Chapter Six · Earn Trust

Trust Also Needs a Gatekeeper

What South African entrepreneurs can learn from Amazon’s Leadership Principle of Earn Trust, fraud prevention, and the discipline of knowing when customer obsession needs a pause button

☕ 12 min readPublished June 25, 2026Edition 1.0Earn Trust · Fraud prevention · Verification
South African small business team discussing fraud prevention, approvals and verification around a whiteboard.

You are standing behind the counter. The shop is busy, phones are ringing, and a customer is leaning forward, voice raised, holding up an item they insist is counterfeit.

“I believe this is fake. I want my money back. Now.”

People nearby are starting to look. The tension is thick. Your inbox is pinging, your manager is not immediately available, and the customer is getting more insistent with every second that passes.

The pressure is immediate. The request feels simple enough. Refund me now. Change the delivery address now. Update the banking details now. Approve the exception now. Send the replacement now. I have already spoken to someone else. Your service is terrible. I need this sorted immediately.

And because the business cares about customers, the employee feels the pressure to act. That is exactly the moment where trust needs a gatekeeper.

Field Observation

Use this article when urgency, embarrassment, fear of a complaint, or fear of losing a sale can pressure the frontline to skip a verification step.

Earn Trust is a beautiful principle, but it is often misunderstood in small-business life. It is not about saying yes to every request because the customer sounds confident. Nor is it about bending the process until it snaps. And it certainly is not about letting urgency outrank verification.

Customer obsession becomes risky when it is reduced to “say yes quickly and keep the customer happy at all costs.” Compliance asks for something steadier: slow down, verify details, and sometimes say no. It is not a substitute for proper controls, nor does it replace the need to take an extra moment to confirm whether a request is legitimate.

In the South African landscape, fraud often becomes a pressure problem at the frontline. Bad actors know how to create urgency, confusion, embarrassment, fear of a complaint, or fear of losing the sale. They push people to act before the business has verified properly.

This is something I have been thinking about a lot lately. Not as a fraud expert or a lawyer or someone sitting in a bank’s risk department, but as someone who spends time thinking about how businesses actually run day to day. How decisions get made under pressure. How teams respond when a customer is upset. How easy it is for a good intention to turn into a bad outcome.

This piece comes from a customer experience and process lens: how small businesses can protect honest customers, protect themselves, and give teams permission to pause when something does not feel right. Because a business with no boundaries is not more customer-obsessed. It is just easier to pressure.

Start with returns and refunds

Returns and refunds are part of doing business. Customers change their minds. Products disappoint. Deliveries fail. Items arrive damaged. Honest customers deserve fair, clear and respectful resolution. But refunds are also a pressure point.

If every refund depends on who answers the message, how loud the customer is, or how nervous the employee feels, the business does not have a refund process. It has a mood ring with a payment button. That creates risk on both sides.

The honest customer may experience inconsistency. One person gets a refund quickly. Another gets asked for more information. A third gets bounced between people because nobody knows who can approve what.

The business may experience leakage. Refunds are approved without evidence. Returns are not tracked. Replacements are sent before the original issue is understood. The same pattern repeats across names, addresses, phone numbers or payment methods, but nobody sees it because nobody is looking at the pattern.

Earn Trust does not mean making refunds difficult. It means making them fair. A fair refund process says what evidence is needed, who can approve the outcome, when the item must be returned, how damage or non-delivery is recorded, and how quickly the customer should hear back. The frontline should not have to invent the rule while the customer is breathing fire in the inbox.

A business with no boundaries is not more customer-obsessed. It is just easier to pressure.

Then there are chargebacks and payment disputes

For small businesses using card payments, payment gateways or online checkout tools, disputes can become a real operational headache. A customer may query a transaction with their bank. Sometimes the issue is genuine. The customer does not recognise the merchant’s name. The delivery, communication or expectation gaps create confusion. Sometimes the business may be dealing with misuse.

The point is to keep good records. Clear order confirmations. Recognisable merchant names where possible. Proof of delivery. Customer communication history. Return and refund terms. Evidence that the product or service was provided. These are not boring admin chores. They are the receipts your business may need when memory is not enough.

This is also where small businesses should remember they are not alone. Your bank, merchant acquirer, payment gateway, card network resources, and sometimes industry bodies have more experience with disputes and fraud patterns than a small business owner trying to solve everything between invoices and school pickup.

Use that ecosystem.

Ask your payment provider what dispute alerts, fraud tools, chargeback processes, documentation requirements or merchant guidance they offer. Ask your bank what to do when a transaction looks suspicious. Ask your gateway which settings, authentication options or review steps are available for your type of business. Read the merchant guidance from reputable sources instead of trying to build fraud prevention from WhatsApp folklore and pure adrenaline.

There is no shame in asking for help. The fraud industry is bigger than your storeroom. Your business does not need to fight it alone with one spreadsheet and a strong personality.

Another major pressure point is account and access security

Many small businesses do not think of themselves as “digital businesses”, but the operation is often full of digital doors. Email. Social media pages. Admin dashboards. Marketplace accounts. Courier portals. Payment tools. Accounting software. Shared drives. Customer databases. Booking systems. Website logins.

