Tokenization and more
Benefit from the full range of compliance and payment optimization features offered in the PayU Hub.
Visit PayU Hub homepage
Tokenization is a process of replacing sensitive data with non-sensitive data. It is used to safeguard a card’s PAN by replacing it with a unique string of numbers.
Tokenization plays a critical role in fortifying online payments and safeguarding a user’s credit card information. Tokenization protects payment data in multiple ways, such as in the safekeeping of sensitive data and cryptographic control, ensuring that an unauthorized party cannot reveal the original PAN (Primary Account Number) associated with a generated token, and more.
In a tokenized transaction, the merchant never touches the customer’s actual payment details. Instead, when the customer pays the details are sent to the relevant provider’s Token Vault, and returned in the form of a unique “token” identifying the customer to the merchant. The next time the customer buys something from the merchant, the same token is used without the merchant having responsibility over the customer’s data.
Many types of payment providers can operate a token vault, provided they meet the required level of PCI-DSS compliance. PayU is a PCI-DSS Level 1 Certified Processor, allowing us to offer merchants a single, cross-platform tokenization solution. Most PayU merchants use our tokenization technology to reduce PCI scope and risk.
PayU frees your business from needing to synchronize multiple token systems, consolidating them into one Token Vault, which contains all of your providers and payment methods. This helps to prevent provider lock-in when businesses wish to make changes to their payment stack and opt-out of specific providers.
Our tokenization technology references encrypted data stored on secure servers as a token, eliminating the burden of managing the storage of cardholder data and reducing the costs involved with PCI compliance.
Thanks to our PCI Level 1 certification, PayU is able to offer a streamlined and centralized Omni Token, allowing merchants to maintain a single card repository which can be used across payment providers without the need for oversight of sensitive customer data.
Tokenization solutions do not eliminate the need to maintain and validate PCI-DSS compliance, but they can simplify a merchant’s validation efforts by reducing “PCI scope” – the number of system components for which PCI-DSS requirements apply.
Through a collaboration with major credit card companies, PayU are also able to offer merchants the benefit of network tokens (on top of the tokenization process we already deploy). Network tokens are generated via tokenization services offered by the major card networks.
Although similar in concept to our existing tokenization, what differentiates network tokens is that they also allow payment processing without ever exposing the shopper’s actual card details. Network tokens offer higher approval rates in comparison with payments executed without network tokens, in addition to better security and an improved checkout experience.
From a compliance perspective, network tokens give merchants the opportunity to manage the network token’s status and suspend it if needed, and allow for easier adoption of EMVCo network token standards with minimal additional integration.
Benefit from the full range of compliance and payment optimization features offered in the PayU Hub.
Visit PayU Hub homepage