Consumer demand for convenience and speed is driving the adoption of digital payment systems across the fuel retail sector, particularly contactless payment systems and mobile applications. This surge in digitalisation has resulted in more frequent, costly and damaging cyber incidents for forecourt owners.
Cybersecurity breaches can have profound impacts on businesses. One of the most immediate consequences is reputational damage, which can lead to the loss of customers and revenue. The financial burden doesn’t end there; businesses often face significant costs in containing and rectifying the incident. Additionally, breaches can result in the loss of intellectual property or confidential information, undermining competitive advantage and trust. Interruptions to business operations are another critical issue, leading to further revenue loss. Moreover, forecourt owners may face potential penalties for General Data Protection Regulation (GDPR) violations if personal data is compromised, adding legal and financial repercussions to the already substantial impact of a cyber security breach.
This article aims to demonstrate to fuel site operators the measures incorporated into TSG’s electronic point-of-sale and payment systems to ensure data security and privacy.
Prizma from TSG UK
The Prizma Electronic Point of Sale (EPOS) integrates effortlessly with all service station systems, including dispensers, indoor and outdoor payment terminals, connected CCTV, tank-level gauges, price pole signs, the back office and the car wash. This comprehensive integration simplifies operations for site owners and their staff, giving them more time to focus on customer service. However, the question remains: just how secure is this system?
Prizma is the top choice for both international oil companies and independent operators. It meets the stringent data security requirements of the Payment Card Industry Data Security Standard (PCI DSS) and surpasses them. Designed to combat fraud, Prizma offers enhanced control over credit card data via a virtual private network (VPN). This VPN encrypts customer identity and payment information during transactions, significantly reducing the risk of data breaches
Prizma enables forecourt owners to configure user permissions and limit system access, assigning each user a unique identifier and a complex password. This setup ensures that all actions can be traced back to a specific user, maintaining accountability. Data security is essential for any cloud-based, connected solution; consequently, no card numbers or sensitive personal information are stored.
Furthermore, when integrated with the online authorisation and switching environment (OASE), Prizma elevates data protection to an entirely new level.
OASE
OASE supports payments at the EPOS and accepts all major credit, debit and fuel cards. This straightforward yet highly secure payment system simplifies protocol implementation on-site by utilising a central switch point. A single security scheme, based on a triple data encryption algorithm with a derived unique key per transaction (3DES DUKPT), and a single protocol, based on the International Forecourt Standards Forum (IFSF), are all that’s needed to connect the EPOS with OASE. This setup ensures that all bank card payments are processed according to their specific security guidelines.
OASE also includes velocity controls to detect potential fraud by monitoring the frequency of multiple transactions from a single buyer. Each business can establish site-specific rules using stop/allow lists and corresponding settlement files. TSG enhances the end-host service with a modern, user-friendly, cloud-based module that manages transactions, stop lists and clears PIN attempts in real time.
Similar to Prizma, OASE adheres to PCI DSS standards. Its independence from third-party software has earned it recognition as one of the most secure payment systems available today.
Together, TSG’s EPOS and OASE payment systems form a powerful defence against cybercrime. If support is needed for either system, remote access is restricted to one of six highly skilled technicians after site permission is granted. The dedicated server is secured in a locked-down room, protected from physical attacks by restricted security card access.
Trust the Experts
To avoid becoming another statistic in the rising tide of cyber-attacks on fuel retail sites, take a proactive stance and consult the experts. With over thirty years of industry experience, TSG UK can supply, install and support Prizma and OASE, while providing advice on existing site security.
Measures can be taken to protect customer data integrity, preserve business reputation, mitigate financial loss and safeguard the forecourt against fraud. Don’t get caught off guard – take action now!
Author: Cheryl Ashton
