Security
      Back to home
      1. Help center
      2. Security

      Can someone make a transaction with CheckoutX SoftPOS by simply swiping their phone near my wallet?

      Yes, it is technically possible – but the risk is very low

      CheckoutX SoftPOS (Tap to Pay) uses NFC (Near Field Communication) technology to accept payments, which means that the card or mobile device must be held very close to the terminal for a transaction to occur. In theory, someone could attempt to charge a contactless card by swiping a SoftPOS-enabled phone near your wallet, but in practice, the risk is extremely low – and even lower than with traditional payment terminals.

      Why is the risk low?

      Only verified businesses can use SoftPOS

      All businesses using CheckoutX must go through an extensive onboarding process, including:

      • Identity verification and company validation.
      • Risk analysis and assessment of the business model.
      • Compliance with AML (Anti-Money Laundering) and KYC (Know Your Customer) regulations.

      This means that SoftPOS can only be used by legitimate, registered businesses, significantly reducing the risk of misuse. The same requirements apply to using a physical payment terminal.

      Additionally, all payouts are made directly to the verified bank account of the registered business, meaning that a private individual cannot conduct a sale and transfer the funds to their personal bank account.

      Extremely short reading distance

      • SoftPOS has a weaker NFC signal range compared to standard payment terminals.
      • NFC requires a maximum distance of 2–4 cm, meaning the attacker would need to physically press their device against your card for a transaction to take place.

      Security restrictions on card payments

      • Card issuers have transaction limits for contactless purchases.
      • Multiple consecutive payments without PIN verification often result in the card being blocked or requiring additional authentication.
      • Payments cannot be processed unless a card is active and ready to communicate.

      Higher security compared to traditional terminals

      • Standard payment terminals typically have a stronger NFC signal, allowing them to read cards from a greater distance.
      • SoftPOS follows the same security requirements as traditional terminals but has an even more limited reading range since it relies on the phone’s hardware rather than dedicated card-reading hardware.

      What should I do if I suspect an unauthorized transaction?

      If you notice a transaction that you did not authorize, you can dispute the charge in the same way as with any other type of card transaction:

      1. Contact your bank or card issuer – They can help investigate the transaction and, in some cases, reverse the charge.
      2. Block your card if necessary – If you suspect multiple unauthorized transactions, it may be a good idea to request a new card.
      3. Enable notifications in your banking app – This way, you can quickly detect suspicious transactions and take immediate action.

      πŸ’‘ Summary: While it is technically possible for someone to attempt a transaction using SoftPOS, the risk is very low. SoftPOS has a shorter reading range than traditional payment terminals, and card issuers' security measures minimize the risk of unauthorized transactions.