Most active commenters
  • naasking(3)

←back to thread

Stripe has decided to nuke my entire business

1624 points yaythefuture | 23 comments | 15 Sep 22 16:33 UTC | HN request time: 0.001s | source | bottom

Saw https://news.ycombinator.com/item?id=32261868 from a couple weeks ago and figured I'd share my own story.

3 weeks ago, I woke up to a pissed off customer telling me her payments were broken. My startup uses Stripe Connect to accept payments on behalf of our clients, and when I looked into it, I found that Stripe had decided to deactivate her account. Reason listed: 'Other'.

Great.

I contact Stripe via chat, and I learn nothing. Frontline support says "we'll look into it." Days go by, still nothing. Meanwhile, this customer is losing a massive amount of business and suffering.

After a few days, my team and I go at them from as many angles as possible. We're on the phone, we're on Twitter, we're reaching out to connections who work there / used to work there, and of course, we reach out to patio11. All of these support channels give us nothing except "we've got a team looking into it". But Stripe's frontline seems to be prohibited from offering any other info, I assume for liability reasons. "We wouldn't want to accidentally tell you the reason this happened, and have it be a bad one."

We ask: 1. Why was this account flagged? "I don't have that information" 2. What can we do to get this fixed? "I don't have access to that information. 3. Who does? "I don't have access to that information" 4. What can you do about this? "I've escalated your case. It's being reviewed."

I should mention at this point that I've been running this business since 2016, my customers have been more or less the same since then, and I've had (back when it was apparently possible) several phone conversations with Stripe staff about my business model. They know exactly who our customers are and what services we offer, and have approved it as such.

After a week of templated email responses and endless anxiety, we finally got an email from Stripe letting us know that they had reviewed the account and reactivated it. We never got a reason for why any of this had happened, despite asking for one multiple times. Oh well, still good news right? Except nope, this was only the beginning.

This morning I woke up to an email that about 35% of my client accounts had been deactivated and were "Under review", the kicker here being that one of those accounts is the same one they already reviewed last week! This is either the work of incompetent staff or (more likely) a bad algorithm. No reasonable human could make this mistake after last week's drama.

So currently, my product doesn't work for 35% of my customers. Cue torrent of pissed off customer emails.

And the best part is, this time I have an email from Stripe this time: Apparently these accounts are being flagged, despite the notes on our file, and despite the review completed literally last week, as not in compliance with Stripe's ToS. They suggest that if I believe this was done in error, I should reach out to customer support. Oh, you mean the same customer support that can't give me literally any information at all other than "We have a team looking into it"? The same customer support that won't give me any estimates as to how long it's going to take to put this fire out? The same customer support that literally looked into this a week ago and found no issues!?

I feel like I'm going crazy over here. These accounts have hundreds of thousands of dollars in them being held hostage by an utterly incompetent team / algorithm that seems to lack any and all empathy for the havoc they wreak on businesses when they pull the rug out from under them with no warning, nor for the impact they have on customers when they all of a sudden lose all ability to make money. And all that for an account that has been using Stripe for nearly 7 years without issue!

This goes so far beyond "customer support declining at scale." If lack of customer support means that critical integrations start to fail, that's not a customer support failure, that's a fundamental business failure.

Show context
vertis ◴[15 Sep 22 16:58 UTC] No.32854986[source]
The worst part about these type of cases is not being able to get a straight answer. There is a whole subset of big tech that has taken the "you must be a fraudster therefore we can't unfuck the situation" approach to customer support.

It's an arms race with fraudsters that eventually sucks in legitimate businesses.

replies(7): >>32855290 #>>32855358 #>>32855842 #>>32855954 #>>32856643 #>>32857733 #>>32860938 #
1. brk ◴[15 Sep 22 17:17 UTC] No.32855290[source]
IMO it is not the "you must be a fraudster" logic as much as "we have enough other customers that we can burn you without much worry of repercussions".

