Now In: Security Policy

PCI Compliance and Encryption & Tokenization
To provide the best security for its customers, EdPay Inc. has deployed and industry leading point-to-point encryption and data storage solution for each school’s payment processor. This solution is fully PCI DSS compliant.

In this solution, cardholder data is encrypted from the point of input, whether through encrypted swipe, virtual terminal, or secure data transport. This eliminates the possibility of data thieves compromising the input of sensitive information to steal data. When the encrypted data is sent to the provider, the payment is transferred to the processor. The encrypted content is stored in the provider’s secure data stores and EdPay only receives a token, representing the transaction, to allow EdPay to conduct any necessary reporting. In this way, card holder data is never received, stored or transmitted by EdPay infrastructure.

As an added level of security EdPay leverages ”tokenization” technology to further protect school payments. Tokenization is the process of replacing sensitive data, such as credit card or ACH data, with tokens that have no value to criminals. Employing industry leading technologies, our solution replaces the existing payment card, ACH and other sensitive payment data with valueless data tokens. These tokens allow EdPay to initiate transactions in the same manner as they would use their previously stored data, but without the risk of data compromise.

EdPay leverages PositiveSSL certificates
EdPay leverages PositiveSSL CA 2 SSL certificate to ensure that all sensitive transactions are kept securely encrypted and safe. An SSL certificate is a digital certificate that authenticates the identity of a website to visiting browsers and encrypts information for the server via Secure Sockets Layer (SSL) technology. A certificate serves as an electronic “passport” that establishes an online entity’s credentials when doing business on the Web. When an Internet user attempts to send confidential information to a Web server, the user’s browser will access the server’s digital certificate and establish a secure connection.

EdPay leverages PositiveSSL certificates provide secure, safe and convenient Internet purchasing. Once an Internet user enters a secure area by entering credit card information, e-mail address or other personal data, website’s SSL certificate enables the browser and Web server to build a secure, encrypted connection. The SSL “handshake” process, which establishes the secure session, takes place discreetly behind the scenes, ensuring an uninterrupted shopping experience for the consumer.