Skip to Content

  

Icon tablet terminal

TRADITIONAL MPOS (SCR, SCRP, PA-DSS)

  

Icon tablet with a signature

PIN on Glass (SPOC)

  

Icon card tapping on phone

Tap on Phone (CPOC)

Please visit the PCI Security Standards website for more information on CPOC-compliant solutions.

  

Icon a checkmark

Pilot Ready

Information presented via a web-link was provided by the respective Solution Provider. Mastercard makes no representations or warranties as to the accuracy and completeness of such information. Please contact the Solution Provider directly with any questions or for more information.

*This directory is not exhaustive and includes Mastercard MPOS Program registered providers (Traditional MPOS), PCI-certified providers (Pin on Glass and Tap on Phone) and providers approved to pilot on the Mastercard network (Pilot Ready).

Assist

Certifications
PCI-DSS

Integrated with Mastercard Payment Gateway Services (MPGS)
No

GDPR compliant
No

Security mechanism

  • Trusted Execution Environment (TEE)
  • Secure Element (SE)

Hosting options
We provide our solution for the Russian Federation and the Republic of Belarus

Tap on Phone options
Android application

Value-added services offered
Digital receipt

Minimum OS and device requirements
Android V8.1 hardware backed keystore

Adyen

Certifications
PCI-DSS

Integrated with Mastercard Payment Gateway Services (MPGS)
No

GDPR compliant
Yes

Security mechanism
White-box cryptography

Hosting options
On-premise in country

Tap on Phone options
SDK

Value-added services offered
Reporting

Minimum OS and device requirements
Android 11 or above

Amadis (Preludd group)

Certifications
EMV (L2), PCI-DSS

Integrated with Mastercard Payment Gateway Services (MPGS)
No

GDPR compliant
Yes

Security mechanism
White-box cryptography and code obfuscation

Hosting options

  • On-premise in country
  • Cloud hosted

Tap on Phone options
SDK, White Label

Value-added services offered
Online payments, inventory management, reporting, digital receipt, reporting

Minimum OS and device requirements
Android v10 and above

BBMSL Limited

Certifications
EMV (L2)

Integrated with Mastercard Payment Gateway Services (MPGS)
No

GDPR compliant
Yes

Security mechanism
White-box cryptography

Hosting options
Cloud hosted

Tap on Phone options
White Label, SDK, Deep Link (wrapper)

Value-added services offered
QR payment acceptance

Minimum OS and device requirements
Android V7.0 and above

Cartsys LLC

Certifications
EMV (L2)

Integrated with Mastercard Payment Gateway Services (MPGS)
No

GDPR compliant
No

Security mechanism

  • White-box cryptography
  • Trusted Execution Environment (TEE)
  • Secure Element (SE)

Hosting options

  • Cloud hosted
  • On-premise in country

Tap on Phone options
White Label, Deep Link (wrapper)

Value-added services offered
Digital Onboarding, Digital Identification, Loyalty, Inventory Management, Reporting, Digital Receipt, QR Payment Acceptance, FLM support chatbot, P2P transactions

Minimum OS and device requirements
Android V9 or above

Cellfie

Certifications
EMV (L2)

Integrated with Mastercard Payment Gateway Services (MPGS)
No

GDPR compliant
No

Security mechanism
White-box cryptography

Hosting options
Cloud hosted

Tap on Phone options
White Label, SDK, Deep Link (wrapper)

Value-added services offered
QR payment acceptance

Minimum OS and device requirements
Android Oreo Version 8.0

Center of Corporate Technologies

Certifications
EMV (L2), PCI-DSS, PIN security

Integrated with Mastercard Payment Gateway Services (MPGS)
No

GDPR compliant
No

Security mechanism
Cryptographic keys are stored in the Android Keystore

Hosting options

  • On-premise in country
  • Cloud hosted

Tap on Phone options
White Label, SDK, Deep Link (wrapper)

