CIPS

Compliant with main standards

CIPS has been designed in compliance with four main standards domains: ISO, PCI, IFSF and GDPR.

Compliance with ISO

CIPS is compliant with the following

  • Popular ISO Standards:

o ISO/IEC 27001 INFORMATION SECURITY MANAGEMENT

o ISO 639 LANGUAGE CODES

o ISO 4217 CURRENCY CODES

o ISO 8601 DATE AND TIME FORMAT

o ISO 3166 COUNTRY CODES

  • Main ISO Standards for Payments Solutions:

o ISO 8583:2003 FINANCIAL TRANSACTION CARD ORIGINATED MESSAGES — INTERCHANGE MESSAGE SPECIFICATIONS

o ISO 8583:1998 FINANCIAL TRANSACTION CARD ORIGINATED MESSAGES — INTERCHANGE MESSAGE SPECIFICATIONS

o ISO 13492:2019 FINANCIAL SERVICES — KEY-MANAGEMENT-RELATED DATA ELEMENT — APPLICATION AND USAGE OF ISO 8583-1 DATA ELEMENTS FOR ENCRYPTION

o ISO 9564:2016 FINANCIAL SERVICES — PERSONAL IDENTIFICATION NUMBER (PIN) MANAGEMENT AND SECURITY

o ISO 13491:2017 FINANCIAL SERVICES — SECURE CRYPTOGRAPHIC DEVICES (RETAIL)

  • Main ISO Standards for Smart Cards:

o ISO/IEC 7816:2019 IDENTIFICATION CARDS — INTEGRATED CIRCUIT CARDS

o ISO/IEC 14443:2018 CARDS AND SECURITY DEVICES FOR PERSONAL IDENTIFICATION — CONTACTLESS PROXIMITY OBJECTS

o ISO/IEC 15693:2019 CARDS AND SECURITY DEVICES FOR PERSONAL IDENTIFICATION — CONTACTLESS VICINITY OBJECTS

o ISO/IEC 7501:2005 IDENTIFICATION CARDS — MACHINE READABLE TRAVEL DOCUMENTS

  • Other ISO Standards:

o ISO/TR 21941:2017 FINANCIAL SERVICES — THIRD-PARTY PAYMENT SERVICE PROVIDERS

o ISO/TS 12812:2017 CORE BANKING — MOBILE FINANCIAL SERVICES

o ISO/TR 14806:2013 INTELLIGENT TRANSPORT SYSTEMS — PUBLIC TRANSPORT REQUIREMENTS FOR THE USE OF PAYMENT APPLICATIONS FOR FARE MEDIA

Compliance with PCI

CIPS is compliant with the following PCI standards:

  • PA-DSS

  • PCI-DSS

Compliance with IFSF

CIPS is compliant with the following IFSF standards

  • Electronic Payment Server:

o IFSF 3-10 Card Handling Server Standard

o IFSF 3-21 Security Standard

o IFSF 3-30 POS to EPS V3 Interface Standard

o IFSF 3-40 POS to FEP V2 Interface Standard

  • Acquirer:

o IFSF 3-21 Security Standard

o IFSF 3-50 Host to Host V2 Interface Standard

  • Card Scheme:

o IFSF 3-21 Security Standard

o IFSF 3-28 Standard for Issuing EMV Based Fuel Cards

o IFSF 3-29 Key Management Standard

o IFSF 3-50 Host to Host V2 Interface Standard

  • Front-End Processor:

o IFSF 3-21 Security Standard

o IFSF 3-40 POS to FEP V2 Interface Standard

o IFSF 3-50 Host to Host V2 Interface Standard

  • Loyalty Engine:

o IFSF 3-21 Security Standard

o IFSF 3-40 POS to FEP V2 Interface Standard

o IFSF 3-50 Host to Host V2 Interface Standard

Compliance with GDPR

CIPS is compliant with GDPR standards.