1 / 6

Best Advocates in Mumbai - Khaitan Legal Associates

Standing tall as the prime law firm in Mumbai, Khaitan Legal Associates employs the best approach to handle litigation cases.

Anjali25
Télécharger la présentation

Best Advocates in Mumbai - Khaitan Legal Associates

An Image/Link below is provided (as is) to download presentation Download Policy: Content on the Website is provided to you AS IS for your information and personal use and may not be sold / licensed / shared on other websites without getting consent from its author. Content is provided to you AS IS for your information and personal use only. Download presentation by click this link. While downloading, if for some reason you are not able to download a presentation, the publisher may have deleted the file from their server. During download, if you can't get a presentation, the file might be deleted by the publisher.

E N D

Presentation Transcript

  1. TOKENISATION & It'sImplementation Compliances

  2. AboutTokenisation Tokenisationmeansmaskingorsubstitutingsensitivedatawith uniqueidentificationnumberwhileretaining alltheessentialinformationaboutthedata.Thisequivalentunique replacementdataiscalledatoken. Tokenisationisaglobalpracticeaimedatpreventingdisclosureof carddetailstoanyentityapartfromthe cardholder,cardnetworkorissuer.Theconceptoftokenisationwas firstintroducedin2005by Shift4paymentstoprotectcardholderdata.

  3. Necessarycompliancesrequired forimplementingtokenisation Businessesthatacceptcardpaymentsneedtobeincompliancewiththe Payment Card Industry Data Security Standard (“PCI DSS”), which adds credibilitytoensuretheircustomers. Card networks are required to get the token requestor certified for (a) token requestor’ssystems,includinghardwaredeployedforthispurpose,(b)security oftokenrequestor’sapplication,(c)featuresforensuringauthorisedaccessto token requestor’s app on the identified device, and, (d) other functions performed by the token requestor, including customer on-boarding, token provisioningandstorage,datastorage,transactionprocessing,etc.

  4. Necessarycompliancesrequired forimplementingtokenisation Card networks are required to get the card issuers / acquirers, their service providersandanyotherentityinvolvedinpaymenttransactionchain,certified in respect of changes done for processing tokenised card transactions by them. Registrationofcardontokenrequestor’sappshallbedoneonlywithexplicit customer consent through AFA, and not by way of a forced / default / automaticselectionofcheckbox,radiobutton,etc. Securestorageoftokensandassociatedkeysbytokenrequestoron successfulregistrationofcardshallbeensured.

  5. Necessarycompliancesrequired forimplementingtokenisation Card issuers shall ensure easy access to customers for reporting loss of “identified device” or any other such event which may expose tokens to unauthorised usage. Card network, along with card issuers and token requestors,shallputinplaceasystemtoimmediatelyde-activatesuchtokens andassociatedkeys. Disputeresolutionprocessshallbeputinplacebycardnetworkfortokenised cardtransactions. Cardnetworkshallensuremonitoringtodetectanymalfunction,anomaly, suspicious behaviour or the presence of unauthorized activity within the tokenisationprocessandimplementaprocesstoalertallstakeholders.

  6. For MOre InformationVisit www.khaitanlegal.com

More Related