Value-added services offered
QR payment acceptance

Minimum OS and device requirements
Android V8.1

Dejamobile

Certifications
EMV (L2), PCI-DSS

Integrated with Mastercard Payment Gateway Services (MPGS)
No

GDPR compliant
Yes

Security mechanism
White-box cryptography

Hosting options
Cloud hosted

Tap on Phone options
White Label, SDK, Deep Link (wrapper)

Value-added services offered
Management web portal, device and apps monitoring, reporting module, Android ECR app (through partners)

Minimum OS and device requirements
Android V8.0

DgPays

Certifications
EMV (L2), PCI-DSS, PCI-DSS + DESV

Integrated with Mastercard Payment Gateway Services (MPGS)
No

GDPR compliant
Yes

Security mechanism

  • White-box cryptography
  • Android Key Store

Hosting options
On-premise in country

Tap on Phone options
White Label, SDK, Deep Link (wrapper), Standalone, App2app

Value-added services offered
Digital onboarding, digital identification, loyalty inventory management, reporting, credit, digital receipt, QR payment acceptance

Minimum OS and device requirements
Android Oreo V8.1

Digital Alliance Holding AB

Certifications
EMV (L2), PCI-DSS

Integrated with Mastercard Payment Gateway Services (MPGS)
No

GDPR compliant
No

Security mechanism
White-box cryptography, DexGuard solution, hardware keystore, google SafetyNet and so on.

Hosting options

On-premise in country

Other: Our company provides an intermediary host deployed in our area that is PCI DSS certified. This host has connection to partners for acquiring purposes.

Stand-alone host deployment is also possible (inside of perimeter of some PCI DSS certified partner (bank))

Tap on Phone options
Android application that can be used as stand-alone solution or can be called by external application for secure transaction processing.

Value-added services offered
QR Payment Acceptance

Minimum OS and device requirements
Android V9.0

EdfaPay

Certifications
PCI-DSS, EMV (L2)

Integrated with Mastercard Payment Gateway Services (MPGS)
No

GDPR compliant
No

Security mechanism
Secure element (SE)

Hosting options
Cloud hosted

Tap on Phone options
White Label, SDK

Value-added services offered
Digital onboarding, reporting, digital receipt

Minimum OS and device requirements
Android V9 or above

eMcRey Ltd

Certifications
EMV L2, PCI-DSS

Integrated with Mastercard Payment Gateway Services (MPGS)
No

GDPR compliant
Yes

Security mechanism
White-box cryptography

Hosting options

  • On-premise in country
  • Cloud hosted
  • Other: Private cloud hosted

Tap on Phone options
White label

Value-added services offered
Digital onboarding, inventory management, reporting, digital receipt, Apex SoftPOS back end integrates with other added-value services

Minimum OS and device requirements
Android V8 with built-in NFC and should be a non-rooted device

Felix Payment Systems Ltd

Certifications
EMV L2, PCI-DSS

Integrated with Mastercard Payment Gateway Services (MPGS)
No

GDPR compliant
Yes

Security mechanism
White-box cryptography

Hosting options
Cloud hosted

Tap on Phone options

  • White label
  • Android application

Value-added services offered
Digital onboarding, digital receipt

Minimum OS and device requirements
Android V8

Firisbe

Certifications
EMV (L2)

Integrated with Mastercard Payment Gateway Services (MPGS)
No

GDPR compliant
Yes

Security mechanism
Android Key Store

Hosting options
On-premise in country, cloud hosted

Tap on Phone options

  • SDK
  • White label

Value-added services offered
Digital Receipt, Reporting, QR Payment Acceptance

Minimum OS and device requirements
Android V10 or above

Geopagos SA

Certifications
EMV (L2), PCI-DSS

Integrated with Mastercard Payment Gateway Services (MPGS)
No

GDPR compliant
Yes

Security mechanism

  • White-box cryptography
  • Trusted Execution Environment (TEE)
  • Secure Element (SE)

