activities · 28
what they do
direct service · 9
- Administers certification and recognition program CMS Certification Audits & Gap AnalysisOperates a formal certification program that awards a "CMS Certified" seal to members who successfully complete a CMS audit with minimal findings, and publicly lists certified members on its website to promote trust and transparency in the industry.
- Awarding CMS Certification CMS Certification Audits & Gap AnalysisAwards a "CMS Certified" seal of approval to members who successfully complete the CMS Audit with minimal findings and lists certified members on its website.
- CMS Certification Audits and Consulting CMS Certification Audits & Gap AnalysisConducts CMS Gap Analyses, performs TPPPA Bank and Processor CMS Certification Audits through accredited professionals, and offers consulting services to help members implement and achieve certification for their CMS programs, awarding a "CMS Certified" seal of approval to successful members.
- Conducting CMS Certification Audits and Gap Analyses CMS Certification Audits & Gap AnalysisPerforms TPPPA Bank and Processor CMS Certification Audits, either directly or through approved firms, involving onsite reviews and interviews to validate adherence to documented policies, and conducts CMS Gap Analyses to identify and provide recommendations for addressing compliance gaps.
- Conducts CMS certification audits and gap analyses CMS Certification Audits & Gap AnalysisPerforms CMS Certification Audits—either directly or through approved SOC audit firms—to validate member adherence to the CMS Control Framework, resulting in a one-year "CMS Certified" seal for those with minimal findings. Also conducts CMS Gap Analyses, providing detailed reports and recommendations to address compliance shortcomings.
- Hosts annual industry conference Industry Conference & Networking EventsOrganizes and hosts the annual TPPPA "Solving the Payments Puzzle" conference, with the 2026 event scheduled for Phoenix, Arizona from November 18–20, serving as a platform for education, networking, and industry engagement.
- Industry Conferences Industry Conference & Networking EventsHosts an annual conference, such as the TPPPA 2026 Solving the Payments Puzzle conference, for its members and the broader industry.
- Provides regulatory updates subscriptionOffers members subscriptions to current regulatory updates to help them stay informed about evolving compliance requirements in the payments industry.
- Providing Regulatory UpdatesOffers subscriptions to current regulatory updates for its members.
advocacy · 3
- Advocacy and Regulatory Engagement Digital Regulation & Policy AdvocacyEngages in ongoing dialogue with state and federal regulators, rule makers, and lawmakers, monitors changes to laws and regulations, responds to requests for comment, and files amicus briefs to support fair and consistent changes in the payments industry.
- Advocates before regulators and policymakers Digital Regulation & Policy AdvocacyEngages in advocacy by maintaining relationships with state and federal regulators (including OCC, FDIC, FRB, CFPB, FTC, FinCEN, and CSBS), filing amicus briefs (e.g., in the Hunstein case), responding to rulemaking requests for comment, and promoting fair and consistent regulatory changes affecting the third-party payment processing industry.
- Advocating for the Payments Industry Digital Regulation & Policy AdvocacyEngages in ongoing dialogue with state and federal regulators, rule makers, and lawmakers, monitors changes to laws and regulations, responds to requests for comment, and files amicus briefs to support fair and consistent changes to laws and regulations.
capacity building · 16
- Code of Conduct Adoption Professional Ethics EnforcementRequires all active members to subscribe to a Code of Conduct to ensure integrity, professionalism, and fairness within the payments industry.
- Compliance Management System (CMS) Development and MaintenanceDevelops and maintains a comprehensive Compliance Management System (CMS) as a rigorous control framework for industry best practices in third-party payment processing, designed and vetted with various regulatory bodies.
- Compliance Training and SupportOffers members free compliance support through accredited professionals via phone and email, provides a training schedule with access to upcoming and recorded webinars, and conducts monthly meetings to inform members of regulatory changes and compliance obligations.
- Delivers compliance training and educational programmingProvides members with ongoing compliance training through webinars, including annual NACHA Rules updates, CMS design and certification training, and courses on Consumer Protection and other regulatory obligations. Offers access to a training schedule with registration for upcoming sessions and recordings of past trainings.
- Developing and Maintaining a Compliance Management System (CMS)Creates and maintains a rigorous Compliance Management System (CMS) control framework, vetted with regulators, to promote industry best practices in third-party payment processing and help members implement these controls.
- Develops and maintains a Compliance Management System (CMS) frameworkCreated and maintains the TPPPA Compliance Management System (CMS), a control framework designed with input from regulators such as the FDIC, OCC, FRB, FTC, CFPB, and FinCEN, to promote industry best practices in third-party payment processing. The framework is used by members to align their compliance programs with regulatory expectations.
