Case Study | JCDecaux

About JCDecaux:

JCDecaux is the world number one Out of Home advertising company. JCDecaux displays are visible on roadside, in retail locations and on transport networks in over 4,000 cities around the world. Everyday JCDecaux reaches more than 410 million people on the planet.

Challenge:

JCDecaux had approached HST to develop an application that could capture unattended contactless payments on their digital advertising screens. Once a card is swiped it then subsequently drives an event on a digital advertising screen.
The challenge here was in the regulatory and security space especially around accepting “unattended” contactless payments.
Unlike something in a shop or a supermarket where there is actual people in attendance, unattended payments require a high level of security involving EMV certification for Mastercard & VISA, EMV Level 2 Kernel, and payment security in general.

Solution:

The purpose of the application was to run an advertising campaign on JcDecaux free-standing digital advertising panels, intergrated with the digital panel would be a NFC based contactless credit card reader which would accept unattended payments, on detection of a payment from the NFS contactless card reader, the application would play the media files as progrmmed in the backend.

What makes the acceptance of unattended contactless credit cards payments different from other payment devices is that there are so many parts to the jigsaw, all are necessary but all are different.
With our experience in the fintech sector and established relationships with many leading companies within the payment industry, we kew exactly the components and the certification level required to deliver a secure and certified solution.

The development scoped involved writing a custom media player in C# which would integrated with the payment terminal.
Integration with a HW payment terminal for accepting unattented payments.
Intergration with a payment gateway provider.
Implemeting security protocols such as point-to-point encryption (P2PE) and tokenization, P2PE helps protect the card data from cybercriminals as it travels from the point of payment through authorization and tokenization helps protect the card data while its stored in back-end systems.