Payments & Settlement

Domain ID	D06
Owner	Head of Payments
Jurisdiction	NZ + AU
Applicability	Platform — SD04 delivers pre-payment validation (MOD-020), payment limit control (MOD-021), fraud scoring (MOD-023), FX rate lock (MOD-025), and IFTI/CMIR trigger (MOD-026). In Track 2 the tenant holds scheme membership; the platform processes payments on their behalf.

Governance of payment processing, settlement risk, scheme obligations, and cross-border fund transfer compliance.

Policies

Code	Policy name	Status
PAY-001	Payment Operations Policy	Draft
PAY-002	Settlement Risk Policy	Draft
PAY-003	Card Scheme Compliance Policy	Draft
PAY-004	Cross-Border Payments & FX Policy	Draft
PAY-005	Payment Fraud Prevention Policy	Draft
PAY-006	PCI DSS Compliance Policy	Draft

Systems satisfying this domain

• MOD-020: Pre-payment validation suite — GATE (all payment gates)
• MOD-021: Payment limit controller — GATE/ALERT (velocity/limits)
• MOD-022: Payment audit trail — LOG (immutable payment record)
• MOD-023: Transaction fraud scorer — AUTO (fraud gate)
• MOD-024: Device & session intelligence — ALERT/GATE
• MOD-025: FX rate lock — LOG (FX transparency)
• MOD-026: IFTI/CMIR trigger — AUTO (reporting)

Policies in this domain

Code	Title	Status	Owner
PAY-001	Payment Operations Policy	Draft	Head of Payments
PAY-002	Settlement Risk Policy	Draft	Head of Payments
PAY-003	Card Scheme Compliance Policy	Draft	Head of Payments
PAY-004	Cross-Border Payments & FX Policy	Draft	Head of Treasury
PAY-005	Payment Fraud Prevention Policy	Draft	Head of Payments
PAY-006	PCI DSS Compliance Policy	Draft	Head of Payments
PAY-007	Ledger Posting & Account Integrity Policy	Draft	Chief Financial Officer
PAY-008	Payment Routing, Sponsor & Card-Scheme Abstraction Policy	Draft	Head of Payments
PAY-009	Payment Exceptions, Returns & Reversals Policy	Draft	Head of Payments
PAY-010	Open Banking & API access	Draft	Chief Technology Officer

---

Compiled 2026-05-22 from source/entities/risk-domains/D06.yaml