Operating in over 100 countries worldwide, VeriFone is the global leader in secure electronic payment systems and for the past 30 years has excelled in providing solutions, services and expertise that enable electronic payment transactions and value-added services at the point of purchase. VeriFone’s solutions incorporate existing and emerging technologies, comply with global security standards, and take advantage of the latest connectivity options. Tony Saunders, VeriFone’s Marketing Director for Northern Europe, Middle East and Africa (NEMEA), spoke to The Grocery Trader.
The Grocery Trader – First of all, Tony, to set the scene, what do your different electronic payment technologies do, in non-technical terms?
Our solutions provide a secure method of taking electronic payments at the point of sale. At a grocery retailer, that can be at the checkout lane, self-service kiosk or pay-at-pump. We provide the hardware – such as PIN pads and contactless readers – together with payment software, and sometimes the back-end software and infrastructure. Individual retailers use our products differently: many take our PIN pads combined with our enterprise software solution, PAYware Merchant, for card authorisation and settlement.
We offer many kinds of payment solutions. Our most popular PIN pad is the Vx 810, which is available with an optional contactless module. With the Vx 810 we provide an API that talks to a retailer’s POS device. We also have an extensive software solutions portfolio for card acceptance, card management and adding value. These products include PAYware Merchant, PAYware GiftCard, PAYware Prepay and PAYware Link, our payment integration middleware solution.
GT – How do you service the needs of the different kinds of retailer?
We work closely with all of our retail clients to provide customised advice, service and support. When first meeting with a prospect we take a consultative approach, learning from the retailer their key pain points with regard to the payments process and how VeriFone can help. And the relationship doesn’t end with the sale – we meet with our retailers regularly to help them optimise their systems and streamline operations. On staff we have technical experts in petro, security, software, retail, unattended and more! There is someone available to help with any kind of problem.
GT – What proportion of UK payment card transactions involve your technologies?
The total UK POS footprint is 800-850,000 devices, and VeriFone has a majority share of that install base, making us number 1 in UK retail.
GT – What different card payment types do your solutions cover?
We cover debit and credit EMV cards, loyalty cards, pre-paid gift cards, e-top up, contactless cards and fuel cards.
GT – What industry standards are your products and solutions made to?
VeriFone has more PCI (Payment Card Industry) approved products than any other payment technology vendor. Every card accepting system in the UK must also meet Common Criteria, mandated by the UK Cards Association. Again, we have more UKCC approved products than any other vendor. We take security very seriously at VeriFone.
With the deadline for PCI compliance fast approaching, many retailers are struggling to keep up. Being non-PCI compliant can open up a retailer to expensive fines or legal woes if a data breach occurs. To help with this, we recently launched VeriShield Protect in the UK. VeriShield Protect is an end-to-end encryption solution, where cardholder data is encrypted at the exact instant of card acceptance and kept encrypted throughout the entire enterprise. The burden on the retailer is significant; if they don’t have an encrypted solution, they will need additional processes and checks and balances in place to maintain the security of their retail environment. VeriShield Protect mitigates many of these costs and avoids much of the expense of maintaining PCI compliance.
GT – How has VeriShield Protect been received?
We’ve had a lot of interest. VeriShield Protect is the only true end-to-end encryption product available – because we encrypt data at the hardware level, not the application level. Encrypting at the application level is too late, a fraudster could intercept cardholder data as it travels to the POS. VeriShield Protect is also the only commercially deployed solution that meets all of Visa’s best practices for data field encryption. Another valuable USP for us.
GT – Do your technologies stop hackers accessing people’s accounts?
If the merchant allows their database to be accessed, card data can still be stolen, but with VeriShield Protect the card data is encrypted, so it’s completely useless to fraudsters.
GT – Does this extra security slow down the processing of transactions?
The encryption takes just milliseconds, so it doesn’t slow things down. The consumer and the merchant won’t notice any difference.
GT – How long does it take for a retailer to see a return on investment?
Retailers need to weigh up the cost of achieving and maintaining compliance with PCI DSS and addressing breaches, plus the cost to their brand reputation. Security should not be treated lightly. Our fees for VeriShield Protect depend on the size of the retailer, number of transactions and whether they want to retain ownership of their decryption – but for what the retailer gets in return, the costs aren’t onerous.
In the security section of verifone.com there is a calculator based on the US card schemes, showing the cost of a card breach as $150 per card. With some US organisations processing 100 million transactions a month, the costs can be astronomical.
GT – Are you members of the various industry bodies developing card security standards?
Yes we are. We’re the only technology vendor member of the PCI Security Standards Council, alongside the likes of Tesco and RBS. We also work with EMV Co, the major CHIP and PIN industry body, comprising MasterCard, Visa, JCB and Amex, which creates the global CHIP and PIN protocols.
GT – What other market sectors besides retail do you supply electronic payment systems for?
Our systems can be used wherever electronic payments take place. In the hospitality sector we have pay at table solutions that are GPRS, Wi-Fi and Bluetooth enabled. In Africa and the Middle East we have successful prepay installations. In the UK we have gift card installations with our PAYware GiftCard solution. In transportation, our Secura devices are at every London Transport station: you pay for Oyster card top-ups using a VeriFone device. In the US we also offer wireless payment devices for use in taxis, which we plan to bring here. We have unmanned kiosks and payment systems for use in retailers, vending and parking. You can read some of our case studies at: www.verifone.com/about-us/press-room/case-studies.aspx
GT – How long have you been with VeriFone? What does your role involve?
