Unified donor management system provider DonorDirect and Bluefin are pleased to announce the integration of DonorDirect’s DonorStudio Suite with Bluefin’s PayConex point-to-point encryption (P2PE) solution.
Donations currently made through DonorStudio Suite are powered by Bluefin’s PayConex payment platform, which includes security features such as tokenization and transparent redirect. In March 2014, Bluefin introduced the first and, to date the only, PCI-validated solution for P2PE in North America. PayConex P2PE encrypts credit and debit card data in a secure point of entry device, ensuring that clear-text cardholder data, whether swiped or keyed, does not reach the nonprofit ministry’s computers, systems and networks where it could be exposed to malware or breach.
“The primary reason we recommend Bluefin to our clients is their constant innovation in the area of security – when it comes to securing donor data, tokenization and P2PE solutions are an absolute must for ministries,” said Frank Smith, CEO for DonorDirect.
The move to P2PE technology can help organizations simplify their PCI DSS compliance programs by removing clear-text cardholder data from the environment and reducing the scope of PCI DSS requirements. The PCI Security Standards Council’s P2PE program provides a method for nonprofits to reduce the scope of their cardholder data environment by implementing validated P2PE solutions.
“Donors rely on ministries to secure their data. And, for nonprofits of any size, a cardholder data breach could prove catastrophic. This is why security must be at the heart of any serious donor management system conversation.”
DonorDirect was founded in 1999 to provide ministries the most advanced donor management software. DonorStudio Suite, DonorDirect’s flagship product line, offers an enterprise-wide software solution for ministries that face the challenges of diverse operations, from inputting donation information, to generating up-to-the-minute reports, to processing donations. The DonorStudio Suite includes StudioEnterprise, StudioCRM, StudioOnline and StudioAnalytics, and extends payment acceptance to mail, phone, web, and mobile.
“Most nonprofits, charities and ministries undergo financial audits annually to publicly disclose where donations are spent. This ensures donors that they can trust the organization,” said Ruston Miles, Founder and Chief Innovation Officer, Bluefin. “However, for many organizations, little attention is paid to securing the donor’s privacy and payment data as it travels through local networks or is stored in databases. This is a huge risk exposure to both the organization and the donor.”
“Donors should be diligent to research not only where their donations are going, but how they are getting there. Together, DonorDirect and Bluefin have taken an industry-leading step forward in protecting donor data and creating an altogether new dimension of donor trust by bringing point-to-point encryption and tokenization to ministry call centers, mail rooms, websites and conferences,” added Mr. Miles.
Ruston Miles will speak on P2PE and PCI security at next week’s DonorDirect Client Conference. The annual conference is hosted for DonorDirect’s clients, which represent over 50 of the largest ministries and non-profits from around the world.