Your safety
is our priority
Reading the card with the phone, entering the PIN code on the screen - all this must be completely secured. By managing app protection from data mining, Pin on Glass technology and other security features, we can offer you a completely secure solution for accepting payments on your mobile device.
Certified by associations
The app is fully certified and complies with the mandates of the Visa and Mastercard card associations. We have passed all prescribed checks and certifications. We also work closely with both card associations.
PCI DSS (CPoC)
The application is successfully certified within the CPoC standard by the PCI DSS association and thus meets the highest standards prescribed by this association. We are preparing for MPoC.
Independently audited
Although we have successfully completed all certifications, we are committed to maximum safety. That's why we also use reputable companies specializing in security audits of payment solutions, such as SGS/Brightsight.
What do we do for solution security?
The entire payment process is encrypted and we use the highest version of the cryptographic protocol TLS 1.2. For PIN encryption we use the DUKPT mechanism, which completely eliminates the possibility of obtaining the PIN in its full form. In the application it is not even possible to influence in any way to which account the money from the payments will be credited - therefore there is no possibility of misuse.
Frequently asked questions
Is the mobile terminal solution secure?
If it wasn't secure, the card associations would never allow us to accept bank cards through this solution. However, because we have successfully passed all security certifications and tests, we can confirm that the mobile terminal is at least as secure as traditional payment terminals.
What if I lose my phone?
No problem, just contact us and we will block the device immediately. If your phone doesn't come back to you, just get a new one and log back into the app. We will then associate your new phone with your account.
Why can't GP use it on older devices?
The reason is safety. Google releases security patches and fixes for the Android operating system from version 8 and above - this ensures that any potential risks are addressed and patched by Google. This ensures that security is always up to scratch. Card associations require version 8 as a minimum version.
Can sensitive data be misused?
He can't. The security part of the card processing is separated from the rest of the application, so the application itself does not store sensitive card data in any way. Similarly, the PIN is handled by a separate part that encrypts it with a DUKPT mechanism that will not allow card details to be extracted from data or communications. This technology has been used in the payment world for several years and its security has been confirmed.
What if someone records my PIN entry?
This is not possible. The application checks for running applications in the background before calling the keyboard pin and will not allow screen recording. At the same time, the keyboard changes its position on the screen, so it is not even possible to get the pin code by fingerprint, for example.