Bluefin Assets

Payment and data security resources

Resource Center

The strategic importance of payments data ownership

The Strategic Importance of Payments Data Ownership

Many organizations recognize the business value of payments, however they often overlook the strategic importance of payments data ownership. The benefits are increased company valuation, PSP downtime protection, de-banking protection, efficient payment orchestration and more.

Impact of PCI P2PE and Tokenization

Impact of PCI P2PE and Tokenization

PCI Point-to-Point Encryption (P2PE) and Tokenization are crucial tools for securing credit card data in flight and at rest. Learn about these crucial tools and the role they both play.

White Paper: The State of Enterprise Readiness for PCI DSS 4.0

The State of Enterprise Readiness for PCI DSS 4.0

This report from S&P Global discusses the current state of payment data security and establishes a baseline for PCI DSS 4.0 readiness, based on survey data from enterprises across nearly a dozen industry verticals.

Payment Data Security : 5 Steps to a Strategic Plan

Payment Data Security: 5 Steps to a Strategic Plan

What you need to know to future-proof your cardholder data environment with a well-developed strategic plan.

Payment Data Security: 5 Questions to Ask Before Choosing a Provider

Payment Data Security: 5 Questions to Ask Before Choosing a Provider

Choosing a reliable partner to securely process payments, protect transaction data, and strike a balance between data protection and frictionless commerce is crucial for an organization. Here are five key questions to ask them.

Rise in Ransomware

The Rise in Ransomware | Preparing for a Potential Attack

Cause and effect, 2021 trends, key takeaways and implementing encryption and tokenization to prevent data compromise.

ShieldConex FAQ

Using Bluefin’s ShieldConex® for Data Protection: Foregenix Review

Foregenix independent review on Bluefin’s ShieldConex data security platform for the protection of PII, PHI and financial data.

Formulating a Complete Payment and Data Security Approach

Formulating a Complete Payment and Data Security Approach

The rules, regulations and considerations around protecting PII, PHI and payment data and how encryption and tokenization work to provide an omnichannel security strategy.

Petroleum Payment and Data Encryption

P2PE for Petroleum and C-Stores

An overview of the first PCI-validated P2PE solution for petroleum and C-stores provided by Bluefin and industry partners.

White Paper: Verizon - The Value of Point-to-Point Encryption in Point-of-Interaction

P2PE in POI Environments: Scope, Cost, Benefits and Implementation

The merits of a layered approach to data security and fraud prevention, com­bining technologies such as EMV, PCI-validated P2PE and tokenization.

Navigating the Crossover in PCI Compliance with Nacha Data Regulations

Overview of Nacha’s data security requirements for ACH originators and third parties, overview of PCI guidelines to ensure compliance, and encryption / tokenization to address data security.

PCI DSS Compliance, Scope Reduction, and Cost-benefit Analysis For PCI-Listed P2PE

Impact of PCI P2PE – Bluefin White Paper Authored by Coalfire Systems Inc.

PCI DSS compliance, scope reduction, and cost-benefit analysis for PCI-validated point-to-point encryption (P2PE).

Formulating a Complete Payment and Data Security Approach in Healthcare

The rules, regulations and considerations around protecting PHI, PII and payment data in the healthcare environment and how encryption and tokenization work to provide an omnichannel security strategy.

System Innovators Transforms Government Payment Processing with Bluefin’s Secure and Flexible Solutions

Transforming Government Payment Processing

Case Study Featuring System Innovators

University of California (UCLA) - Optimizing Payment Acceptance Across Campus

Optimizing Payment Acceptance Across Campus

Case Study Featuring University of California (UCLA)

Christensen Computer Company – Securing Payments For Member-Based Organizations

Securing Payments For Member-Based Organizations

Case Study Featuring Christensen Computer Company

ShieldConex

Utility Software Specialist Streamlines Bill Pay Systems

Case Study Featuring Continental Utility Solutions (CUSI)

Case Study CharmHealth

Integrated Healthcare Payments

Case Study Featuring CharmHealth

PCI P2PE Healthcare Deployment

Case Study Featuring Bluefin and CDE

Case Study PCI P2PE for Education

PCI P2PE for Education

Case Study featuring University of California, San Diego (UCSD)

Springbrook Case Study

PCI P2PE for Government / Utilities

Case study featuring Springbrook Software

Retail Case Study: PriceSmart, Bluefin and First Atlantic Commerce (FAC)

PCI P2PE for International

Case Study featuring PriceSmart, Bluefin and First Atlantic Commerce (FAC)

Curve Dentist Group

PCI P2PE for Healthcare

Case Study featuring The Dentist Group, Bluefin and Curve Dental

Case Study CHOA

PCI P2PE for Healthcare

Case Study featuring Children’s Healthcare of Atlanta (CHOA)

