FPT grants PCI DSS 4.0.1 Level 2 Certification to Pay2Pay

FPT IS, a member of FPT Corporation, has officially awarded the PCI DSS 4.0.1 Level 2 certification to Pay2Pay, a leading online payment solutions provider in Vietnam. This milestone underscores Pay2Pay’s commitment to complying with global payment card data security standards, while reaffirming FPT’s expertise and credibility as a trusted consultant, assessor, and certifier of PCI DSS for banks, financial institutions, and fintech enterprises across Vietnam.

Pay2Pay earns PCI DSS 4.0.1 Level 2 Certification from FPT

In today’s digital landscape, information security has become a top priority for every organization, especially in the financial technology (Fintech) sector. Compliance with stringent international security standards is critical to building trust and safeguarding users. Recognizing this, Pay2Pay has made continuous efforts to meet the rigorous requirements of the Payment Card Industry Data Security Standard (PCI DSS), strengthening its IT infrastructure and proactively protecting customer data.

PCI DSS, established by the Payment Card Industry Security Standards Council (PCI SSC), which includes major global card schemes such as Visa, MasterCard, American Express, Discover, and JCB, sets out strict requirements to safeguard cardholder data against unauthorized access and minimize fraud risks in card transactions.

To achieve PCI DSS 4.0.1 Level 2 certification for Service Providers, Pay2Pay underwent a comprehensive assessment covering more than 250 requirements across 12 security domains. From June 30 to August 8, 2025, FPT partnered with Pay2Pay throughout the certification journey, including current-state assessments, staff training, technical and process consultancy, and the completion of compliance documentation (SAQ, AOC, COC). During this process, Pay2Pay also introduced a series of enhancements to its platform: restructuring its network architecture to optimize scope, developing standardized information security policies, and deploying a Security Information and Event Management (SIEM) system to enable early threat detection and rapid incident response.

FPT is among the few organizations in Vietnam qualified to consult, assess, and implement PCI DSS certification processes for card-issuing institutions

Achieving PCI DSS certification carries significant meaning for both Pay2Pay and its customers. Sensitive data such as card numbers, expiration dates, CVV codes, and transaction records are now processed and stored in compliance with international standards, minimizing risks of data breaches, theft, or fraud. Customers can enjoy greater peace of mind knowing that Pay2Pay is committed to serious investment in security, fostering stronger trust in digital payment experiences. This sense of safety not only encourages customer spending and loyalty but also reduces potential legal and financial risks from data incidents.

With over 37 years of experience delivering critical information security projects for banks, financial institutions, and large enterprises, FPT is among the few organizations in Vietnam qualified to consult, assess, and implement PCI DSS certification processes for card issuers. Since 2015, FPT has been the trusted partner of leading banks and financial institutions including MB, SeABank, Eximbank, Lotte Finance Vietnam, One Mount Group, FE CREDIT, and PVcomBank.

Mr. Quan Duc Minh, representing FPT, delivered remarks at the event.

At the PCI DSS 4.0.1 Level 2 Certification Ceremony for Pay2Pay, Mr. Quan Duc Minh – Delivery Director of Nextgen Technology Services Sector, FPT IS, FPT Corporation – shared:  “FPT is proud to have partnered with Pay2Pay on this project. Achieving the PCI DSS 4.0.1 Level 2 certification is not only proof of Pay2Pay’s commitment to information security, but also reflects the inevitable trend of Vietnamese Fintech enterprises becoming more professional, proactive, and determined in their security investments. FPT remains committed to delivering comprehensive security solutions and services, supporting financial institutions and businesses in building a safe, transparent, and sustainable digital payment ecosystem in Vietnam.”

Representing Pay2Pay, Mr. Le Thanh Tung delivered remarks at the event

On behalf of Pay2Pay, Mr. Le Thanh Tung – Chief Technology Officer of Pay2Pay shared: “We are honored that the Pay2Pay payment gateway has been awarded the international PCI DSS 4.0.1 Level 2 certification. We remain committed to maintaining and continuously enhancing security standards to provide our customers and partners with a payment platform that is safe, transparent, and fully aligned with international standards.”

The event marks a significant milestone for both FPT and Pay2Pay

The successful collaboration between Pay2Pay and FPT not only ensured the achievement of this project but also paves the way for new, more sustainable growth opportunities for Pay2Pay in the future. It also sends a positive signal that Vietnamese enterprises are becoming increasingly proactive and committed to investing in cybersecurity, thereby contributing to the creation of a safe and reliable digital transaction environment for the wider community.