PCI Compliance and Encryption & Tokenization
To provide the best security for its customers, EdPay Inc. has
deployed and industry leading point-to-point encryption and data storage
solution for each school’s payment processor. This solution is fully
PCI DSS compliant.
In this solution, cardholder data is encrypted from the point of input,
whether through encrypted swipe, virtual terminal, or secure data
transport. This eliminates the possibility of data thieves compromising
the input of sensitive information to steal data. When the encrypted
data is sent to the provider, the payment is transferred to the
processor. The encrypted content is stored in the provider’s secure data
stores and EdPay only receives a token, representing the
transaction, to allow EdPay to conduct any necessary reporting.
In this way, card holder data is never received, stored or transmitted
by EdPay infrastructure.
As an added level of security EdPay leverages ”tokenization”
technology to further protect school payments. Tokenization is the
process of replacing sensitive data, such as credit card or ACH data,
with tokens that have no value to criminals. Employing industry leading
technologies, our solution replaces the existing payment card, ACH and
other sensitive payment data with valueless data tokens. These tokens
allow EdPay to initiate transactions in the same manner as they
would use their previously stored data, but without the risk of data
compromise.
EdPay leverages PositiveSSL certificates
EdPay leverages PositiveSSL CA 2 SSL certificate to ensure
that all sensitive transactions are kept securely encrypted and safe.
An SSL certificate is a digital certificate that authenticates the
identity of a website to visiting browsers and encrypts information for
the server via Secure Sockets Layer (SSL) technology. A certificate
serves as an electronic “passport” that establishes an online entity’s
credentials when doing business on the Web. When an Internet user
attempts to send confidential information to a Web server, the user’s
browser will access the server’s digital certificate and establish a
secure connection.
EdPay leverages PositiveSSL certificates provide secure, safe and convenient Internet
purchasing. Once an Internet user enters a secure area by entering
credit card information, e-mail address or other personal data,
website’s SSL certificate enables the browser and Web server to build a
secure, encrypted connection. The SSL “handshake” process, which
establishes the secure session, takes place discreetly behind the
scenes, ensuring an uninterrupted shopping experience for the consumer.