Keeping your data safe is our top priority. Encompass maintains compliance with the Payment Card Industry Data Security Standard (PCI DSS) and is certified compliant as a Level One Service Provider, ensuring that your e-commerce transaction data is securely protected, transmitted, and stored by Encompass. PCI DSS Standard now requires a level of compliance extending to your institution’s computers and network. This requirement makes you responsible for ensuring that credit card information entered on your institution’s devices through the Encompass administrative interface (such as on behalf of constituents) is not left unencrypted and vulnerable upon data entry or while being transmitted to the endpoint for delivery to Encompass’ servers. A point-to-point encryption (P2PE) solution can ensure these transactions are secure.
Encompass has partnered with Bluefin Payment Systems to offer our clients Bluefin’s PCI-validated P2PE solution. Using a keypad card entry hardware that connects to any device with a USB port, cardholder data is encrypted at the Point of Interaction (POI) in a PCI-approved P2PE device and prevents clear-text cardholder data from being present in your institution’s system or network. Encompass currently supports keypad card entry, but not swipe.
Encompass supports SREDKey devices operating in modes 4, 5, and 6. To set the device mode:
- From the screen reading “Swipe Card or Key-in Card Number” hit the Admin key.
“Select manual config 1-6” should now be showing. Choose the mode you wish to use from the follow by hitting the number key that corresponds to it and then select Enter.
4 – Card Number, Expiration Date, Security Code, Zip Code
5 – Card Number, Expiration Date, Security Code, Address, Zip Code
6 – Card Number, Expiration Date, Security Code
Access more information about our P2PE from Encompass on our website.