- Enforces Code of Conduct Professional Ethics EnforcementRequires all active members to subscribe to a Code of Conduct that promotes integrity, professionalism, and fairness in the payments industry, reinforcing ethical standards across the association.
- Hosting Member Meetings and ConferencesConducts monthly member meetings via GotoWebinar to inform members of changes in the external environment and regulatory actions, and hosts an annual conference for members.
- Hosts regulatory update meetings and member forumsConducts monthly member meetings via GotoWebinar to inform members about changes in the regulatory and legal environment impacting compliance risk assessments and internal controls, ensuring ongoing awareness and preparedness.
- Member Compliance Resources and Tools Compliance Framework Development & SupportProvides members with a comprehensive set of compliance policies, management tools (including model program policies, risk assessment templates, and due diligence checklists), and access to current regulatory updates to support their compliance efforts.
- Offering CMS Consulting Services CMS Certification Audits & Gap AnalysisProvides CMS consulting services to members, including on-site visits, gap analysis, and support for addressing identified gaps in their compliance programs.
- Offering Compliance Training and SupportProvides members with access to a training schedule, recordings of past trainings, free compliance webinar training (including NACHA Rules updates and CMS design), and expert compliance support via phone and email from accredited professionals.
- Offers direct compliance support and consulting Compliance Framework Development & SupportProvides members with free compliance support via phone and email from accredited payments professionals, as well as consulting services including on-site visits, gap analysis, and assistance in addressing compliance deficiencies to support implementation and sustainability of the CMS framework.
- Promoting a Code of Conduct Professional Ethics EnforcementAdopted a Code of Conduct to ensure integrity, professionalism, and fairness in the payments industry, which all active members must subscribe to.
- Provides compliance tools and model documentation Compliance Framework Development & SupportOffers members model policies, procedures, risk assessment templates, internal control testing tools, due diligence checklists, and other resources to help document and implement effective compliance management systems aligned with the CMS Control Framework.
- Providing Compliance Tools and Resources Compliance Framework Development & SupportOffers members a comprehensive set of compliance policies, management tools, model program policies, risk assessment templates, internal control testing templates, and due diligence checklists covering various regulatory areas.
strategies · 12
how they think
Theories of action extracted from this org's own source material. Click any to see the full field of orgs running the same approach.
- Advocacy for the Payments Industry industry_advocacyThe organization advocates for the interests of payment processors, banks, and merchants by engaging with regulators, legislators, and payment network operators to influence policy, support beneficial initiatives, and counsel against burdensome regulations, ensuring a favorable operating environment for third-party payment transactions.
- Compliance Capacity Building and Certification compliance_program_developmentStrengthens member compliance through tailored program development, pre-audit support, and voluntary certification audits that validate adherence to regulatory expectations and identify gaps before formal reviews.
- Compliance Support and Certification Ecosystem compliance_program_developmentStrengthens member compliance through tailored program development, pre-audit gap support, and voluntary certification audits that demonstrate adherence to regulatory expectations and promote industry-wide standards.
- Comprehensive Compliance Management Framework compliance_management_frameworkImplements a holistic, risk-based compliance framework that integrates board oversight, internal controls, third-party risk management, and adaptive policies to strengthen governance and regulatory adherence across diverse payment industry stakeholders.
- Comprehensive Compliance Management Framework compliance_management_frameworkImplements a holistic, risk-based compliance framework that integrates risk assessment, board oversight, internal controls, and third-party risk management, designed to be adaptable across industries and payment types, to strengthen governance and regulatory adherence for member organizations.
- Proactive Regulatory Advocacy and Representation advocacyAdvocates for the third-party payment processing industry by engaging directly with regulators, lawmakers, and payment networks to influence rulemaking, oppose burdensome regulations, and promote industry interests through formal comments and relationship-building.
- Proactive Regulatory Advocacy and Representation advocacyEngages directly with regulators, lawmakers, and payment networks to advocate for industry-friendly policies, respond to regulatory consultations, and represent the interests of payment processors, banks, and merchants in shaping the payments ecosystem.
- Promoting and Supporting Robust Compliance Management Systems compliance_management_frameworkThe organization develops, distributes, and supports the implementation of comprehensive, risk-based compliance management systems (CMS) for its members. This includes providing standardized policies, one-on-one expertise, pre-audit support, and voluntary certification to help organizations adhere to regulatory standards, manage risk, and demonstrate compliance with legal and industry expectations, promoting self-regulation within the industry.