As much as I hate government intervention in business, it really seems like there needs to be a way to force companies to actually be direct, accessible, and reactive in cases like this. I went through something similar with Venmo randomly locking my account after I received a large-ish payment, and not getting any real action or sense of urgency on their side.

replies(9): >>32855910 #>>32856062 #>>32856072 #>>32857057 #>>32857370 #>>32857390 #>>32857749 #>>32858423 #>>32859004 #
2. Buttons840 ◴[15 Sep 22 17:55 UTC] No.32855910[source]
This seems similar to anti-trust in a way. Taking a wider view of anti-trust, the goal is to keep the market healthy by ensuring there are choices available to consumers; there are no unhealthy monopolies and anti-competitive practices. Well, as a consumer I would like to be able to choose tech products where I can get effective support. Customer support is lacking in some markets, it's not healthy. The anti-trust fix is to bust up a company, but I don't see how that would help here. This is a new economic problem where dominant companies are run by computers and algorithms that serve 95% of the people, but if you're in the unlucky 5% you're screwed.
3. bobsmooth ◴[15 Sep 22 18:07 UTC] No.32856062[source]
>it really seems like there needs to be a way to force companies to actually be direct, accessible, and reactive in cases like this

That's what SLAs/contracts are for.

4. vertis ◴[15 Sep 22 18:07 UTC] No.32856072[source]
Yeah, I had a trouble with Wise (formerly transferwise), with a rather large payment. The annoying thing was they delayed the payment of the 10% deposit, I sent the contract, approved, and then a month later they held up the balance as well.

I still love them. That issue aside they allow me to have a personal and business account in multiple currencies, and don't screw me on the exchange rates.

5. aksss ◴[15 Sep 22 19:10 UTC] No.32857057[source]
Not to put on too much tinfoil but the government probably benefits from opaque ban processes in large oligopolistic private companies. “It’s private enterprise, sure we may request it periodically but their cooperation is entirely voluntary based on their civic pride.”
6. mellavora ◴[15 Sep 22 19:33 UTC] No.32857370[source]
I think it is called GDPR in Europe

Depending on amounts, small claims in the US might be viable.

7. smsm42 ◴[15 Sep 22 19:35 UTC] No.32857390[source]
> we have enough other customers that we can burn you without much worry of repercussions

This. This is a common tune to about 100% of "BigSomething killed my business" stories that appear on HN almost weekly. If you go to BigSomething, you get a polished, automated, convenient, cheap service that would not hesitate to kill you account the moment something looks wrong to any of the robots watching it, and the customer support (the non-robotic kind, I don't count "we are working on it" auto-replies) is not part of the package because it doesn't scale. You have to either accept this as the risk for doing business, or not use BigSomething as you primary or critical vendor.

8. naasking ◴[15 Sep 22 20:04 UTC] No.32857749[source]
Making competition easier in this space is another way to solve it. If Stripe had 15 competitors all of whom were API compatible so you could switch in 5 minutes, any bad PR would drive customers away in droves.

Government has made entry to this space hard which is why there aren't enough competitors, so they're really the source of the problem.

replies(3): >>32858115 #>>32858223 #>>32858243 #
9. borski ◴[15 Sep 22 20:36 UTC] No.32858115[source]
Might be time to build an analytics.js equivalent, but for payment processing. A single API lib that you can then use to process payments with Stripe, Braintree, etc.
10. vkou ◴[15 Sep 22 20:47 UTC] No.32858223[source]
Government hasn't made entry to this space hard, the banks that Stripe partners with have. Because they don't want to deal with high-risk transactions. They are the gatekeepers here, and Stripe has to bend over backwards to make them happy. They'd much rather burn individual customers, than jeopardize their entire business.
replies(2): >>32858430 #>>32871306 #
11. scohesc ◴[15 Sep 22 20:48 UTC] No.32858243[source]
From what I understand, the government introduced legislation sometime in the past 20-30 years (Was it the PATRIOT act? I can't remember) - which I believe put the onus of blame on the credit card processing companies instead of the government when it came to fighting fraud.

