A Working Paper of the Sovereign Integrity Institute (SII)
Author: Locke Dauch (David Humble)
Date: April 2026
Classification: Consumer Protection / Financial Regulation / Digital Payments
SII Working Paper Series: 2026(43)
Abstract
This paper identifies a structural vulnerability in Thailand’s digital payment ecosystem: the treatment of scanned payments (QR code / payment slip transactions) as funds transfers rather than card transactions, which exempts them from chargeback rights and consumer dispute mechanisms. Through a documented case study involving a disputed transaction with a Thai insurer and the responding bank’s position on reversal authority, the paper demonstrates how the current regulatory framework creates conditions where consumers may be exposed to loss without effective banking recourse. The paper analyzes relevant provisions of the Consumer Protection Act B.E. 2522 (1979), the Electronic Transactions Act B.E. 2544 (2001), and recent regulatory developments including the Royal Decree on Digital Platform Service Businesses (2022). It concludes with policy recommendations to address identified gaps and proposes immediate consumer countermeasures.
Keywords: scanned payment, QR code payment, consumer protection, digital transactions, Thailand, payment dispute rights, regulatory fragmentation
1. Introduction
Thailand has undergone a rapid digital transformation in payments, with QR code and scanned payment systems becoming ubiquitous. The Bank of Thailand’s PromptPay infrastructure processes billions of transactions annually. However, the legal framework governing these transactions has not kept pace with their adoption.
This paper identifies a structural vulnerability: the treatment of scanned payments (QR code / payment slip transactions) as funds transfers rather than card transactions. This classification has significant consequences for consumers:
| Transaction Type | Legal Classification | Consumer Protection | Dispute Rights |
|---|---|---|---|
| Credit/Debit Card | Card Transaction | Chargeback rights | Bank may reverse |
| Scanned Payment (QR/Slip) | Funds Transfer | No statutory chargeback rights | Bank generally cannot reverse |
The paper does not claim coordinated corporate exploitation of this gap. Rather, it argues that the regulatory framework creates conditions in which consumers may be exposed to loss without effective recourse, and that this vulnerability warrants policy attention.
2. Legal Framework: Consumer Protection in Thailand
2.1 The Consumer Protection Act B.E. 2522 (1979)
Thailand’s primary consumer protection legislation establishes five fundamental consumer rights:
| Right | Statutory Provision | Relevance to Scanned Payments |
|---|---|---|
| Right to Information | Section 4(1) | Consumers must receive accurate information about services |
| Right to Choose | Section 4(2) | Freedom in selection of goods/services |
| Right to Safety | Section 4(3) | Protection from hazardous products/services |
| Right to Fair Contract | Section 4(3 bis) | Protection from unfair contract terms |
| Right to Compensation | Section 4(4) | Injury consideration and compensation |
The Consumer Protection Act applies to “service” transactions, defined as “an undertaking to accomplish a work, grant of any right or permission to use or conferring benefit in any property or business, for which monetary consideration or other value is demanded” . Insurance policies fall within this definition.
Penalties for violations include fines up to 500,000 THB and imprisonment for false or misleading advertising; unfair contract terms may be declared void .
2.2 The Electronic Transactions Act B.E. 2544 (2001)
The Electronic Transactions Act governs digital transactions in Thailand. Key provisions include:
- Section 3: The Act applies to civil and commercial transactions performed using data messages
- Section 3 (paragraph two): “The provisions of paragraph one do not prejudice any law or rule enacted for consumer protection”
This savings clause is significant: it establishes that consumer protection laws take precedence over electronic transaction rules. However, the mechanism for enforcing this precedence in scanned payment disputes is unclear.
The Act defines “data message” broadly to include “information generated, sent, received, stored or processed by electronic means” . This definition encompasses scanned payment records and email confirmations—both of which are admissible as evidence in disputes.
2.3 The Royal Decree on Digital Platform Service Businesses (2022)
Effective August 30, 2023, the Royal Decree on Digital Platform Service Businesses was enacted under the Electronic Transactions Act. The Decree:
- Defines “digital platform service” as provision of a digital service platform as a medium connecting operators and consumers
- Requires digital platform operators to inform terms and conditions of use
- Mandates provision of complaint channels and compensation measures
- Requires large-scale platforms to implement risk assessment and risk management measures
Limitation: The Decree applies to digital platforms (e.g., e-commerce marketplaces) but does not directly regulate individual corporate websites processing their own payments. Proprietary insurance portals may fall into a regulatory gap between the Decree’s scope and traditional sectoral regulation.
3. Regulatory Gap: The Irreversibility of Account-to-Account Transfers
3.1 Design Feature, Not Bank Hypocrisy
Account-to-account (A2A) transfer systems—including PromptPay, Singapore’s PayNow, the UK’s Faster Payments, and EU SEPA Instant—are designed for settlement finality. Once funds are transferred, the sending bank cannot unilaterally reverse the transaction without the receiving party’s consent or a formal fraud determination.