Hosting options
Cloud hosted

Tap on Phone options
White Label, SDK, Deep Link (wrapper)

Value-added services offered
Digital onboarding, digital identification, reporting, digital receipt, QR payment acceptance

Minimum OS and device requirements
Android V10.0 or above

Halo Dot (Synthesis Software Technologies)

Certifications
EMV (L2), PCI-DSS, PCI-PIN

Integrated with Mastercard Payment Gateway Services (MPGS)
Coming soon

GDPR compliant
Yes

Security mechanism

  • Zimperium
  • zKeyBox
  • zShield

Hosting options
Public Cloud (AWS)

Tap on Phone options

  • Halo.SDK
  • Halo.Link (App-to-app integration)
  • Halo.Plus (White-label SoftPos solution)

Value-added services offered
In-app onboarding, digital receipts, TMS, support portal, merchant portal

Minimum OS and device requirements
Android V8.0 and above

IBA Group a.s.

Certifications
EMV L2, PCI CPoC, PCI-DSS, SPoC GAP analysis

Integrated with Mastercard Payment Gateway Services (MPGS)
Yes

GDPR compliant
Yes

Security mechanism
Cryptographic keys are stored in the Android Keystore (Trusted Execution Environment if hardware-backed)

Hosting options

  • On-premise in country
  • Cloud hosted

Tap on Phone options

  • White Label
  • Deep Link (wrapper)
  • Other: tapXphone can be used as a standalone application or can provide App2App integration via API

Value-added services offered
Digital onboarding via API, reporting, digital receipt, developing installments and loyalty

Minimum OS and device requirements
Android V8.0

iKhokha

Certifications
PCI-DSS, EMV (L2)

Integrated with Mastercard Payment Gateway Services (MPGS)
No

GDPR compliant
Yes

Security mechanism
White-box cryptography

Hosting options
Cloud hosted

Tap on Phone options
SDK

Value-added services offered
Digital onboarding, digital identification, inventory management, reporting, digital receipt, QR payment acceptance

Minimum OS and device requirements
Android V9 or above

Ingenico

Certifications
EMV (L2), SPoC, CPoC, PCI-DSS

Integrated with Mastercard Payment Gateway Services (MPGS)
No

GDPR compliant
Yes

Security mechanism
White-box cryptography

Hosting options
Hybrid cloud-based + hosted at Ingenico DC

Tap on Phone options
White Label, SDK, Deep Link (wrapper)

Value-added services offered
Reporting and digital receipt when solution includes the payment gateway (such as with Ingenico One)

Minimum OS and device requirements
Android V8.1+

Internadeks Group Ltd

Certifications
PA DSS, PCI DSS

Integrated with Mastercard Payment Gateway Services (MPGS)
No

GDPR compliant
No

Security mechanism
White-box cryptography, Trusted Execution Environment (TEE)

Hosting options

  • Cloud hosted
  • On-premise in country

Tap on Phone options
White label, SDK

Value-added services offered
Digital onboarding, reporting, digital identification, loyalty, credit, digital receipt, QR payment acceptance

Minimum OS and device requirements
Android V10 or above

Lipa Payments

Certifications
PCI-DSS, EMV (L2)

Integrated with Mastercard Payment Gateway Services (MPGS)
Yes

GDPR compliant
No

Security mechanism
Trusted Execution Environment (TEE), Secure Element (SE)

Hosting options
On-premise in country, cloud hosted

Tap on Phone options
White Label, SDK, Deep Link (wrapper)

Value-added services offered
Digital onboarding, inventory management, reporting, digital receipt, QR payment acceptance, Pay by Link

Minimum OS and device requirements
Android V11 or above

Magic Cube

Certifications
EMV (L2), EMVCo – TEE

Integrated with Mastercard Payment Gateway Services (MPGS)
No

GDPR compliant
Yes

Security mechanism
EMVCo validated unique software-based virtual Trusted Execution Environment (vTEE)