- Promotion of Industry Self-Regulation self-regulation_promotionAdvances self-regulation in the payment processing sector by developing, sharing, and institutionalizing best practices—particularly the Compliance Management System (CMS)—with regulators and policymakers to shape standards without external mandates.
- Promotion of Industry Self-Regulation self-regulation_promotionAdvances self-regulation in the third-party payment processing sector by institutionalizing and sharing its Compliance Management System (CMS) with regulators and policymakers as a model for effective, proactive compliance.
- Regulatory Monitoring and Adaptive Guidance regulatory_monitoring_and_guidanceTracks emerging regulatory and legislative developments across high-risk and evolving sectors (e.g., cannabis, money transmission) to provide timely guidance and support for members navigating complex compliance landscapes.
- Regulatory Monitoring and Adaptive Guidance regulatory_monitoring_and_guidanceMonitors emerging regulatory trends and high-risk sectors (e.g., cannabis, money transmission) to provide timely, actionable guidance that enables members to maintain compliant operations amid evolving legal landscapes.
named programs · 2
what they call their work
Advocacy Efforts
Engages with state and federal lawmakers and regulators to represent the interests of its members and the payments industry.
Compliance Management System (CMS)
A framework designed to help members create and maintain risk-based compliance management programs, including training and certification audits.
relationships · 42
who they work with
- CFPB Government — Marsha Jones built relationships with the CFPB.
- CFPB Government — Regulator that vetted the TPPPA's Compliance Management System (CMS).
- Catalyst Partner — Government relations firm providing public policy and advocacy campaigns.
- Chargebacks 911 Partner — Monica Eaton-Cardone, TPPPA Board Advisory Group member, is from Chargebacks 911.
- Commercial Bank of California Partner — Neel Pinge, TPPPA Board Advisory Group member, is from Commercial Bank of California.
- Conference of State Bank Supervisors Government — Marsha Jones built relationships with the Conference of State Bank Supervisors.
- Consumer Financial Protection Bureau (CFPB) Government — Incorporates guidance from the CFPB in its CMS framework.
- Department of Justice (DOJ) Government — Incorporates guidance from the DOJ in its CMS framework.
- East West Bank Partner — Jesse Sandoval, TPPPA Board Advisory Group member, is from East West Bank.
- Eleventh Circuit Court of Appeals Government — Filed an amicus brief in a case before the Eleventh Circuit, engaging with the court on legal interpretation affecting third-party payment processors.
- FDIC Government — Marsha Jones built relationships with the FDIC.
- FDIC Government — Regulator that vetted the TPPPA's Compliance Management System (CMS).
- FORTH, Inc. Partner — Member of the TPPPA, providing a testimonial about the value of the association's resources and compliance support.
- FRB Government — Regulator that vetted the TPPPA's Compliance Management System (CMS).
- FTC Government — Marsha Jones built relationships with the FTC.
- FTC Government — Regulator that vetted the TPPPA's Compliance Management System (CMS).
- Federal Financial Institutions Examination Council (FFIEC) Government — Incorporates guidance from the FFIEC in its CMS framework.
- Federal Reserve Bank Government — Marsha Jones built relationships with the Federal Reserve Bank.
- Federal Reserve Bank Government — Responds to requests for comment from the Federal Reserve Bank.
- Federal Trade Commission (FTC) Government — Incorporates guidance from the FTC in its CMS framework.
- Fi911 Partner — Supports financial institutions with back-office management technologies, including dispute resolution (DisputeLab™), threat detection, reconciliation, and risk management tools.
- FinCEN Government — Incorporates guidance from FinCEN in its CMS framework.
- FinCEN Government — Marsha Jones built relationships with FinCEN.
- FinCEN Government — Regulator that vetted the TPPPA's Compliance Management System (CMS).
- Flex Payment Solutions Partner — Rob Zeitler, TPPPA Board Member, is from Flex Payment Solutions.
- MicroBilt Partner — Serves as a Nacha preferred vendor in payment processing, providing consumer data and risk management services, including credit data solutions and risk verification.
- Nacha Partner — Marsha Jones served on Nacha’s Risk-Management and Advisory Group.
- North American Banking Company Partner — Banker whose third-party payment processor customers have gained knowledge through TPPPA.
- North American Banking Company Partner — Todd Lovaas, TPPPA Board Advisory Group member, is from North American Banking Company.
- OCC Government — Marsha Jones built relationships with the OCC.
+ 12 more