In payments, compliance is not a department — it is the licence to operate. Card security, financial crime, fraud, disputes and data protection each gate the rails differently. Get one wrong and the acquirer, the scheme or the regulator switches you off.
The card-data security standard — scope, SAQs, the 4.0.1 changes, and what actually triggers an audit.
Livecompliance/pci-pin-p2pePIN security, point-to-point encryption, and how P2PE shrinks PCI scope.
Livecompliance/pci-mpocThe standards that make Tap to Pay on commodity phones certifiable.
Anti-money-laundering and counter-terrorist-financing duties across the payment chain.
Livecompliance/sanctionsWatchlist screening, real-time vs batch, and the false-positive problem.
Livecompliance/kyc-cddCustomer due diligence, onboarding, beneficial ownership, and the FATF baseline.
3-D Secure 2, strong customer authentication, risk-based exemptions, and liability shift.
Livecompliance/disputesReason codes, the dispute lifecycle, representment, and scheme dispute platforms.
Livecompliance/data-protectionPOPIA and GDPR where they bite payments — last-4 masking, retention, cross-border transfer.