SPECIFICATIONS FOR THE DEVELOPMENT OF A COMPLETE

PLATFORM (MOBILE APPLICATION, E-WALLET AND WEBSITE)

FOR THE SALE OF E-GIFT CARDS & VIRTUAL PAYMENT CARDS

Date: March 14, 2024 - Version: V5.0

Privacy Notice

This document contains information that is the property of Firstcom Global Payments SA. The
acceptance of this document by its recipient implies the acknowledgement of the confidential
nature of its content and the commitment not to make any reproduction, transmission to third
parties, disclosure or commercial use without the express prior written consent of Firstcom
Global Payments SA.
 SPECIFICATIONS

ONBOARDING REQUIREMENTS

1. Platform Selection:
o Cross-platform development using Flutter for iOS and Android platforms.
2. Programming Languages:
o Dart for Flutter development.
3. Home Screen
o Animatics and brief introduction to the benefits of the app
o Sign up or log in with existing credentials.
o Demo video to discover how the app works without signing up.
4. Onboarding Guide:
o Develop an onboarding guide to help new users understand app features
and functionalities.
o Provide interactive tutorials and walkthroughs.
5. User Authentication and Security:
o Implement OAuth 2.0 for user authentication.
o Utilize HTTPS for secure communication.
o Store sensitive data using encryption techniques.
o Follow PCI DSS guidelines for card data security.
o Implement two-factor authentication for enhanced security.
o Authentication via identity providers like Gmail and Facebook.
6. Profile Configuration, KYC & Validation:
o Enable users to configure their profiles with personal information.
o Implement validation checks for profile data to ensure accuracy and
completeness.
o Mandatory information for basic account: first and last name, email
address, mobile phone number, WhatsApp number.
o Additional information for premium account: ID information (choice
selection of national ID card, ECOWAS ID card, passport, Consular Card,
Resident Card, National Driver’s licence, other)
o ID information to be entered: ID number, date of issue, expiration date,
issuing authority.
o ID check for premium account: the user must take and send photography
of the ID on both sides and selfie of their face.
o Basic account is by default and allows the user to create and purchase
eGift cards only up to a certain amount.
o Premium account allows the user to create and purchase virtual payment
cards (Visa / Mastercard)
7. Terms of Use Acknowledgment:
o Display terms of use during the signup process.

2
 o Require users to acknowledge terms of use and electronically sign before
proceeding.
o Store acknowledgment status in the user's profile and send a copy by
email.
8. Service Subscription Contract Acknowledgment
o Display Subscription during the signup process.
o Require users to acknowledge terms of use and electronically sign before
proceeding.
o Store acknowledgment status in the user’s profile and send a copy by
email.
o The contract should include the following information:
o Company name, address, logo.
o User identification information as provided at registration.
o Service description.
o Fee Schedule.
o Claim conditions.
o Term of processing of personal data.

TECHNICAL REQUIREMENTS

9. eGift Cards Creation:

o User-friendly interface.
o Allow users to create and personalize eGift cards with custom messages,
designs and denominations.
o Select design templates or upload custom images.
o Add personalized messages.
o Choose denominations and currency.
o Preview eGift cards before sending.
10. Personalization of Cards:
o Develop a user-friendly interface for creating and customizing eGift cards.
o Allow users to personalize cards with images, text, photos.
o Allow users to choose from different templates, themes, and occasions.
o Utilize image processing libraries for customization.
o Implement UI components for card customization.
o Preview the gift card before validation.
11. Gift Card Catalogue Browsing:
o Develop a catalogue browsing feature with categories and sub-categories.
o Implement search and filtering options for users to easily find gift cards.
o Display detailed information and images for each gift card.
12. Merchant Map Localization:
o Integrate with mapping APIs (Google Maps) for merchant localization.
o Display nearby participating shops on the map with relevant details.
13. Sending eGift Cards:
o Enable users to send eGift cards via email, WhatsApp, SMS, or in-app
messaging, and to add a personalized message.

3
 o Integrate with SMTP or SMS gateways for email/SMS delivery.
o Schedule delivery dates and provide delivery status notifications.
o If the recipient is not using the app, he should receive a link to download
the app.
14. Virtual Payment Card Generation:
o Allow users to generate virtual payment cards for online transactions.
o Integrate with PCI DSS compliant payment processor APIs for virtual card
generation.
o Implement secure storage for card details using keychain (iOS) or keystore
(Android).
15. Group Gifting:
o Enable users to collaborate on gifting by creating group gift events.
o Implement contribution tracking and notifications for group gifts.
o Business option allowing companies to generate gift cards in "bulk" mode
and send them to several people simultaneously.
16. Peer-to-Peer Transfers:
o Allow peer-to-peer transfers using mobile wallet balances.
o Implement real-time transaction processing with push notifications.
o Utilize secure authentication mechanisms for transfers.
17. Mobile Wallet Integration:
o Develop mobile wallet functionality for storing funds securely.
o Secure storage of purchased gift cards.
o Sub-accounts or safe boxes for savings.
o Integrate with external payment processors and banking APIs.
o Provide transaction history and balance summary within the app.
18. Payment Options:
o Integration with one or more external payment processors for the
collection of different payment methods including mobile money, bank
transfer, debit/credit card, and PayPal using respective APIs.
o Implement tokenization for secure card payments.
o Seamless switching between payment methods.
19. Redeeming Gift Cards:
o Enable online redemption and in-store redemption via POS terminals.
o Implement QR code scanning for in-store redemption.
o Integrate with PCI DSS compliant POS systems for contactless payments.
o Integration with POS systems for contactless payments.
o Option of Online redemption via unique codes or links.
20. Customer Receipt:
o Generate digital receipts for transactions and gift card purchases.
o Provide options for users to email or download receipts.
21. Notifications:
o Implement push notifications for events such as card creation, sending,
receiving, transactions, rewards, chat messages, etc.
o Notifications for special promotions, reminders, and updates.
o Personalized recommendations for gift occasions.

