Paddle, a merchant of record (MoR) for digital product companies, has raised $25 million. The funding round, led by CIBC Innovation Banking, will help finance Paddle’s ongoing global expansion and product growth. As an MoR, Paddle handles payments, sales tax, refunds, fraud, and compliance for more than 6,000 Software-as-a-Service (SaaS), AI and App companies, “replacing the need for a complex and fragmented payment technology stack.” The company says it helps those businesses scale faster by lowering operational hurdles and helping them enter new markets faster. “In an ever-connected world, it’s important that digital product companies can receive payment from customers in any location without the hassle of navigating multiple payment processes in different geographies,” Sean Duffy, managing director of CIBC Innovation Banking, U.K. and Europe, said. The funding comes at a pivotal moment for the company, with Paddle experiencing rapid growth in 2025 thanks to both the growth in new AI products, and the opening up of Apple’s app ecosystem to web payments.
PCI DSS new rules for ecommerce sector requires employing targeted risk analysis to address the growing threat of client-side attacks and implement API and payment script security, rapid detection and response to compromised credentials, and regular vulnerability scans
The Payment Card Industry Data Security Standard (PCI DSS) has expanded its guidance to include numerous security controls for retailers and e-commerce providers. These controls include payment script security, API protection, rapid detection and response to compromised credentials, and regular vulnerability scans. Client-side attacks, such as infostealers and malware, can harvest user credentials and be used for account takeovers and fraud. Web application firewalls (WAFs) are still a strategic security control, but the speed of modern application development requires additional capabilities to dynamically detect and automatically protect endpoints. Attackers constantly retool to bypass defenses, pivoting from web apps to mobile apps or escalating their tactics. The updated PCI DSS includes recommendations for employing targeted risk analysis versus traditional enterprise-wide risk assessments. It addresses the growing threat of client-side attacks with two client-side requirements effective March 31, 2025. Content security policies (CSPs) and subresource integrity (SRI) web methods are difficult to implement and maintain, especially in the e-commerce sector where competition for customer mindshare is driving continuous enhancements to digital experiences. Customers expect seamless and secure transactions, and widely used security controls may not adequately extend protections to client browsers or backend APIs. Bot management solutions that inject user challenges via Captcha are ineffective at deterring sophisticated bots but are effective at frustrating users. To meet PCI DSS compliance mandates, e-commerce providers should consider unified security platforms designed to protect web apps, APIs, and customers throughout the digital life cycle from actual threats targeting their industry.
EMVCo requests feedback on electric vehicle open payments solution- The EV Open Payments Use Case document outlines how EMV Secure Remote Commerce (SRC) technology – which simplifies the digital payment process to help make it more consistent, convenient and secure – can be used to integrate card-based payments at EV charging stations supporting Plug and Charge
EMVCo released a draft document describing an interoperable open payment solution for electric vehicle (EV) charging. EMVCo creates and manages EMV® Specifications and programmes that enable trusted and convenient card-based payments for consumers and businesses worldwide. It has been collaborating with industry stakeholders to explore how EMV open payments can give EV drivers everywhere more freedom when charging their vehicle, while merchants can be confident that anyone is able to pay for charging. This involved evaluating how to integrate card-based open payments into the Plug and Charge experience defined in ISO 15118, the widely adopted global standard that specifies a digital communication protocol between the EV and the charging station. The EV Open Payments Use Case document outlines how EMV Secure Remote Commerce (SRC) technology – which simplifies the digital payment process to help make it more consistent, convenient and secure – can be used to integrate card-based payments at EV charging stations supporting Plug and Charge. Using EMV SRC technology maximises global interoperability and supports compatibility with the existing charging infrastructure. No hardware changes are anticipated from EV manufacturers and charging station operators (CSOs) need only limited backend integration. This can help ease deployments, reduce costs and accelerate time-to-market. Patrik Smets, EMVCo Executive Committee Chair, comments: “Open payments increase choice and convenience for EV drivers as they can pay for charging without needing to establish a prior relationship with individual merchants. This removes the need to download various applications and sign up for different accounts or memberships, promoting a simple EV charging payment experience for a new era in global mobility.”
