Store Front Account Search Product List Basket Contents Checkout 
Why Use Strongbox?

iTrust’s Strongbox is very sophisticated, yet easy to use credit card storage management and billing system. Using just a few steps, Strongbox allows you to collect, store, and use credit card data to charge for amounts due now or in the future in a PCI-compliant, legal manner. 

iTrust’s Strongbox is the most secure and comprehensive product of its kind on the market. It uses  a 3DES DUKPT encryption magnetic credit card reader, SSL-protected user interface, multi-step authentication/encrypted C2S2 security, PCI-certified secured servers, and end-to-end data encryption. Strongbox’s security design far exceeds the PCI-DSS requirements for accepting and utilizing credit card data.

1 User License 1 User License
Complete Info & Pricing		 2 User License 2 User License
Complete Info & Pricing		 3 User License 3 User License
Complete Info & Pricing
Enterprise License Enterprise License
Complete Info & Pricing		 eCommerce License Basic eCommerce License
Complete Info & Pricing		 MagTek® Centurion MagTek® Centurion
Complete Info & Pricing

MagTek® Centurion - Secure Card Reader Authenticator for magstripe cards - swipe

Small-Footprint. USB Powered. Bi-directional.

For customers that want both security and ease of use, the Centurion Secure Card Reader Authenticator (SCRA) is MagneSafe™ secured and offers a reliable and convenient swipe path with complete security features for the peace of mind you can trust. Specifically designed to meet PCI DSS requirements to secure cardholder data, the Centurion employs the industry standard, Triple DES encryption. The Centurion is USB powered. This bi-directional SCRA conveniently makes any existing merchant application more secure.

The Centurion enables retailers to “future proof” their POS applications with support for both today’s traditional applications and tomorrow’s advanced security requirements. The Centurion is 100% interface compatible with all traditional MagTek® readers while also enabling advanced security features including card authentication, data encryption, and device/host authentication to be activated when higher security is demanded.

Why use a 3DES DUKPT card reader? Won’t a less expensive reader suffice?

Strongbox’s encrypts the card data with a single-use encryption code. The data is read from the payment card, then encryption at the card reader itself prevents malicious software or dishonest employees from stealing ensitive card data.

The card readers use by Strongbox are  pre-programmed with hundreds of thousands of single-use encryption codes and requires device/host authentication to send data. By utilizing strong multi-factor authentication and encryption, the these readers can only be used with its assigned Merchant account and cannot be used to send information to an any other unauthorized account.

Other card readers leave sensitive credit card data susceptible to keylogger and other malicious software and dishonest employees, leaving you with all the liability for data breaches that result in theft of money or identity.

Why can’t I keep the card data in an encrypted database on my company's  computer?

PCI-DSS does allow merchants to keep sensitive card data on-site, however, there are  restrictions as to what kind of data can be kept and how is to be stored. These restrictions require the merchant to render sensitive card data unreadable,and to electronically and physically secure the data. They also must regularly test their security systems, and monitor all access to the network  and card data. They must set up and maintain a firewall that restricts the network’s internet access.

There are more restrictions.

It is sometimes expensive and time consuming for small businesses to comply with all of the legal and PCI-DSS requirements. Using and storing sensitive cardholder data on your system makes you responsible – and liable - for protecting that data. Fines, termination from card acceptance programs and lost revenue can result from even a small data breach.

Credit Card Secure Storage (C2S2) helps you to protect yourself from security breaches and easily comply with PCI-DSS. C2S2 eliminates your liability from storing sensitive data by keeping cardholder data in our system, not yours. We assume the responsibility and risk of securely storing and protecting sensitive data, you are then free to process payments without the need to store any cardholder data on your system.

Industry Specific Solutions

Every different profession or business will require a unique solution. Our team of specialists will custom ntegrate our solution to your profession or business at no extra charge.

Professions & Businesses
  • Medical
  • Dental
  • Podiatric
  • Chiropractic
  • Physical or Occupational Therapy
  • Legal Practice
  • Accounting
  • Retailers
  • Grocery Stores
 Strong Box Components
  • Card Swiper Machine
  • Strong Box Controller
  • Front Office Module
  • Processing Gateway
  • Secure Card Vault
  • Back Office Module
  • Admin Module
  • Documentation & Tutorial
  • Full PCI - DSS Compliance System

Read More about PCI Compliance

Why can’t I use the terminal I already have to process credit cards on file?

Many offices already lease a point-of-service (POS) terminal to process credit cards at the time of service. In order to process payments using stored cardholder data (when the card is not physically present), merchants are required to enter the 3- or 4- digit card security code (CVV2). Merchants are not allowed to store CVV2 codes. Thus, it is impractical to use a POS terminal for balance billing using stored cardholder data. To process payments as “card present” transactions, without the card actually being present, in order to avoid having to input the CVV2 codes may be considered fraud.

Home | About | StrongBox Demo | iTrust Online Store | Support | Contact
©2010 iTrust Inc. all rights reserved | design by iTrust Web Design | contact webmaster | Terms of Use | Privacy Statement