Maximize security and minimize PCI scope with PCI-Validated Point-to-Point Encryption.
What does “PCI-Validated” mean and why is it important?
The PCI Security Standards Council (SSC) has established a structure for companies to receive PCI SSC scope reduction from implementation of approved encryption solutions. PCI P2PE version 2.0 establishes a specific list of controls that encryption providers must enact in order to be listed as an approved P2PE solution or component.
Merchants who use a validated solution within their environment and keep this environment segmented from any card data from other channels (e.g., e-commerce) are eligible to complete the authorized self-assessment questionnaire SAQ P2PE, reducing the number of questions by nearly 90% for merchants moving from the SAQ D (329 questions) to SAQ P2PE (33 questions). Unlisted solutions do not qualify for the reduced SAQ P2PE, so merchants using these solutions are required to use the SAQ D.
How does Delego P2PE work?
‘Enter card’ workflows are triggered from Delego Secure or Delego AR.
The call center operator is prompted to swipe or enter payment card data on an external SREDkey device.
The card data is instantly secured with the in-device encryption.
The encrypted value is transmitted to our secure cloud where it is tokenized.
The token is returned to SAP.
Watch one of our on-demand call center webinars any time.
Recorded on November 8, 2017 (25 mins)
Device and Partner
Our P2PE solution leverages Bluefin Payments Systems PCI-validated Decryptx platform. Our integration sits in the background, ensuring an uninterrupted user experience within the Delego suite of products and ensuring a singular touchpoint for contracting, sales and support.