Case Study: CreditCall achieves secure mobile payments with Thales e-Security

Creditcall Achieves High Security for New Mobile Payment Solutions

CreditCall, a payment gateway service provider, saw an opportunity to expand into mobile point-of-sale payments for smaller merchants and micro-merchants. Its challenge was security: mobile devices are more exposed than traditional terminals, and CreditCall needed a way to protect cardholder data while keeping the solution practical for banks, acquirers, processors, and mobile network operators.

CreditCall integrated PCI SRED-certified card readers with Thales e-Security payShield 9000 hardware security modules to create a point-to-point encryption zone between the card acceptance point and the payment gateway. The setup encrypted data before it reached the merchant’s smartphone or tablet, reducing PCI DSS scope and eliminating the need for independent security certification of the mobile device. According to CreditCall, Thales e-Security provided the key management and hardware-based protection needed to make security viable in mobile environments.

CreditCall

Jeremy Gumbley

Chief Technology Officer