I’ve been here two and a half years, and became Marketing Director in September 2008. I was previously with a competitor, and before that in computer network systems. My role involves communicating the VeriFone brand across Northern Europe, Middle East and Africa. I work with our colleagues in California to bring in new payment platforms. I speak at exhibitions, conferences and seminars in various sectors and demographics, and am personally involved in developing customer solutions.
GT – Which countries are you responsible for?
NEMEA consists of the UK, Ireland, France, the Nordics, Middle East and Africa. In most of these countries we work through our international partner network, or VIPs.
GT – We’re talking in your UK offices in Uxbridge. What operations happen here?
Uxbridge is our NEMEA headquarters. Sales and marketing for the region happens here. We also have development teams on PAYware and payment applications, and front line help desks for Tier 1 and Tier 2 retailers.
GT – Where does VeriFone rank in the league table of payment technology vendors? What sets you apart from other vendors?
We turn over just short of $1bn globally, and are either ranked 1 or 2 in each country we operate in. We’re at the forefront of security development, and lead the way with VeriShield Protect. We offer payment solutions for every sector and market space; whether that’s retail, government, transportation, healthcare, hospitality, financial, petroleum – even e-commerce or telephone order!
GT – When was VeriFone set up? Who owns it now? Are you formally linked to any other IT or financial services companies?
VeriFone was founded in 1981, and is listed on the NYSE under ‘PAY.’ We’re totally independent.
GT – How big is VeriFone in NEMEA? What differentiates the UK from other markets?
The UK stands out as a leader in CHIP and PIN adoption, and the POS environment has seen major changes since we came in. Denmark, Finland and Sweden also follow the PCI standards, but Britain is a more mature market, though people here still use dial-up for a lot of transactions. There are a large number of players here in POS and retail infrastructure.
The UK is the lynchpin to the whole area, and offers the region’s largest revenues. 2008 was a relatively flat year for us, but considering conditions across the world, that’s pretty good! In the UK we’ve grown market share even with many retailers closing and taken share from our competitors.
GT – Where is your global HQ?
Our HQ and our hardware platform development are in San Jose, California. We develop applications regionally for different markets, either ourselves or through partners or resellers.
We offer Tier 1 retailers PIN pads and PAYware software solutions for their retail environment. Our largest volume product is currently the Secura PIN pad, which is in Tesco, Sainsbury’s and other majors but we are migrating customers to the Vx 810 because of our VX platform. All our core investment is in VX, which also offers a migration platform for contactless cards. The benefit of our extensive partner network is that the Vx 810 has been accepted and certified by all POS integrators, making it basically “plug-and-play” for retailers. Vx 810 will ultimately replace Secura as the main platform in the retail space. Retailers are also very interested in contactless.
In the banking channel our biggest selling products are the Vx 810 DUET countertop solution and the portable Vx 670, our pay at table product.
GT – What are your latest security products for retail environments?
We’re in the process of bringing VeriShield Protect to the EMV environment. One major retail customer is rolling it out in the next four months and we have installations in the US as well. Several major Tier 1 UK retailers are very interested, but it needs to fit in with their timetables: that said, they know they need to be PCI DSS compliant soon, and this offers significant savings in achieving that.
GT – Which UK retailers have adopted your solutions so far? Can you talk about what you do for them?
So far we have thoroughly rolled out Vx 810 with Thorntons and Clinton Cards (see case study on next page), who are early adopters. Other major high street retailers are also interested. The contactless transaction value threshold is £10, which will hopefully change to £15 very soon, making contactless a more desirable proposition for retailer and consumer alike.
GT – How long does it take to put a Vx 810 solution in place?
Switching over all the PIN pads in a retailer’s estate can take 3-6 months: if a particular retailer has no relationship with the POS vendor, you have to start from scratch, and it could take up to a year to develop a spec. We have relationships with so many retailers and POS vendors, the chances are we have a solution already available.
GT – What happens about training?
The integrators or retailers’ own organisations do the training, but we provide user guides and have a help desk and technical support analysts to carry through the implementation process and sort out problems.
GT – What effect has the worldwide recession had on your business?
We addressed our organisational needs within NEMEA before the recession hit. We readjusted our structure and budgets, so we haven’t been impacted: instead, we’ve taken market share. We’ve had to work harder but we’ve been very successful, growing numbers and hitting expectations. We’re in excellent shape.
GT – Does the rise of contactless cards pose a major risk to the security of consumers’ accounts?
Contactless cards don’t pose any additional security risk compared to other types of cards. And VeriShield Protect is available for ironclad cardholder data protection. People were talking about contactless cards a decade ago, and it’s taken far too long to come in. In the UK it is great that Barclaycard has now issued five million contactless credit and debit cards, which helps consumers become more comfortable with the technology.
GT – Where do you see VeriFone going from here?
2010 will be a major year for VeriFone. The UK payment acceptance market won’t grow to any extent, but we will by taking more market share in both the retail and banking space. We will be rolling out contactless technology with a major high street retailer from January. Our PAYware suite of software solutions is gaining traction, and we recently launched a PAYware Partner Program to recruit resellers who will further the reach of our card acceptance, card management and value-added software solutions. Finally, a lot of opportunities we’re working on at the moment will also come to light in 2010, along with some exciting new hardware developments, which will roll out in the second half of the year.
VeriFone tel: +44 (0)1895 275275 www.verifone.com