- PCI DSS Level 1
- Vault, switch and tokenisation are PCI DSS Level 1 service-provider components; sub-merchants inherit the posture.
- Sanctions & AML
- Sanctions screening at onboarding; AML monitoring at the platform level; the AML position is part of the merchant management system surface in the dashboard.
- SCA / PSD2
- Selective EMV 3DS2 on the authorisation path keeps approval high in Europe without skipping the SCA bar.
- Scheme programmes
- VDMP / VAMP / VFMP and ECP / EFMP positions surfaced per connected acquirer; routing weights can rotate around at-risk lanes.
- Audit log
- Operator-side refund controls, dispute-queue actions and policy edits all logged for SOC / ISAE attestation evidence.
- Licensed verticals only
- Licensed gaming, regulated financial services and other compliance-bound verticals supported only where current operating licences exist. Adult content, unlicensed gambling and other grey / black-market verticals are out of scope regardless of routing.