Hosting options

  • On-premise in country
  • Cloud hosted

Tap on Phone options
White Label, SDK

Value-added services offered
Digital onboarding, loyalty, inventory management, reporting, digital receipt

Minimum OS and device requirements
Android V9 or later, on a Google-supported Android device with NFC

Mastercard

Certifications
EMV (L2), CPoC, PCI-DSS

Integrated with Mastercard Payment Gateway Services (MPGS)
Yes

GDPR compliant
Yes

Security mechanism
Trusted Execution Environment (TEE)

Hosting options
Cloud Hosted

Tap on Phone options
White Label, SDK, Deep Link (wrapper)

Value-added services offered
Online payments, digital receipts, reporting

Minimum OS and device requirements
Android V9 and above

MAYASOFT LLC

Certifications
EMV (L2), PCI-DSS, Mastercard Contactless certification

Integrated with Mastercard Payment Gateway Services (MPGS)
No

GDPR compliant
No

Security mechanism
Trusted Execution Environment (TEE)

Hosting options
On-premise in country

Tap on Phone options
Stand-alone product

Value-added services offered
Reporting

Minimum OS and device requirements
Smartphone with Android V8.0 and NFC

MeaPay

Certifications
PCI-DSS, PCI DESV, PCI PIN, EMV (L2)

Integrated with Mastercard Payment Gateway Services (MPGS)
No

GDPR compliant
Yes

Security mechanism
White-box cryptography

Hosting options

  • On-premise in country
  • Cloud hosted

Tap on Phone options
White Label, SDK, Deep Link (wrapper)

Value-added services offered
Digital onboarding, digital identification, inventory management, reporting, digital receipt, QR payment acceptance

Minimum OS and device requirements
Android V8.0 and above operating systems with NFC capability

MineSec Pte LTD

Certifications
EMV (L2), PCI-DSS

Integrated with Mastercard Payment Gateway Services (MPGS)
No

GDPR compliant
Yes

Security mechanism

  • White-box cryptography
  • Trusted execution environment (TEE)
  • Secure element (SE)
  • Hardware keystore

Hosting options

  • On-premise in country
  • Cloud hosted

Tap on Phone options
White Label, SDK, Deep Link (wrapper)

Value-added services offered
Digital onboarding, digital identification, QR payment acceptance, reporting, digital receipt

Minimum OS and device requirements
Android V10

Mosambee

Certifications
EMV (L2), SPoC, CPoC, PA-DSS, PCI-DSS, PCI-PIN

Integrated with Mastercard Payment Gateway Services (MPGS)
Yes

GDPR compliant
Yes

Security mechanism
White-box cryptography

Hosting options

  • On-premise in country
  • Cloud hosted

Tap on Phone options
White Label, SDK, Deep Link (wrapper)

Value-added services offered
Digital onboarding, digital identification, loyalty, inventory management, reporting, digital receipt, QR payment acceptance, BNPL and IPP services

Minimum OS and device requirements
Android V8.0 or above

MYPINPAD Ltd

Certifications
EMV (L2), PCI SPoC, PCI CPoC, PCI-DSS, PCI PIN, Tap on Phone PIN Waiver

Integrated with Mastercard Payment Gateway Services (MPGS)
No

GDPR compliant
Yes

Security mechanism
White-box cryptography

Hosting options
Cloud hosted

Tap on Phone options
White Label, SDK

Value-added services offered (limit to 2)
White-label PCI solution and waiver solutions offered as companion app or SDK. Cloud platform provides for banking app (ID & V) and Tap-in-App solutions in addition to Tap on Phone and PIN on Phone.

Minimum OS and device requirements
Android Version 8.0 and above

myPOS

Certifications
EMV (L2), PCI-DSS

Integrated with Mastercard Payment Gateway Services (MPGS)
Yes

GDPR compliant
Yes

Security mechanism
White-box cryptography

Hosting options
Cloud hosted

Tap on Phone options
White Label

Value-added services offered (limit to 2)
Every free myPOS merchant account gets a free Mastercard or Visa business card, a free multi-currency e-money account, QR Payment acceptance, a cash register in the same app, access to online payment acceptance functionalities such as payment requests, payment links and buttons, access to myPOS Online to open an e-commerce website in just a few clicks, invoicing and many more.

