UK fintech one of first in Europe to gain PCI DSS v4.0 certification


PCI DSS is a global data security standard that provides a baseline of technical and operational requirements designed to protect sensitive payment card data.

Published in March 2022, PCI DSS v4.0 replaces v3.2.1 and addresses emerging security threats and technologies. Version 3.2.1 remains in force until the end of March 2024 and so technically not all organisation will be compliant against version 4.0 until March 2025.

Cambridge-based fintech Monavate has become one of the first organisations in Europe to certify against the latest version of the PCI Data Security Standard (PCI DSS v4.0).

Mat Peck, Chief Technology Officer of Monavate said: “Certifying against the new Standard nearly 18 months ahead of time helps decrease the scope and burden of PCI on our customers. For example, because we manage card account numbers and CVVs on behalf of our customers, we can tokenise sensitive data even during real-time processes, such as 3D-Secure authentication or real-time card funding. This not only reduces their PCI DSS scope for greater peace of mind, but also contributes towards speedy, seamless product launches.”

“We’ve had the luxury of building our systems from scratch with modern thinking, architecture and processes. So, we’ve been able to bake in security from the start. There’s also no need for us to retrofit an old system, way of thinking or working to comply with new standards. Or manage a process of backward compatibility.”

“Our systems and our one-stop card issuing platform come with the software, hardware and ‘headware’ to go forward unencumbered by unhelpful legacy. These benefits accrue to our customers through our ‘as-a-service’ model.”

Monavate aims to demystify finance, making it accessible to all; simplifying and improving how people pay the world over. Monavate’s full-service card issuing platform provides everything needed to make even the most ambitious financial ideas a reality, all in a single place. Monavate is regulated by the UK Financial Conduct Authority and Bank of Lithuania as an e-money institution and is a principal member of Mastercard, Visa and Discover.

Related Posts
Others have also viewed

Generative AI at work: Creating a transparent company culture

The power of generative AI has risen to prominence in the past year. Even for ...

Businesses fail to achieve highly resilient connectivity as commodity IoT providers fail to deliver

A new State of IoT Adoption report launched today by Eseye, a leading global IoT ...

AI-powered computer vision enhances safety in industrial workplaces

RoboK, a startup applying AI-powered computer vision to logistics and industrial workplaces, has announced $2.1 ...

2m UK university and research facility credentials hacked

2.2 million personal credentials are available on the dark web stolen from the top 100 ...