GS Logo
The Green Sheet, Inc

Please Log in

A Thing
View Archives

View flipbook of this issue

Care to Share?

Table of Contents

Lead Story

Leasing 2.0 – An old tradition gets a new look


Industry Update

AmEx to appeal court ruling on merchant steering

Massive hack siphons nearly $1 billion from banks worldwide

EMV, interchange concern ATM deployers

Costco, JetBlue disengaged with AmEx

Trade Association News


Mobile poised for online growth

Use newsletters for customer retention


Remote capture is for more than just checks

Patti Murphy
ProScribes Inc.

Paradigm shift on portfolio ownership

Alex Nouri
EFT Direct


Street SmartsSM:
Keep calm and process on

Tom Waters and Ben Abel
Bank Associates Merchant Services

ISO third-party integrations and data sharing

Adam Atlas
Attorney at Law

How do you decide which terminals belong in your toolbox?

Jeff Fortney
Clearent LLC

Company Profile

ISO Advance

Premier Payment Systems Inc.

New Products

Seamless, scalable in-store mobile payments

Zebra Technologies Corp.

Cloud-based, interactive payments for food service

Aptito LLC


Workplace Oscar party


GS 10 Years Ago

Readers Speak

Resource Guide


A Bigger Thing

The Green Sheet Online Edition

March 09, 2015  •  Issue 15:03:01

previous next

Legal ease:
ISO third-party integrations and data sharing

By Adam Atlas

Why is it easier to integrate Farmville with Facebook than your ISO business with your processor? I think this should be the prevailing question ISOs ask processors in 2015. Most people are so busy sharing data between apps they can't keep track of which apps depend on which. Yes, data sharing has risks, but let's face it, we are stalled without it.

Meanwhile, when a processor delivers ISO reporting on an Excel spreadsheet, the ISO has to take a trip down to the local computer museum to get the data from the spreadsheet into a useful format that adds value to the ISO's business. The purpose of this article is to talk about the legal aspects of third-party integrations of ISOs, or put another way, the gamification of ISOs.

What can an ISO get from a third party?

A lot. Take for example, a customer relationship management (CRM) system, such as ISIS CRM, designed for ISOs that instantly pulls data from all the ISO's key sources like processors, agents, lead generation sources and merchants, and delivers a powerful live feed to all concerned. In addition to tailored CRM services, accounting packages, lead tracking, sales meeting schedulers and various other third-party systems all compete to add value to the ISO's business.

The services an ISO is likely to need from a third-party integration depend on the ISO's needs. For example, an ISO may wish to use a platform that specializes in full, tailored ISO support or prefer something more generic to handle just basic bookkeeping or appointment setting.

How does the ISO integrate with a third party?

Usually, it's just a question of clicking and accepting the terms of integration. Some larger integrations require a dedicated bit of software called an application program interface (API). An API allows one system to communicate with another so that they can, for example, instantly share a common database.

Most large businesses for which data is a core element now, first and foremost, think about offering their clients APIs in order to facilitate integration. Some rather backward processors either don't have APIs or make them hard for ISOs to access. This is the same kind of thinking that has sunk various closed-loop services over the past couple decades.

The long view of ISOs should be a basic expectation of live integration with all their suppliers. For example, as a law firm, we provide live feeds of certain key legal information to some of our clients though a cloud-based database. If we can do it, processors are certainly able to do it.

What are the legal terms of integration?

A third-party platform, such as a CRM system, that would fetch ISO data from a processor, process it, warehouse it and present it to ISOs in a user-friendly way, will require the ISO to accept certain terms and conditions of use for the service. These terms should cover the following key topics:

Whatever the terms of the third-party service provider, the ISO should read them carefully and see that they provide adequate protection for the ISO.

Do processors cooperate?

When shopping for an ISO agreement, on par with pricing, ISOs should be preoccupied with whether the processor is going to provide live feeds of ISO data to the ISO. Most are cooperative, but some processors that are stuck in an outdated mindset have been putting up resistance to providing APIs or other forms of cooperation with third-party service providers to ISOs.

By putting a tourniquet on the flow of data from processor to ISO, the processor is taking away the new lifeblood of ISOs: data. The ISO business has never been more competitive; ISOs need every edge they can achieve. Data curating is ripe for enrichment in the ISO marketplace, and will therefore differentiate stronger and weaker processors and ISOs. ISOs should select a processor, in part, on the basis of whether the processor takes a "data first" approach.

The long view of big data for ISOs

Acquiring businesses should take the long view of data concerning ISOs and merchants, which is that the data is the core value of each of their businesses. Assuming similar sales abilities and similar marketing budgets, one ISO will get ahead of another, in part, because it masters the flurry of data associated with its merchant portfolio.

ISOs have been worried for years that they may be replaced by large Internet players that are strong on data, but weaker on sales. This is a valid fear – and keeping up with data mastery is part of what an ISO has to do to remain competitive.

In publishing The Green Sheet, neither the author nor the publisher is engaged in rendering legal, accounting or other professional services. If you require legal advice or other expert assistance, seek the services of a competent professional. For further information on this article, email Adam Atlas, Attorney at Law, at or call him at 514-842-0886.

Notice to readers: These are archived articles. Contact names or information may be out of date. We regret any inconvenience.

previous next

Spotlight Innovators:

North American Bancard | Simpay | USAePay | Impact Paysystems | Board Studios