Case Study PCI P2PE for Unattended

PCI P2PE for Unattended

Case Study featuring The Hillman Group

Case Study TMT

PCI P2PE for Franchises

Case Study featuring Two Men and a Truck (TMT)

Case Study ID TECH

PCI P2PE Devices

ID TECH Case Study Featuring Bluefin

Case Study Featuring AVI Foodsystems

PCI P2PE for Foodservice

Case Study Featuring AVI Foodsystems

Main Squeeze

PCI P2PE for Foodservice

Main Squeeze Juice Company

Infographic: Data Breaches and the State of Healthcare

Data Breaches and the State of Healthcare

Most breaches involve PHI (protected health information) and PII (personally identifiable patient information), which cybercriminals use to commit fraud or sell on the dark web. The HIPPA Journal reports that 95% of all identity theft incidents come from stolen healthcare records. This information is worth about 50 times more than credit card information.

Top 5 Reasons To Use Tokenization for Payment and Data Security

Top 5 Reasons To Use Tokenization for Payment and Data Security

With data breaches on the rise and cyberattacks threatening businesses worldwide, payment tokenization offers a robust solution, ensuring secure, efficient, and customer-friendly payment processing. Our infographic highlights the key benefits of tokenization, from boosting sensitive data security to achieving payment processor independence, providing essential insights to stay ahead of cyber threats.

Higher Education Infographic

General State of Data Breaches in Higher Education in 2022

Colleges and universities have recently been hit hard by a series of challenges: funding concerns, remote-learning programs, COVID restrictions—and now ransomware attacks and data breaches. In fact, higher education cyberattacks can be even more damaging and costly, thanks to a lack of IT resources and budget in these organizations.

Healthcare data breach infographic

The State of Healthcare Data Breaches

Data breaches threaten providers’ ability to deliver care and operate efficiently, as well as their reputations. Although hospitals have implemented security protocols, data breaches remain common. In fact, the number of reported healthcare breaches in 2021 increased by 19%. There were 905 reported in 2021 compared to 758 in 2020.

The Gold Standard in POS Payment Security: PCI-validated Point-to-Point Encryption

The Gold Standard in POS Payment Security: PCI-validated Point-to-Point Encryption

Bluefin secures point-of-sale (POS) payments with the highest level of security available, PCI-validated point-to-point encryption (P2PE). Learn why P2PE is the best choice for protecting countertop, mobile, call center and unattended payments.

eCommerce

Webinar On Demand

PCI DSS 4.0 and E-Commerce – An Update on Fraud Prevention and Security

Featured Speakers: Brent Johnson, CISO; Josh Garrick, Director of Information Security and Compliance; Jennifer Jonckheere, VP Solutions Engineering and Integrations

In this webinar, Bluefin discusses PCI DSS 4.0 readiness as well as fraud trends that can impact higher education, including:

  • Requirements for P2PE solutions in version 4.0
  • Navigating a university’s readiness for the guidelines
  • Requirements for ecommerce merchants using redirects to hosted order pages (SAQ-A)
  • The challenges universities face supporting multiple departments, websites, and servers across campus
  • Methods to manage and implement those requirements in a centralized manner, such as using a “pivot server” to control all the redirects
  • The importance of a multi-faceted, strategic approach to combat fraud and an overview of available tools
Payment Data Security : 5 Steps to a Strategic Plan

Webinar on Demand

Introducing The New P2PE Manager®

P2PE Manager delivers one single point of record for all of your company-wide assets that fall under PCI compliance requirements.
During this webinar, we will review new front-end design changes, including an improved user interface, updated navigation, and new dashboards.

We will also review user best practices, tips, and tricks, including:

  • How to handle P2PE devices with different statuses
  • Value-added integrations with ServiceNow
Webinar: How Guardian Dentistry Partners Enables Secure Payment Acceptance for Dental Practice Partners

Webinar On Demand

How Guardian Dentistry Partners Enables Secure Payment Acceptance for Dental Practice Partners

In this joint webinar, we explore how Guardian Dentistry Partners integrated payments capabilities can enable dental practice partners to:

  • More easily adhere to PCI requirements and reduce overall PCI scope
  • Simplify auditing efforts and back-office payment operations
  • More easily reconcile and report on payment activity
  • Provide a streamlined patient payment experience
Account Updater

Webinar On Demand

Bluefin’s Account Updater

Maintaining credit and debit cards on file can be complex, costly and time consuming since cards frequently expire or are reissued. Bluefin’s Account Updater, powered by CardSync, seamlessly retrieves updated card information from card issuers when a customer’s card is expired, lost or reissued, with no action required on the merchant or consumer’s end.

Webinar On Demand

Bluefin’s ACH Account Verification Service

Nacha now requires that companies originating ACH transactions validate the first use of an account number, or changes to an account number. Bluefin has partnered with MicroBilt, a preferred Nacha partner, to provide our clients with seamless account verification directly through PayConex™.

