A summary of the controls, classifications, and architectural decisions that define 4Square Systems’s operating posture. This page is intended both for customers asking how their data is protected and for reviewers evaluating the platform.
| Legal entity | 4Square Systems |
|---|---|
| Merchant of record | 4Square Systems for every customer card transaction. |
| Product sold | One‑time digital redemption codes, delivered electronically at the moment of customer purchase. |
| Operating classification | MCC 5818 — Digital Goods - Multi-Category |
| Geographic scope | United States and Canada only. Orders outside this scope are rejected at order creation. |
| Statement descriptor | 4SQUARE-8772101090 |
| Card data scope | SAQ‑A. Card capture is performed by an external PCI‑DSS Level 1 service provider. |
Capture is performed by an external PCI‑DSS Level 1 tokenization service. 4Square Systems receives only an opaque token, never the raw card number.
What this means in practice: A compromise of 4Square Systems’s servers does not expose cardholder data. Card details exist only inside the external PCI‑DSS Level 1 tokenization service. 4Square Systems holds tokenized references that cannot be used to initiate a charge without the same authenticated request path.
Authorization combines acquirer‑side verification with an out‑of‑band cardholder confirmation, producing a strong record of intent.
Cardholder authentication through the issuing bank is supported on participating networks. Rollout is calibrated to acquirer guidance and cardholder experience.
Address Verification Service checks are performed against the cardholder’s billing address on every authorization, where supported by the issuer.
Card Verification Value checks are performed on every authorization. CVV is never stored after the authorization completes.
Each purchase is confirmed by the cardholder through an independent link delivered to a verified email address or mobile phone number before settlement.
Billing and shipping addresses are checked against the platform’s approved geographic scope (United States and Canada) before any card authorization is attempted.
Transaction velocity is monitored at the customer, IP address, and gateway level. Patterns consistent with card‑testing or unauthorized activity trigger automatic throttling.
The platform combines network‑edge controls, gateway‑edge controls, and application‑edge controls. Each layer is independent.
Acquirer gateway calls originate only from a tightly controlled set of authorized egress IP addresses. Traffic from any other origin is rejected at the network edge.
Customer, IP, and gateway‑level velocity is tracked continuously. Configurable thresholds trigger throttling and blocking on patterns inconsistent with normal commerce.
Rule‑based anomaly detection flags transactions inconsistent with the cardholder’s prior pattern, the participating merchant’s pattern, or normal platform activity.
Persistent or repeated offenders are added to an IP blocklist that rejects new authorizations at the platform edge before processing begins.
Each redemption code is uniquely tied to a single purchase. Codes are validated at the moment of application, invalidated immediately on successful redemption, and cannot be reused.
Customers with confirmed unauthorized‑use history or repeat dispute abuse are restricted from new purchases via a maintained customer blocklist.
Every transaction event is recorded in an append‑only ledger. Original facts are never overwritten. Refunds, retries, and lifecycle changes are recorded as separate events linked to the original transaction.
This architecture produces a complete, time‑ordered audit trail for any transaction without requiring reconstruction from operational logs.
For compliance review: A full underwriting package, including detailed transaction flow, redemption‑code lifecycle, control inventory, and disclosure language, is available to acquirer review teams upon request. Please contact Compliance@4Square.us
Acquirer review teams and merchant compliance contacts can reach us directly.
