Gateway Release Notes V 4.130 * ** / Hosted Gateway: /* Date: 21/05/2023 Start Time: 20:00 UCT +2 Duration: 2-4hrs Expected Downtime: 5-10mins. / Nedbank Gateway:  /* Date: 11/06/2023 Start Time: 20:00 UCT +2 Duration: 2-4hrs Expected Downtime: 5-10mins. Enhancements * Compliance – Mastercard Edits* MCI: Edit 7 - TermPOS The Terminal Operating Environment value in POSDATA element has been updated from value “5” to “0” for instances where POSEntryMode is set to “01 Amendments have been made on DE 123 for MasterPass Pin authenticated transactions. Backoffice 2 * The inclusion of the "View All" option for Batch users together with the ability to view transactions performed under specific users has been introduced. With this change it is now possible for users to view and do subsequent actions

V4.139 7/2/2024 ** Release Notes Overview The release notes provided in V1 of this document serve as an initial preview of the changes expected in the upcoming production release scheduled for November 12th, 2023, on the Hosted Gateway. The definitive release notes for deployment in production will be included in V2 of this document. Summary The Gateway release notes will contain information related to the new iVeri software release. The release notes will include the impact of software release to the intended target audience. The release notes will adopt the format outlined below, as applicable: Compliance - Refers to the adherence of the software to specific industry standards, regulations, or internal policies. This includes ensuring that the software meets legal and regulatory requirem

3DS 2 Parameters * ** Request Parameters * Parameter * Description * Merchant ReturnUrl Mandatory: The URL which the Gateway will post return response parameters to ApplicationID Mandatory: Merchant Application ID generated upon the creation of the merchant profile on the iVeri Gateway MerchantReference Mandatory: A merchant generated identifier that is unique within a specified time that identifies a transaction sequence. Amount Mandatory: The total value of the transaction in the smallest unit of the currency specified (eg in cents) Currency Mandatory: The ISO 4217 currency code of the value of the transaction. e.g., USD or ZAR or GBP PAN Mandatory: Card number used for transaction ExpiryDate Mandatory: The last month of the validity period of the card, formatted as MMYY or   MMYYYY Card

The iVeri range of payment solutions, developed by iVeri Payment Technologies (Pty) Ltd provides proven credit card payment solutions for businesses that have online or physical presence. LIte is an online payment product.

3D Secure * ** 3D secure is an XML-based security protocol for online credit and debit card transactions. 3D Secure adds an authentication step for online payments, making it possible for cardholders to authenticate their online transactions with their card issuers, using a password or OTP. Benefits of using 3D secure * Reduces fraudulent debit & credit card transactions processed through online platforms Gives the merchants and acquiring bank liability protection 3D secure providers * CyberSource Bankserve 3D secure with iVeri * High: 3D secure – If a merchant is deemed high risk, the acquiring bank can set merchants on this level. Merchants that want lowest possible risk can also opt for this level. Medium: 3D secure/attempted- This option gives merchants a broader reach in the cards the

* Administrator Password Reset * ** */ Purpose /* – This is used when an Administrator would like to reset their existing password. */ Action: /* From the menu, select the Administrator area and choose the option to change password. It is recommended that you use Alphanumeric and Special characters to ensure the password strength meter indicates a strong password. Save Changes once completed

3D Secure 2 Test Cases BY 3D secure Vendor/MPI * ** The MPI test cases that should be used are depended on the acquiring bank that holds the merchant agreement or PSP that will be processing the payments on the Gateway on behalf of the merchant Things to note about the test cards:* CVV not required Expiry must be current or future date BANKSERV  * For merchants and acquiring banks in South Africa and Kenya Frictionless Full authentication * Scenario 1 * Authenticated Frictionless Transaction * Test Values * Visa*:4069425217889137 MC:*5163426869252246 DINERS*:36135230403232 Expected results - Lookup * EnrolledStatus: Y paresTxStatus: Y TDS2.transStatus: Y ECI (Visa): 05 ECI (MCI): 02 ECI (DINERS): 05 PARESVERIFIED: true PROTOCOL: 3DS 2.1.0 MD_STATUS: 1 MD_ERROR_MESSAGE: Authenticated Action

Add User * ** / Purpose /* - To add/capture the details for a new user. / Action /*: Hover over to Users. The following screen will appear. Select “Add New User”. Fill in all the mandatory fields (marked [*]) and click on “Save changes”. A resultant message will be displayed.

/ Nedbank Gateway /* – Applicable for Nedbank acquired merchants located in South Africa, Zimbabwe, Namibia, Lesotho and Swaziland Website * URL * Port * BackOffice *   [1] https://backoffice.nedsecure.co.za/   443 * Lite   [2] https://portal.nedsecure.co.za/Lite/Authorise.aspx   Authorization Information   [3] https://portal.nedsecure.co.za/Lite/AuthoriseInfo.aspx   / CIM Hosted Gateway /* – Applicable for merchants acquired by CIM Finance in Mauritius Website * URL * Port * BackOffice *   [4] https://backoffice.merchant.cim.mu/   443 * Lite   [5] https://portal.merchant.cim.mu/Lite/Authorise.aspx   Authorization Information   [6] https://portal.merchant.cim.mu/Lite/AuthoriseInfo.aspx   / CSC Hosted Gateway */– Applicable for merchants that acquired by banks af