Security at tap2payments

PCI DSS compliant

Card data never touches our servers. All cardholder data is handled by our PCI Level 1 certified processor.

Passkey authentication

Merchant accounts use WebAuthn passkeys. No passwords to phish, no credentials to breach.

End-to-end encryption

NFC tap data is encrypted at the point of interaction and transmitted over TLS 1.3.

Fraud detection

Real-time transaction scoring flags suspicious activity before funds move.

Funds isolation

Merchant funds are held in segregated accounts, separate from operating capital.

Vulnerability disclosure

Found a security issue? Email security@tap2payments.com. We respond within 24 hours.