This bill amends section 127 of the Truth in Lending Act to ban the use of any merchant category code (MCC) that separately identifies firearms merchants or ammunition merchants. It defines the covered entities broadly to include banks, acquirers, payment card networks, issuers, and any party that participates in authorizing, clearing, or settling a credit card transaction.
The change targets how credit-card transactions are classified and reported. Removing a discrete MCC for firearm- or ammunition-related merchants would limit one common way the payments industry, researchers, regulators, and law‑enforcement track and segment firearm‑related commerce — with knock-on effects for privacy, compliance programs, merchant underwriting, and public‑interest data analysis.
At a Glance
What It Does
The bill adds a new subsection to 15 U.S.C. 1637 prohibiting covered entities from using an MCC that separately identifies firearms merchants or ammunition merchants in connection with credit‑card transactions. It does not include enforcement language or specify penalties.
Who It Affects
The prohibition reaches payment card issuers, acquirers, payment networks, banks, and any party involved in authorizing, clearing, or settling credit‑card transactions. Merchants that currently get a discrete MCC for firearm or ammunition sales would be reclassified under the change.
Why It Matters
MCCs are an industry standard used for routing, risk scoring, underwriting, reporting, and research; preventing a discrete firearms/ammunition MCC changes how payment flows are categorized and may reduce the availability of transaction-level signals used for compliance, analytics, and policy research.
More articles like this one.
A weekly email with all the latest developments on this topic.
What This Bill Actually Does
The bill makes a narrow but technically consequential change: it adds subsection (q) to section 127 of the Truth in Lending Act and tells covered entities they may not use merchant category codes that single out firearm merchants or ammunition merchants for credit‑card transactions. Because the bill ties the rule to MCCs, it focuses on the standardized code that appears in payment messaging and reporting rather than on all transaction metadata.
Covered entities are defined very broadly — the bill names banks, acquirers, payment card networks, and issuers and then captures any party that participates in authorization, clearing, or settlement. That breadth means the rule would reach most players in the card ecosystem, not only card brands or issuing banks.In practice, the prohibition forces payments actors to stop using any MCC that explicitly labels a merchant as a firearms or ammunition seller.
Absent a detailed definition, firms will face choices: reclassify those merchants under an existing, broader MCC (for example, a sporting goods or general merchandise code), stop assigning a specialized MCC altogether, or rely on alternative non‑MCC identifiers. Each choice has operational consequences for merchant onboarding, transaction monitoring, fee assignment, and downstream datasets.The bill is focused on classification, not on other merchant‑level or transaction metadata, and it does not set out an enforcement regime, civil penalties, or a private right of action.
That leaves open questions about who would police compliance, how violations would be detected, and what remedies would follow. It also creates immediate implementation work for card networks and processors, which maintain the lists and logic that assign MCCs and that would need to update routing, reporting, and reconciliation systems accordingly.
The Five Things You Need to Know
The bill inserts subsection (q) into 15 U.S.C. §1637 (section 127 of the Truth in Lending Act) to prohibit MCCs that separately identify firearms merchants or ammunition merchants.
It expressly covers any entity involved in facilitating or processing a credit‑card transaction, including banks, acquirers, payment networks, and issuers, and any party that participates in authorization, clearing, or settlement.
The statutory prohibition is limited to merchant category codes used with credit‑card transactions; it does not itself revoke or alter other statutory authorities or reporting obligations.
The text contains no enforcement provisions, civil penalties, rulemaking directions, or effective‑date language; it neither names a supervisory agency nor creates a private cause of action.
Because the bill targets MCCs rather than all transaction identifiers, firms could in practice reclassify merchants under broader MCCs or continue using other metadata fields unless regulators interpret the prohibition more broadly.
Section-by-Section Breakdown
Every bill we cover gets an analysis of its key sections.
Short title
Gives the bill the short name 'Protecting the Second Amendment in Financial Services Act.' This is purely formal; it does not add operative requirements but signals the bill's policy rationale and legislative framing.
Prohibition on firearms/ammunition MCCs
Creates the operative rule: a covered entity may not use a merchant category code that separately identifies firearms merchants or ammunition merchants in connection with credit‑card transactions. The provision is narrowly focused on MCCs as the classification mechanism and therefore operates at the level where transaction messages and settlement reports carry industry codes.
Definition of covered entity
Defines 'covered entity' to reach a wide swath of the payments chain: banks, acquirers, payment card networks, issuers, and any party that participates in authorizing, clearing, or settling credit‑card transactions. That expansive definition means both the entities that create or maintain MCC lists (card networks) and downstream processors or gateways that apply those codes would be subject to the ban.
This bill is one of many.
Codify tracks hundreds of bills on Finance across all five countries.
Explore Finance in Codify Search →Who Benefits and Who Bears the Cost
Every bill creates winners and losers. Here's who stands to gain and who bears the cost.
Who Benefits
- Firearms and ammunition merchants — removing a discrete MCC reduces a clear, standardized label that could be used to single them out for adverse risk decisions, de‑banking, or differential treatment by processors and acquirers.
- Cardholders seeking privacy — the change reduces one standardized channel (MCCs) through which purchase categories tied to firearms could be exposed in statements, data feeds, or commercial datasets.
- Privacy advocates and some merchant‑rights groups — the prohibition limits an easily searchable, industry‑wide identifier that third parties use to aggregate firearm‑related purchases.
Who Bears the Cost
- Payment card networks and processors — they must change MCC lists, update routing and reconciliation systems, and revise merchant onboarding and reporting practices; implementation costs and coordination across rails will be significant.
- Issuing banks and acquirers — risk‑scoring, fraud detection, underwriting, and chargeback rules that used MCC signals may require redesign or new data sources, raising compliance and operational costs.
- Public‑interest researchers and some law‑enforcement functions — removing a standardized MCC reduces an accessible signal used in economic, public‑health, and enforcement research to identify firearm‑related commerce from transaction datasets.
Key Issues
The Core Tension
The central dilemma is between preventing a standardized payments label that can be used to single out firearm merchants (protecting merchant privacy and reducing risks of de‑banking) and preserving the payment‑industry signals relied on for underwriting, fraud detection, anti‑money‑laundering, policy research, and certain public‑safety functions; eliminating one standardized identifier protects privacy but also degrades legitimate compliance and analytic uses unless alternative, safe mechanisms are put in place.
The bill's operative prohibition is simple on its face but leaves several implementation and legal gaps. 'Merchant category code' is an industry term, but the bill does not define what it means in practice or whether the prohibition extends to derivative identifiers (for example, MCC subcodes, internal acquirer flags, transaction descriptors, or NAICS codes) that can similarly single out firearms or ammunition merchants. That ambiguity will force firms to choose conservative compliance strategies or await regulatory interpretation.
The statute also omits enforcement and remedy language. Because it amends the Truth in Lending Act, federal banking regulators and the CFPB are the likeliest enforcers, but the bill does not delegate rulemaking authority, set penalties, or create a private right of action.
Enforcement uncertainty raises the prospect of uneven compliance across issuers and networks and invites litigation over statutory scope. Finally, the prohibition focuses on MCCs while other data fields and off‑platform datasets (merchant descriptors, cardholder metadata, analytics vendors) remain available; sophisticated actors can sidestep the MCC ban unless additional restrictions are adopted, so the bill may change the locus of classification without fully eliminating the ability to identify firearm‑related commerce.
Try it yourself.
Ask a question in plain English, or pick a topic below. Results in seconds.