Case Study: Omise achieves a scalable, PCI‑compliant, and cost‑effective payment platform with Amazon Web Services

Omise - Customer Case Study

Omise, founded in 2014 in Thailand, is a payment-gateway provider serving about 500 merchants and expanding into Japan and Indonesia. Confronted with strict Thai regulations and PCI DSS requirements, the company needed a secure, reliable, and elastic infrastructure to move card data directly from customers’ browsers (without touching merchant systems), support peaks of more than 1,000 transactions per minute, and obtain a financial-services license.

Omise implemented two segregated stacks on AWS — a “vault” for card data and an API stack — using EC2, ELB, IAM, KMS, RDS, ElastiCache, S3/CloudFront, SES, and SQS to meet compliance, encryption, access controls, and monitoring needs. The result was regulator-approved, PCI-compliant operations with 99.99% availability, the ability to handle large transaction spikes, faster time-to-market for new services, and substantially lower costs than building an on‑premises data center.

Omise

Frederico Araujo

Chief Information Officer