A unique combination of two distinct data security techniques - encryption and tokenization. The First Data® TransArmor® solution offers multilayered protection.
Our security solution offers these industry-leading benefits:
With the TransArmor solution, payment card data is protected at every transaction stage — in transit, in use and at rest — reducing risk as well as the scope and cost of PCI compliance.
Ignite Payments uses First Data's processing engine.
Criminals have realized small businesses lack the capabilities of the larger organizations; therefore they have become an easy target. A criminal cannot steal what you don’t have! TransArmor solution reduces the associated risks of transmitting and storing sensitive card data by removing it entirely, and transfers the liability of protecting cardholder data to First Data.
Payment card numbers are valuable and represent prime targets for fraudsters and cyber-criminals. Frequently, merchants might have to decide whether to keep the data for back-end business processes or drop it after settlement and avoid the risk. With the TransArmor solution, there's no reason to choose — you can have both.
By substituting token numbers for Primary Account Numbers (PANs), not only can you reduce the risk of exposing real cardholder data, but you can use token numbers to develop innovative marketing campaigns, create customer loyalty programs, or conduct business data analysis which can be important for your business.
Removing sensitive payment card data from merchant systems helps remove those systems from PCI scope. Limiting the merchant environment also minimizes the investment in time and resources needed to meet PCI requirements.
With the TransArmor solution, you get industry-leading benefits:
*See the TransArmor solution terms and conditions for full details.
During a sale, card data is encrypted as soon as it enters the merchant environment — prior to transmission — and is protected throughout the transmission process.
With asymmetric encryption supported by RSA technology, data is secured at the merchant point-of-sale (POS) with the Public Key and can only be decrypted by the Private Key held at First Data. The encrypted data is indecipherable, does not resemble the original data format and works on most existing POS terminals and systems.
Hardware-based, format-preserving encryption–available through the VeriFone edition—secures payment card data on a tamper-resistant device before it enters the merchant environment in a format that other applications interpret as valid card data. In format-preserving encryption, the algorithm encrypts data so that the output is in the same length and character set as the input, which is beneficial for bin routing and coding/certification.
Tokenization is a form of data substitution replacing sensitive values with non-sensitive token values. Post-authorization transactions are handled via RSA’s SafeProxy tokenization service, which returns a token with the transaction’s authorization to the merchant. A token can then be stored in the merchant environment in place of the primary account number (PAN) making it possible for a merchant to process follow-on transactions, without having to store customer’s account data in the clear.
Beyond encrypting and tokenizing data for transactions at the point of sale, merchants also need to consider the risk of stored primary account numbers (PAN) in their card data environment. To help prevent potential breaches and reduce PCI scope and maintenance costs, merchants can obtain an additional service offering, Legacy Data Conversion.
In this optional service, merchant’s legacy or stored PAN data is completely removed from the card data environment (CDE) and replaced with TransArmor solution tokens. The tokens can then be used similarly to any other TransArmor solution token to perform customer analytics and understand consumer buying behavior.
The TransArmor solution includes the Multi-Pay Token option to support businesses that need to submit a financial transaction in a card-not-present situation. These tokens are unique to each merchant that uses them and are stored in place of the primary account number (PAN). With these tokens, merchants can initiate new or recurring payments within their own environment instead of using the original card number.