Secure Payments Solution



Similar documents
Flexible and secure. acceo tender retail. payment solution. tender-retail.acceo.com

Payment Gateway Solutions

Universal Transaction Gateway (UTG ), 4Go, and i4go are covered by

NCR Secure Pay FAQ Updated June 12, 2014

Increase Efficiency, Maximize Profits, and Secure Guest Confidence.

Payment Card Industry (PCI) Data Security Standard

Protecting Cardholder Data Throughout Your Enterprise While Reducing the Costs of PCI Compliance

Secure Payments Framework Workgroup

Tokenization Amplified XiIntercept. The ultimate PCI DSS cost & scope reduction mechanism

Revenue Security and Efficiency

Credit Card Processing Overview

White Paper Solutions For Hospitality

CPIM Academy. Cash 257 Merchant Services and Revenue Collection

VERIFONE PAYWARE SOLUTIONS

EMV and Small Merchants:

CardControl. Credit Card Processing 101. Overview. Contents

Enterprise Payments for

PCI DSS 101 FOR CTOs AND BUSINESS EXECUTIVES

Data Security Basics for Small Merchants

Transitions in Payments: PCI Compliance, EMV & True Transactions Security

EMV in Hotels Observations and Considerations

Sage 100 ERP I White Paper. Payment Processing Trends, Tips, and Tricks: What You Need to Know

Solutions For Higher Education: Reducing Compliance Scope Across Campus With PCI Validated P2PE

PCI Security Standards Council

The Comprehensive, Yet Concise Guide to Credit Card Processing

EMV's Role in reducing Payment Risks: a Multi-Layered Approach

Attestation of Compliance for Onsite Assessments Service Providers

Sage ERP MAS I White Paper. Payment Processing Trends, Tips, and Tricks: What You Need to Know

EMV and Restaurants: What you need to know. Mike English. October Executive Director, Product Development Heartland Payment Systems

EMV : Frequently Asked Questions for Merchants

Encryption and Tokenization: Protecting Customer Data. Your Payments Universally Amplified. Tia D. Ilori Sue Zloth September 18, 2013

PCI DSS FAQ. The twelve requirements of the PCI DSS are defined as follows:

PCI Compliance Overview

How To Make A Card Reader Secure And Reliable

EMV Frequently Asked Questions for Merchants May, 2014

NCR CONNECTED PAYMENTS The vision for payment acceptance in restaurants

Preparing for EMV chip card acceptance

How Multi-Pay Tokens Can Reduce Security Risks and the PCI Compliance Burden for ecommerce Merchants

Trends in Merchant Payment Acceptance

To ensure independence, PSC does not represent, resell or receive commissions from any third party hardware, software or solutions vendors.

Puzzled about PCI compliance? Proactive ways to navigate through the standard for compliance

FUTURE PROOF TERMINAL QUICK REFERENCE GUIDE. Review this Quick Reference Guide to. learn how to run a sale, settle your batch

Payment Card Industry (PCI) Data Security Standard

Your gateway to card acceptance.

PCI P2PE 2.0. What Does it Mean for Merchants and Processors? September 10, 2015

Tokenization: FAQs & General Information. BACKGROUND. GENERAL INFORMATION What is Tokenization?

Increase Efficiency, Maximize Profits, and Secure Guest Confidence.

Payment Card Industry (PCI) Data Security Standard

ICS Presents: The October 1st 2015 Credit Card Liability Shift: This Impacts Everyone!

EMV and Chip Cards Key Information On What This Is, How It Works and What It Means

Frequently asked questions - Visa paywave

Version 15.3 (October 2009)

Payment Card Industry (PCI) Data Security Standard

The Value of a Payment Gateway. White Paper

The Relationship Between PCI, Encryption and Tokenization: What you need to know

ACQUIRER OR ACQUIRING BANK A financial institution (often a bank) where a merchant has an account to process transactions and card payments

Payment Card Industry (PCI) Data Security Standard

Payment Card Industry (PCI) Data Security Standard

Simple Integration Mobile Ready Cutting-edge Innovation

Understanding the Value of Tokens

Payment Security Solutions. Payment Tokenisation. Secure payment data storage and processing, while maintaining reliable, seamless transactions

