BIN numbers (first 6 digits of a credit card number) are used for everything from fraud prevention to showing a user which bank their payment card was from.<p>Seemingly all other payment processors give BIN information as part of their webhooks and APIs, but Stripe does not.<p>Is there a reason for this? Different interpretation of PCI compliance?
It's still best practice to minimize the amount of card data shared. You can accomplish most of what you're looking to do using a combination of `card.brand`, `card.last4`, and expiry dates. "Visa ending in 4242, expires 09/24."<p>You can also write much more robust rules using Radar: <a href="https://stripe.com/docs/radar/rules" rel="nofollow">https://stripe.com/docs/radar/rules</a>. Something like:
`Review if :is_disposable_email: and :card_funding: = 'prepaid'`