Security for cashless payments

For your and your customer's peace of mind

The highest security is our standard

Security at Worldline is not just a promise. Whether it’s in retail, e-commerce or m-commerce - all the payment solutions from Worldline are subject to the international rules of the Payment Card Industry Security Standards Council (PCI SSC) and the EMV security standard and are 3-D Secure.

Data security and PCI DSS standard

All Worldline payment solutions are certified according to the strictest criteria of the Payment Card Industry Security Standards Council and therefore offer the highest level of security. You can rely on them at all times in your day-to-day business.

PCI DSS

12-times protection against abuse and card theft

PCI DSS (Payment Card Industry Data Security Standard) is the global security standard for card data. It reliably protects you and your customers from misuse and card theft and insures a save cashless payment process. As a service provider and merchant who transmits, processes or stores card data you are obliged to comply with PCI DSS and verify compliance. Worldline supports you in implementing the twelve mandatory security requirements.

1. Install and maintain Network Security Controls.
2. Apply secure Configurations to all system components.
3. Protect stored account data.
4. Protect cardholder data with strong cryptography during transmission over open, public networks.
5. Protect all systems and networks from malicious software.
6. Develop and maintain secure systems and software.
7. Restrict access to system components and cardholder data by business need to know.
8. Identify users and authenticate access to system components.
9. Restrict physical access to cardholder data.
10. Log and monitor all access to system components and cardholder data.
11. Test security of systems and networks regularly.
12. Support information security with organizational policies and programs.
- Increased data security and improved protection for your customers: The infrastructure and the security precautions are periodically reviewed and thus any need for action is detected early on.
- Protection against financial damage: The card organisations do not impose any or only lower penalties on merchants who were PCI DSS compliant (“safe harbour”) at the time the card data was stolen.
- Protection of the company image: Thanks to increased security, customer confidence is strengthened and can be expanded.
- Regular check of your systems
Depending on the annual transaction volumes, validation is based on an onsite assessment or a self-assessment questionnaire (SAQ).

With the PCI DSS Merchant Portal, Worldline provides you with a certification platform that guides you step by step through all necessary certification processes. Via this platform, merchant companies can, provide proof of compliance with the applicable PCI DSS requirements of, upon written request.

If you have not yet been contacted, please feel free to contact pci-info@worldline.com.

PCI PTS

Play it safe – with PIN-capable payment terminals from Worldline

PCI PTS (Payment Card Industry PIN Transaction Security) is the global security standard for payment terminals. The requirements serve to protect against fraud through the secure entry and transmission of PIN data. All payment terminals from Worldline are certified according to this standard and offer you and your customers the greatest possible protection against data theft.

3-D Secure

3-D Secure is the security standard for online payments. With 3-D Secure, cardholders have to verify their identity in an additional step. This makes e-commerce significantly more secure for them. And as a merchant, you are protected against payment defaults.

How does your customer know a web shop is using 3-D Secure? The “Visa Secure”, “Mastercard Identity Check” and “American Express SafeKey” logos refer to it. With 3-D Secure, payment by inputting an additional personal code is significantly more secure compared to other payment methods. Cardholders verify their identity with the card-issuing bank prior to payment.

EMV security standard

EMV is a technical standard for card payments and ensures that card data is transmitted securely. Authentication and data transfer takes place via a microprocessor chip.

Card data is stored twice on the credit or debit card: on the magnetic stripe and on the chip. Today’s technical standard is the anti-counterfeit chip. If a payment terminal is equipped with a chip reader, authentication takes place automatically via the EMV chip and not via the technically outdated magnetic stripe.

When paying with EMV, the cardholder identifies himself by entering his personal identification number, the PIN. The card is thus much better protected in the event that the card is lost than with a signature. It will be a few years before PIN payment is accepted worldwide. The payment terminals from Worldline, however, are all equipped with EMV chip readers as standard.

Safety and security for your payment terminal

Card payment is one of the safest payment methods around. Nevertheless, attempts to manipulate terminals or gain access to external accounts are persistently made. If fraudsters succeed in making purchases in your store with stolen or forged credit card data, it will cause major damage because you as a merchant are liable for the financial loss.

We want to protect you and your customers and help you to combat this risk at an early stage. What do you do if someone tries to distract you during the payment process? Or if there are any irregularities during the payment process? Follow our tips on the secure processing of card payments and protect your payment terminals from unauthorised access.