Cardlay security, fraud prevention and AMW

Cardlay’s Cards & Expense Management platform and app offers the highest level of security and has a lot of build in security facilities to prevent fraudulent activity. Cardlay is PCI DSS Level 1 certified and offers bank level security storing cardholder data.

Mastercard partner

Fraud prevention, 
detection, and monitoring

PCI DSS Level 1 Security

PCI DSS Level 1 Security

Cardlay is PCI DSS Level 1 certified and offers the highest security level possible storing cardholder data. All company, card information, and cardholder data is protected by encryption and is stored in a PCI DSS Level 1 compliant data centre.

The Payment Card Industry Data Security Standard (PCI DSS) is a set of security standards designed to ensure that all companies that accept, process, store or transmit credit card information maintain a secure environment.

The Payment Card Industry Data Security Standard (PCI DSS) is a proprietary information security standard for organizations that handle branded cards from the major card schemes including MasterCard, Visa, American Express, Discover, and JCB. The PCI Standard is mandated by the card brands and administered by the Payment Card Industry Security Standards Council.

Fraud prevention, detection, and monitoring

Cardlay has a lot of build in security facilities to prevent fraudulent activity. All transactions are monitored 24/7 from a secure data centre. Cardlay uses the existing banking infrastructure and security and collaborates with worldwide-recognised global providers of card programs.

Cardlay has formalised security policies, incident response plans, and procedures to prevent, detect, and report any kind of fraudulent activity immediately. Cardlay’s cardholder data environments (CDE) are continuously tested by external ASV partners to prevent vulnerabilities and unwanted penetration.

Access to the cardholder data environment is secure and highly restricted. All Cardlay employees continuously attend internal security and compliance training.

Both the software platform and the app are developed to minimise risks. Cardholders must keep the card, security details, and PIN safe by taking appropriate measures. The PIN will be disabled if an incorrect PIN is entered three times at all ATMs and/or point of sale. Admin and users receive instant notifications on card usage, transactions, and expenses. Users can immediately block, unblock or cancel cards, and change their PIN in real time in case a card is lost, misused or stolen.

MasterCard partner

Cardlay physical & virtual cards are issued by Transact Payments Limited pursuant to licence by MasterCard International Incorporated and accepted by millions of merchants worldwide. All customers are covered by MasterCard International Inc. Anti-Money-Laundry (AML) Service.

Virtual cards can be used for any business related online purchases. Physical cards can be used for in-store payments, hotels, car rental etc. just like other payment cards. Cardlay MasterCard® prepaid cards can be used at more than 36 million locations worldwide and anywhere you see the MasterCard Acceptance Mark.

MasterCard and the MasterCard Acceptance Mark are registered trademarks of MasterCard International Incorporated.