Has Shaparak leaked user information in the tax system: Behind the scenes of registering several Internet and POS ports in the name of individuals in the tax system

As of Wednesday, January 13th, various screenshots were posted on Twitter or Instagram, which showed that some people, after checking the tax system, noticed that a number of sales terminals or POS machines had been registered in their names without their knowledge. But what is the story? According to some claimants, has Shapark leaked the information of some payment gateway owners?

The story began when some users received text messages from the IRS asking them to go to the IRS website by the end of January at the latest to establish a correspondence between the bank acceptors and their tax file. Finally, by referring to the national electronic services portal of the Tax Affairs Organization www.my.tax.gov.ir, while facing a large number of Internet portals and POS devices in their own name, they were faced with a tax file, according to which for various types of financial transactions. Including real estate transactions, salaries received, etc. are subject to tax.

Shaparak is probably to blame

Now, after this incident, many users on social networks are asking the question of how the payment gateway or POS was issued in their name without knowing it, and finally tax files were filed for them. In this regard, some people pointed to the payers and announced that some of the portals registered on the site are related to payers, but unfortunately, they did not provide proper information in this regard.

However, Zarrinpal, one of FinTech’s largest payers in the market, made it clear on Twitter that the company had “not provided any information from the recipients to the IRS, and this was done by Shaparak.” ZarrinPal also stressed that for greater transparency in the next few days, ZarrinPal receivers will be able to view the terminals registered for them through their user panel.

In this regard, Mustafa Amiri, one of the founders and CEO of Zarrinpal, in an interview with Zomit, explains how dozens of payment gateways and POS systems have been registered in the tax affairs system in the names of individuals without their knowledge.

“Given the evidence and information that exists from PSP payers and companies and a variety of payment service providers in the form of agency and sales agent in the Shaparak comprehensive system of acceptors, it seems that Shapark has this information,” he told Zomit. “He sent it offline (CD, DVD, etc.) to the IRS.” He continues: “Since 1998, there has been a legal obligation for the tax administration under the law on store terminals and taxpayers to make the information of all taxpayers and payers and their tax files available to the tax administration, while this has happened until now. “Today has been delayed.”

According to Amiri, since Shaparak is two years behind the legal duty, he wanted to implement this law in any way, and finally used a model to send information that followed the leak of users’ information. According to Amiri, the published information does not seem to be new and is related to last year.

Register several different ports in the name of one person

Another question that many users have been surprised by is whether they have opened an account with one or maybe two payers; However, after inquiring from the website of the Tax Affairs Organization, they found out that several portals have been registered in their names. Mustafa Amiri explains in this regard:

Clearly what has happened is that payers like us use smart routing or smart gateway to pay acceptors because of the mechanisms we operate and the variety of services we offer compared to PSPs. This means that for each recipient of each website, a port is taken from different PSPs. For example, for a website, 4 records are created on different PSPs.

According to Amiri, they pay at several PSP ports to make sure they can create the highest quality gateway for a single recipient and website. According to him, in Zarrinapal, for example, at least 4 to 7 PSPs of different ports are taken to provide better service to the customer.

Do not make hasty decisions

In a text message sent to some people, the IRS addressed the holder of a bank card reader or electronic payment gateway, asking them to refer to the IRS portal to establish a correspondence between the bank receivers and the tax file by the end of January at the latest. . In this text message, it is emphasized that in case the bank acceptor does not correspond with the tax file after the above deadline, the Central Bank will be notified for deactivation.

But Amiri, CEO of Zarrinapal, asks users not to decide on deactivation in this regard immediately, because according to the usual routine in the country, this date may be extended until the end of February. He believes that there may be unintentional or unintentional discrepancies in the information and the person mistakenly deletes his payment terminal or gateway. Therefore, according to his advice to users, all people who have been active in this field, it is better to make a list of their financial information and do not rush to deactivate their payment devices.

To check the number of Internet ports or POS devices registered in your name, you can go to the tax affairs site and use the national code to log in to the account defined for you. You can define a new password for yourself by using the Forgot Password option.