ShieldConex® utilizes Bluefin’s secure iFrame technology to receive sensitive data directly from the consumer. This allows organizations to seamlessly embed ShieldConex SAFE iFrames into their website, while bypassing the organization’s servers for data processing and storage – thus reducing risk and PCI compliance scope. ShieldConex supports both Format Preserving Tokenization (FPT) and Format Preserving Encryption (FPE).
- Website requests iFrame elements
- iFrame elements served up to website
- iFrame values collected from website
- iFrame service calls tokenization service
- Tokenization service returns format preserving secure tokens to iFrame service
- iFrame service returns secure token to the business website
- Business stores secure tokens for future detokenization requests