Minimum OS and device requirements
Android Version 8.0 and above

Nepting SAS

Certifications
PCI-DSS

Integrated with Mastercard Payment Gateway Services (MPGS)
No

GDPR compliant
Yes

Security mechanism
White-box cryptography

Hosting options
Cloud Hosted

Tap on Phone options
White Label, SDK

Value-added services offered
Inventory management, reporting, credit, digital receipt

Minimum OS and device requirements
Android 10 or above

Neurogine MPEX (L) LTD

Certifications
PCI-DSS, PA-DSS

Integrated with Mastercard Payment Gateway Services (MPGS)
No

GDPR compliant
Yes

Security mechanism
White-box cryptography

Hosting options

  • On-premise in country
  • Cloud hosted

Tap on Phone options
White Label, SDK, Deep Link (wrapper)

Value-added services offered
Digital onboarding, digital identification, loyalty, reporting, credit, digital receipt, QR payment acceptance

Minimum OS and device requirements
Android V10 or above

Oma Group LLC

Certifications
EMV (L2), PCI-DSS, PA-DSS

Integrated with Mastercard Payment Gateway Services (MPGS)
No

GDPR compliant
Yes

Security mechanism
White-box cryptography

Hosting options

  • On-premise in country
  • Cloud hosted

Tap on Phone options
White Label, Deep Link (wrapper)

Value-added services offered
Loyalty, Reporting, Digital Receipt, QR Payment Acceptance

Minimum OS and device requirements
Android V10 or above

Payten d.o.o.

Certifications
EMV (L2), PCI-DSS

Integrated with Mastercard Payment Gateway Services (MPGS)
No

GDPR compliant
Yes

Security mechanism
White-box cryptography

Hosting options

  • Cloud hosted
  • On-premise in country

Tap on Phone options
White Label, SDK, Deep Link (wrapper)

Value-added services offered
Digital onboarding, reporting

Minimum OS and device requirements
Android V5.0 or above

PayxPos Tech Ltd

Certifications
EMV (L2)

Integrated with Mastercard Payment Gateway Services (MPGS)
Yes

GDPR compliant
Yes

Security mechanism
White-box cryptography, Trusted Execution Environment (TEE) Source code integrity protection, Source code obfuscation, Randomized Pinpad, SafetyNet, SSL Pinning

Hosting options

  • On-premise in country
  • Cloud hosted

Tap on Phone options
White Label, SDK, Deep Link (wrapper)

Value-added services offered
Digital onboarding, digital identification, loyalty, inventory management, reporting, digital receipt, QR payment acceptance

Minimum OS and device requirements
Android V10 and above

PCNC IT Solutions

Certifications
EMV (L2), SPoC

Integrated with Mastercard Payment Gateway Services (MPGS)
Yes

GDPR compliant
Yes

Security mechanism
White-box cryptography

Hosting options

  • On-premise in country
  • Cloud hosted

Tap on Phone options
White Label

Value-added services offered
Digital onboarding, digital identification, loyalty, reporting, digital receipt, QR payment acceptance

Minimum OS and device requirements
Android V9 and above

PayCore

Certifications
EMV (L2), PCI-DSS

Integrated with Mastercard Payment Gateway Services (MPGS)
Yes

GDPR compliant
Yes

Security mechanism

  • Product 1: General NFC Android devices via white-box cryptography
  • Product 2: Samsung-only devices (if requested); solution also runs on the Samsung Knox platform

Hosting options

  • On-premise in country
  • Cloud hosted
  • AWS Cloud or PayCore Datacenter

Tap on Phone options
White Label, SDK

Value-added services offered
Loyalty, inventory management, reporting, digital receipt, QR payment, payment link via MPGS

