We have over 10 years of experience in the mobile payment field

Security

We are experts in banking security. We protect the data of our customers 100%.

OnePass Payments

Your customer will be using the the simplest way to pay on both your physical location and online Store.

PCI - DSS

Compliance with PCI-DSS is not easy. PayMet complies with this procedures for you.

No middleman

We are not financial intermediaries. We are never in possession of third party funds.

Security

We are experts in banking security. We protect the data of our customers 100%.

Give your customers the highest industry safety without worrying about the difficult management

PayMet meets all standard safety practices in the industry to protect your customers, your data and your business.

PayMet Network and servers are housed in a secure facility, being monitored at all times by our security personnel.

The PayMet Software is developed using industry standards and best safety practices.

PayMet has several data centers in geographically different locations

PayMet employees always act according to control policies designed to maintain data security.

Physical and network security

Sensitive data is encrypted using industry standard methods when stored on disk or when they are transmitted over public networks.

Only when the standard is met, the full revised cryptographic protocols and message formats (such as SSL and PGP) proceeds to transfer data.

For symmetric encryption keys at least 256 bits in length are required. Asymmetric keys must be at least 2048 bits in length.

All updates and security patches are installed on servers and efficiently with daily updates.

Total security settings of applications and devices are adjusted to ensure the highest levels of protection.

PayMet website and API are accessible via 256-bit SSL certificates with Extended Validation CA emited by issuers of international renown.

Web applications and client security

Card numbers or security codes are not stored in the PayMet client devices. Moreover, never travel in communication from mobile terminals and payment processing centers.

The applications developed 'In Home', are subject to strict quality controls and security review.

The standard web development industry follow secure coding guidelines such as those recommended by OWASP.

For card processing, PayMet application adheres to the PCI Data Security Standard (PCI-DSS) Level 1. Security organization.

Data encryption

The card data is stored using one of the more advanced encryption methods available.

We use multiple encryption keys that are stored on different physical servers. A data thief would not be able to use the stolen information to a database without also having the Key.

The data warehouse where cardholder data is stored can not be connected over the Internet.

Communication between companies and us is held in a secure way using SSL.

Security facility

Access to sensitive data, including application data and cryptographic keys, is strictly controlled according to need to know.

PayMet authentication is governed by multiple factors, Login, Biometrics, keys, etc.

Authentication controls for full access to our customer manager administrative systems are needed.

All security systems and processes are tested regularly by qualified personnel, internal teams and external auditors.

All access to secure services and data is strictly connected and audit logs are reviewed regularly.

Policies and safety procedures are carefully documented and reviewed regularly. PayMet has detailed plans to respond to potential incidents, ensuring adequate data protection in case of emergency.

Research and outreach

PayMet recognizes and values ​​the important contributions that our users and the security community can do for research.

We want to encourage responsible reporting. If you think you've discovered a problem with our service, please contact us here.

It is not an invitation to test the safety of our service without authorization. If you have any questions about this, or if you have any doubts about whether testing is appropriate, please contact us before proceeding.

OnePass Payments

Your customer will be using the the simplest way to pay on both your physical location and online Store.

If the buying process is easy and intuitive, action will be repeated by the user.

PayMet services provide a system of debit or credit card tokenization, that allows to store securely data card of users who are registered in your business, and always with your consent.

After the first purchase, it offers the user the possibility of saving their payment information to your customer record. The authentication of the card data is performed only once in that first purchase and if you agree to the terms and conditions of PayMet. Customers will be able to shop in a single click, only using their mail and PassCode.

This system, enabled to any credit or debit card in the market, is compatible with standard 3DSecure banking security, eliminating fraud in card transactions.

OnePass payment is one of the most requested features of the market, simplifying the purchase process significantly, increasing conversion rates.

If a user perceives an easy and intuitive buying process such as a website, the user will back to buy again. The time saved using this method is really significant.

We can ensure that OnePass PayMet payments are highly secure and well received among users.

PCI - DSS

Compliance with PCI-DSS is not easy. PayMet complies with this procedures for you.

It is essential to have a service provider that meets PCI-DSS procedures

PayMet is a provider of PCI-DSS Validated Service Level 1 and Validated Service Level 2.

We comply with all PCI Security Standards Council rules to ensure that all payment procedures and card tokenization are 100% safe.

This system, enabled to any credit or debit card in the market, is compatible with standard 3DSecure banking security, eliminating fraud in card transactions.

The PCI Security Standards Council offers robust and comprehensive standards and supporting materials to enhance the security of payment card data. These materials include a framework of specifications, tools, measurements and support resources to help organizations ensure the safe handling of cardholder information at every step. The cornerstone is the standard PCI Data Security (PCI- DSS), which provides a framework of specific actions for developing a process of data security of robust payment card - including prevention, detection and appropriate reaction to security incidents.

No middleman

We are not financial intermediaries. We are never in possession of third party funds.

The transaction is always done directly from the user card to the merchant account

Our core value is that we are a link between businesses and customers. Never have the funds of others; and in every transaction we connect, in a 100% safe way, the customer's card and the merchant's account to undergo the required payments in an efficient manner.

Create your Merchant Account and start receiving OnePass payments

To operate with PayMet you should only register as a merchant in our platform.

Once you've completed this step, you'll be able to integrate in your App or Website the PushPay, the most secure Virtual POS, or accepting payments through our App in your stablishment.

If you are a merchant

Innovate and start receiving mobile payments in your bank account in real time.

Download here!

If you are a user

Pay with your mobile by the quickest and safest way in physical and online stores.

Download here!

PayMet complies PCI-DSS to a secure card storage VeriSign authorizes PayMet as a secure platform for payments online PayMet is registered as ISO-MSP through Sabadell Bank GlobalSign authorizes PayMet as a secure platform for payments online PayMet is associated to Adigital, the Spanish Association of Digital Economy