Very safe. We've taken every single precaution to make sure our security is of the highest standard possible.
In the card payments world, the security of transactional data is paramount. A global organization called PCI has been established to set standards and rules for the storage and transmission of transactional data.
Kin has partnered with Peach Payments, whose transactional platform is PCI DSS Level 1 certified, which is the highest level of data protection. Your card details are secured according to these PCI standards, which means that when you enter your card details to make a payment, neither Kin nor Peach Payments have access to your full card details.
When making a payment and adding your card details for the first time, you can also choose to store your card details securely in the app, so that when you can make payments in future, you don't have to enter your card details again.
Peach Payments tokenise and issue Kin with a unique card ID, which represents your card details. This unique ID is what is used for future payments. This way, your actual card details never touch Kin or Peach Payments systems on subsequent card transactions. The details are stored in a PCI DSS Level 1 digital vault.
In addition to this, no payments through the app can be processed if it isn't authenticated by you. Here's how:
- A unique 4-digit PIN needs to be entered to make any payments through the KIn app, verifying that it's you that's making the payment.
- The CVV number on your card is never stored, so you enter the CVV number every time you make a payment through the app.
- Each payment uses 3DSecure confirmation. 3DSecure requires you to enter a one time pin (OTP) in order to process the payment. This OTP is triggered directly to your registered mobile device following a process dependant on your bank. This is known as multi-factor authentication and is a world-class best security practice. Neither Kin nor Peach Payments staff has access to this OTP - therefore neither can abuse the authentication.