Protecting PHI, PII and payment data with encryption and tokenization

Webinar on Demand

Protecting PHI, PII and payment data with encryption and tokenization

2021 was a record year for data breaches and ransomware attacks. One of the most frequently targeted industries is healthcare because of the large amount of PHI, PII and payment data being accepted. While a breach or ransomware attack cannot always be prevented, healthcare organizations can ensure that their payment and sensitive patient is devalued with technologies including encryption and tokenization. Watch our HIMSS webinar on March 8th to learn more about how these two technologies work together to devalue data upon intake, in transit and in storage, while meeting data privacy regulations and reducing PCI scope.

Webinar: Customer authentication, anti-fraud and chargeback tools for Bluefin clients

Bluefin Webinar on Demand

Customer authentication, anti-fraud and chargeback tools for Bluefin clients

The pandemic has brought many changes to the way that people pay, including more Ecommerce and mobile payments. While the rise of online commerce brings new opportunities for revenue, it can also increase the threat of fraud attempts and chargebacks. In the webinar detail new products available through Bluefin and our PayConex™ gateway, including Apple Pay / Google Pay, 3-D Secure, and our fraud and chargeback management platforms.

Connexus Webinar on Demand

Webinar on Demand

Securing Payments Across the C-Store Environment with PCI-Validated P2PE

Every year, the number of cyberattacks rise and the number of records compromised soar, while the threat landscape continues to expand. The number of cards reissued and consumer dissatisfaction with a lack of payment and data protection has also grown.Hit particularly hard have been petroleum and convenience stores (C-stores). With the mandate for EMV compliance and the fact that the petroleum space has been last in implementing payment security technologies, today’s hackers and fraudsters are now more than ever targeting this vulnerable sector. View our educational webinar on demand on how PCI-validated P2PE can secure petroleum and C-store transactions.

Bluefin Webinar

The Silver Bullet for Ecommerce Security: 3DS, Encryption and Tokenization

On January 26th, Bluefin and our partner, PAAY, hosted a webinar on our new security solution set that eliminates the threat of hackers and online fraud, while providing regulatory compliance. The solution set combines 3D Secure (3DS), hardware-based encryption, and vaultless tokenization to provide merchants a liability shift, strong customer authentication, data confidentiality, and compliance with the General Data Protection Regulation (GDPR) and the Payment Services Directive 2 (PSD2).

Bluefin Webinar on Demand

Automating your bookkeeping with Bluefin and Synder

Industry leader Synder and Bluefin offer a seamless QuickBooks/Xero integration through our PayConex™ payment gateway. Our webinar overviews this great tool that promises to save your business time and money, while providing an immediate return on investment (ROI). Learn more about how you can seamlessly integrate your QuickBooks installation with PayConex payments.

Higher Education

Bluefin Webinar on Demand

Securing Higher Education Payments and Sensitive Data with Encryption and Tokenization

With malware and ransomware attacks poised to significantly increase in 2021, it’s more important than ever that higher education institutions implement a holistic payment cybersecurity strategy. View our webinar with Educause to learn about the strategies, products, and solutions that colleges and universities can deploy across campus to protect payment and sensitive data, including PCI-validated point-to-point encryption (P2PE) for POS payments and tokenization for the intake of online payment, PII, and PHI data.

Impact of PCI P2PE and Tokenization

Bluefin Webinar on Demand

P2PE in POI Environments: Scope, Cost, Benefits and Implementation

The webinar discusses the POI/POS threat landscape, while explaining the differences between certified and non-certified encryption solutions, benefits of PCI-validated P2PE solutions in POI environments, and the roles of tokenization, EMV and P2PE in protecting data.

ShieldConex Proxy Service

Tokenization 101

ShieldConex®

PayConex™

Decryptx®

PCI-validated Point-to-Point Encryption (P2PE)

P2PE Manager®

P2PE Manager’s ServiceNow integration

Other Resources

ShieldConex® data security platform
ShieldConex® data security platform
Bluefin Decryptx P2PE Platform
Decryptx® P2PE partner platform
PCI P2PE general overview
PCI P2PE general overview
PayConex™ payment processing gateway
PayConex™ payment processing gateway
PayConex™ Salesforce payment processing
PayConex™ Salesforce payment processing
3D Secure customer authentication
3D Secure customer authentication
ISV Sales Sheet
Integrated, omnichannel payment processing for software platforms and ISV’s

API’s and SDK’s

Decryptx API

ShieldConex API

PayConex API

QuickSwipe API

Bluefin Gateway Test Card/Cases

Elavon Test Card/Cases

First Data Test Cards/Triggers

First Data Rapid Connect Test Cards/Cases

EMV GoChip SDK

PHP Class File / SDK

Bluefin .NET 4.5

SDK Hosted Payment Page

Ready to Safeguard Your Sensitive Data?

Let’s talk about how you can process, defend, and devalue sensitive information with Bluefin.