Bluefin and Bright Lion Partner to Provide Secure, PCI-Validated Point-to-Point Encryption (P2PE)

Share Article

Clients utilizing the Zencurity™ platform from Bright Lion™ can now get the security, reduced PCI compliance scope, and brand protection of PCI P2PE

“Together with Bluefin’s PCI-validated devices, chain of custody tracking, and Decryptx service, our customers are able to easily integrate compliance into the natural flow of their business systems,” said Matt Olenski, CEO of Bright Lion.

Bluefin, the leading provider of payment security technologies and PCI-validated point-to-point encryption (P2PE) solutions for enterprises, healthcare, and higher education, today announced its partnership with Bright Lion, provider of the company’s Zencurity, PCI compliance management platform, which seamlessly integrates with enterprise resource planning (ERP) systems and business applications.

Bright Lion will provide Bluefin’s PCI-validated P2PE solution directly through the company’s Zencurity platform. PCI P2PE secures credit and debit card transactions by encrypting all data within a PCI-approved point of entry device. This prevents clear-text cardholder data from being available within the device, or in the merchant’s system where exposure to malware is possible. Data decryption always occurs offsite in a Bluefin hardware security module (HSM), ensuring the highest level of security.

“The majority of our customers are manufacturers and distributors of all sizes, which are seeing a rising tide of credit, debit, and virtual cards. It is imperative that we provide well-made, P2PE keypads from a trusted provider to enable them to meet their PCI DSS requirements,” commented Matt Olenski, CEO of Bright Lion. “Together with Bluefin’s PCI-validated devices, chain of custody tracking, and Decryptx service, our customers are able to easily integrate compliance into the natural flow of their business systems.”

Bluefin enables PCI-validated P2PE on partner platforms using their Decryptx® Decryption as a Service (DaaS) product, which allows gateways, ISV’s, and processors to connect directly to Bluefin for the P2PE service.

“We are excited to add Bright Lion to our Decryptx partner network as a service provider dedicated to simplifying PCI compliance for the growing market of ERP users,” said Greg Cornwell, Chief Revenue Officer. “This partnership serves as a testament to the breadth of industries that Bluefin's security solutions apply to, and we look forward to playing a crucial role in Bright Lion's core mission of ‘making payment security accessible and manageable for companies at any stage.”

The benefits of the Bluefin and Bright Lion integration include reducing PCI scope from 329 to 33 questions on the P2PE self-assessment questionnaire (SAQ), which in turn provides significant cost and efficiency savings; online management of the P2PE device process with Bluefin’s P2PE Manager®; and seamless integration with Bright Lion’s platform utilizing the P2PE-validated ID Tech SREDKey.

About Bluefin

Bluefin is the recognized leader in encryption and tokenization technologies for payment and data security. Our security suite includes PCI-validated point-to-point encryption (P2PE) for contactless face-to-face, call center, mobile and unattended payments, and our ShieldConex® data security platform for the protection of personally Identifiable Information (PII), Personal Health Information (PHI), and payment data entered online. The company’s partner network currently includes over 135 processors, payment gateways and ISV’s operating in 34 countries, which provide Bluefin’s P2PE solutions direct to merchants, enterprises, healthcare organizations and more. Bluefin is a Participating Organization (PO) of the PCI Security Standards Council (SSC) and is headquartered in Atlanta, with offices in Waterford, Ireland. For more information, please visit

About Bright Lion

A pioneering financial technology provider founded in 2018, Bright Lion integrates PCI DSS Compliance as a Service with the natural flow of enterprise resource planning (ERP) payment applications. The company serves manufacturers and distributors, which are increasingly accepting credit/debit cards in their regular course of business for both B2B and direct-to-consumer payment processing, by simplifying the path to successful data protection. Inspired by the challenge of helping companies maintain security while simplifying initial and ongoing PCI DSS certification, Bright Lion developed the solution that guarantees PCI compliance, Zencurity. With the Zencurity full-service compliance platform, Bright Lion solves the need for unassailable data security without expensive and time-consuming audits and relieves the organizational strain of protecting payments.

Headquartered in Portland, Oregon, Bright Lion’s team brings substantial experience supporting the payment arrangements of companies ranging from up-and-coming single-site businesses to established Fortune 100 multinationals. By staying ahead of the curve with security developments, Bright Lion’s clients rest easy knowing they meet compliance requirements. For more information please visit

Share article on social media or email:

View article via:

Pdf Print

Contact Author

Danielle Duclos
Visit website