Minimum OS and device requirements
V4.4.2+ (without PIN) / V8.1 and above (with PIN)

Phos

Certifications
EMV (L2), PCI-DSS

Integrated with Mastercard Payment Gateway Services (MPGS)
Yes

GDPR compliant
Yes

Security mechanism

  • White-box cryptography
  • Trusted Execution Environment (TEE)

Hosting options

  • On-premise in country
  • Cloud hosted

Tap on Phone options
White Label, SDK, Deep Link (wrapper)

Value-added services offered
Digital onboarding and TMS

Minimum OS and device requirements
Android V8.1

Provision

Certifications
EMV (L2), Tap on Phone with PIN Pilot Certification

Integrated with Mastercard Payment Gateway Services (MPGS)
No

GDPR compliant
Yes

Security mechanism
White-box cryptography

Hosting options

  • On-premise installation
  • Cloud installation

Tap on Phone options
White Label, SDK, App-to-App Deeplink Solution

Value-added services offered
Not available

Minimum OS and device requirements
Android OS V5.0 and above, NFC chip availability on the device

Quest Payment Systems

Certifications
EMV (L2), PA-DSS, PCI-DSS

Integrated with Mastercard Payment Gateway Services (MPGS)
No

GDPR compliant
Yes

Security mechanism

  • Trusted Execution Environment (TEE)
  • Secure Element (SE)

Hosting options

  • On-premise in country
  • Cloud hosted

Tap on Phone options
White Label, SDK, Deep Link (wrapper)

Value-added services offered
Digital Onboarding, Reporting, Point of Sale, Digital Receipt, QR Payment Acceptance

Minimum OS and device requirements
Android V8.0+, Hardware-backed Keystore required

Rubean

Certifications
EMV (L2), PCI-DSS, PCI CPoC

Integrated with Mastercard Payment Gateway Services (MPGS)
No

GDPR compliant
Yes

Security mechanism
White-box cryptography

Hosting options
Cloud hosted

Tap on Phone options
White Label, SDK

Value-added services offered
Digital onboarding

Minimum OS and device requirements
Android V8.0+

Softpay.io

Certifications
EMV (L2), PCI-DSS

Integrated with Mastercard Payment Gateway Services (MPGS)
No

GDPR compliant
Yes

Security mechanism
White-box cryptography

Hosting options
Cloud Hosted

Tap on Phone options
White Label, SDK

Value-added services offered
Loyalty, Digital Receipt

Minimum OS and device requirements
Android V8.0

 SoftPOS, a Worldline brand

Certifications
PCI CPOC, PCI DSS, EMV (L2)

Integrated with Mastercard Payment Gateway Services (MPGS)
No

GDPR compliant
Yes

Security mechanism
Hard-backed keystore, white-box cryptography

Hosting options

  • On-premise in country
  • Cloud hosted

Tap on Phone options
White Label, SDK, Deep Link (wrapper)

Value-added services offered
Digital receipt, single sign-on, reporting

Minimum OS and device requirements
Android V10 and above

Soft Space

Certifications
EMV (L2), SPoC, CPoC, PA-DSS, PCI-DSS, PCI PIN

Integrated with Mastercard Payment Gateway Services (MPGS)
Yes

GDPR compliant
Yes

Security mechanism
White-box cryptography

Hosting options

  • On-premise in country
  • Cloud hosted

Tap on Phone options
White Label, SDK, Deep Link (wrapper)

Value-added services offered
Loyalty, digital receipt, QR payment, POS

Minimum OS and device requirements
Android V8.0 and above
NFC and equipped with Google Mobile Services (GMS)

Symbiotic

Certifications
EMV (L2), PCI CPoC

Integrated with Mastercard Payment Gateway Services (MPGS)
No

GDPR compliant
Yes

Security mechanism

  • Trusted Execution Environment (TEE)
  • Secure Element (SE)