FOR A BARRIER-FREE PAYMENT PROCESSING SOLUTION

Apple Pay. Frequently Asked Questions UK Launch

Euronet Software Solutions ATM Management System Maintain and Expand Your Automated Service Offerings with a Secure, Flexible and Powerful Solution

Managing the Costs of Securing Cardholder Data

TNHFMA 2011 Fall Institute October 12, 2011 TAKING OUR CUSTOMERS BUSINESS FORWARD. The Cost of Payment Card Data Theft and Your Business

EMV Chip and PIN. Improving the Security of Federal Financial Transactions. Ian W. Macoy, AAP August 17, 2015

SECTION: SUBJECT: PCI-DSS General Guidelines and Procedures

Data Security for the Hospitality

Redwood Merchant Services. Merchant Processing Terminology

Payment Card Industry (PCI) Data Security Standard

11/24/2014. PCI Compliance: Major Changes in e-quantum/quantum Net

TCS Payment Processing Interface 1.0

Introductions 1 min 4

Implementation Guide

FOR A BARRIER-FREE PAYMENT PROCESSING SOLUTION

We believe First Data is well positioned to take advantage of all of these trends given the breadth of our solutions and our global operating

OpenEdge Research & Development Group April 2015

Fiscal Service EMV Education Series EMV-Compliant Point-of-Sale Card Acceptance for Federal Agencies. Fiscal Service / Vantiv July 27, 2015

TREASURER S OFFICE ADMINISTRATIVE STANDARDS FOR THE TREASURER S FISCAL PROCEDURE No MERCHANT DEBIT AND CREDIT CARD RECEIPTS

Breach Findings for Large Merchants. 28 January 2015 Glen Jones Cyber Intelligence and Investigation Lester Chan Payment System Security

NCR CONNECTED PAYMENTS

Are You Ready For PCI v 3.0. Speaker: Corbin DelCarlo Institution: McGladrey LLP Date: October 6, 2014

Grow with our omni-channel payment processing technologies and merchant services.

OVERCOMING DATA SECURITY CHALLENGES IN RETAIL PETROLEUM

Transcription:

PAR Springer-Miller Systems Secure Payments Solution Solution Overview PAR Springer-Miller Systems has partnered with industry leaders Shift4 and Global Payments to introduce a unique end-to-end payment solution that encrypts all data at the point of entry so that sensitive information is never exposed to your PMS or POS environment. This solution delivers security through obscurity and serves to protect your organization from data breach all while safe-guarding your guest s financial identity. PSMS and our partners believe this product / service offering represents the most secure processing environment available to the hospitality industry today. Shift4 and PSMS have worked together for many years to deliver integrated payment processing to our mutual clients. They are a pioneer in the payment gateway space and their solutions consistently deliver compelling features that drive security, cost savings and reliability. In 2005 Shift4 unveiled the concept of tokenization which has fundamentally changed the approach to cardholder data (CHD) protection. Other features such as 4Go, 4Res and P2PE have since followed adding to their stable of security-based solutions. Global Payments Inc is a Fortune 1000 company and leading provider of payment processing services. They process in over one million locations worldwide across a broad spectrum of Merchant types. Their diversified client base includes retailers, restaurateurs, hoteliers, health care providers and more. Global Payments Inc processed $350B in 2012 in over 30 countries worldwide. Business Benefits Lessened financial liability for merchants Lowered PCI-related compliance costs as CHD is no longer stored or transmitted in a readable state Simplified PCI compliance through Card Data Environment (CDE) scope reduction. When implemented properly, Secure Payments Solution removes the entire PSMS application environment from scope as there is no exposure to CHD Peace of mind that your guest s data is protected from point-of-entry straight through to your acquiring bank Assurance that your payments are handled securely, efficiently and by world-class providers that collectively drive billions of financial transactions through our systems per year Security Features Secure Payments Solution drives improved data security within the PSMS application framework by: Securing CHD data entry via Point-to-Point Encryption (P2PE) technologies Utilizing Shift4 s TrueTokenization functionality and eliminating CHD storage within the PSMS application environment Cleansing inbound web-service submissions via Shift4 s 4Res Service, includes data received from CRS Providers, Web Booking Engines, Mobile and Kiosk solutions Using only PCI PTS certified card entry devices for each application workstation and mobile products Supporting Canadian EMV (Chip & PIN) and readying clients for US EMV Validating the interface through a comprehensive PSMS and Shift4 certification process Confirming through a PA-QSA assessment that all PCI and PA-DSS compliancy standards are met and/or exceeded

