A payment terminal, also known as a point of sale terminal, credit card terminal, EFTPOS terminal (or a PDQ terminal in the United Kingdom), is a device which interfaces with payment cards to make electronic funds transfers.
There are various types of terminals available to merchants, although most have the same basic purpose and functions. They allow a merchant to insert, swipe, or manually enter the required credit/debit card information, to transmit this data to the merchant service provider for authorization and finally, to transfer funds to the merchant. Most newer models not only process credit and debit cards but can also handle gift cards, cheques, and so on. The majority of card terminals transmit data over a standard telephone line or a wired or wireless Internet connection. Some also have the ability to cache transactional data to be transmitted to the gateway processor when a connection becomes available; the major drawback to this is that immediate authorization is not available at the time the card was processed, which can subsequently result in failed payments. Remote wireless terminals can transmit card data using either cellular or satellite networks.
VeriFone credit card terminal
A merchant can replace the functionality of dedicated credit card terminal hardware using a terminal application running on a PC or mobile device, such as a smartphone. They usually work with dedicated hardware readers that can transfer magnetic stripe data to the application, while there are also some that also work with smart cards (using technology such as EMV), although this is rarely seen on smartphone readers. In case the necessary hardware is unavailable, these applications usually support manual entry of the card number and other data. In addition, more and more devices are beginning to offer built-in RFID or NFC technology to accommodate contactless or mobile device payment methods, often without requiring additional external hardware.[
By moving to the use of card terminals to directly capture card information instead of manually entering in card details, merchants benefit from the efficiency of decreased transaction processing times. Previously, merchants could obtain lower processing costs by processing chip cards instead of Magnetic stripe cards. On the contrary, security is particularly of concern to such users: PCI DSS requirements need to be considered when using unsecured and unencrypted systems based on generic or open platforms; cardholder data security is integral to mandatory merchant PCI compliance. Several high profile breaches resulting in mass theft of cardholder data have occurred in the past due to the point of sale malware where people have accessed data stored insecurely on bespoke or custom systems operated by merchants.