Payment Card Industry (PCI) Security Standards Council Letter of Approval

PCI PIN Transaction Security Testing Program

Date Issued: 28 Oct 2022

Recipient Information

Name: George Jiang

Company: ID Tech

Address: 10721 Walker Street, Cypress, CA 90630-4720, United States

Approval Details

Manufacturer	ID Tech
Name & Model Number	VP3350
Hardware Version Number	H178-SUR93xxA, H178-SLR93xxA, H178-SBT93xxA, H178-SUF93xxA, H178-SUS93xxA
Firmware Number	VP3350 FW v1.00.xxx.xxxx.S: 31-Dec-2024
Application Version Number	N/A (if applicable)
PIN Support	N/A
Key Management TDES	N/A
Key Management AES	N/A
Prompt Control	N/A
PIN Entry Technology	N/A
Functions Provided	ICCR, MSR, CTLS, OP, SRED
Approved Components	Approved to meet PCI Device Security Requirements POI 6.

PCI SSC PTS Approval Number: 4-30501

Approval Class: SCR

Letter Content

PCI Security Standards Council, LLC ("PCI SSC") has received the request for PIN Transaction Security ("PTS") approval for the information identified above. Following a review of PTS Test Report number 22-RPT-750, generated by Brightsight B.V., PCI SSC has found reasonable evidence that the submitted sample(s) of the PTS Device sufficiently conform to PCI SSC's PCI PTS Requirements, as specified in the PCI PTS Manufacturer Self-Assessment.

PCI SSC grants PTS device approval, based on the PCI PIN Transaction Security Requirements manual, and agrees to include the device in PCI SSC's Approved PIN Transaction Security Device List. This approval is subject to and incorporates the General Terms and Conditions (Exhibit A) and the Payment Card Industry PIN Transaction Security Evaluation Testing Vendor Release Agreement.

It is important for users and third parties to confirm the current status of this approval, as it may be subject to limitations and termination. The list of approved PTS devices is published on the PCI SSC website: www.pcisecuritystandards.org.

PCI SSC approval ensures certain security and operational characteristics but does not constitute an endorsement or warranty regarding the functionality, quality, or performance of the product or any service. PCI SSC disclaims all warranties, express or implied, including merchantability, fitness for purpose, and non-infringement. All rights and remedies concerning approved products and services are provided by the party supplying them, not by PCI SSC.

Effective Dates

Effective Date: 28 Oct 2022

Expiry Date: 30 Apr 2030

Authorization

This Letter of Approval is effective upon dispatch from PCI SSC, LLC.

Authorized By:

Name: Mark Mrotek

Title: Director of Certification Programs, The PCI Security Standards Council

Exhibit A: General Terms and Conditions to the Letter of Approval

PCI SSC's approval is based on evaluation and testing performed by Brightsight B.V. in Netherlands. Approval applies only to PTS devices identical to the evaluated model, identified by a specific PTS device Identifier.

Any deviation from the evaluated and tested PTS device means it should not be considered approved by PCI SSC. Manufacturers are encouraged to meet all relevant testing requirements from national bodies, financial institutions, and service providers before sale or installation.

Note on PTS Identifier: All PTS devices must be clearly identified for purchasers. The Identifier must be recognizable, used by customers of participating payment brands, and used by PCI SSC and the testing laboratory. The Identifier components include Vendor Name, Marketing Model Name/Number, Hardware Version Number, Firmware Version Number, and Application Number (if applicable).

PCI SSC approval may be revoked at any time. Users should confirm the continued effectiveness of the approval with PCI SSC. PCI SSC reserves the right to modify approval terms or duration. This Letter of Approval incorporates the terms and conditions of the Payment Card Industry PIN Transaction Security Evaluation Testing Vendor Release Agreement.

Manufacturers are cautioned against using PTS device Identifier information that might restrict approval only to the specific model depicted, especially when the same Identifier is used across a family of devices.

Communication Guidelines

When communicating PCI SSC approval to customers, mention compliance with PCI SSC's PIN Security Requirements. Also, communicate any limitations described in the "PIN Transaction Security Device Testing and Approval Program Guide."

All written communications referring to PCI SSC approval must include the following legend:

"When granted, PCI SSC approval is provided by PCI SSC to ensure certain security and operational characteristics important to the achievement of PCI SSC's goals, but PCI SSC approval does not under any circumstances include any endorsement or warranty regarding the functionality, quality or performance of any particular product or service. PCI SSC does not warrant any products or services provided by third parties. PCI SSC approval does not under any circumstances include or imply any product warranties from PCI SSC, including, without limitation, any implied warranties of merchantability, fitness for purpose, or non-infringement, all of which are expressly disclaimed by PCI SSC. All rights and remedies regarding products and services which have received PCI SSC approval shall be provided by the party providing such products or services, and not by PCI SSC."

¹ Refer to the PCI PTS Device Testing and Approval Guide for more information.

	ID TECH VP3350 Integration Manual This manual provides comprehensive integration details for the ID TECH VP3350 mobile payment reader, covering specifications, connectivity, power management, and development guidelines for seamless payment processing.
	ID TECH VP5300 User Manual: Features, Specifications, and Installation Comprehensive user manual for the ID TECH VP5300, detailing its features, technical specifications, electrical requirements, installation procedures, and troubleshooting. Learn about contactless payment acceptance, EMV compliance, and integration into various unattended payment scenarios.
	ID TECH ViVOpay VP3350 Integration Manual This manual provides comprehensive integration details for the ID TECH ViVOpay VP3350, a PCI 6.X SRED-certified mobile reader. Learn about its features, connectivity options (USB-C, Lightning, Bluetooth), contactless NFC capabilities, and integration with the ID TECH Universal SDK. The guide covers setup, operation, troubleshooting, and development considerations for various platforms including iOS and Android.
	IDTECH VP3350 Quick Start Guide: Mobile Payment Reader Setup and Operation Comprehensive guide to setting up and using the IDTECH VP3350 mobile payment reader. Covers overview, Bluetooth pairing, iOS connectivity, LED indicators, mounting, security, and troubleshooting for the NEO 3 platform.
	ViVOpay VP3350 Integration Manual - ID TECH Comprehensive integration manual for the ID TECH ViVOpay VP3350, covering features, connectivity, SDK usage, and troubleshooting for developers and integrators.
	ID TECH VP6800 User Manual User manual for the ID TECH VP6800, a PCI PTS 6.x certified unattended payment device that accepts magstripe, chip card (EMV), and NFC/contactless payments. Details features, specifications, installation, configuration, security, and troubleshooting.
	ID TECH VP6800: All-in-One Unattended Payment Device Datasheet Discover the ID TECH VP6800, an all-in-one unattended payment device. This datasheet details its PCI PTS 6.X certification, 4.3-inch display, various interfaces, and robust specifications for secure, self-service transactions.
	ID TECH Augusta and Augusta S User Manual This user manual provides comprehensive information on the ID TECH Augusta and Augusta S series readers, detailing their features, specifications, software integration, and operational procedures. It covers aspects like EMV and Magstripe compatibility, security features, USB communication protocols (ITP and NGA), and troubleshooting.