PAR Springer-Miller Systems Secure Payments Solution Fig 1. Flow of cardholder data through PAR Springer-Miller s Secure Payment Solution. Functional Features Real-time automation of authorization and settlement requests Void and Reverse Authorization (when applicable) support Support for multiple industry types lodging, MOTO, Retail, F&B and ecommerce Transaction composition positioned to drive the lowest possible Interchange rates and fees Systematically secure logging of all transactional data Utilization of Shift4 s It s Your Card gift card program including the following functions: Redemptions Creation (sales) Financial Reloading Balance Inquiries

PAR Springer-Miller Systems Secure Payments Solution Software Requirements PSMS Secure Payment s Solution requires the following versions of our software: SMS Host & SMS Retail POS v20.0 and above SMS Diplomat v5.0 and above SMS Touch v8.0 and above SpaSoft v4.0 and above Hardware Requirements PAR Springer-Miller Systems and Shift4 have verified compatibility with the following P2PE card-entry devices: Device SMS Host SMS Retail POS SMS Touch SpaSoft Mobile Ingenico isc250 Ingenico ipp320 IDTech SREDKey IDTech SecureKey M130 IDTech imag Pro II For More Information To learn more about PAR Springer-Miller Systems and our SMS Host Hospitality Management System, please visit our web site at www.springermiller.com or call 802.253.7377 To learn more about Ingenico, ID Tech, Shift4 and Global Payments please review the attached documents. PAR Springer-Miller Systems, Inc. World Headquarters 782 Mountain Rd PO Box 1547 Stowe VT 05672 USA www.springermiller.com P 802.253.7377 F 802.253.7557 info@springermiller.com Support Office 2485 Village View Drive Henderson NV 89074 USA P 702.896.8200 Springer-Miller International European Headquarters Twickenham, UK P +44(0)20 8538 9098 Asia Headquarters Kuala Lumpur, Malaysia P +60 (3) 7956 9912 2011 PAR Springer-Miller Systems, Inc. SMS Host is the registered trademark of PAR Springer-Miller Systems, Inc. in the United States and foreign countries. All rights reserved.

ipp320 isc250 Ingenico Product Offering i P P 32 0 Payment Card Industry (PCI PTS 3.x) compliant device Monochrome display, white backlit 2.7" Supports EMV, Magnetic Stripe, and Contactless payments including Apple Pay USB (Default), RS232, or Ethernet Connectivity 1 Year Manufacturer Warranty i SC 2 50 Payment Card Industry (PCI PTS 4.x) compliant device 4.3 color touch display Supports Signature Capture, EMV, Magnetic Stripe, and Contactless payments including Apple Pay USB (Default), RS232, or Ethernet Connectivity 1 Year Manufacturer Warranty

Interested in these products? POSDATA will be the supplier for both the Ingenico isc250 and ipp320. Please use the Sales contacts below to initiate the purchase for your property. Product Ordering Part Number Description isc250 ISC250-USCOS09A Includes payment terminal, configuration, power supply and USB cabling. ipp320 IPP320-USCOS02A Includes payment terminal, configuration, power supply and USB cabling. Points of Contact P o i n t s Sales Inquiries Dick Bloom POSDATA Dick.Bloom@posdata.com 937-604-9472 of Contact Technical Support Bryan Jackson POSDATA Bryan.Jackson@posdata.com 972-514-4236 Manufacturer Support Kelsey Carlisle Ingenico Inc. Kelsey.Carlisle@ingenico.com 678-456-1318

