Skip to main content

Data security compliance solutions for the retail industry

Retailers recognize their data isn’t safe, and this threatens their profitability. Data not compliant with PCI DSS standards increases credit card costs on every transaction. The sophistication of today’s cybersecurity outlaws makes the question not “if data will be breached,” but “when.” Entrust nShield® HSM solutions can help retailers protect their data and meet PCI DSS requirements by making it useless to anyone who tries to steal it.

  • Click to select...


Data at Risk

Reportable data breached can not only have a negative effect on sales and reputation, and generate credit monitoring costs and fines, but are also alleged to have cost senior executives and even CEOs their jobs.

PCI DSS Compliance Requirements

Data not compliant with PCI DSS standards increases credit card costs on every transaction and may put your organization at risk for fines.


Encryption with Strong Key Management

Entrust and its technology partners make your most sensitive payment and customer data unreadable to unauthorized users through encryption combined with key management backed by FIPS and Common Criteria certified Entrust NShield Hardware Security Modules (HSMs).

Secure Execution Environment

In addition to protecting your sensitive keys, nShield HSMs also provide a secure environment for running proprietary applications. The CodeSafe option lets you develop and execute code within the nShield HSMs' FIPS 140-2 Level 3 boundaries, safeguarding your applications from potential attacks.


Meet PCI DSS Requirements

Entrust nShield HSM solutions can help you protect your data and meet PCI DSS requirements by making it useless to anyone who tries to harvest it. Entrust nShield HSMs enable you to meet PCI DSS:

  • 3.5: Protect keys against misuse or disclosure
  • 3.5.1 and 3.5.2: Restrict access to keys and store them in fewest possible locations
  • 3.6: Document and implement key management procedures
  • 3.6.1 to 3.6.3: Securely generate, distribute, and store keys
  • 3.6.4: Change keys periodically (also known as rollover)
  • 3.6.5: Retire old or suspected compromised keys
  • 3.6.6: Split knowledge and control of keys so that no one person can misuse them
  • 3.6.7: Prevent substitution of keys
  • 3.6.8: Document key custodians agreement with policies

Sophisticated encryption and key management solutions that protect mission critical data and applications

Entrust nShield and our partners offers comprehensive data encryption and key management solutions that protect data across devices, processes, platforms and environments. These solutions have no negative impact on business agility and help retailers protect their customers, meet government and industry compliance standards and avoid the damage to reputation caused by data breaches

Strengthen authentication for payments and e-commerce using general purpose HSMs

Entrust nShield HSM are independently certified to meet FIPS 140-2 and Common Criteria standards and are approved for other approaches that can reduce scope such as point-to-point encryption under PCI DSS guidelines


Data Protection Solutions for Retail and Hospitality Enterprises

As processors of highly sensitive customer payment information, retailers and hospitality enterprises face ongoing threats from cybercriminals seeking to steal that data.