Payment Industry Leader Base Acquires Merchant Accounts from LucentPay

Payment technology and processing leader Base has acquired the merchant accounts of LucentPay, a full-service payment processor and merchant services provider. The move underscores Base’s focus on leveraging both organic expansion and acquisitions to drive rapid growth.

“Our aggressive growth strategy is fueled by a variety of carefully coordinated tactics, one of which is acquiring companies where there is advantageous synergy between our organizations,” said David Schoenecker, Base COO. “We were already providing processing services for LucentPay’s merchants, so the acquisition met all of our success criteria. And, merchants can rest assured that we’ll continue to provide the attentive service that they have come to expect.”

LucentPay specializes in processing payments for the collections industry. Its innovative No-Cost-to-Biller™ (NCTB) solution enables collection agencies to process credit cards, debit cards, HSA/Flex cards, and ACH transactions at no charge. Developed in collaboration with compliance experts, the solution helps agencies avoid FDCPA liability when assessing service or convenience fees.

The company’s unique offerings, record of success, and highly regarded support were cited as major factors in the acquisition. “LucentPay has done an exceptional job of addressing the specific needs of its merchants,” said Schoenecker. “We’re pleased to have secured these accounts and feel that this acquisition sends a clear signal to the industry that Base has far-reaching plans for furthering our position as a leader in payment services and technology.” 

NCTB is the first model of its kind to be vetted for all pertinent compliance pillars, including the FDCPA, CFPB, and state law, to ensure compliance. In addition, the model is backed by a legal opinion letter and favorable case law to mitigate compliance concerns.

“LucentPay’s NCTB model has the largest number of integrated vendors (software, web portals, text, and IVR),” added Schoenecker. “As a result, it can be deployed with minimal disruption to an agency’s current operational environment. That is a significant advantage for agencies.”

About Base Commerce

Founded in 2008 and headquartered in Phoenix, AZ, Base is a leading provider of advanced payment processing solutions. Stakeholders in many areas of the payments ecosystem rely on the company’s comprehensive suite of technology and service offerings to ensure that payments are processed securely, promptly, efficiently, and cost-effectively.

Base Announces Third-Party Certification of Its PCI-Compliant End-to-End Encryption Payment Solution, CypherPay™

Base Commerce, LLC, a technology-driven payment processing company specializing in bankcard and ACH payment processing solutions, has announced the third-party certification of its CypherPay™ E2EE (end-to-end encryption) payment solution. The rigorous assessment confirms that use of the CypherPay™ product results in significant PCI (Payment Card Industry) compliance scope reduction, allowing organizations to more easily meet the stringent data security requirements needed in today’s online payments landscape.

The expert evaluation was conducted by Sysnet Global Solutions (https://sysnetgs.com), a Dublin-based authority in cyber security and compliance solutions with clients worldwide. Sysnet documented its findings in a whitepaper that is now available on the Base website.

“We developed CypherPay™ knowing that it would reduce the tremendous PCI compliance burden faced by merchants and help to avoid consequences like non-compliance fees and the devastating fallout from a data breach,” said Ryan Murphy, Chief Systems Architect at Base Commerce. “However, having a globally recognized entity like Sysnet confirm through hundreds of hours of testing that the solution does precisely that is extremely gratifying.”

Base’s Data Security Analyst, Zachary Walker, spearheaded the certification initiative, leading a team that provided Sysnet with the system access and information needed to fully vet the CypherPay™ product. Merchants who implement the solution save significant time, effort, and capital each year as it addresses for them the 12 requirements of the payment card industry data security standard (PCI-DSS):

  1. Install and maintain a firewall configuration to protect cardholder data.
  2. Do not use vendor-supplied defaults for system passwords and other security parameters.
  3. Protect stored cardholder data.
  4. Encrypt transmission of cardholder data across open, public networks.
  5. Protect all systems against malware and regularly update anti-virus software or programs.
  6. Develop and maintain secure systems and applications.
  7. Restrict access to cardholder data by business need to know.
  8. Identify and authenticate access to system components.
  9. Restrict physical access to cardholder data.
  10. Track and monitor all access to network resources and cardholder data.
  11. Regularly test security systems and processes.
  12. Maintain a policy that addresses information security for all personnel.


Easily implemented through the company’s Prebuilt SDKs (software development kits), CypherPay™ completely removes sensitive data from a merchant’s environment. In doing so, it not only dramatically reduces the merchant’s PCI compliance burden, it provides the organization with significant insulation from risk.

“Our evaluation covered many areas including validation of the encryption mechanisms from encryption endpoints to the Base CDE decryption environment, cryptographic key management principles alignment with NIST 800-57 and PCI SSC P2PE version 2.0 rev1.1, and implementation of PKI for payload encryption and decryption,” said Jeff Montgomery, SVP – Cyber Risk at Sysnet. “We also reviewed implementation of secure communication channels using TLS 1.2, conducted a forensic investigation of end point systems via FTK and Autopsy to determine the existence of any latent cardholder data or sensitive authentication data post authorization to transactions, and performed transactions for each of the envisaged payment channels, including POS, as per POI list, and e-Commerce-based transactions. CypherPay™ exceeded the required standards in all areas.”

Base serves clients in a wide range of industries, including property management, consumer finance and collections, tolling, parking and transportation, and charitable giving. These organizations leverage the company’s advanced payments technology and services to streamline payment acceptance and provide a more fluid experience for their customers.

“Few, if any, other systems like CypherPay™ have undergone this type of testing and certification, so stakeholders throughout the payments ecosystem – from merchants to service providers to ISVs – can rest easy at night when our solution has been implemented,” added Zachary Walker, Data Security Analyst at Base. “No one, at any level of a merchant’s organization, has access to sensitive customer information at any time, so the risk of data misuse or theft is eliminated. And, compliance can be confirmed annually literally in minutes.”

If you would like to read Sysnet’s report then you can find it on Base’s website (www.basecommerce.com/cypherpay-whitepaper.pdf).

About Base Commerce

Founded in 2008 and headquartered in Phoenix, AZ, Base Commerce is a leading provider of advanced payment processing solutions. Stakeholders in many areas of the payments ecosystem rely on the company’s comprehensive suite of technology and service offerings to ensure that payments are processed securely, promptly, efficiently, and cost-effectively.

About Sysnet Global Solutions

Headquartered in Dublin, Ireland, Sysnet is a global cyber security company, currently providing assessment and consulting services across more than 60 countries. Established in 1989, Sysnet has built a reputation for helping clients achieve compliance in a cost-effective manner, adopting a uniquely pragmatic and business focused approach. It offers a range of information security services, including PCI DSS, GDPR, ISO27002, HIPAA, Sarbanes Oxley, POPIA, FedRAMP, SWIFT, and other internationally defined standards. It proudly boasts a wide client base that includes global communication organizations, acquirers, ISOs, international banks, and payment service providers.

Base Commerce Becomes Affiliate Member of ACA International

Base Commerce, LLC has become an affiliate member of ACA International, the Association of Credit and Collection Professionals.

As an affiliate member, Base Commerce, LLC demonstrates its commitment to supplying quality goods and services to the credit and collection industry, as well as pledging to abide by the association’s code of conduct.

Founded in 1939, ACA brings together third-party collection agencies, law firms, asset buying companies, creditors and vendor affiliates, representing more than 230,000 industry employees. ACA establishes ethical standards, produces a wide variety of products, services and publications, and articulates the value of the credit and collection industry to businesses, policymakers and consumers. For more information about ACA International, visit www.acainternational.org.