Security FAQs

Q: Is paying with a credit card using an ePort or certified cashless card reader from Cantaloupe safe & secure?

A: All of Cantaloupe’s cashless acceptance products go through third-party testing and validation. The ePort Connect network where the ePort communicates is validated against the PCI SSC’s (PCI Security Standards Council) strict regulations. The PCI Security Standards Council sets the standards that payment system vendors must follow when developing hardware and software. The ePort Connect network is PCI DSS approved and is recertified annually.

Q: What is point-to-point encryption, and why is it important?

A: Security is paramount at Cantaloupe. We use point-to-point encryption to protect your card information when you swipe your card using our ePort cashless acceptance device. The card data is protected from the point of purchase all the way to the credit card processing company and back through ePort Connect. This prevents sensitive card data from being stored at the point of acceptance or from being intercepted in-transit.

Q: Is Cantaloupe PCI-DSS compliant?

A: Yes. Cantaloupe is annually certified by Trustwave and Visa for PCI compliance. Cantaloupe is PCI-DSS – Level 1 – Service Provider certified. You can locate additional information by clicking on the following link: www.visa.com/cisp There you will find a link to a Visa pdf document and on page 48, Cantaloupe is listed as PCI-DSS compliant.