SecureDataEntrySolutions SREDKey -PCI3.xSREDcertified -SuportsTDESandAESencryptionalgorithms -DUKPTkeymanagement -Readsupto3tracksofinformation -PoweredthroughUSBportnoexternalpowersuplyrequired -Encryptsmanualyenteredcreditcardnumbersand expirationdates -Certifiedkeyinjectionserviceavailable SecureKeyM130 -SuportsTDESandAESencryptionalgorithms -DUKPTkeymanagement -Readsupto3tracksofinformation -PoweredthroughUSBportnoexternalpowersuplyrequired -Encryptsmanualyenteredcreditcardnumbersand expirationdates -Certifiedkeyinjectionserviceavailable

AboutIDTECH RegionalSalesManager: KyleJohnson Phone:(714)761-6368ext.17 Fax:(714)761-80 kylej@idtechproducts.com www.idtechproducts.com CorporateHeadquarters: 10721WalkerStret Cypres,California90630 (714)761-6368(UnitedStates) www.idtechproducts.com TechnicalSuport 1-80-984-1010 suport@idtechproducts.com 2014InternationalTechnologies&SystemsCorporation.IDTECHandVIVOpayisaregisteredtrademarkofInternationalTechnologies&SystemsCorporation. ValuethroughInnovationisthetrademarkofInternationalTechnologies&SystemsCorporation.Alspecificationssubjecttochangewithoutnotice. 80000506-001R07/14

D O L L A R S O N T H E N E T Card Data Security for All Merchant Environments They can t steal what you don t have While running a hotel, retail shop, or any business, there are always decisions to make and issues to address. Card data security shouldn t be one of them. Let Shift4 s DOLLARS ON THE NET payment gateway reduce your card data environment (CDE) and PCI scope all within one user-friendly payment processing solution that features the latest in security technologies. Shift4 s layered approach to card data security means we worry about securing your card data while you are free to dedicate more time and resources to building your business and taking care of your customers. As an added bonus, we can take everything but your encrypted swipe devices out of scope of your annual PCI assessments. That means PCI no longer applies to your network, POS/PMS, Web servers, back-end systems, etc. Best of all, our industry-leading security technologies are included with DOLLARS ON THE NET at no additional charge.

Secure Points of Entry Card data security starts the moment you accept payment data. Whether it comes from your website, is keyed in by your clerk from a phone call, or is swiped into a payment device, Shift4 has methods to secure this data and to prevent it from ever entering your CDE. 4Go is a virtual card data firewall that intercepts cardholder data (CHD) at the Windows driver level (before it reaches a merchant s POS/PMS) and immediately replaces it with secure stand-in data (either false cardholder data or a TrueToken, depending on the merchant s setup). Because no CHD is then stored, processed, or transmitted by the POS, 4Go removes it from the scope of Shift4 4GO FLOW PCI assessments. 2 1 4 5 6 12 11 7 7 8 10 10 9 3 UNSECURED CHD SECURED CHD TRUETOKEN Point-to-Point Encryption (P2PE) adds an additional layer to the security provided by 4Go by encrypting the CHD as it is swiped so that it never even enters the merchant s system in exposed form. This means there is never sensitive data on your system, so there is nothing for hackers to steal. We call that reducing your breach profile. Also, so long as the merchant does not have the ability to decrypt this data onsite, P2PE can remove the whole environment (minus the device itself) from PCI scope. Mobile P2PE, PIN debit P2PE devices, and MSRs are all supported and bring the best blend of security and convenience for you and your customers. i4go is a virtual card data firewall for traditional e-commerce and browser-based applications (kiosk, Software as a Service, etc.). If your business uses an Internet browser-based POS system, such as a kiosk or website, then this is the payment processing solution to use. i4go prevents actual CHD from being inputted or stored in your environment (including your networks and Web servers) similar to what our 4Go technology does for brick and mortar, non-browser-based systems.

