How does Teller handle PCI compliance for government payments?

‍

Teller Government Cashiering uses a semi-integrated payment architecture that keeps your agency out of PCI scope while maintaining full control over your cashiering operations. Card data never touches your network — it goes directly from the payment terminal to the processor, while Teller handles everything else.

‍

‍

Semi-Integrated Architecture

‍

Here's how it works:

‍

1. Cashier initiates payment in Teller with the transaction amount
2. Card terminal activates and the citizen swipes, dips, or taps
3. Card data routes directly from the terminal to the payment processor — bypassing your network entirely
4. Authorization returns to Teller with approval code (no card numbers)
5. Teller completes the transaction with receipt and GL posting

‍

This approach gives you the best of both worlds: seamless cashier experience with minimal PCI burden.

‍

‍

What This Means for Your State or Local Government

‍

Reduced PCI scope — Because card data never enters your systems, your Self-Assessment Questionnaire (SAQ) is significantly simpler. Most Teller clients qualify for SAQ B-IP or SAQ P2PE rather than the more complex SAQ D.

‍

No card data storage — Teller stores transaction records, receipt numbers, and authorization codes — but never card numbers. There's nothing to encrypt because there's nothing sensitive on your network.

‍

Processor flexibility — Teller integrates with major government payment processors. Your existing processor relationships can typically continue.

‍

‍

EMV & Contactless Support

‍

Teller supports modern payment standards:

‍

• EMV chip cards — The global standard for card security
• Contactless/NFC — Apple Pay, Google Pay, tap-to-pay cards
• PIN debit — When required by your processor or policy

‍

Counter devices are certified to current PCI PTS standards.

‍

‍

Beyond PCI: Full Security Stack

‍

Payment security is one layer of Teller's security posture:

‍

• SOC 2 Type 2 certified — Annual third-party audit of security controls
• AWS GovCloud hosting — Infrastructure meets FedRAMP requirements
• Role-based access control — Users see only what they need
• SSO integration — Azure AD, ADFS, and other OIDC providers supported
• Encryption in transit and at rest — All data protected by industry-standard encryption

‍

‍

Common Questions

‍

Do we need to change processors?‍

Usually not. Teller integrates with most major government payment processors. We'll confirm compatibility during implementation planning.

‍

What about phone payments?‍

For card-not-present transactions, Teller can integrate with virtual terminal solutions that maintain PCI compliance for MOTO (mail order/telephone order) payments.

‍

How do we prove compliance to auditors?‍

Teller provides documentation of our security architecture, and our SOC 2 report is available under NDA. Your processor provides the PCI attestation for card handling.

‍

‍

Learn More

‍

Ready to discuss payment security for your agency? Contact us for a technical conversation about your compliance requirements.