As of October 1, 2015, the EMV mandate requires that businesses accept EMV chip card payments or face liability for counterfeit credit card fraud. Businesses that accept payments with either a standalone payment terminal or via a payment device integrated with a software application must upgrade, or face liability and miss out on new payment types. In addition, data breaches are growing, creating a continued need for PCI compliance.
Not only does the EMV mandate create a change for the businesses that accept payments, but it also has significant implications for software and app developers that provide point of sale solutions. Integrating a compliant EMV payment device with a software application can be a long and expensive undertaking due to stringent EMV and PCI requirements. Payment acceptors and software developers need a more flexible and simple approach to streamline the process.
In a traditional integrated environment, a physical connection is maintained between the software or POS app and the payment terminal. This model requires sensitive cardholder data to be transmitted to the POS/ECR and merchant back-office systems before reaching the payment gateway. Because payment data is transmitted to the software or POS app, EMV and PCI requirements are “in scope” for the developer.
We have developed an innovative solution that routes sensitive cardholder data directly to the payment gateway and non-sensitive customer information to the POS and merchant back office. Sensitive card data is encrypted and routed directly to the payment host or gateway, thereby keeping EMV and PCI “out of scope.” The semi-integrated environment ensures that all of these systems work together seamlessly, while isolating, securing, and streamlining the path of sensitive cardholder data.
Our semi-integrated API solutions lighten the load on developers by moving EMV and PCI compliance out of scope for software applications. Sensitive cardholder data is encrypted at the terminal, so it is never transmitted to the software or app. This ensures that the POS receives only the non-sensitive data it needs to do its job, making the entire transaction more secure end-to-end.
The semi-integrated solution environment:
With integrated payments, existing software solutions can easily support businesses by providing more payment options, including EMV chip cards, gift cards, EBT cards and NFC payments like Apple Pay and Android Pay.
Our solutions are easy to implement, which means that software developers can spend less time worrying about the nuts and bolts of processing payments and more time on business-growing software features. We also have a dedicated, full-time support team and online tools to assist with every aspect of implementation.