1Link
A secure, in-house card lifecycle management system built for one of Pakistan's most critical fintech operators — running strong for over five years.
— recorded from the live product
Industry
Fintech · Card Management Portal
Location
Pakistan
Services
Full-Stack Web Application Development, Enterprise Portal Engineering, Role-Based Access Control…
Engagement
5+ Year Strategic Partnership
Who they are.
1Link is Pakistan's largest shared payment switch — the infrastructure that connects nearly every major bank in the country and powers ATM transactions, interbank transfers, and a significant portion of the nation's digital payment activity. When a payment moves between banks in Pakistan, there is a strong chance it passes through 1Link's systems. Within an organisation of this scale, internal departments handle sensitive, high-stakes operations every day. One of those operations is card production and lifecycle management — a process where accuracy, security, and accountability aren't optional. That's where we were brought in.
— services delivered
The problem.
1Link's card production department was running mission-critical operations on manual workflows. For a fintech operator of this scale, that wasn't sustainable — and more importantly, it wasn't safe.
- Manual processes were slow by nature — human-paced work where the volume demanded system-paced execution.
- Data accuracy suffered. Tracking exactly when a card arrived, was processed, or issued was difficult to maintain in real-time without a single source of truth.
- Report generation was time-consuming and error-prone — every report required manual compilation.
- Multiple operators couldn't work concurrently without risk of conflicts and duplicated entries.
- Card operations carry inherent fraud and misuse risk. Manual handling without robust access controls and audit trails leaves room for both honest mistakes and bad-actor opportunities.
- There was no clean, role-based authority system — no way to enforce who could do what, and no audit trail to prove who did what after the fact.
How we built it.
We were brought in as the agency partner to design, build, and own this system end-to-end. We architected it from scratch, deployed it on the client's own internal infrastructure, and have maintained it continuously for over five years.
Architecture & Deployment
Given the sensitivity of card operations, the system was designed for on-premise deployment — no cloud, no external dependencies. The entire stack runs inside 1Link's internal network, on their own infrastructure, fully under their control.
- Angular frontend for a responsive, multi-user interface
- ASP.NET backend handling business logic and data operations
- MySQL database for transactional and reporting data
- IIS-based on-premise deployment on client-owned servers
- No external network dependencies — fully self-contained
Core Modules
The portal was built as a complete operations platform covering the full card lifecycle — from stock arrival to issuance, reconciliation, and reporting.
- Multi-user authentication with role-based access (admin, operator, viewer)
- Opening and closing stock management with daily reconciliation
- End-to-end card production tracking — from intake through issuance
- Comprehensive reporting module — daily, monthly, and custom date ranges
- Detailed audit logs capturing every action against every user
- Operational dashboards with summary statistics and key indicators
- Excel and PDF export across all reports and listings
- Advanced search and filtering for historical record retrieval
- Approval workflows for sensitive operations before finalisation
- Notification and alert system for time-sensitive operational events
Security & Authority Control
In a card operations environment, who can do what matters as much as what gets done. The system enforces strict authority boundaries by design.
- Role-based access control across every module and action
- Admin-controlled user provisioning and permission management
- Full audit trail — every action attributed to a named user with timestamp
- Approval gates for high-risk operations
- On-premise deployment eliminating external exposure
The metrics.
Years live in production
Daily users across operations
Cloud exposure — fully on-premise
Client referrals from this project
What changed.
The system replaced manual workflows entirely and has been running reliably for over half a decade. But the most telling outcome isn't in the metrics — it's in what happened after delivery.
- Manual card management workflows fully replaced by a secure, auditable digital system.
- Operations accelerated significantly with system-paced workflows replacing human-paced manual entry.
- Real-time data accuracy and reconciliation became standard, replacing error-prone manual tracking.
- Reports that previously took hours of manual compilation are now generated on demand.
- Role-based access and audit trails brought card operations into a posture of strong accountability and fraud resistance.
- Over 50 internal users adopted the system and continue to rely on it daily.
- The system has been in continuous production use for 5+ years — through operational pressure, audits, and feature evolution.
What we used.
What's next.
In fintech, trust isn't claimed — it's earned through years of consistent delivery. Our work with 1Link cleared every bar that matters: they kept us on, turning a one-time build into a 5+ year maintenance and enhancement partnership. They expanded scope — new features are added on-demand and proactively. And critically, they referred us — new client relationships in their network originated from this project. Five years in, the system continues to evolve alongside their operations. Long-term fintech relationships are rare. We're grateful to have built one.
Selected screens.
Keep exploring — here's what we built next.
Let's build what's next.
Tell us what you're building. We'll tell you how we'd approach it.