Category: m2m security

PCI Compliant SaaS Solution

SaaS
Compliance
Virtual Termincal
PCI Compliance

Summary

The DataDivider Virtual Desktop is a simple, hosted solution requiring no software or hardware installation that enables merchants to reap the benefits of a Virtual Terminal application without putting additional security measures in place.

Product description

DataDivider Virtual Desktop

The DataDivider Virtual Desktop is a simple, hosted solution requiring no software or hardware installation that enables merchants to reap the benefits of a Virtual Terminal application without putting additional security measures in place.

The lure of using a Virtual Terminal (VT) for processing payments is that it is very flexible and does not require specialized equipment and therefore inexpensive.  Or is it?

PCI requirements dictate that, by virtue of the manual entry of cardholder data via the workstation keyboard, those workstations using VT’s must be isolated from the rest of the network, or else everything on that same network is in scope for PCI compliance.  This makes achieving compliance using VT’s highly complex and potentially impossible for many merchants without significant infrastructure changes and expense.

Our simple and cost effective Virtual Desktop can remove your network from scope and be considered a compensating control for your workstation to reduce or eliminate the number of controls that need to be implemented to both reduce financial risk and achieve compliance.

DataDivider achieves this by capturing cardholder data using its Virtual Keypad ensuring that no cardholder data is ever present within the corporation.  The Virtual Keypad, secured by DataDivider’s Protected Zone, operates as a secure, isolated remote desktop application where mouse click coordinates cannot be reverse engineered back to the PAN. It is therefore impossible to reconstruct the cardholder data from the local Merchant machine. As the Virtual Keypad physically runs within DataDivider’s PCI DSS Level 1 certified environment, the cardholder data is protected and out of Merchant scope.

If you are a Mail Order/Telephone Order (MOTO) merchant entering cardholder data into a VT or local application, there is a good chance that you would benefit from the Virtual Desktop.

Features:

-  No hardware to install -  Works with standard terminals and touch screens -  Secure isolated session -  On-screen, randomized keypad -  Optional Masking -  Auto-pop up on selected numeric fields -  Integrates easily with any payment gateway -  Works with any token solution

 

 

DataDivider achieves this by capturing cardholder data using its Virtual Keypad ensuring that no cardholder data is ever present within the corporation.  The Virtual Keypad, secured by DataDivider’s Protected Zone, operates as a secure, isolated remote desktop application where mouse click coordinates cannot be reverse engineered back to the PAN. It is therefore impossible to reconstruct the cardholder data from the local Merchant machine. As the Virtual Keypad physically runs within DataDivider’s PCI DSS Level 1 certified environment, the cardholder data is protected and out of Merchant scope. 

Product links

Help the seller understand how this product meets your needs
Contact name
Info
E-mail
info@datadivider.com
Phone
(408) 457-0216
Location
San Jose, CA, USA
Company
DataDivider
Published