- PCI DSS Level 1
- Annual on-site assessment plus quarterly ASV scans; sub-merchants inherit the posture across every connected acquirer.
- Scheme programmes
- Visa VDMP / VAMP / VFMP and Mastercard ECP / EFMP positions surfaced per acquirer; routing weights can rotate around at-risk lanes.
- SCA & PSD2
- Selective EMV 3DS2 on the authorisation path keeps European approval high without skipping the SCA bar.
- Bank-rail mandate posture
- NACHA authorisations for ACH, SEPA mandate IDs for SEPA Direct Debit; captured and retained per scheme rules.
- Crypto partner-gateway compliance
- Crypto rails delivered through licensed partner gateways with VASP / MiCA-relevant authorisations; AML / KYC inherited.
- Sanctions & AML alignment
- Sanctions screening at onboarding; AML monitoring tuned per merchant vertical, volume and channel mix.
- Licensed verticals only
- Licensed gaming, regulated financial services and other compliance-bound verticals supported only where current operating licences exist. Grey and black-market verticals are out of scope.