Digitizing PA payments on a national scale
ACI Informatica relies on RoxPay to manage critical components of its collection infrastructure, ensuring compliance, stability, and security for millions of citizen transactions.
Regulatory adaptation and critical transaction volumes
As the technological hub of Italian mobility, ACI Informatica needed to modernize collection processes to meet new European and national regulatory standards.
PSD2 Directive
Need to implement Strong Customer Authentication (SCA) on all digital payment flows without penalizing usability.
pagoPA Integration
Align legacy systems with the complex specifications of the SPC Payment Node for citizen-facing services.
Security & Volumes
Ensure a resilient infrastructure capable of withstanding peaks due to national fiscal deadlines without interruption.
A core engine to orchestrate B2G transactions
RoxPay provided a modular enterprise architecture, acting as intelligent middleware between ACI portals, Payment Service Providers (PSPs), and ministerial nodes.
Discover the API architectureAutomatic SCA
Native integration of the 3D Secure 2.0 protocol for smooth handling of strong citizen authentication.
pagoPA Middleware
Certified interfacing module that translates and routes requests to the national node according to AGID standards.
Enterprise Deploy
Installation on high-availability servers to ensure operational continuity during periods of maximum telematics traffic.
Compliance achieved and uninterrupted operations
The infrastructure successfully passed institutional testing, smoothly handling the expected national volumes.
Institutional reliability
Key components provided to build the citizen services hub.
Single, balanced, and scalable access point for all payment authorization requests.
Dedicated engine to negotiate Strong Customer Authentication with bank Issuers in real-time.
Specialized interface to correctly exchange Telematic Receipts (RT) with the SPC Node.
Secure outsourcing of sensitive data, avoiding the burden of PCI-DSS certification on internal servers.
Interface reserved for operators for logistical analysis and data extraction for reconciliation purposes.
Optimized cash flows between the entity's various web portals and mobile apps towards secure payment pages.
"Adopting the RoxPay platform allowed us to accelerate the path to PSD2 regulatory compliance and integration with pagoPA, equipping us with a solid and secure infrastructure capable of handling the scalability challenges that a service aimed at the entire country requires daily."
Deep Dive: PA Payments and Compliance
RoxPay acts as an intermediary (middleware) module. When the public entity requests a payment, the system formats the transaction according to AGID standards, communicates with the SPC Payment Node, and manages the returning Telematic Receipts back to the management software.
PSD2 mandates the use of Strong Customer Authentication (SCA) for online payments. RoxPay integrates 3D Secure 2.0 engines that dynamically verify the payer's identity with the issuing bank, stopping fraud while allowing exemptions for low-risk transactions.
For Enterprise and PA projects, we implement high-availability server clusters (HAaaS) and intelligent load balancers that horizontally scale cloud resources as soon as an anomalous increase in API requests is detected.
Absolutely not. Sensitive data (PAN) never passes through or resides on the entity's servers. RoxPay performs tokenization in PCI-DSS Level 1 certified environments, returning only an alphanumeric token to the entity for subsequent processing.
Do you manage complex transactional systems?
Discover the enterprise architecture chosen by national tech hubs to orchestrate millions of secure operations.