Square Contactless and Chip Reader User Manual

Contactless and Chip Reader

PCI Compliance Policy and Procedures

Version 1.00

Table of Contents

01

05

07

10

Introduction

Square Reader Authentication and Use

Square Reader Security

Version History

Introduction

Square’s Contactless and Chip Reader enables acceptance of EMV and NFC based
transactions. It meets the most stringent security requirements published by the Payment
Card Industry (PCI) Security Standards Council (SSC), PIN Transaction Security (PTS) version

4.1.

The purpose of this document is to address the security requirements as listed in the PCI PTS
Point of Interaction (POI) version 4.1 Derived Test Requirements (DTRs) B20. As required by
PCI SSC this document can be placed in the public domain.

Environment description

The Square Contactless and Chip Reader (“Reader”) is a secure payment device that is
designed for use by merchants in many industries for accepting card-present payment
transactions. The Reader only works with the Square Register application and a compatible
mobile device1running in a Square Stand (https://squareup.com/stand). There is no
configuration required other than to verify that the Reader is fully powered and connected via
a USB po to the Square Stand.

Installation and inspection

Sellers can order a Reader on the Square website (https://squareup.com) or purchase one at a
number of retail outlets (https://squareup.com/retail). Upon receipt of the Reader, the Seller
should inspect that the hardware version (S8) and serial number are visible on the underside
of the Reader.

Bottom view:

1

https://squareup.com/help/en-us/aicle/3887-devices-compatible-with-square-register

© 2016 Square Inc. All Rights Reserved. Version 1.00 1

Introduction

Isometric top-down view:

Front view:

© 2016 Square Inc. All Rights Reserved. Version 1.00 2