There have been several news stories in recent weeks about criminals taking advantage of QR codes. Road is committed to ensuring customers have safe and secure systems for all transactions but customers can also play a role by being vigilant.
The AFIR regulation mandates that Charging Point Operators (CPOs) managing public charging stations must offer anonymous payment options, either through payment terminals or QR codes. Both static (via sticker) and dynamic QR codes can facilitate direct payment.
However, it’s important to be aware of potential scams involving these QR codes. Scammers have been known to place fake QR codes on charging stations, redirecting EV drivers to phishing websites.
Here’s how EV drivers can securely use QR codes to start a charging session and pay:
Tips for avoiding QR code scams:
- Choose to pay using an RFID card or mobile app when possible.
- If using a QR code, always verify the provider’s domain before completing any payment.
- Use a trusted QR code reader
- Make sure you update your operating software on your Smartphone
- Never leave personal information or download software
- Check if you see an extra sticker that has been glued on top of the original.
Some explanation on the payment flow of E-Flux by Road:
- After scanning the QR Code you will see this url: https://dashboard.e-flux.io/[number]
- You will be re-directed to https://chargestation.road.io/[number] > this is our ChargeStation User Interface, connected to the Road platform.
- On the page we always show the live status of the charger (Available/Charging etc.)
- Check if the EVSE ID in the URL (see example) matches with the EVSE ID under ‘Connectors’ In the example you see that the ID is 5846928 and this is corresponding to the url.