Tokenization

The Data Protection Mandate

The obligation to protect sensitive customer card payment data is codified in the Payment Card Industry Data Security Standard (PCI DSS) and its strict controls designed to prevent credit card fraud. Compliance with PCI DSS is an enormous challenge for all organizations that have sensitive customer information in multiple networked systems.

To overcome this challenge, organizations should move sensitive data from enterprise operating systems to closely guarded vaults protected by secure application gateways, tokenization, and other approaches designed to protect the confidentiality of information.