Instant Financial and Payouts Network enable real‑time, direct‑to‑bank earned wage transfers, letting employees move pay to their existing accounts with clear confirmations and immediate access
Instant Financial (Instant), and Payouts Network, the modern B2C payments platform that transforms consumer experiences, announced a new capability that lets employees move earned wages to their existing bank accounts in real-time. The update, delivered through Instant Pay, Instant’s EWA solution and enabled by Payouts Network’s real-time payouts technology, gives workers more choice and helps employers deliver a better pay experience. By routing wages directly to a worker’s preferred account, the companies aim to make access to earned pay faster, clearer and easier to manage. What’s new and why it matters: Direct-to-bank transfers of earned wages to an employee’s own account; Real-time movement of earned wages, reducing wait time and workarounds. “Getting paid should be simple and fast. With Instant, employees can send earned pay straight to the bank account they already use—in real-time—so payday feels straightforward and in their control,” said Keith Smith, CEO of Payouts Network. Instant’s EWA solution lets employees see and access wages they’ve already earned whenever they want. With Payouts Network enabling the transfer, workers can route those funds directly to their preferred bank account with clear confirmation and visibility into each transfer. “In partnership with Payouts Network, employees can move their money when and how they want—direct to the bank account they already use, in real-time, so employees can use funds right away,” said Tal Clark, CEO of Instant Financial.
Paysecure unveils customizable surcharge fees for iGaming in a dynamic cashier; letting operators configure by card, location, currency, method or segment for compliant, on‑brand payments
Paysecure, the payment orchestration platform in iGaming, roll-out customisable surcharge fee solution, built to enhance their dynamic cashier functionality. This powerful new enhancement provides payment orchestration platform users with complete flexibility to configure and apply fees based on a wide range of parameters, creating tailored payment workflows that meet both regulatory requirements and operational needs. With this enhanced functionality at Paysecure, operators can define fees according to card details, location, market, currency, payment method, customer segment and more. This flexibility means fees can be adapted precisely to business needs, whether that’s addressing regional regulations, aligning with commercial goals, or shaping the player payment experience. Operators can choose how fees are surfaced at the point of payment, either via a pass-on fee or by absorption. Pass-On Fee – The surcharge is added to the transaction, with the player clearly seeing the additional cost and what it has been applied for e.g. taxes. Absorption – The fee is deducted from the transaction value amount, creating a seamless experience without changing the displayed price. Both options are designed to maximise transparency and control, allowing you to decide which approach works best for your business model and customer base. Paysecure’s surcharge fee solution available directly in the cashier has multiple use cases, including: Passing on credit card surcharges in markets where they apply; Meeting specific in-market requirements, such as applying fees only to certain payment methods; Creating differentiated strategies across customer segments, ensuring VIP or high-value customers receive a tailored experience. By embedding this functionality directly into the cashier, operators can manage fee surcharges dynamically and without heavy development overhead.
Verifone’s integration of next-gen OS-agnostic Victa devices with Deluxe Payments Platform to enable ISVs to deliver touchless, secure and friction-free in-store payments experiences to merchants through seamless integration into their existing POS environments
Verifone is expanding its partnership with Deluxe, a trusted payments and data company. As part of this collaboration, Verifone’s next-gen Victa devices will integrate seamlessly with the Deluxe Payments Platform, empowering Deluxe and their independent software vendors (ISVs) to deliver fast, secure and modern in-store payments experiences to merchants: Touchless, flexible and friction-free in-store payments experiences: The seamless integration of Verifone’s durable, high-performance devices with the Deluxe Payments Platform enables fast, flexible in-store payments wherever business happens. From Verifone’s biometric face and palm authentication to mobile and countertop solutions, merchants can deliver frictionless, touchless checkout experiences tailored to in-store shoppers. A scalable device suite that fits seamlessly into your current tech stack: Merchants can meet demands with rugged, mobile, and OS-agnostic Verifone devices that integrate effortlessly into existing POS environments. With flexible options like SoftPOS and payment puck add-ons, providers can scale quickly and cost-effectively to bring modern payment experiences to market without replacing core infrastructure. Payment solutions that prioritize security and sustainability: Verifone Victa devices meet the highest security standards — PCI PTS 6.x approved and engineered for future PCI 7.x compliance — combining industry-leading protection with remote anti-skimming detection to help prevent fraud. But the Verifone Victa line is not just built for security protection – it’s also built responsibly. Designed with sustainability at the core, Victa devices are on track to use 60% recycled plastic by 2026 and already ship in packaging free of single-use plastics.
