Skip to main content
It defines how institutions must investigate, communicate, decide, and execute refunds under a mandatory and standardized process enforced by the Central Bank of Brazil (BACEN). MED ensures consumer protection, consistency across institutions, and full auditability within the Pix ecosystem.

When MED applies

A Pix transaction enters the MED process when a financial institution identifies the need for formal, regulated investigation, typically in cases such as:
  • Fraud (phishing, account takeover, social engineering)
  • Unauthorized transactions (user did not approve the payment)
  • Operational errors (duplicate sends, incorrect recipient, wrong value)
  • System or processing failures causing financial impact
MED runs independent of standard Pix refund flows. Standard refunds are voluntary; MED is mandatory and regulated.

Regulatory MED lifecycle

Every MED case follows a strict set of states defined by BACEN. Institutions must comply with the deadlines and response requirements at each stage.

Lifecycle overview

Figure 1. MED lifecycle stages and transitions

Valid reasons for MED disputes

A MED case must be opened under one of the regulated dispute categories:
CodeCategoryExamples
FRAUDFraudulent activityAccount takeover, scams, phishing
UNAUTHORIZEDTransaction executed without user consentStolen device, hijacked credentials
OPERATIONAL_ERRORExecution mistakeDuplicate send, wrong recipient, incorrect amount
SYSTEM_ERRORTechnical faultSystem malfunction, processing failure
Each case must include justification and supporting evidence aligned to BACEN’s requirements.

Possible outcomes

OutcomeResult
APPROVEFull refund must be processed
PARTIALPartial refund allowed (case-specific)
REJECTNo refund; case is closed
COMPLETEAdministrative closure after execution
Approved cases trigger a pacs.004 message for refund execution through SPI.

MED process — step-by-step flow

Below is the regulated MED process followed by all Pix institutions:

1. Validation

  • Transaction exists and is in COMPLETED state
  • Transaction age ≤ 30 days
  • Minimum value R$ 1,00
  • No existing open MED case for the same transaction

2. Evidence collection

  • Fraud markers from DICT
  • Internal risk analysis
  • Upload of evidence (documents, screenshots, logs)
  • Compliance verification

3. Case creation

  • MED ID assigned
  • Regulatory deadlines computed (7 / 10 days)
  • Notifications sent to involved institutions
  • Timeline and audit trail started

4. Analysis phase

  • Examination of submitted evidence
  • Evaluation of counterpart’s response
  • Application of internal and regulatory rules

5. Decision

  • Refund executed via pacs.004 (if approved)
  • Ledger postings applied (debit/credit)
  • Institutions notified
  • All events logged for audit

6. Completion

  • Case moves to COMPLETED, REJECTED, or EXPIRED
  • 90-day retention period begins
  • Evidence archived and audit trail locked

Integration points

Although MED is a regulatory process, it interacts with core Pix components:
ComponentRole
DICTProvides fraud markers, key metadata, and ownership information
SPI (pacs.004)Executes refund movements between institutions
Midaz LedgerApplies debit/credit movements for approved cases
Pix Core ServicesCoordinates lifecycle, deadlines, notifications, and SLA controls

Compliance expectations

Institutions must ensure:
  • Enforcement of all regulatory deadlines
  • Cryptographic protection of evidence files
  • Full audit trail including timestamps and event logs
  • Standardized MED communication with counterpart institutions
  • SLA monitoring and status tracking
  • Consistent customer notification logic
  • Proper use of dispute categories and reason codes
These controls guarantee system-wide integrity and consumer protection.

Relationship with refunds and reversals

While refunds and reversals are standard Pix operations, MED is the regulated mechanism used when:
  • The refund is tied to fraud or unauthorized activity
  • The originating institution disputes the transaction
  • Additional evidence and regulated communication is required
In these cases, the refund is executed through the MED decision, not as a voluntary action.
Regulatory referenceThis page provides a practical overview of how Pix works. For deeper technical, legal, and regulatory details — and to stay up to date with rule changes, deadlines, and official requirements — always refer to the official documentation published by the Central Bank of Brazil (BACEN).BACEN’s materials are the authoritative source for Pix regulations and contain the most complete and up-to-date specifications.