Certifications and licensing

Security and compliancy

A secure and reliable online payment processing system

Your customers’ transactions are safe with Docdata Payments. We, as collecting payment service provider based in the Netherlands, comply with all safety rules and technologies for a secure online payment system. These safety rules were established by European financial institutions and De Nederlandsche Bank (the Dutch Central Bank).

As a collecting payment service provider, we are in possession of following licenses for our online payment system:

Verenigde Betaalinstellingen Nederland (United Payment Institutions of the Netherlands)

The VBIN is the trade association for the payment institutions, electronic money institutions (EGI’s) and companies that, in general, make payment services in the Netherlands their business, such as described in the Financieel Toezicht Wft (Dutch Financial Supervision Act).

Visa Europe

Docdata payments is registered with Visa Europe as a Merchant Agent.

Betaalvereniging Nederland (Dutch Payment Association)

The Betaalvereniging Nederland (Dutch Payments Association) fulfils a large number of collective, non-competitive tasks with Dutch payments transactions. The Betaalvereniging (Dutch Payments Association) establishes safety requirements for payment transactions and certifies market parties in the payment chain. It also monitors compliance with the rules and agreements in order to ensure and improve the safety and reliability of payment transactions. The Betaalvereniging (Dutch Payments Association) directs fraud prevention throughout the entire payment chain, establishes fraud statistics, analyses them and formulates a prevention policy. In addition, it coordinate measures to combat fraud.

Thuiswinkel Waarborg (Dutch home shopping guarantee organisation)

Docdata is a member of Thuiswinkel Waarborg (Dutch home shopping guarantee organisation) and meets several important criteria in terms of financial stability, security, compliance with laws and regulations, and the rules of conduct of Thuiswinkel.org. All members of Thuiswinkel Waarborg (Dutch home shopping guarantee organisation) are recertified every year. When an organisation provides personal information or it carries out a payment on the website, this should be done over a secure connection. Members of Thuiswinkel Waarborg (Dutch home shopping guarantee organisation) have secured their systems with current updates against intrusion, viruses, and other attacks. Members are always screened for security of personal data and they get balloted.

Acceptant Payment Service Provider (APSP)

An APSP (Certified Merchant Payment Service Provider) is an intermediary who mediates between merchants and acquirers with processing debit card payments. Merchants are businessmen and organisations who accept debit card payments (receive). Acquirers are parties that approve and process debit card transactions, such as some banks and transaction processors.

Why certification?

Docdata Payments provides end-to-end
processing of debit card payments for merchants, for our own risk and account,
through one or more acquirers. A merchant pays a fee for this to the APSP and
processes the revenue realised via debit card payments.

Certified merchant payment service provider

To be able to fulfil
the role of APSP in payment transactions, an APSP must be certified by the
Dutch Payments Association. This means checking whether the APSP process the
funds in a proper and secure manner.

Docdata Payments is a Certified Merchant Payment Service
Provider (APSP) and has full authorisation to process debit and
credit card payments.

Licensed Collecting Payment Service Provider (CPSP)

The certification means that the Payment Service Provider was approved by the Betaalvereniging (Dutch Payments Association) and also has an agreement with the Acquiring Bank for accepting iDEAL which is licensed by the Betaalvereniging (Dutch Payments Association).

Payment Service Directive (PSD)

​Collecting payment service providers have to deal with the “Payment Service Directive”, in short PSD. This is a directive of the European Parliament and of the Council of the European Union which provides for the harmonization of the internal market for payment services. The PSD aims to promote pan-European competition in payment services and provides a system of licensing for payment service providers. The PSD license imposes specific requirements for risk management and associated procedures for us as collecting payment service provider. In addition, we are monitored by De Nederlandsche Bank (the Dutch Central Bank).

PCI DSS Compliancy (Payment Card Industry Standard)

This abbreviation stands for Payment Card Industry Data Security Standard, which was imposed by VISA and Mastercard. These guidelines ensure that credit card data will be processed and stored in a secure manner. Each year several agencies audit our methods and systems. When certified, they provide us with a certificate indicating that we comply with the highest security standards for online payment processing systems. One of these certificates for online payment processing systems is a PCI DSS certificate.