Case study - Digital E-Wallet with Scotiabank Banking Integration
End-to-end digital payments platform with direct integration into Scotiabank's financial infrastructure. AWS Multi-Region architecture certified to ISO 27001 and PCI DSS.
- Client
- Peripecia
- Year
- Service
- Fintech Platform

Overview
Peripecia is a Digital E-Wallet platform designed to offer users a complete digital payments ecosystem, anchored directly to the formal banking system through integration with Scotiabank.
Built between 2021 and 2023 over 18 months of work, the solution was conceived under the highest standards of the financial and technology industries, meeting the ISO 27001 (Information Security Management) and PCI DSS (Payment Card Data Protection) certifications.
The technical challenge
Building a bank-grade financial platform posed critical challenges:
-
Banking integration: Real-time connection to the Scotiabank core through secure APIs for account validation, transaction authorization, and automated reconciliation.
-
Financial security: Strict regulatory compliance — ISO 27001 and PCI DSS with certification audits.
-
High availability: Active-active Multi-Region architecture with a 99.99% uptime SLA and automated disaster recovery.
-
Scalability: Capacity to handle transaction spikes with automatic horizontal scaling.
-
Full traceability: Immutable audit logs for financial regulatory compliance.
What we did
- Fintech Platform
- AWS Multi-Region
- ISO 27001 · PCI DSS
- Banking Integration
- High Availability (HA)
- Disaster Recovery (DR)
Knot Software Factory delivered a world-class certified banking platform. The Scotiabank integration and the AWS Multi-Region architecture guarantee 24/7 security and availability for our users.

Product Team
- Uptime SLA
- 99.99%
- Active AWS regions
- 2
- Complete environments
- 3
- Regulatory compliance
- 100%
Core Features
The e-wallet delivered a complete set of functional capabilities for the end user:
For the User
- Digital onboarding with identity verification (KYC)
- Virtual account linked directly to a Scotiabank account
- Real-time balance and transaction history
- P2P transfers between platform users
- QR payments to affiliated merchants
- Deposits and withdrawals to and from the bank account
- Push notifications for every transaction
For Operators
- Administration panel for Peripecia operators
- Reporting and reconciliation of transactions in real time
- Fraud monitoring and suspicious-transaction detection
- Management of merchants affiliated to the ecosystem
AWS Multi-Region Architecture
High Availability and DR Design
The architecture was designed under an active-active model across two AWS regions, guaranteeing operational continuity in the event of a full-region failure:
- AWS Multi-Region: 2 active regions with real-time replication
- Multi-AZ: Distributed deployment across multiple Availability Zones per region
- High Availability (HA): Target SLA of 99.99% uptime
- Disaster Recovery (DR): RTO and RPO below financial-industry standards
- Horizontal scalability: Auto Scaling Groups to handle demand spikes
- Global load balancing: Intelligent routing by latency and service health
AWS Stack Implemented
| Layer | AWS Service |
|---|---|
| Frontend / CDN | S3 + CloudFront |
| DNS & Routing | Route 53 with automatic failover |
| API Layer | API Gateway + Lambda |
| Compute | ECS / Fargate |
| Database | Aurora PostgreSQL Multi-AZ |
| DR Replica | Aurora Global Database (Cross-Region) |
| Cache | ElastiCache (Redis) |
| Messaging | SQS + SNS |
| Security | WAF + Shield (DDoS protection) |
| Encryption | KMS + Secrets Manager |
| Identity | Cognito |
| Monitoring | CloudWatch + X-Ray |
| CI/CD | CodePipeline + CodeDeploy |
| Audit | CloudTrail + S3 |
Security and Regulatory Compliance
ISO 27001 — Information Security
- Security risk management
- Access control and least privilege
- Encryption of data in transit and at rest
- Event auditing and traceability
- Incident response plan
- Business continuity and DR
PCI DSS — Payment Data Protection
- Network segmentation
- Tokenization of sensitive payment data
- Vulnerability testing and penetration testing
- WAF + DDoS protection (AWS Shield)
- Continuous monitoring of suspicious transactions
- Immutable audit logs in CloudTrail
Development Environments
The project ran with three fully isolated environments:
-
Development (DEV): Continuous team iteration, synthetic data, automatic deploys from feature branches
-
QA / Staging (STG): A production mirror for functional, load, security, and banking-integration testing validated by QA
-
Production (PROD): An active Multi-Region environment with the full HA and DR infrastructure enabled, certified to ISO 27001 and PCI DSS
Turnkey Delivery
The project was delivered turnkey — Knot handed over a fully operational, documented, and certified platform, ready to be operated autonomously by Scotiabank:
- ✅ Complete source code with technical documentation
- ✅ AWS infrastructure deployed across 2 production regions
- ✅ Architecture documentation, ADRs, and operational runbooks
- ✅ Operations and troubleshooting manual
- ✅ Documented APIs (OpenAPI/Swagger)
- ✅ Validated ISO 27001 and PCI DSS certifications
- ✅ Documented and tested Disaster Recovery plan
- ✅ Knowledge transfer to the Scotiabank team
- ✅ SLAs, alerts, and monitoring runbooks
Value Delivered
| Technical Value | Business Value |
|---|---|
| Scalable, cloud-native architecture with no technical debt | Enablement of a new digital payments channel |
| Guaranteed high availability (Multi-Region + Multi-AZ) | Formal integration with the Scotiabank banking system |
| Disaster resilience with automated recovery | Regulatory compliance for financial operations |
| Certified top-tier banking security | Reduced friction in the user's payment experience |
| Platform ready to operate autonomously | Delivered on time and on the agreed budget |
Status: Platform delivered and operated by Scotiabank, with active users making secure digital transactions 24/7.