This is not unique to Thailand. It is a feature of A2A systems globally, prioritizing speed and finality over dispute flexibility. Card networks (Visa/Mastercard) operate on a different model, with chargeback rights built into the system architecture.
| Feature | Card Networks (Visa/Mastercard) | A2A Transfers (PromptPay) |
|---|---|---|
| Settlement speed | Days (with holds) | Seconds (final) |
| Reversal mechanism | Chargeback (payer-initiated) | Recipient consent or fraud finding |
| Consumer protection | Built into network rules | Not built in |
| Bank’s reversal authority | Yes (within time limits) | Generally no |
The consumer’s experience of a bank “refusing” to reverse a scanned payment reflects this architectural difference, not arbitrary bank policy.
3.2 The Protection Gap
The gap is not that A2A transfers are irreversible. The gap is that no parallel consumer protection mechanism exists for circumstances where a consumer pays via A2A transfer for goods or services that are not provided. In card networks, the chargeback mechanism fills this role. In A2A systems, consumers are directed to:
- Police reports (criminal)
- Regulatory complaints (administrative)
- Civil litigation (costly, slow)
This fragmentation of remedies—across different institutions with different procedures and different timelines—is the core vulnerability.
4. Case Study: A Disputed Insurance Transaction
4.1 Factual Chronology
The following chronology is drawn from preserved documentary evidence. The transaction remains unresolved. The paper does not assert legal conclusions about the conduct of any party.
| Date | Event |
|---|---|
| March 30, 2026 | Consumer submits application for health insurance to FWD Life Insurance (Thailand) via online portal |
| March 30, 2026 | FWD responds: “We have reviewed the matter and confirm that the documents have been received. The case has been accepted and forwarded to the reviewer for expedited processing” |
| March 31, 2026 | Consumer pays premium of 18,700 THB via scanned payment through FWD’s online portal |
| April 2026 | Policy has not been issued; consumer requests refund |
| April 2026 | FWD does not respond to subsequent communications |
| April 2026 | A third party (HE Clinic) deposits 15,000 THB into consumer’s account, then reverses the deposit |
| April 29, 2026 | Kasikornbank agent informs consumer that scanned payment cannot be disputed; consumer’s recourse is police report |
4.2 Legal Observations (Not Conclusions)
The following observations are offered as matters for regulatory inquiry, not as established findings:
| Issue | Question for Regulator |
|---|---|
| FWD’s confirmation of “acceptance” | Does this create an expectation of coverage or refund? |
| FWD’s non-response to refund request | Is this consistent with OIC complaint handling requirements? |
| Kasikornbank’s position on scanned payment reversal | Is this consistent with the Electronic Transactions Act Section 3(2) savings clause? |
| HE Clinic’s deposit and reversal | What is the legal relationship between HE Clinic and FWD regarding this transaction? |
5. Regulatory Fragmentation
The scanned payment gap exists partly because authority over different aspects of the transaction is distributed across multiple agencies with no unified dispute resolution mechanism.
| Agency | Authority | Limitation |
|---|---|---|
| Bank of Thailand | Payment systems | Does not regulate underlying merchant conduct |
| Office of the Insurance Commission (OIC) | Insurance companies | Does not regulate payment dispute mechanics |
| Consumer Protection Board (OCPB) | Unfair business practices | Administrative process; slower than payment reversal |
| Electronic Transactions Development Agency (ETDA) | Digital platforms | Limited to platform businesses, not proprietary portals |
| Royal Thai Police | Criminal fraud | High burden of proof; language access issues |
Each agency has authority over a fragment of the transaction. No single agency has clear authority to receive a complaint, investigate, freeze funds, and order remedy across the entire chain from payment to service delivery.
6. International Comparison
The issue of A2A transfer irreversibility is not unique to Thailand. Similar systems exist globally with varying mitigation frameworks.
| Jurisdiction | System | Irreversible? | Mitigation Framework |
|---|---|---|---|
| United Kingdom | Faster Payments | Yes (final settlement) | Confirmation of Payee; voluntary reimbursement code |
| European Union | SEPA Instant | Yes | PSD2 strong customer authentication; refund rights for unauthorized transactions |
| Singapore | PayNow | Yes | disputes handled via bank-to-bank but no statutory chargeback |
| Thailand | PromptPay | Yes | no equivalent mitigation framework |
The difference is not technical but regulatory: Some jurisdictions have layered consumer protections on top of irreversible A2A systems. Thailand’s framework is less developed in this specific area.