If the wrong person gets access, the damage can be brutal. They can change banking details, redirect communication, access customer information, approve refunds, interfere with orders, send fake messages, lock out the owner, or damage the business’s reputation before anyone has finished their coffee.

A banking-detail change should never be treated as ordinary admin. It is one of the places where one rushed click can move money into the wrong hands. This is where trust and control must sit at the same table.

Strong passwords. Multi-factor authentication where possible. Separate user access instead of one shared login. Removing access when someone leaves. Checking who has admin rights. Verifying any request to change banking details. Training the team not to click urgent links, open suspicious attachments, or share codes because someone sounded official.

That is not paranoia. That is basic gatekeeping. And again, the frontline matters. The person answering emails, calls, DMs and WhatsApps may be the first person to see the warning signs. They need clues. They need permission. They need a stop rule.

A stop rule sounds like this:

If the request involves money, access, delivery changes, refunds, banking details, login codes, personal information or unusual urgency, pause and verify before acting.

That pause should not be framed as bad service. It is good service with a spine.

A genuine customer may be mildly inconvenienced by a verification step. But a clear, respectful explanation usually helps: “To protect your order and your information, we need to verify this before making the change.”

That is not accusing the customer. That is protecting the transaction.

Finally, look at the money flow itself

Where can money leave the business? Refunds. Reversals. Supplier payments. Staff reimbursements. Voucher codes. Manual discounts. Replacement orders. Payment links. Banking detail changes. Subscription tools. Admin accounts with payment access.

Every business has money doors. The question is whether those doors have handles, locks or a handwritten note that says “please be honest”.

A small business can start by mapping the obvious money flows.

Who can approve a refund?
Who can change banking details?
Who can issue a discount or voucher?
Who can create a payment link?
Who can access the payment gateway?
Who checks unusual patterns?
Who pauses a transaction when something feels off?

This does not need to become a giant compliance monster with a clipboard and dramatic theme music. It can begin with one simple rule: no one person should be pressured into making a risky money decision alone.

For example, a refund above a certain amount needs a second approval. A banking-detail change must be verified through a known channel, not only a new message. A delivery change after dispatch needs a specific check. A suspicious order pattern is reviewed before fulfilment. A new staff member cannot access payment settings without proper authorisation.

These gates are there to stop the wrong thing moving quickly. Customers want fast resolution. Teams want to help. Owners want sales and cash flow. But in fraud prevention, speed without verification can become an expensive kindness.

Use a simple Trust Boundary Check

The better move is to design a process that lets ordinary requests move smoothly and unusual requests pause visibly. That is where a Trust Boundary Check can help. Ask three questions.

Where can money leave?
Where can access be misused?
Where can pressure make someone skip a check?

Those three questions help the business see where the gate belongs.

This is also where customer obsession needs maturity. A business can be warm, fast and respectful while still having controls. It can apologise for inconvenience without abandoning verification. It can explain the rule without sounding like Home Affairs discovered ecommerce. It can protect honest customers without allowing fraudsters and bad actors to use politeness as a crowbar.

In fact, good controls often protect honest customers. When fraud succeeds, the cost rarely stays neatly contained. Businesses may tighten policies. Refunds may become slower. Prices may rise. Employees may become more guarded. Genuine customers may face more friction because someone else abused the trust.

A fair boundary protects the ecosystem. The goal is to build a business where the team knows when to help quickly, when to pause calmly, and when to ask for support from people who deal with fraud and disputes every day.

Your bank can help with suspicious transactions, account security, fraud reporting and banking-detail risk. Your payment gateway or merchant acquirer can help with transaction settings, dispute processes, chargeback evidence and fraud-screening tools. Public card network resources can help explain dispute rules, authentication options and merchant responsibilities. Industry bodies and reputable security resources can help teams understand current fraud patterns. Your internal process then turns that guidance into simple rules your frontline can actually use.

Your job as a business owner is not to become all of those things at once. Your job is to know when to use them, when to ask, and when to stop the line long enough to protect the promise.

A simple place to start is a one-page fraud pressure map: identify the moments where urgency, embarrassment, fear of a complaint, or fear of losing a sale could make someone skip a check. Then decide who the team should ask before acting. That gives the frontline a map before the pressure arrives.

That is what Earn Trust looks like when it grows up. Not blind faith, suspicion or panic. A clear process. A fair boundary. A team with permission to pause. A business that knows who to call when the risk is bigger than the person holding the inbox.

Because trust is powerful. But trust without a gate is just confidence waiting for someone else’s plan.

Practical take-away

So where is your business currently relying on goodwill when it should be relying on a fair and visible verification step?

And who should your team be allowed to ask for help before the wrong thing moves too quickly?

For anyone unsure where to start, begin with the institutions already connected to your money flow. Your bank, payment gateway, merchant acquirer and card network resources may offer guidance on suspicious transactions, dispute processes, chargeback evidence, fraud-screening tools, authentication options and merchant responsibilities. Industry bodies such as SABRIC also publish fraud awareness resources for the South African context. For business-specific legal, banking, cyber-security or fraud-prevention advice, speak to a qualified professional.

This is a personal thought piece, written in my private capacity from my own customer experience and process improvement perspective. It draws on publicly available information and reflects my own views, not the views of my employer. It is not legal, banking, cyber-security or fraud-prevention advice.