PCI DSS applies to protecting a financial institution’s cardholder data.
- Our solution for the generation of tokens does not access nor maintain ANY cardholder data.
- Authentication 365 PIN generation uses industry standard algorithms to generate PINs (for example, tokens) that can be transmitted via Push or SMS (or even voice or email).
- Our servers are highly secured behind firewalls and not readily accessible from the Internet.
- Tokens expire after a short time and end-users must quickly authenticate. Furthermore tokens will need to be resent to end-users should the end-user get the token wrong after a number of tries.
For more information, refer to:

Steven Garcia, Chief Architect, Head of Product and Infrastructure Engineering