7. Policy Recommendations
7.1 Immediate Regulatory Reforms
| Recommendation | Implementing Agency | Legal Basis |
|---|---|---|
| Extend COD-style protections to scanned payments above a threshold | Consumer Protection Board | Consumer Protection Act Section 4 |
| Create fast-track complaint process for scanned payment disputes | OIC, OCPB | Existing statutory authority |
| Mandate English-language fraud reporting for digital transactions | Royal Thai Police, ETDA | Digital Platform Service Decree |
| Clarify bank obligations under Electronic Transactions Act Section 3(2) | Bank of Thailand | Payment Systems Act |
7.2 Proposal: Delayed Settlement Escrow for High-Value QR Payments
A specific policy mechanism worth considering:
For QR/scanned payments above a defined threshold (e.g., 5,000 THB), funds could be held in a temporary escrow account for a short period (e.g., 48 hours), during which the consumer can dispute the transaction without requiring police report or recipient consent.
This would preserve settlement finality for small-value transactions while creating a protection layer for higher-value consumer payments. Similar mechanisms exist in other jurisdictions for certain payment types.
7.3 Institutional Coordination
A single agency should be designated as the primary point of contact for scanned payment fraud complaints, with authority to:
- Receive complaints in English and Thai
- Coordinate with banks to flag disputed transactions
- Refer cases to police for criminal investigation where warranted
- Track patterns and publish anonymized enforcement data
8. Consumer Countermeasures
Pending regulatory reform, consumers in Thailand who pay via scanned payment may consider:
| Countermeasure | Purpose |
|---|---|
| Preserve all screenshots and email confirmations | Evidence for complaints |
| File police report via Tourist Police (1155) | Creates official record; English assistance available |
| File OIC complaint (hotline 1186) for insurance disputes | Regulatory pressure specific to insurers |
| Request bank transaction records in writing | Documents the bank’s position |
| Consider lower-value test transaction before paying larger amounts | Risk assessment |
9. Conclusion
This paper has identified a structural vulnerability in Thailand’s digital payment ecosystem: the treatment of scanned payments as irreversible funds transfers without parallel consumer protection mechanisms. The paper does not claim coordinated corporate exploitation of this gap. It argues that the regulatory framework creates conditions in which consumers may be exposed to loss without effective banking recourse.
The core insight is straightforward:
Payment method determines protection level.
Card transactions carry chargeback rights. Scanned payments do not. This is not a flaw in any single institution’s policy. It is a feature of how different payment systems are architected and regulated.
The question for policymakers is whether this distinction remains appropriate given the increasing volume and value of scanned payments in the Thai economy. If consumers are expected to use QR codes for significant transactions—insurance premiums, deposits, high-value purchases—then the protection framework should be evaluated for gaps.
International comparison suggests that irreversible A2A transfers can coexist with consumer protections. The UK, EU, and Singapore have layered mitigation frameworks on top of final-settlement systems. Thailand has not yet done so to the same degree.
This paper is offered as a contribution to that policy conversation, not as a concluded finding of wrongdoing. The case study illustrates a disputed transaction that remains unresolved. The regulatory gap is real. The appropriate remedy is regulatory attention, not litigation.
References
Consumer Protection Act, B.E. 2522 (1979) (Thailand).
Electronic Transactions Act, B.E. 2544 (2001) (Thailand).
European Union. (2015). Payment Services Directive (PSD2) (EU) 2015/2366.
Lamaiwong, C., Pokkasut, A., & Chatviratham, K. (2023). Legal Issues of Declaration of Intention in Electronics Contract: Study of Purchasing Products Through Social Media of Elderly Consumers. Interdisciplinary Social Sciences and Communication Journal, 6(3), 116–124.
LawPlus Ltd. (2024, October 7). Buyers’ Rights against Cash-on-Delivery Operators in Thailand.
LawPlus Ltd. (2021, August 12). Digital Platform Service Businesses Law of Thailand.
Mondaq. (2023, March 30). Thailand Issues Decree on Regulatory Oversight of Digital Service Platforms.
Notification of the Contract Committee of the Consumer Protection Board Re: Prescribing Cash on Delivery Business as Receipt-Controlled Business B.E. 2567 (2024).
Phuket Attorneys. (2025, October 20). Consumer Protection Act.
Royal Decree on Digital Platform Service Businesses B.E. 2565 (2022) (Thailand).
Samui Solicitor. (2025, February 18). Consumer Protection Act.
Thailand Consumers Council. (2024, July 22). TCC wins the battle for consumers against unfair practices.
UK Faster Payments Scheme. (2024). Confirmation of Payee and Reimbursement Code.
Citation: Dauch, L. (2026). The Scanned Payment Trap: Regulatory Gaps in Thailand’s Digital Transaction Framework. SII Working Paper Series, 2026(43).
Correspondence: Sovereign Integrity Institute, siistrategic.com
Competing Interests: The author is the consumer in the disputed transaction described in Section 4. All primary evidence is preserved and available for independent verification. The author has no affiliation with any financial institution or insurance company mentioned herein. This paper is offered as policy analysis, not as a legal pleading.
This paper is part of the SII Working Paper Series on Regulatory Gaps and Consumer Protection.
