It is important that card payment terminals installed in the UK are secure and can be trusted by merchants and consumers alike. It is also important that they are accessible to all customers.

For this reason, UK Finance ensures that card payment terminals (also known as Points of Interaction or POIs) to be installed in the UK are evaluated for security, checked for compliance with basic usability requirements, and where necessary subjected to usability testing.

Initially the testing was specific to the UK, and focused mainly on PIN entry devices. Laboratories evaluated devices using Common Criteria, a government-led security evaluation process. Approved devices from that time are shown below under "Archive of earlier approvals".

More recently the UK has formed the Common.SECC consortium with the German Banking Industry Committee (GBIC) in order to upgrade its procedures and extend the scope to include the full card payment terminal and innovative device architectures. This still makes use of the Common Criteria. See https://common-secc.org for details of Common.SECC and Common Criteria.

There are two stages for UK terminal approval. The first is to have a security certificate from Common.SECC. The second is to ensure that the device is accessible, and this can involve accessibility tests by the RNIB.

Scheme requirements and guidelines, and a current list of UK-approved products, are given in the "Scheme description and approvals list" below. Requirements specific to touchscreen terminals are given in “Touchscreen accessibility”. Vendors of approved products are listed in "Approved vendors" below.

For further information, please contact us at uktas@ukfinance.org.uk.