June 2, 2015

Innovative Solutions to Prevent Hospitality Breaches

Innovative Solutions to Prevent Hospitality Breaches

The hospitality environment is unique in its handling of the payment card data of their guests. Large hotels and resorts generally involve hundreds, sometimes thousands, of touchpoints where payment card data can enter their systems – from reservations, retail stores, and valets to the front desk, restaurants, and snack stands. Resorts small and large often rely on storing cardholder data (CHD) for booking guarantees, advanced deposits, refunds, incremental authorizations, and more. Small resorts also sometimes use standalone payment terminals that require manually keying and auditing transactions, an often time-consuming process that is prone to errors and leaves sensitive CHD exposed. But, recent high-profile breaches in the hospitality space show these practices introduce risk to the hospitality environment.

P2PE and Tokenization Take the Target Off Your Back
Shift4’s DOLLARS ON THE NET® payment gateway delivers the secure, integrated payment technologies hoteliers need to protect themselves from becoming the next target of data thieves. When our tokenization and point-to-point encryption (P2PE) solutions are combined, hoteliers never store, process, or transmit sensitive CHD while still keeping normal hospitality business functions intact.

Our proprietary tokenization solution, TrueTokenization®, was the first payment tokenization solution on the market. This year, TrueTokenization celebrates its 10th anniversary and remains the most sophisticated tokenization solution available, with more than six billion successfully tokenized transactions processed to date. By replacing sensitive CHD with a 16-character, globally unique, randomized, alphanumeric value, TrueTokenization provides all the business functions hoteliers need without the burden of storing and securing sensitive payment data.

Our True P2PE™ solution encrypts payment data at the payment device so sensitive CHD never enters your systems. That encrypted data is sent to Shift4’s secure data centers and Shift4 returns a representation of that card’s information, called a TrueToken®, to use for subsequent transaction needs. Shift4 hosts the actual CHD for you – which greatly reduces your breach profile and simplifies PCI compliance.

By using these two solutions together, your environment is protected because there is no sensitive CHD left for hackers to steal. This means that even if your system is compromised by malicious code or malware, the fraudsters can’t get to your guests’ payment data. After all, They Can’t Steal What You Don’t Have®.

Hundreds of Integrations in Hospitality
Shift4 connects to nearly every bank and processor in North America, works with dozens of the top payment devices, and integrates with hundreds of the most advanced point-of-sale (POS) and property management system (PMS) solutions, including:

  • InfoGenesis™ POS and Lodging Management Systems (LMS) by Agilysys
  • MICROS 3700 and 9700 by MICROS Systems
  • SMS|Host and SpaSoft by PAR Springer-Miller

Whether you’re a boutique hotel, motel chain, mega-resort, restaurant, retailer, spa, or private club, DOLLARS ON THE NET can secure and simplify your payments. We’ll be at HITEC this year in booth #1623. If you plan to attend, be sure to stop by and say hello!

Find out more about how Shift4’s payment security technologies can reduce your breach profile and simplify PCI assessments by contacting our 24/7/365 Las Vegas-based Customer Support team at [email protected] or call 702.597.2480 (option 2).