Point-to-Point Encryption (P2PE) protects your customer’s payment data by encrypting it at the point of entry before you send it to your processor. The data can be unencrypted using only the processor’s secure key, so even if a fraudster steals the data they can’t use it.
Note: Your POS doesn’t store any sensitive payment data, which makes it easier for your business to comply with PCI standards.
What happens when I run a transaction with P2PE?
- Payment terminal captures the payment data from a customer’s card.
- Payment terminal uses its encryption key to encrypt the payment data.
- Payment terminal sends the encrypted payment data to your processor.
- Processor uses its secure key to decrypt the payment data, then uses the data to process the transaction.
- Processor sends the transaction result back to the payment terminal.
What devices support P2PE?
- Genius Countertop (MX915 and MX925)
- Genius Handheld
- Engage (P400, M400, E285, V400M)
You can buy a terminal with P2PE or you can add a P2PE solution to your existing terminal if it supports P2PE. For more information about P2PE, contact our Technical Support team.
What are the benefits of using P2PE?
- Reduces the risk of a data breach
- Prevents fraudsters from stealing card data
- Simplifies your PCI compliance audit by reducing:
- The number of sections in the questionnaire. You need to complete 4 sections instead of 12 sections
- The number of PCI control questions that you complete during an audit. You need to complete 35 questions instead of 329 questions
- Minimizes your liability if you experience a data breach. If there is a data breach, your P2PE provider is responsible for correcting compliance issues and handling fees
Let us know if this answered your question. If not, please let us know why!
Tags: card data, compliance, countertop, fraudulent transaction, handheld, p2pe, pci, security