diff --git a/src/Message/ThreeStepRedirectAuthRequest.php b/src/Message/ThreeStepRedirectAuthRequest.php
index 4425620..b5bc264 100644
--- a/src/Message/ThreeStepRedirectAuthRequest.php
+++ b/src/Message/ThreeStepRedirectAuthRequest.php
@@ -104,6 +104,11 @@ public function getData()
 
         if ($this->getCardReference()) {
             $data['customer-vault-id'] = $this->getCardReference();
+
+            // Customer Vault operations can be completed using a single Direct XML request to the gateway.
+            // None of these operations submit sensitive payment information and theorefore do not require
+            // any Three Step Redirect functionlity.
+            unset($data['redirect-url']);
         }
         else {
             $data = array_merge(