London, UK (PRWeb UK) October 22, 2010
YESpay International, a fully managed EMV Chip and PIN and E-commerce (Internet) card payment service has already been providing card payment services in Europe including UK, Ireland and over 30 European countries for over 5 years, is presenting the top 6 main reasons for merchants to choose its card payment solution in UK and Europe.
- Pre-accredited Pan-European EMV card payment solution eliminating merchants involvement in EMV certification
YESpay’s EMBOSS card payment service is pre-accredited with multi-acquirers in the UK and Europe (Barclaycard, Elavon, HSBC, Lloyds Cardnet, AIB, Streamline, Diners, American Express, HBOS, Bank of Ireland, Ulster Bank). YESpay has successfully completed the accreditation of its EMBOSS payment service with Elavon Merchant Services making it one of the leading UK companies to provide outsourced payment services across multiple countries. Approved with the Verifone Vx810 PIN Pad, EMBOSS supports both off-line and on-line PIN verification ensuring it can deal with all credit and debit card payments. Pan-European merchants can significantly reduce their costs for card processing by having a single merchant service agreement with Elavon and low monthly EMBOSS service costs.
- Cost saving
YESpay charges a single ‘Setup fee' per POS; (typically £40). Besides, merchants benefit from low on-going ‘fixed monthly fee’ per POS system or e-commerce website (between £15- £20) and NOT per click or per transaction charge. Included in the fixed monthly fees are our payment service, support and Help desk (24 hours) and online web-based reporting from the EMBOSS data centres.
- PCI-DSS (Payment Card Industry – Data Security Standard) Level 1 certified
PCI-DSS is a security standard that includes requirements for security management, policies, procedures and software design. Every business (acquiring bank, merchant or third party service provider) accepting card payments and storing, processing or transmitting payment card details must be PCI-DSS certified. For merchants, the compliance process can be costly and very long as several security standards and requirements need to be followed. With YESpay, companies can save up to 65% on their compliance costs and benefit from a high quality service and 24/7 support services. Indeed, outsourcing the card payment side of your business to YESpay helps to:
i. Reduce the scope of PCI-DSS requirements undertaken by the merchant. In most cases, a PCI-DSS self-certification is sufficient with the help of YESpay’s outsourced payment service as the merchant is entirely insulated from any sensitive cardholder details.
ii. Reduce costs related to PCI-DSS compliance. PCI-DSS is a set of on-going requirements that are subject to frequent updates, and YESpay will constantly update its service to comply with PCI-DSS. Using YESpay, the merchant is no longer concerned by the risk that the work he undertook to comply with PCI-DSS might be out-of-date because YESpay is taking care of it.
- PA-DSS (Payment Application – Data Security Standard) certified
PA-DSS is a program aiming at helping payment software vendors develop secure payment applications that do not store prohibited data (full magnetic stripe, CVV2 or PIN data) and ensure their POS (point-of-sale) applications support compliance with PA-DSS. PA-DSS certification is required for POS application vendors that handle payments that are sold, distributed or licensed to third parties.
Though YESpay does not need to undergo PA-DSS certification as we are PCI-DSS level-1 certified, we undertake certification of our client payment applications to PA-DSS in order to bring even more confidence to merchants and POS software vendors. Together, YESpay’s PCI-DSS Level 1 and PA-DSS certifications ensure that in all cases, the point-of-sale software is freed from PA-DSS certification.
- Point-to-Point (End-to-End) encryption
YESpay’s also provides point-to-point (sometimes also referred to as "end-to-end") encryption from the card acceptance PIN pad devices all the way to its EMBOSS data centres. Our EasyV Terminal Payment application (PA-DSS compliant) communicates with the PIN pad over an SSL (Secure Socket Layer 128–bit 3DES encryption) encrypted LAN. All cardholder data on LAN is encrypted using SSL at the merchant (retailer) location eliminating card data exposure. The EasyVTerminal also uses SSL to send all card data encrypted to its remote EMBOSS data centres. As a matter of security and certification, applications in the retailer network (EPOS or others) are not exposed to the transmission or storage of any card data.
Encryption is achieved from the PIN pad level all the way to the remote EMBOSS data centres via the EasyV Terminal. Our solutions also support EMV Online PIN encryption for these countries that require this feature.
Tokenisation is a process whereby a ‘token’ or card reference numbers are created by the EMBOSS Data Centre. These tokens are linked to credit/debit card details within EMBOSS compliant environment, and then provided to merchants.
The YESpay PCI-DSS certification authorises YESpay to store credit/debit card details securely; hence YESpay simplifies PCI-DSS as it stores card details in its data centres, on behalf of the merchant. YESpay allows the merchant indirect card information access with the creation of a ‘token’ linked to the card and passed on to the merchant.
YESpay offers two methods which are PCI-DSS certified and no storage of full card details is needed as YESpay handle card information:
i. One way function token (SHA-1 Hash): EasyV Terminal (YESpay EFT payment client) returns a SHA1 hash of card number with every transaction response by default. This hash value can be used to identify a card uniquely. As the hash values are unique and cannot be re-engineered to create the original card numbers, this method is useful to analyse Customer’s/Cardholder’s trends and spend patterns throughout stores. Besides, it can help detect card fraudulent behaviours as one token refers to one credit/debit card number and excessive pending/refunding with cards can be followed. By using SHA-Hash, merchants can also identify cardholders picking up tickets or goods at kiosk.
ii. YESpay proprietary token: Card tokens generated by YESpay enable recurring payments (such as subscription billing) and split/deferred payments. Later refund payments without storing card details are also possible.
About YESpay International Limited:
YESpay, a global card payments service company, provides highly secure Internet, EMV Chip & PIN, contactless and gift card payment processing services to independent and multi-chain merchants. Through EMBOSS™, the YESpay Managed Payment Service, merchants can quickly accept integrated card payments within EPOS, kiosks, hospitality and e-commerce systems with minimal capital investment and low on-going services costs. EMBOSS is an on-line IP-based payment processing service that has been generically pre-accredited by major Card Acquirers in Europe and North America (including Chase Paymentech, First Data Merchant Service (FDMS), Barclaycard Business, HSBC, HBOS, Lloyds Cardnet, Streamline, Ulster Bank, Elavon, PBS, Amex and Diners). In addition, the YESpay EMBOSS service is fully end to end certified to Payment Card Industry Data Security Standards (PCI DSS) Level 1 as mandated by Visa and MasterCard. The YESpay EasyV-Suite of card payment products is innovative and cost-effective for EPOS, Kiosk, Hospitality, Mobile and Internet environments. With the YESpay EMBOSS card payment service, merchants can perform card payments in both card-present and card-not-present environments.
YESpay International Ltd Offices:
Checknet House, 153 East Barnet Road, Barnet, EN48QZ, UK
UK/Europe Telephone: +44 – 203 – 006 – 3790
Contact: Antonia Mitsana, Marketing Manager, +44-203-006-3790 ext. 227
# # #