NexTech Euro Secure Solutions (NESS)

What is Tokenization ?

“A token is essentially an alias / surrogate or substituted data value which cannot be used to derive the original identity data”

Our ULTRA HSTM ™ solutions provides a substitute token for any given original Primary Account Number (PAN) or sensitive Personal Identifiable Information (PII) value. Within a secure closed system, the replacement token provides a reference to the original data element; which allows Ultra to retrieve the original PAN/PII for a specified token. The original and replacement elements are not related in any way mathematically or cryptographically so the original PAN/PII cannot be determined outside of the appliance from the token.

What is the ULTRA HSTM ™ Tokenization Bureau Service ?

We will not try to sell you a solution that you do not need. Our PCI Compliant Data Center offers a full Tokenization Bureau Service that allows you to solve your PCI challenges to cost effective manner.
We, together with our dedicated partners will analyze your business needs and offer a suitable and secure solution, overcoming any resource and budgetary constraints you might face.

Data Security Process Review

Let NESS do a complete security assessment to pin-point and plug any security holes you might have in your data environment you might have in your environment.

We believe prevention is better than a cure!

PCI Compliance Review

We are aware that PCI Compliance can be a challenge to most clients. NESS has a strong internal team, together with our dedicated compliance partners have many years of hands-on security experience, especially in in EFT/FinTech and Retail industries.

Why Your Organization Needs It?

All transaction history and potential PII such as names, addresses, DOB, email, payroll information and bank account numbers are kept in repositories for data mining usage which leaves them exposed to abuse. Organizations depend on such data for their customer (loyalty) tracking and analysis of spend-ing habits to manage and grow their business.

In almost every organization, such valuable information, e.g., business reports, HR documentation,

customer data and research results is saved electronically without being sufficiently protected. This PII information can, in a cumulative way, contribute towards data theft. Also, the current practice of saving data centrally on servers, multi-site workplace networking, and the use of mobile data media greatly increases security risks.

As more organizations outsource their IT departments in an effort to duce costs, they are faced with increasing data confidentiality concerns as well. What is needed is an integrated security solution that protects your data in multiple ways. The ULTRA HSTM ™ solution is unique in that it protects your data through:

-Replacing your vulnerable data with tokens which cannot be traced back to the original data value outside the ULTRA HSTM. The token can be configured in such a way that it Will Still pass business rules and be used for computing, viewing and reporting.

-Encryption of all vulnerable data on the ULTRA HSTM database using a hardware security module (HSM) protecting the data even within the secure zone of the organization.

-Data communication between the ULTRA HSTM and other systems is through the ULTRA API, which provides Secure Shell (SSH) protocol communication with application authentication.

-The HSTM is a tamper resistant device with an encapsulated HSM computing unit for enhanced secure data storage.

The Tokenize / Untokenize Process

For a reverse operation (untokenize), the lookup function Will retrieve the actual PAN/PII. for any given tendered or substituted token. If the substitute token has not been issued, an audit event is logged and the configured exception action is taken.

Our ULTRA HSTM ™ can be configured to provide a token in a variety of configurations, such as:

1. Without retaining any digits of the original PAN/PII.
2. Retain the leading, trailing, or both digits of the original PAN/PII.