Payment Security and Compliance

Navigate the compliance requirements of the Payment Card Industry (PCI) Data Security Standards (DSS) with our team of PCI experts and network tools, which help you avoid the possibility of security breaches and fines. Enjoy extra protection throughout the payments journey with our encryption and tokenization services.

PCI Compliance

With PCI DSS level 1 compliance we meet payment security standards and help protect customer data

VivaPayments is fully PCI DSS compliant as a Level 1 Service Provider, which is the key security standard within the payments industry. As a principal member and licensed acquirer of Visa and MasterCard, we also adhere to the card schemes’ operating regulations. VivaPayments is subject to yearly audits by a third party PCI Qualified Security Assessor, Visa, MasterCard and the banks we partner with.

Information Security

We focus on all aspects of information security for our systems, services and data, extending compliance requirements to offer a maximum level of safety, resilience and trust.

Our infrastructure implements multiple levels of protection using industry accepted mechanisms & best practices that ensure Availability (cloud infrastructure with DDOS protection, load balancing and DR configurations), Confidentiality (HTTPS & Point-to-point Encryption, use of certified Hardware Security Modules, strict key management controls, near real-time threat detection) and Integrity (transaction fingerprinting, database backups, access control, code review process).

Tokenization

Tokenization is a major industry technology shaping the way merchants accept payments and use payment data

Tokenization is the process of replacing sensitive data with non-sensitive data. In the payments industry, it is used to safeguard a card’s PAN by replacing it with a unique string of numbers that cannot be used to make transactions.

Dynamic CVV Technology

Dynamic CVV has become a key weapon against fraudulent transactions

Instead of having a static three- or four-digit code on the back of the card, dynamic CVV technology creates a new code periodically. When a customer is ready to initiate a transaction, they receive an SMS or email with a one-time CVV. That unique code expires after the purchase is complete — or within the next few hours.

AI based anti-fraud algorithm

Integrated AI powered risk management system built directly into our payments platform

Our AI-powered fraud detection technology learns from each transaction in real-time and is able to anticipate fraudulent attacks even before they happen. The result is that we can reduce fraud by 70 per cent while increasing conversion rates by as much as 35 per cent. Results are completely transparent, so you can understand exactly why a transaction was blocked or accepted.

Biometric Security

Add an extra level of security with biometrics integrated into our payments solution

Using Microsoft’s face recognition technologies, we can provide a powerful & reliable Face Verification Service adding an extra layer of security to ensure that payments are performed by the persons expected, minimizing fraud in Card not Present transactions.

EMV is here

EMV brings a world of opportunity to US merchants

Retailers in the United States have been aware of EMV and its associated liability shift for a while now. We have a deep expertise with EMV, and have been assisting customers in Europe and beyond with setting up EMV infrastructure and processing transactions for years.