Top leaders in payment security technology team up to provide a combined cutting-edge security solution for the Payments Industry
October 15th, 2018 – Atlanta, GA and Oklahoma City, OK – Bluefin, the leader in PCI-validated Point-to-Point Encryption (P2PE) solutions, has partnered with choice tokenization vendor for data security, TokenEx. Bluefin and TokenEx will provide their platform security technologies to each company’s respective client base – including Bluefin’s PCI-validated P2PE solution for TokenEx clients, and TokenEx’s Cloud Tokenization solution for Bluefin clients.
Bluefin became the first North American provider of a PCI-validated P2PE solution in March 2014. Today, the company’s global P2PE network consists of more than 85 connected partners including processors, payment gateways, ISVs and Key Injection Facilities (KIFs) serving merchants in 25 countries. Bluefin enables their PCI-validated P2PE solution on partner platforms with the company’s Decryptx® Decryption as a Service (DaaS) product, which allows gateways, applications, and processors to directly connect to Bluefin for the P2PE service.
Founded by security experts Alex Pezold and Dr. Jerald Dawkins in 2008, TokenEx combats data theft while helping organizations reduce the costs associated with PCI compliance. The company’s TokenEx Cloud Data Protection Platform provides tokenization, encryption, and data vaulting as a unified software as a service for their enterprise customer base. Designed from the beginning to be payment processor and card-reader device agnostic, the cloud platform easily integrates with existing business applications and payment providers. Pezold says, “Bluefin and TokenEx solutions complement one another to complete a holistic data protection offering across omnichannel environments. Our collective solution provides virtually unlimited flexibility to merchants and service providers alike beyond what is available in the market today.”
According to Gemalto’s Breach Level Index, there have been over 14B lost or stolen data records from breaches since 2013 – and just 4% of breaches were “Secure Breaches” where encryption was used and the stolen data was rendered useless.
“While there will always be data breaches, technologies provided by companies like TokenEx and Bluefin render data breaches useless,” added Pezold “Additionally, understanding that payment card data isn’t the only data record breached today, our partnership provides a powerful opportunity for organizations to expand beyond just securing payment card information to address the larger Privacy and Healthcare markets.”
“Through this partnership, TokenEx will be able to provide their clients with the highest level of security and reduced PCI compliance scope through Bluefin’s PCI-validated P2PE solution, while Bluefin will provide our Decryptx clients access to TokenEx’s state of the art omnichannel tokenization solution,” said Ruston Miles, Chief Strategy Officer, Bluefin. “P2PE and tokenization are integral to every company’s holistic payment security strategy, with P2PE encrypting data in transit and tokenization providing tokens for stored credit card data. Together, Bluefin and Tokenex are providing the one-two punch of data devaluation.”
Both companies will be exhibiting at the European PCI Community Meeting in London, October 16th-18th, with Bluefin’s Ruston Miles also speaking on a panel discussing the Proliferation of P2PE, along with Rodney Farmer, Member, European Association of Payment Service Providers for Merchants (EPSM), and Dan Fritsche, Vice President, Solution Architecture, Coalfire.
The first pure-play cloud tokenization provider on the market, TokenEx was founded by two data security experts looking for the most effective way to combat data theft in their customers’ environments. Initially, these former auditors created the solution to help reduce scope and costs associated with Payment Card Information (PCI) compliance, but with an eye to the future, they built the solution to be flexible enough to secure any data set, as well as integrate within even the most complex environments. Today, while securing PCI data is still a common application of the TokenEx platform, over half the data we store currently is classified as non-payment card data (PII, Personal Data, HIPAA, etc.). By integrating four key technologies–tokenization, encryption, data vaulting, and key management–with a highly secure cloud-computing platform, TokenEx has grown rapidly, becoming the tokenization vendor of choice for securing all data types. To learn more, visit tokenex.com.