4
 o Reminder notification of important dates for gifting occasions (birthdays,
etc.).
o Reminder notifications in case of prolonged non-use.
o Random notifications about app features and benefits.
o Utilize Firebase Cloud Messaging (FCM) or similar services for push
notifications.
22. Referral Program:
o Develop a referral program feature with unique referral codes.
o Track referrals and provide rewards for successful referrals.
23. Rewards Program:
o Implement a rewards program with points or virtual currency.
o Allow users to redeem rewards for discounts or special offers.
24. Chat Between Users:
o Implement real-time messaging functionality for users to communicate
within the app.
o Utilize WebSocket or Firebase Realtime Database for real-time
communication.
o FAQ section to troubleshoot common issues
25. Multi-language Support:
o Implement multi-language support for the app interface (French & English)
o Provide language selection options for users.
26. Multi-currency Support:
o Allow users to transact in multiple currencies (minimum 5 currencies)
o Implement currency conversion functionality using real-time exchange
rates.
27. PCI DSS Compliance:
o Ensure secure handling of cardholder data according to PCI DSS
standards.
o Implement encryption, access controls, and regular security audits.
o Use PCI DSS compliant payment processors and services.
28. Reviews:
o Allow users to leave reviews and ratings for gift cards and merchants.
o Display average ratings and reviews on the app.
29. Video Player:
o Integrate a video player component for playing promotional videos or
tutorials within the app.
30. Google App Functionalities:
o Utilize Google services such as Google Maps for merchant localization and
Google Analytics for app analytics.
31. Invite Friends:
o Implement an invite friends feature to encourage user referrals and growth.
o Provide referral bonuses for successful invites.
32. Help Center:
o Develop a help center section with FAQs, troubleshooting guides, and
contact support options.

5
33. Chatbot for Queries:
o Develop a chatbot feature for answering user queries related to the app,
transactions, and gift cards.
o Integrate with Natural Language Processing (NLP) APIs for understanding
user queries.
34. Location Services:
o Utilize device location services for features like merchant localization and
nearby deals.
35. Analytics and Reporting
o Implement analytics tools to track user engagement, transaction volumes,
and app performance.
o Integration with analytics platforms like Google Analytics or Mixpanel.
o Track user interactions, conversion rates, and retention metrics.
o Generate reports on revenue, transaction volumes, and user
demographics.
o Use data insights to optimize user experience.
o Implement filters and export options for customized reporting.
36. Financial Reporting specifics
o Revenue by card category.
o Revenue by payment method.
o Total revenue generated from commission on each gift card sold.
o Total number of cards sold by category and payment method.
o Total transaction amount.
o Total unique users.
o Total unique users by gender and age.
o Purchase recurrence per user.
o Number and distribution of transaction by category (online payment,
contactless payment, QR code payment)
37. Backend Development:
o Develop a scalable backend system using Node.js, Django, or similar
frameworks.
o Utilize databases like PostgreSQL or MongoDB for data storage.
38. API Integration:
o Integrate with external payment processors, SMS gateways, mapping
APIs, and KYC verification services.
o Implement RESTful APIs for communication between the app and
backend.
39. UI/UX Design:

o Design user-friendly interfaces following platform-specific design

guidelines (Material Design for Android, Human Interface Guidelines for
iOS).
o Ensure smooth navigation and intuitive user experience.

40. Platform:
o HTTPS Cross-platform development (iOS, Android) for the mobile app.

6
 o Compatibility with the main browsers and latest versions for the
responsive website.
41. Web Server:
o Hosting a web application to manage the functionalities on the
administrator side.
o Manage mobile app requests and transactions.
42. Database
o Secure storage of gift cards, user and transaction information
o Relational database or NoSQL, depending on specific needs.
o The data will be kept for one year of history.
43. Security:
o HTTPS protocol for communications between the application and the
backend.
o Secure API calls for data exchange between different components.
o Encrypt data at rest and in transit.
o Secure management of user credentials.
o Secure user credential management with multi-factor authentication
(especially for highly privileged accounts)
o Captcha Possibility for Questionable Connections
o Protection anti-DDoS
o High availability and backup (RTO: 1h and RPO: 15 min)
o Compliance OWSP and PCI DSS
44. Performance:
o Optimized for fast loading times.
o Efficient memory management.
45. Scalability:
o Scalable architecture to handle user growth.
o Multi-country concurrent use in phase 2
o Possibility of evolution to a Super App by integrating new services in the
future.
46. Testing and Quality Assurance:
o Conduct rigorous testing including unit testing, integration testing, and
user acceptance testing.
o Test for security vulnerabilities and performance optimization.
47. Backup & Recovery System
o Regular backup strategy to ensure data security and recovery in the event
of a problem.
48. Deployment and Maintenance:
o Use of cloud infrastructure for scalability
o Deploy to app stores (Apple App Store, Google Play Store, Huawei App
Gallery).
o Provide regular updates and maintenance for bug fixes and feature
enhancements.

7
 DELIVERABLES

• Product Roadmap
• Design
• MVP
• Full build (mobile application and web)
• Cloud hosting.
• One year maintenance & support.
• Source Codes and Intellectual Property
• Technical documentation.
• Penetration test report and vulnerability scanning.
• Training of maintenance teams.

CONTACTS

Souleymane Diallo
Chairman, Firstcom
Tel : (225) 07 87 14 94 02
sdiallo@firstcomglobalcapital.com

Gérard Philippe Mbouyap

Senior Advisor, Firstcom
Tel: 1(514) 792 38 37
[email protected]