SITE STATUS: LIVEINDEPENDENT REFERENCE · NOT NMI
Blog

Mobile Payment Processing

How card acceptance on phones and tablets actually works — readers, tap-to-pay, SDKs, and the trade-offs vs. countertop terminals.

HomeBlogMobile Payment Processing

Mobile payment processing is card acceptance on a phone or tablet — through a paired Bluetooth EMV reader for chip and contactless cards, through built-in tap-to-pay on newer iPhones and Android devices, or through keyed entry inside an app via a payment-gateway SDK. The transaction routes through the same gateway and processor as countertop acceptance; the difference is how the card is captured.

Three ways mobile payment processing works

Paired Bluetooth EMV reader

A small reader (Square Reader, BBPOS Chipper, ID TECH VP3300, similar) pairs to the phone over Bluetooth. The reader reads chip/tap and encrypts the card on-device — the phone never sees raw card data.

Tap-to-Pay on iPhone / Android

Newer phones with NFC accept contactless cards directly through a certified SDK — no separate hardware. iPhone XS+ on iOS 16.4+ and modern Android devices.

In-app keyed / on-file

The app captures a card number from the keyboard or pulls a stored token from a customer vault. No reader needed. Card-not-present pricing applies.

Security — how it stays card-present

For chip and contactless acceptance on mobile to qualify for card-present interchange rates, the card data must never appear in plaintext on the phone. Both Bluetooth EMV readers and Tap-to-Pay SDKs handle this by encrypting at the reading hardware (the EMV chip on the reader, or the secure element on the phone) and transmitting only encrypted card data through the app to the gateway. The merchant's app sees an encrypted blob; the gateway decrypts and tokenizes it into a vault.

This is the practical difference between a "real" mobile payment SDK and a homemade form that just collects card numbers in a text field. The former qualifies for card-present rates and reasonable PCI scope; the latter is card-not-present and SAQ D territory.

People also ask about mobile payment processing

Is mobile payment processing safe?

When done through a paired EMV reader or a certified tap-to-pay SDK, yes — the security posture matches a countertop terminal. End-to-end encryption from the reader, tokenization at the gateway, PCI-compliant transmission. The reader handles the card; the phone never sees the raw number. Keyed-entry mobile is less secure (card data passes through the phone) but still manageable with proper SDK use.

What are typical mobile payment processing fees?

Card-present rates (chip or tap on a reader, or tap-to-pay) typically run 1.8-2.6% effective. Keyed-entry mobile runs higher, 2.5-3.2%, because the cardholder is not physically present. Flat-rate mobile processors (Square, Stripe) publish 2.6% + $0.10 for card-present and 2.9% + $0.30 for keyed.

Do I need a card reader for mobile payments?

For chip and contactless: yes, unless you use Tap-to-Pay on a recent iPhone (XS or newer, iOS 16.4+) or Android device with certified SDK support. For keyed entry and on-file billing, no reader needed. Most merchants going mobile start with a Bluetooth EMV reader for card-present rates.

Can mobile payments integrate with my regular gateway?

Yes — gateways like NMI provide mobile SDKs that route mobile transactions through the same platform as your e-commerce and in-person sales, with unified reporting. See mobile payments on NMI for the specific implementation.

Where mobile payment processing fits

When NOT to use mobile

If you process thousands of transactions a day from a fixed counter, a proper EMV terminal is faster, more reliable, and easier for staff than a phone+reader pair. Mobile shines where the sale moves and a fixed terminal can't follow.

FAQ

What is mobile payment processing?

Card acceptance on a phone or tablet via paired EMV reader, tap-to-pay, or in-app keyed entry — same gateway/processor backend as countertop.

Is it safe?

Yes with a proper EMV reader or certified tap-to-pay SDK — encryption at the reader, tokenization at the gateway, raw card never on the phone.

Typical fees?

1.8-2.6% for card-present (reader or tap), 2.5-3.2% for keyed entry. Flat-rate mobile prices ~2.6%+$0.10 / 2.9%+$0.30.

Need a reader?

For chip/tap, yes unless you use Tap-to-Pay on a supported iPhone/Android. For keyed entry, no.

NMI mobile?

NMI provides mobile SDKs that resellers embed in their own apps — see mobile payments.

Related