End-to-End Cardholder Data Protection for Merchants and Processors
In today’s environment of highly publicized software attacks and stronger regulatory requirements, mitigating the risk of a cardholder data breach at all points in the payment stream is critical – from authorization and settlement through business processes such as charge-backs, loyalty or repeat payments. Merchants and processors must be able to reliably protect credit card data at rest and in transit within their environment – and above all, reduce PCI scope as much as possible without impacting business workflows or customer facing business processes.
Voltage SecureData Payments™ provides complete point-to-point encryption (P2PE) for retail payment transactions, and with tokenization from Voltage SecureData™ Enterprise enables PCI scope reduction without the massive IT disruptions traditionally associated with encryption.
Voltage SecureData Payments POS SDK can be implemented with any mobile or POS devices and payment processing systems and is already integrated into leading payment card reading devices and pin-pads, offering merchants the flexibility to support the hardware of their choice. For a complete list of payment terminal partners, visit www.voltage.com/partners.
Voltage SecureData Payments Host SDK supports a wide variety of platforms, including Windows, Linux, HP NonStop, Stratus VOS, , and IBM z/OS.
Voltage SecureData Payments Delivers:
- Reduced PCI audit cost and scope
End-to-end encryption can be combined easily with tokenization to provide merchants with complete choice in reducing PCI audit scope. Built-in, PCI-ready reports simplify the audit process.
- Reduced risk of data loss or breach
Cardholder data is protected or tokenized where it is stored, transmitted, or used. When deployed with sound internal controls, Voltage SecureData Payments renders sensitive information useless to unauthorized users, mitigating risk of data breaches at any point in the payment stream.
- Significantly lower implementation and management costs
Keys are securely generated on demand and not stored; point-of-sale (POS) devices are not subject to key injection; and key rotation is automated and transparent thus eliminating labor-intensive processes and reducing costs.
Key Features and Capabilities:
- Voltage Secure Stateless Tokenization™ (SST)
Voltage SST replaces PAN data after authorization, which reduces the risk of data theft and removes merchant systems from PCI scope.
- Voltage SecureData Web
Voltage SecureData Web™ protects payment information at the browser – from the point the customer enters their cardholder information – protecting the data throughout the entire transaction system.