Secure Processing and Storage Processing CHD, maintaining transaction archives, and securely storing card data can be expensive and complicated to do yourself. Reduce your costs and breach profile with our industry-leading tokenization technology. TrueTokenization is the technology of using a non-decryptable piece of data a TrueToken to represent (by reference) sensitive card data. A TrueToken is a randomized, alphanumeric, 16-character value that does not have a mathematical relationship with the original data. Since it cannot be reversed, a TrueToken is of no value to hackers or thieves. Because you are not processing or storing actual CHD when using tokenization, your card data environment is protected from fraud and loss. As we here at Shift4 like to say, They can t steal what you don t have. Specialty Solutions Hoteliers have a unique card-data environment and require an additional layer of security to protect CHD coming in from third-party reservation and distribution systems. 4Res is a CHD firewall designed to sit between a Central Reservation System (CRS) and a hotel s PMS that allows the CHD in reservation data to be tokenized before it enters the hotel s CDE. For properties using DOLLARS ON THE NET and the full suite of CHD security solutions (including TrueTokenization, P2PE, and 4Go), 4Res is the last yard in the 1,000 mile journey toward complete payment transaction processing security. Thanks to Shift4 s tokenization technology, we are able to assure our hospitality clients that their guests critical credit card information is maintained with absolute maximum security. Wayne Johnson, CEO Execu/Tech Systems, Inc.

Sometimes sharing is necessary. We ve found a way for your concierge or other guest-driven service to do that without bringing your no-card-data merchant environment back into scope. 4Word allows a third-party merchant to securely obtain a credit card number from a Shift4 merchant customer using DOLLARS ON THE NET. For example, 4Word would allow a Shift4 merchant hotel to release a guest s card number to an authorized florist or caterer whose services had been requested, without the card number ever entering the hotel s system. 4Word provides the payment flexibility you want with the security you need. 1 1 2 3 2 3 10 10 4 5 9 8 6 7 4 5 9 8 6 7 10 11 10 11 Layered Security Approach for All Merchant Needs No matter how complex your merchant environment is or what level of card data protection you want, Shift4 has the answer. When you let Shift4 process, transmit, and store CHD, you can focus on your business and your customers, knowing your card payment transactions are in the most secure hands. About Shift4 Shift4 is dedicated to maintaining the trust of more than 24,000 merchants who rely on their DOLLARS ON THE NET payment gateway to process upwards of half a billion credit, debit, and gift card transactions each year. Shift4 s commitment to innovation keeps them at the forefront of emerging technologies including P2PE, mobile, EMV, and tokenization. Shift4 helps businesses secure the lowest possible payment processing rates and protect their brands by securing their customers card data. For more detailed information on how these technologies work, please email info@shift4.com or visit www.shift4.com/howitworks. 1491 Center Crossing Road, Las Vegas, NV 89144 702.597.2480 800.265.5795 www.shift4.com info@shift4.com Copyright 2014 Shift4 Corporation. All rights reserved. Universal Transaction Gateway (UTG ), 4Go, and i4go are covered by one or more of the following U.S. Pat. Nos.: 7770789; 7841523; 7891563; 8328095; 8688589; 8690056

PARTNERSHIPS DELIVERING PAYMENTS SECURITY With the availability of Secure Payment Solutions (SPS), a secure payment processing solution for the hospitality industry, hoteliers now have a simplified payment processing option that reduces liability and costs. This payment processing framework is designed to remove cardholder data from the property management system (PMS) and point-of-sale system (POS) and utilizes point-to-point encryption and tokenization to remove cardholder data at the point of entry. Secure Payment Solutions relies on its integration with Global Payments, one of the largest worldwide providers of payment technology services, to enable hoteliers to accept credit and debit card payments easily, resulting in a better customer experience and higher revenues. Secure Payment Solutions Delivers Benefits Uniquely Designed for the Hospitality Business The most secure payment processing technology, point-to-point encryption, to the hospitality industry World class partnership with the most trusted names in payment processing, Shift4 and Global Payments A framework designed to remove cardholder data from all PAR Springer-Miller PMS and POS solutions Technology that may further reduce costs related to PCI Security Standard compliance Learn more about Global Payments and Secure Payment Solutions at 1-888-876-4027 or email oemvarsales@globalpay.com. globalpaymentsinc.com SERVICE. DRIVEN. COMMERCE 2014 Global Payments, Inc. ALL RIGHTS RESERVED. All other trademarks, product names, and logos identified or mentioned herein are the property of their respective owners.

2026 © DocPlayer.net Privacy Policy | Terms of Service | Feedback  | Do Not Sell My Personal Information