Compliance

Our commitment to regulatory compliance and security standards

Certifications & Standards

PCI DSS Level 1

We maintain PCI DSS Level 1 certification, the highest level of compliance for the payment card industry. Annual assessments ensure continuous compliance.

Certified

ISO 27001

Our information security management system is ISO 27001 certified, demonstrating our commitment to protecting data and managing information security risks.

Certified

SOC 2 Type II

We have achieved SOC 2 Type II certification, verifying our controls for security, availability, processing integrity, confidentiality, and privacy.

Certified

Regulatory Framework

Paebs Payments Ltd. operates under a comprehensive regulatory framework. We are committed to maintaining full compliance with all applicable laws and regulations.

UK Regulations

  • Payment Services Regulations 2017: Governing the provision of payment services
  • Electronic Money Regulations 2011: For electronic money issuance
  • Money Laundering Regulations 2017: AML/CTF compliance requirements
  • UK GDPR & Data Protection Act 2018: Data protection and privacy
  • Consumer Rights Act 2015: Consumer protection obligations

Card Scheme Compliance

We comply with the operating regulations of all major card networks:

  • Visa Core Rules and Visa Product and Service Rules
  • Mastercard Rules
  • American Express Merchant Operating Guide
  • Discover Network Operating Regulations

Data Protection

We take data protection seriously and have implemented comprehensive measures to ensure compliance with UK GDPR:

  • Appointed a Data Protection Officer
  • Maintain records of processing activities
  • Conduct regular data protection impact assessments
  • Implement privacy by design principles
  • Provide transparency about data processing
  • Ensure data subject rights are respected

Security Measures

Our security program includes:

  • Encryption: All data encrypted in transit (TLS 1.3) and at rest (AES-256)
  • Access Control: Role-based access with multi-factor authentication
  • Monitoring: 24/7 security monitoring and incident response
  • Testing: Regular penetration testing and vulnerability assessments
  • Business Continuity: Disaster recovery and business continuity plans

AML/CTF Program

Our anti-money laundering and counter-terrorist financing program includes:

  • Risk-based customer due diligence
  • Ongoing transaction monitoring
  • Sanctions screening
  • Suspicious activity reporting
  • Regular staff training
  • Independent audits and assessments

For more details, see our AML Policy.

Fraud Prevention

We employ multiple layers of fraud prevention:

  • 3D Secure 2.0: Strong Customer Authentication for card payments
  • Machine Learning: AI-powered fraud detection systems
  • Velocity Checks: Transaction pattern analysis
  • Device Fingerprinting: Identify suspicious devices
  • Address Verification: AVS and CVV checks

Complaints Handling

We have a formal complaints handling procedure in place. If you have a complaint:

  1. Contact our support team at complaints@paebs.co
  2. We will acknowledge your complaint within 3 business days
  3. We aim to resolve complaints within 15 business days
  4. If unsatisfied, you may escalate to the Financial Ombudsman Service

Company Information

Registered Details

  • Company Name: Paebs Payments Ltd.
  • Registration Number: 238855
  • Jurisdiction: Registered in Seychelles
  • Registered Address: Suite 4, Premier Building, Revolution Avenue, Victoria, Mahé, Seychelles

Contact