PCI TR-31 compliance:
Replace your ATM with a compliant model

Contact us to get started

Need help choosing the right replacement?

Let us do the heavy lifting. Our team of experts is here to help you determine the optimal solution for your growing network.
Contact us

As of January 1, 2025, all ATMs must comply with updated TR-31 encryption standards to remain operational. These standards are part of a broader PCI compliance initiative aimed at enhancing the security of PIN encryption and key management across the ATM industry.

If your ATM cannot be upgraded to meet TR-31 compliance standards, replacing it with a full compliant model is the fastest path to avoiding disruption and staying secure.  

We’ve made it simple to find top certified models from multiple OEMs – so you can choose the best-fit machines for your fleet while staying TR-31 compliant.

Explore TR-31 compliant ATMs

NCR Atleos models

Visit website

Genmega models

Visit website

Hyosung models

Visit website

Triton models

Visit website

TR-31 compliance FAQs

What is PCI?

The Payment Card Industry (PCI) Security Standards Council was formed in 2006 by the card networks with the goal of managing the ongoing evolution of cardholder data security. Members of the PCI Security Standards Council currently consist of Visa, MasterCard, American Express, Discover and JCB. You can read more about them here.

What is the TR-31 Key Block mandate?

PCI set standards that help ensure PINs and data are transferred securely through the ecosystem and infrastructure. This consists of EPP (electronic PIN pad) version standards and deadlines, whereby there is ongoing lab certification of EPP hardware/software distribution and field sunset dates. PCI/Networks’ deadline for ATM Providers and Host Processors to encrypt transaction data using TR31 Key Blocks was January 1, 2025 .

Why is it important to be TR-31 Compliant?

Non-compliant ATMs are considered at significant risk of fraud, brand damage and a loss of revenue . Failure to implement TR-31 (“Key Blocks”) could leave an ATM vulnerable to more attacks and could ultimately result in payment and customer data compromises.

PCI and Networks’ (card brands) requirements are intended to improve and enhance security and will change the way encryption keys are protected and managed . “Key Blocks” will further secure the PINs and data to be transferred through the ATM and payment network ecosystem and infrastructure.