Runa Shop enables launching a fully-branded, modern gift card marketplace built to scale—no coding required with mobile-optimized storefronts for easy, on-the-go purchases
Runa has unveiled Runa Shop, a white-label commerce solution that makes launching gift card marketplaces fast and simple. In only 24 hours, businesses can leverage Runa Shop to launch a fully-branded, modern gift card marketplace built to scale—no coding required. Featuring more than 5,000 popular merchant options, Runa Shop offers multiple use cases spanning from building customer and employee engagement to boosting sales and revenue. For incentive, rewards and cashback programs building or refreshing their storefronts, Runa Shop drives conversions with real-time cashback and intelligent marketing capabilities. Businesses can also tap Runa Shop to transform and strengthen employee relationships through rewards that resonate and increase engagement. Runa Shop also creates a direct revenue stream for brands selling their own gift cards. Additional key features made possible through Runa Shop include: Mobile-optimized storefronts for easy, on-the-go purchases. Customers can shop anytime, anywhere, with zero friction. Purchases may include multiple cards and denominations in a single, smooth transaction. Hassle-free payments. Runa Shop offers this seamless checkout on a global scale via payment options such as credit, debit, PayPal, Apple Pay and Google Pay. Currency support is available in USD, GBP, EUR, CAD, and more. Personalized and expansive shopping experiences. Runa Shop puts the right gift in the right hands through intelligent, cart suggestions that inspire last minute add-ons. These tailored add-on suggestions turn passive browsing into action—driving basket value and higher revenue. Customizable product categories make it easy for each user to explore, discover and purchase gift cards that matter to them. Promotions that perform. Through data-informed retargeting at checkout, Runa Shop intelligently predicts customer behavior to boost conversions through targeted marketing campaigns. With access to real-time performance insights, businesses can ensure marketplaces are optimized and competitive.
Two’s embedded deferred payment capabilities tailored for B2B transactions offers real-time, AI-driven net terms credit at scale and automats behind-the-scenes tasks to deliver frictionless experience for both merchants and buyers
Two Funding has reached €13 million, bringing the total funding to over €40 million to date. The fintech company elps businesses offer flexible payment terms. The fresh investment will fuel Two’s expansion into the US and select Western European markets. Less than three months after its official launch in the US, the market already represents more than 20% of total revenue for the company. The funding will also support further development of Two’s fully productised B2B payments infrastructure, which includes its proprietary risk engines, Frida and Delphi, an end-to-end business onboarding solution and embedded deferred payment capabilities tailored specifically for business transactions, already deployed by over 200 of merchants across the Nordics and Europe. Two was created with a bold mission of making B2B transactions as seamless as consumer checkouts. Its platform offers instant upfront payments to sellers, flexible net terms for buyers, and AI-powered fraud prevention. With rapid adoption across both large enterprises and SMEs, Two’s infrastructure has already become the go-to standard for B2B commerce in Northern Europe. With this funding, Two wants to improve its credit decision engine, make integrations stronger, and work with more suppliers around the world.
Modernizing federal payments- for TANs to be effective, they must be interoperable and based on open standards to ensure seamless collaboration between institutions and platforms while preserving consumer control
In March, President Donald Trump ordered the government to shift away from paper checks toward digital channels. Amid the 248 responses, payment networks and several FinTechs weighed in on the ways and means by which the government might modernize its payment efforts. Visa responded by highlighting the capabilities of Visa Direct, which can move money in minutes to bank accounts and digital wallets, reach nearly any U.S. bank account efficiently, protect each transaction with tokenization and fraud prevention, and offer familiar experiences for cardholders. Visa also suggested using prepaid cards for the unbanked as a safer alternative to paper checks. Mastercard recommended leveraging and expanding existing mechanisms such as Direct Express, U.S. Debit, and Pay.gov to capture remaining check-based payments. Doing so will provide Treasury and its partner agencies with the clarity, certainty and security that are paramount to government payments. Forming public-private partnerships can help educate and move remaining users to digital forms of payment with trust and clarity. Trustly said that open banking removes cumbersome validation steps, reduces operational risks and errors, and enables more efficient pay-by-bank transactions with significant cost savings. Plaid said, “The government could take some cues from the private sector, wherein there can be a “default to digital” that would “offer digital payments as the norm, with opt-out options, rather than requiring citizens to opt in. It also advocated for the use of Tokenized Account Numbers (TANs), which replace sensitive data with revocable, app-specific tokens that protect users even if compromised. For TANs to be effective, they must be interoperable and based on open standards to ensure seamless collaboration between institutions and platforms while preserving consumer control.
Embedded payments APIs provider Diameter Pay to integrate Flagright’s no-code platform’s real-time transaction monitoring, automated risk scoring, and AI-powered forensics to enhance oversight of its payment flows
Diameter Pay, a provider of embedded payments APIs for banks and financial institutions, has partnered with Flagright, an AI-native, no-code platform for transaction monitoring and AML compliance to strengthen Diameter Pay’s compliance framework as it scales its payment solutions worldwide, with an increased focus on virtual currency-related payments. Flagright offers a no-code platform designed for transaction monitoring, AML screening, risk scoring, case management, and AI forensics. The solution helps financial institutions detect high-risk activity in real time, automate investigations, and meet regulatory obligations more efficiently. Through this partnership, Diameter Pay will implement Flagright’s real-time monitoring tools, automated risk scoring, and AI-powered forensics to enhance oversight of its payment flows. The single case management workspace will help the company investigate flagged transactions faster and complete regulatory reports more accurately. The partnership with Flagright is expected to help the company deliver secure services to its clients across diverse markets.