication often overrides the issuer's risk concern.
5. Expired credentials (code 54): trigger Visa Account Updater or Mastercard Automatic Billing Updater to fetch the replacement card number before retrying.

Exponential Backoff

Rather than retrying at fixed intervals, exponential backoff concentrates early attempts when success probability is highest. A common schedule is 1 day, 3 days, then 7 days. This approach outperforms fixed daily retries because the first 24-hour window captures the highest conversion rate, while later attempts avoid wasting the retry budget.

// Simplified decline-aware retry schedule
const retryDelays = {
  '51': [1, 3, 7],      // Insufficient funds: days
  '91': [0.01, 0.04],   // Issuer down: hours (15min, 1hr)
  '65': [1, 2],          // Velocity limit: days
  '05': [1, 3, 7],      // Do not honor: days
  '1A': [0],             // Auth required: immediate 3DS redirect
};

function getNextRetry(code, attemptNumber) {
  const delays = retryDelays[code] || [1, 3, 7];
  if (attemptNumber >= delays.length) return null;
  return delays[attemptNumber];
}

Card Network Retry Limits

Card networks enforce strict limits on retry attempts, and penalties for exceeding them have increased significantly since 2024:

• Visa: maximum 15 reattempts per 30-day rolling window for soft declines. Hard decline retries incur $0.10 domestic or $0.15 international per attempt from the first reattempt.
• Mastercard: maximum 10 attempts in 24 hours or 35 in a 30-day period. The excessive authorization fee reached $0.50 per violation in January 2025, up from $0.10 in 2022.

Best practice is to stay well under these ceilings: 3 to 5 attempts over 10 to 14 days covers the optimal recovery window without risking penalty fees.

Impact on Subscription Businesses

For businesses running recurring billing, soft declines are the primary driver of involuntary churn: customers who intend to stay but whose payments fail. Unlike voluntary churn (where a customer cancels), involuntary churn is entirely recoverable with the right infrastructure.

The numbers are significant. Failed payments cause 20 to 40 percent of total subscriber churn across the SaaS industry. Without any decline management, businesses risk losing up to 7 percent of subscribers monthly. The global cost of failed subscription payments reached an estimated $129 billion in 2025.

Dunning Management

Dunning refers to the process of communicating with customers about failed payments and attempting recovery. A layered approach combines automated retries with customer outreach:

1. Smart retries: automated, decline-code-aware retries recover 20 to 40 percent of soft-declined charges without any customer interaction.
2. Customer notification: email and SMS alerts about failed payments achieve roughly a 49 percent recovery rate on overdue charges.
3. Card updater services: Visa Account Updater and Mastercard ABU automatically refresh expired or reissued card credentials, reducing decline rates by 15 to 25 percent.
4. In-app recovery: prompting customers to update payment methods during their next session captures updates from engaged users.

Best-in-class recovery stacks combining all four layers achieve 50 to 80 percent recovery rates on soft-declined recurring charges. The return on investment for decline management tools consistently exceeds 800 percent across the industry.

Why It Matters for Payments

Soft declines represent a fundamental friction in card-not-present payments. Every transaction must pass through a chain of intermediaries, each of which can temporarily reject it. The authorization and capture model means merchants never have certainty until the issuer approves, and even approved transactions can later result in chargebacks.

This is where stablecoin payment rails offer a structural advantage. Stablecoin transactions use a push-based model: the customer initiates and signs the payment directly from their wallet. There is no issuing bank to decline the transaction, no velocity limits imposed by intermediaries, and no expired credentials to manage. If the wallet holds sufficient balance and the user approves the transaction, it settles with finality.

For subscription businesses, this eliminates the entire involuntary churn problem. Platforms like Spark enable stablecoin payments on Bitcoin infrastructure, offering merchants a payment rail where soft declines simply cannot occur. The subscription billing infrastructure shifts from managing decline recovery to processing guaranteed settlements.

Risks and Considerations

Misclassifying Decline Types

The most costly mistake in decline handling is treating a hard decline as a soft decline (or vice versa). Retrying a hard-declined transaction violates card network rules and incurs penalty fees. Conversely, abandoning a soft-declined charge without retrying forfeits recoverable revenue. Some response codes are ambiguous: code 05 ("Do Not Honor") is technically a soft decline but may indicate the issuer has a permanent concern. Building robust classification logic requires ongoing maintenance as card networks periodically reclassify codes.

Evolving Network Rules

Visa and Mastercard have tightened retry rules and increased penalty fees substantially since 2024. In April 2024, Visa reclassified several response codes between categories. Mastercard raised its excessive authorization fee to $0.50 in January 2025 and introduced a $0.09 credential continuity fee in April 2025 for recurring payments using outdated card data. Merchants must continuously update their retry logic to reflect these changes or risk escalating fees.

Customer Experience

Aggressive retry strategies can create a poor customer experience. A customer whose card is repeatedly charged (even unsuccessfully) may see multiple pending authorizations on their statement, reducing their available balance. Excessive dunning emails can feel intrusive. The best recovery systems balance persistence with transparency: notifying customers about failures, providing easy ways to update payment methods, and respecting reasonable retry limits.

Regional Variation

Soft decline rates vary significantly by region. Markets with older banking infrastructure, lower card penetration, or stricter strong customer authentication requirements tend to have higher decline rates. European merchants face additional declines from SCA enforcement under PSD2, where transactions failing to meet authentication requirements are declined with code 1A. Cross-border transactions also face elevated decline rates because foreign issuers apply stricter fraud screening to international charges.

This glossary entry is for informational purposes only and does not constitute financial or investment advice. Always do your own research before using any protocol or technology.