Security
Uncompromising Security for Your Payments
Our Commitment to Security
At City Hall Systems, we prioritize the security, integrity, and compliance of all financial transactions and personal data. Our platform is built to exceed industry security standards, ensuring the protection of sensitive information while maintaining regulatory compliance.
Massachusetts Data Privacy Compliance (201 CMR 17.00)
PCI DSS Level 1 Certification
Fraud Prevention and Detection
PCI DSS Level 1 Compliance
Our payment systems are certified under PCI DSS Level 1, the highest level of compliance for payment security. This certification is backed by a Report on Compliance (ROC), reviewed and signed by a Qualified Security Assessor (QSA) annually.
The ROC confirms adherence to over 300 security controls across 12 core PCI DSS requirements, including secure network architecture, encrypted transmission of cardholder data, strong access controls, vulnerability management, activity logging, and ongoing risk assessments. These standards are specifically designed to safeguard Cardholder Data (CHD) throughout the entire payment lifecycle, from the point of entry to secure storage and transmission. This ensures customer payment information remains confidential and protected against unauthorized access or data breaches.
Massachusetts Data Privacy Compliance (201 CMR 17.00)
We comply with Massachusetts regulation 201 CMR 17.00, which mandates the protection of personal information belonging to residents of the Commonwealth. Our Written Information Security Program (WISP) ensures encryption, access control, and data handling practices that meet or exceed state requirements for safeguarding personally identifiable information (PII).
Fraud Prevention and Detection
We employ multiple layers of fraud prevention and detection, including real-time risk analysis, address and card verification, and anomaly detection systems. These safeguards help identify and block suspicious activity before it can impact customers or compromise payment
Commitment to Secure Payment Processing
At City Hall Systems, we are committed to safeguarding the integrity of every transaction. In partnership with Bluefin, a leader in payment security and PCI validated Point to Point Encryption (P2PE), we deliver a secure payment experience for residents and municipalities. Bluefin’s encryption technology ensures that cardholder data is immediately secured at the point of interaction using our validated PAX A80 and A920 payment terminals.
These PAX devices are fully compliant with PCI P2PE standards. They encrypt data upon card entry, ensuring unencrypted information never enters our systems. This significantly reduces the risk of data breaches, simplifies PCI DSS compliance, and reinforces trust in the security of our payment platform.
