Data Protection and Management for Retail

Secure and manage cardholder data in the store, in the
corporate office, and in between

Federal, state, and industry regulations make protecting sensitive data more than a good idea — they make it a top priority for companies in almost every industry. BitArmor DataControl™ helps you meet regulatory requirements by encrypting data, restricting access, actually enforcing retention policies for distributed data, and documenting data access and integrity. BitArmor™  uses Smart Tags™ — tags that travel with data regardless of where it is sent or stored — to give you functionality you simply can’t get from any other solution.

Smart Tags travel with the data

BitArmor DataControl software attaches a Smart Tag to each sensitive file, directory, or volume. The policies you establish for access, retention, and destruction travel with data in these patent-pending Smart Tags, regardless of where it is sent or stored. Smart Tags mean that your customers’ cardholder data is secure and consistently managed in the store, in the data center, and while it’s moving in between.

Fast, Transparent, Easy to Use

BitArmor DataControl uses advanced, wire-speed encryption technology to protect your most sensitive information. It’s so fast that it won’t interfere with your POS transactions. And because BitArmor enforces policies without any user interaction, neither your sales associates nor corporate staff will have to change their normal work procedures.

DataControl is also transparent to existing applications, storage devices, and networks, so your IT staff can implement it on both in-store and corporate systems without getting bogged down in costly customizations.

Easy to Manage

DataControl automatically and transparently manages policies and encryption keys to reduce the burden on administrators. Policies for access, retention, and destruction are all accessible from a single console, even those for data on in-store systems. DataControl’s automatic key management enables administrators to easily implement your organization’s policies without having to manually administer any encryption keys.

Powerful features to give you control of customer data:

Data Encryption
DataControl encrypts data throughout your enterprise regardless of where it is sent or stored. You can choose to encrypt data on certain devices or everywhere in your organization. All encryption keys are automatically managed from the central Control Server, so your data administrators don’t have to take on an extra burden. And BitArmor encryption is so fast that it’s completely transparent to users.

Strong Authentication
Guarantee user identity using strong authentication including passphrase and two-factor systems. Cryptographic protocols ensure that authentication credentials cannot be stolen from the network.

Dynamic Access Control
DataControl provides dynamic access control with a cryptographically enforced Access Control List (ACL). Like other BitArmor policies, access control policies travel with data in Smart Tags so they are consistently enforced on different computers and as data travels over various networks. And access to controlled data is restricted once it reaches the end of its retention policy, so you can ensure that obsolete data won’t be used for longer than it should.

Data Expiration
BitArmor-protected data expires when it reaches the end of its predefined retention policy. Once data expires, it cannot be accessed or altered by previously authorized users. Expired data still exists, though it can only be accessed by authorized security administrators if it must be recalled for historical or eDiscovery purposes. Data remains secure because it remains encrypted, even after it expires.

Programmatic Data Destruction
Reduce the cost of maintaining and recovering out-dated or unnecessary data with BitArmor’s programmatic data destruction. When data reaches the end of its retention policy, it may be completely and permanently destroyed. BitArmor technology lets data administrators destroy data remotely, whether it resides on floppy disk, laptop, file server, or backup tape, even if it has been transmitted as an e-mail attachment.

Comprehensive Auditing and Tracking
BitArmor provides a central audit log that allows you to track and capture many different types of data activity for security and compliance audits. Administrators set audit policies at the Control Server. BitArmor Control Agents then transmit data activity from users’ computers back to the Control Server where it is recorded. In addition to user activities (reads, writes, authorized access attempts, and unauthorized access attempts), the audit log also records administrator activities, errors, and alerts.