Fortanix Simplifies Compliance with Reserve Bank of India (RBI) Guidelines for Tokenisation of User Card Data

Tokenisation-as-a-Service with Fortanix DSM enables speedy deployment, and minimizes disruption for businesses and consumers alike
BENGALURU, India, 21 October 2021

Fortanix® Inc., the data-first multicloud security company, today announced that businesses operating in India that store payment information and user card data can now quickly comply with the latest Reserve Bank of India (RBI) guidelines using Fortanix Data Security Manager (DSM) to tokenise and secure card data. The Reserve Bank of India updated its tokenisation guidelines on 7 October 2021 effectively prohibiting merchants from storing actual card data beyond 31 December 2021.

The RBI guidelines mandate new, stronger security requirements for card data, calling out tokenisation as a recommended security strategy. Tokenisation refers to the replacement of actual card information with a unique and random string of characters called “tokens” that can be used in place of sensitive data, while the actual sensitive data is encrypted for safe keeping. Tokens are a proven and safer way of processing payment transactions, and minimise disruptions and inconvenience to card holders.

Fortanix DSM provides tokenisation, key management, cryptography and other security services in a single unified solution. SaaS delivery enables advanced security to be up and running in minutes, while minimising operational burdens. On-premises deployment is also available for specialized use cases. Fortanix DSM is available as an annual subscription service from Fortanix authorised resellers.

“Security of consumers’ personal and financial information is paramount, and the RBI guidelines are an important step in preserving it,” said Ambuj Kumar, CEO and Co-founder of Fortanix. “Fortanix DSM makes it simpler and easier for anyone who stores payment information and card data to keep that data secure as they protect their customers.”

Resources

  • Read the RBI Guidelines.
  • Download an eBook to learn more about the key takeaways.
  • Register for a Fortanix webinar that dives deeper into the RBI guidelines and covers best practices in tokenisation

About Fortanix:

Fortanix® is a data-first multi-cloud security company solving the challenges of cloud security and privacy. Data is the most precious digital asset of businesses, but this data is spread across clouds, SaaS, applications, storage systems and data centers. Security teams struggle to track, much less secure it. Fortanix empowers customers to secure all this data with a centralised solution. Its pioneering Confidential Computing technology means data remains protected at-rest, in-motion and in-use, keeping it secure from even the most sophisticated attacks. For more information, see https://fortanix.com/.

Fortanix and Runtime Encryption are registered trademarks of Fortanix, Inc. Self-Defending Key Management Service is a trademark of Fortanix, Inc. All other marks and names mentioned herein may be trademarks of their respective companies.
FIPS 140-1 and FIPS 140-2 TM: A Certification Mark of NIST, which does not imply product endorsement by NIST, the U.S. or Canadian Governments

Share this press release: