Get in touch with us now


Let your customers experience frictionless online shopping

Tokenisation: How it works

Tokenisation/Data Vault technology

With the increased threat of fraud, it is important for merchants to comply with the Payment Card Industry Data Security Standard (PCI DSS). To many merchants, this can be time-consuming and costly, as they store cardholder data on their own systems. Data Vault can help merchants comply with this standard by avoiding storing cardholder data.

Data Vault technology or tokenisation is a form of data substitution, removing a customer’s sensitive card data and replacing it with a unique token. This token can then be stored in the merchant environment, in place of the customer’s primary account number (PAN). This makes it possible for merchants to carry out further transactions, without having to store the customer’s account data. This is ideal for organisations wishing to take payments via eCommerce. For example, merchants will be able to offer their registered customers with the option to purchase goods or services through a one-click payment without storing cardholder data.

Tokenisation/Data Vault process

  1. The merchant accepts the card payment for a purchase and transmits it for processing using the hosted payment page. At the same time the merchant generates a token in association with that card number
  2. Our Payment Gateway accepts the data
  3. Card data is saved and encrypted by us using a unique ID
  4. For repeat or recurring transactions, the merchant submits the stored token for processing rather than the card number

Data Vault benefits

  • Secure and convenient way for customers to make card payments without having to input their card data each time
  • Removes the need for merchants to retain Permanent Account Number (PAN) details in a card data environment
  • Reduced security risk since data is not available outside of the Data Vault

Connect with us.