I assume the government didn't want to put all the work in of making sure the currency they've societally coerced the world to use isn't being used for fraudulent transactions, they'd rather pawn it off onto the banks because it's easier for the government to not do anything about it.

Now the banks have been shooting anything and everything that has even a semblance of fraud with account locks/funds freezing/etc., because if they don't the government will go after them.

How does this system make any sense to anybody? So frustrating. Let me exchange currency with anybody for any reason at any time.

12. whiplash451 ◴[15 Sep 22 21:02 UTC] No.32858423[source]
Being direct, accessible and reactive at scale when you’re processing billions of dollars of transactions simply is not possible.

Stripe and other companies are doing their best, but they are in an arms race with more and more elaborate fraudsters. At planet scale.

replies(1): >>32860063 #
13. naasking ◴[15 Sep 22 21:03 UTC] No.32858430{3}[source]
Certain banking regulations make those transactions "high risk".
replies(1): >>32858811 #
14. vkou ◴[15 Sep 22 21:39 UTC] No.32858811{4}[source]
Some of them are due to government regulations like 'don't launder money' and 'don't process money for illegal activities'. Which are, like, basic operations of society 101 level stuff.

Others (adult services) are not due to government regulations, they are there simply there because banks don't want to deal with chargebacks.

replies(3): >>32859785 #>>32860333 #>>32867109 #
15. FredPret ◴[15 Sep 22 22:00 UTC] No.32859004[source]
This could be a simple regulation - put a burden of proof on the company, and a prescribe escalation process with comment from the customer at each stage.
16. voldacar ◴[15 Sep 22 23:22 UTC] No.32859785{5}[source]
The crime of "money laundering" was invented out of nowhere one day. Society predates it by thousands of years.
replies(2): >>32860912 #>>32874828 #
17. zht ◴[15 Sep 22 23:50 UTC] No.32860063[source]
right a company that makes billions of dollars can't hire more people to staff up their risk/compliance/fraud teams
replies(1): >>32863199 #
18. lmm ◴[16 Sep 22 00:23 UTC] No.32860333{5}[source]
> Some of them are due to government regulations like 'don't launder money' and 'don't process money for illegal activities'. Which are, like, basic operations of society 101 level stuff.

Except the operationalization of those rules is: here are some vague guidelines that you have to follow, and if we don't like you we'll retroactively decide you were committing a crime even if you followed those guidelines to the letter. See HSBC for a case in point.

19. cvalka ◴[16 Sep 22 01:32 UTC] No.32860912{6}[source]
+1 "Oceania Has Always Been at War with Eurasia"
20. whiplash451 ◴[16 Sep 22 07:29 UTC] No.32863199{3}[source]
That does not scale with the fraudsters. To have zero situations like OP is describing, Stripe would need to linearly scale its support team with the number of fraudsters, which would make their business simply non-viable.

This would be the same as saying: I want zero car accidents on the road, so I'll scale the police headcount linearly with the number of reckless drivers.

21. naasking ◴[16 Sep 22 15:10 UTC] No.32867109{5}[source]
> Some of them are due to government regulations like 'don't launder money' and 'don't process money for illegal activities'. Which are, like, basic operations of society 101 level stuff.

No, that's wrong. Firstly, as others have pointed out, society long predates any such notions.

Secondly, determining what is illegal activity, and putting a stop to it, is ostensibly the job of law enforcement and the courts, not the bank.

22. jessaustin ◴[16 Sep 22 20:03 UTC] No.32871306{3}[source]
Are we still pretending that USA government is a distinct entity from USA's large corporations? If the banks didn't like the regulations, the regulations would change. If some random elected official didn't like how the banks operated, after the next election she would be an ex-official.
23. smsm42 ◴[17 Sep 22 04:45 UTC] No.32874828{6}[source]
And that day was less than 100 years ago. "Money laundering" as a concept was invented during the Prohibition (as were a lot of other private rights violations) in order to not let alcohol sellers - which the government was not able to prosecute directly - to use their money. But most of the current US AML regulations are based on the Bank Secrecy Act from 1970.