Link:
https://squareup.com/
Big con, IMO, the application isn't registered as meeting PA-DSS requirements for payment application security. They claim that their internal systems meet PCI-DSS (Level 1) requirements. That's good. However, last I looked, the PCI Security Council hadn't yet approved any mobile applications or systems.
PA-DSS & Mobile Applications FAQ.
People are using these applications, so I wouldn't necessarily argue against them. But understand that this is still an open question to the card payments industry. No one with credentials in this field certifies these applications... yet.
Remember, there have been several examples of late of people able to hack private data right off iPhones and Android devices. Even if the data is only there for a few seconds, it's still a security hole.
So I like the backend security that Square is using (as long as they aren't lying to us). But this is very much an open question in the Payment Card Security community.