Pivotal Payments' FlexPoint takes the POS out of PCI Compliance Scope
New independent white paper explains how POS developers and integrators can benefit from FlexPoint's increased security
PLANO, TX and MONTREAL, October 7, 2015 – Pivotal Payments, a leading provider of technology-driven global payment processing solutions, today released a white paper written by Coalfire, a leader in cybersecurity risk management and compliance services, describing how the FlexPoint integrated payments platform allows developers to achieve an "out of scope" solution for their point of sale (POS) applications. Developers and integrators face significant investment in achieving and maintaining Payment Card Industry (PCI) compliance. FlexPoint delivers a highly secure yet simplified method for ISVs and VARs to integrate with their merchants' payment systems.
Pivotal Payments engaged Coalfire Systems Inc., a respected PCI Payment Application Qualified Security Assessor (PA-QSA), to conduct an independent technical assessment of its proprietary FlexPoint application. Coalfire performed technical testing, architectural assessment and compliance assessment, with the resulting analysis outlining how the FlexPoint application, when properly deployed can remove an ISV's POS solution from the scope of the Payment Application Data Security Standard (PA-DSS).
Key findings and benefits of FlexPoint's integrated payment solution:
- Using point-to-point encryption (P2PE), sensitive cardholder data and decryption keys are safely stored off-site in the processor's encrypted environment
- A firewall between the core payment application ensures zero interference with payment cards, helping developers eliminate PA-DSS audits
- FlexPoint's API to third party platform gives ISVs the flexibility to securely add any app, quickly and easily
- Value added resellers can deploy a highly secure integrated system more rapidly
- Seamless, cloud-based software upgrades are automatically delivered via the FlexControl service
"We've made it extremely simple for our partners and merchants to reduce the resources necessary to manage their payment security infrastructure," said Joe Lane, senior vice president of FlexPoint, a division of Pivotal Payments. "With traditional full integration, POS developers are required to work with an integrated payment device and middleware provider. Even if the data that passes through the POS is encrypted, the POS still remains in scope for PCI. With FlexPoint, no PCI data ever enters the POS."
Download Coalfire's independent technical assessment white paper at: http://get.flexpoint.me/coalfire
About Pivotal Payments
Pivotal Payments is a leading provider of technology-driven global payment processing solutions to the point of sale, B2B and ecommerce industries. Our proprietary solutions include card not present, integrated POS and mobile payments that deliver efficiency and profitability to businesses across all sales channels and platforms. With a focus on security and fueled by continuous investment in research, product development and innovation, we are shaping the future of payments. Our goal is to maximize our clients' revenues and performance by empowering them with safer and smarter transactions. Learn more at http://www.pivotalpayments.com or ,twitter.com/pivotalpayments.
Coalfire is the global technology leader in cyber risk management and compliance services for private enterprises and government organizations. Coalfire's professionals are renowned for their technical expertise and unbiased assessments and recommendations. Coalfire's approach builds on successful, long-term relationships with clients to achieve multiple cyber risk management and compliance objectives, tied to a long-term strategy to prevent security breaches and data theft.
For further information:
Louis Georgakakis, Marketing Director
514-313-1190 ext. 8001