Hmm, this shouldn’t be possible on our cards. Get in touch if you would like us to investigate.
Let me explain a bit of what’s going on behind the scenes though.
Contactless is just a method of the card communicating with the terminal. Normally, contactless does not require what’s called a CVM (Cardholder Verification Method).
CVMs are things like signatures, PINs, and so on. They’re used to verify that the person who is currently using the card is authorised to do so. To make contactless quicker and more effortless, it does not require CVM. As an issuer of cards, by not verifying the user of the card, you open yourself up to huge fraud potential so a limit of £20, then £30 was chosen in the UK to limit the damage that can be done with a lost card.
That’s not to say that this is a hard limit, but just what has been chosen in the UK. You will find that this limit does change a bit across the world. To go higher than the limit, a form of CVM is generally required (if supported, instant decline otherwise).
Enter, CDCVM (Consumer Device Cardholder Verification Method), a form of CVM where your device verifies you using some form of PIN, password, fingerprint, iris scan, facial recognition, etc. This is used in all the major mobile payment systems to allow you to make purchases for more than £30 over contactless at merchants who support it (most of them do nowadays).
In some countries, you may see contactless and PIN. This is where you tap your card, then the terminal requests a PIN before taking it to the card issuer to approve it.
Contactless and signature is possible but when PINs exist, we’re struggling to think of why this would be chosen. Misconfigured terminals maybe?