top of page

Security You Can Trust

Built Into Every Touch

From identity verification to encrypted biometric data, OVE is engineered for uncompromising security across every layer of your transaction.

OVE Touch & Go® app

The OVE app ensures that only verified users can access and use the platform. From identity checks to fingerprint uploads, every step is designed to protect against fraud and unauthorized use.

  • U.S.-Only Access: The app is available exclusively in the United States to comply with local security and privacy regulations.

  • Government-Issued ID Verification via Plaid: During sign-up, users must verify their identity using a valid U.S. government-issued ID through Plaid, ensuring each profile belongs to a real person.

  • Bank Account Ownership Checks: Bank accounts are verified via Plaid to confirm they are owned by the verified user. Accounts not matching the user’s identity are automatically rejected.

  • Credit Card Validation via Visa, Mastercard & Issuer APIs: Credit card details are cross-checked using Visa, Mastercard, and card issuer APIs to confirm ownership and validity.

  • Crypto Wallet Verification via Coinbase: Users can only link wallets from their Coinbase accounts, ensuring all crypto sources are securely verified.

  • Rejection of Unauthorized Payment Methods: Any financial information that cannot be tied to the verified user is blocked from being added.

  • Secure Fingerprint Enrollment at Authorized Locations: Fingerprints must be uploaded in person at an authorized merchant location. The process can only begin after securely logging into the app on-site, preventing remote or fraudulent enrollment.

OVE Sensor

The OVE Sensor is purpose-built for secure, in-person transactions, ensuring data integrity from the moment of fingerprint touch to final transmission.

  • Exclusive POS Partner Integration: OVE Sensors only work within approved point-of-sale (POS) systems that are part of OVE's partner ecosystem. They are not functional outside these environments, adding an extra layer of protection against misuse or unauthorized access.

  • Trusted Fingerprint Technology: Each sensor uses a capacitive fingerprint sensor from Fingerprint Cards AB (FPC)—a global leader in biometric authentication hardware.

  • No Image Storage: The sensor does not collect or store fingerprint images. Instead, it creates a secure, one-way hash of the fingerprint at the moment of touch, making it impossible to reconstruct the original fingerprint.

  • End-to-End Encryption via Certified P2PE: All fingerprint data is automatically encrypted and transmitted to OVE’s cloud infrastructure via a PCI-certified Point-to-Point Encryption (P2PE) channel, safeguarding it from tampering or interception during transmission.

  • FCC Certified: The OVE Sensor is FCC certified, ensuring compliance with U.S. standards for electromagnetic safety and wireless communication reliability.

Cloud and APIs

OVE’s backend is hosted on a secure, PCI-compliant cloud environment and built to protect payment and biometric data throughout every interaction with the platform.

  • All backend infrastructure is hosted on Microsoft Azure, which holds PCI compliance certifications, ensuring it meets stringent security standards for handling both cardholder and biometric data.

  • OVE Sensors communicate with the cloud through encrypted APIs and certified P2PE channels, ensuring end-to-end protection from the moment data is captured to the moment it’s processed.

  • Third-party API access is restricted exclusively to OVE’s approved POS partners. No external or unapproved systems can interact with OVE’s APIs, greatly reducing exposure to breaches or unauthorized integrations.

bottom of page