TrustCommerce Announces New PCI-Validated Point to Point Encryption Solution

Share Article

TC Safe™ PCI-Validated P2PE solution protects cardholder data and reduces PCI scope.


This provides TrustCommerce’s customers scope reduction when assessing for PCI DSS, but more importantly, a reduction in risk of card data compromise that a fully validated P2PE solution provides, said Paul Guthrie, CISSP, QSA (P2PE), Vice President of Payment Software Company (PSC).

TrustCommerce®, the leading provider of secure electronic payment acceptance and risk management solutions, is pleased to announce the availability of TC Safe™ PCI-Validated Point to Point Encryption (VP2PE) solution. TC Safe provides merchants with the strongest card-present and mail order/phone order payment security as well as maximum PCI scope reduction.

Organizations face constant threats to the security of their customers’ Primary Account Number (PAN) and sensitive authentication data. To ensure customer confidence and trust, merchants can employ encryption solutions. TC Safe PCI VP2PE solution safeguards credit and debit card payments by encrypting all data within a PCI certified device. Under the PCI PIN Transaction Security (PTS) program for Secure Reading Exchange of Data (SRED), no clear-text cardholder data is accessible in the device, in transit, or within a merchant’s system. Encrypting at the point of interaction makes sensitive information undecipherable and useless to hackers. By eliminating clear text cardholder data from a merchant’s environment, TC Safe can diminish PCI DSS scope. Combining TC Safe with TC IPA provides an additional layer of security, keeping cardholder data, even in its encrypted state, from ever entering other systems and networks.

Benefits include:

  • Protects transactions from the point of interaction, immediately encrypting cardholder data.
  • Removes access to decryption keys, making sensitive payment data invisible to the merchant.
  • The only hardware required is a PCI certified device that works with TC Safe. No additional hardware is required within your data environment.
  • Simplifies PCI compliance requirements allowing for a significantly shorter PCI DSS evaluation and overall compliance effort.
  • TC IPA semi-integrated solution keeps PCI data out of your other systems and provides the easiest path to EMV.

“The PCI P2PE standard is a complex standard that requires a significant effort from a company to fully comply. TrustCommerce has fully met all of the requirements and their solution has been accepted by the PCI Security Standards Council for listing as a validated P2PE solution. This provides TrustCommerce’s customers scope reduction when assessing for PCI DSS, but more importantly, a reduction in risk of card data compromise that a fully validated P2PE solution provides,” said Paul Guthrie, CISSP, QSA (P2PE), Vice President of Payment Software Company (PSC). “PSC was happy to work with TrustCommerce to achieve this goal.”

“As early adopters of encryption, we have delivered point-to-point encryption security solutions since 2004 and in alignment with industry standards, we felt it was important to achieve validation,” said Rob Caulfield, Chief Executive Officer of TrustCommerce. “TC Safe, in conjunction with our TC IPA technology, advances P2PE, empowering merchants to be proactive about security.”

TrustCommerce TC Safe™ is validated as compliant with the Payment Card Industry Point-to-Point Encryption Standard (PCI P2PE). The PCI P2PE provides rigorous technical and operational requirements and guidelines for all entities that provide P2PE solutions. TC Safe was validated by Payment Software Company, an independent PCI P2PE Qualified Security Assessor (P2PE-QSA), was accepted by the PCI SSC, and can be viewed on the PCI SSC P2PE Solutions listing here:

As part of the validation requirements, TC Safe uses only PCI PTS SRED certified hardware, such as those implementing Ingenico’s On-Guard P2PE technology. TC Safe device support includes Ingenico Group’s iSC Touch 250, iSC Touch 480, iPP 320, and iPP 350 smart terminals and ID Tech SREDKey and SecureRED.

Integration partners are currently utilizing TC Safe for PCI VP2PE and EMV functionality. These include Epic electronic health record software and other industry-leading solution providers.

TrustCommerce has released a new whitepaper, which demonstrates the value of a VP2PE solution. Download the whitepaper here. To learn more about TC Safe VP2PE, call 800.915.1680.


About TrustCommerce
A veteran and innovator in the industry, TrustCommerce offers a comprehensive suite of payment solutions with a focus on security, data protection, and risk mitigation. Featuring PCI Validated Point-to-Point Encryption (VP2PE), tokenization, EMV, and hosted payment pages, TrustCommerce solutions assist partners and clients with reducing the cost and complexity of PCI DSS compliance. Whether accepting payments in a card-present or card-not-present environment, TrustCommerce solutions protect transactions and reduce risk. To learn more about TrustCommerce, and its full breadth of products and solutions, visit

Melody Hendricks, TrustCommerce
949.387.3747 ext. 887

Share article on social media or email:

View article via:

Pdf Print

Contact Author

Melody Hendricks
Follow >
Visit website