Use Credit Card Encryption (I97)
Purpose: Use this screen to define whether the system encrypts the credit card number in the CWSerenade database for this company, providing additional security of credit card data.
Overview: See the Data Security and Encryption Guide for an overview on credit card encryption and data security standards.
Important: This system control value is automatically updated during credit card encryption installation and setup; see the Data Security and Encryption Guide for installation instructions.
Code field: Valid values are:
Value |
Description |
unselected |
Credit card encryption is not enabled. Credit card numbers in the CWSerenade database are not encrypted. |
Y |
Credit card encryption is fully enabled. All credit card numbers in the CWSerenade database are encrypted. If you use credit card tokenization, the encrypted number may be a token rather than the actual credit card number. You should only update this system control value to Y after you have completed ALL credit card encryption installation and setup. |
C |
Credit card encryption is partially enabled. All credit card numbers in non-order related tables are encrypted. However, credit card numbers in order-related tables are in the process of being encrypted. When you select to work with an order, the system must first determine if the credit card number on the order has already been encrypted. The system compares the selected order number against the CC Order Encryption table to determine if the credit card number on the order is encrypted. • If the Use order level enc flag for the order is Y, the credit card number on the order has been encrypted. • If the Use order level enc flag for the order is N, the credit card number on the order has not been encrypted. The system will automatically encrypt the credit card number when you select to work with the credit card on the order. • If the system cannot find the order number in this table, the system assumes the order is a new order and encrypts the credit card number in the CWSerenade database. See Credit Card Encryption Initial Setup in the Data Security and Encryption Reference for step-by-step instructions. |
S |
Credit card encryption has been enabled; however, a new encryption key has been generated and credit card numbers in order-related tables are in the process of being encrypted with the new encryption key. When you select to work with an order, the system must first determine if the credit card number on the order has already been encrypted with the new encryption key. The system compares the selected order number against the CC Order Encryption table to determine if the credit card number on the order is encrypted. • If the Use order level enc flag for the order is Y, the credit card number on the order has been encrypted with the new encryption key. • If the Use order level enc flag for the order is N, the credit card number on the order has not been encrypted with the new encryption key. The system will automatically encrypt the credit card number using the new encryption key as you select to work with the credit card on the order. • If the system cannot find the order number in this table, the system assumes the order is a new order and encrypts the credit card number in the CWSerenade database with the new encryption key. See Encryption Key Switch Process in the Data Security and Encryption Reference for step-by-step instructions. |
Warning window: The system displays a warning window if you change this system control value from blank or N to C, Y, or S and vice versa.
• If you have not performed the required credit card encryption installation and setup, select Exit to exit the window without updating this system control value. See Credit Card Encryption Initial Setup in the Data Security and Encryption Reference for more information on the steps you must perform in order to enable credit card encryption.
• If you have performed the required credit card encryption initial setup, select Accept to update this system control value.
Additional credit card security: Regardless of the setting of this system control value, to further secure credit card data:
• Use credit card tokenization to replace the credit card number in the CWSerenade database with a token provided by the authorization service.
• You can set up a credit card number format to control which digits of the credit card number are masked on CWSerenade screens and reports using a special character, such as an asterisk (*). See Credit Card Number Format for an overview.
• The system writes a record to the Credit Card Audit table (MSCCAU) whenever a user with authority to view credit card numbers displays a screen or window that includes the credit card number field. See Logging Credit Card Data Access in the Data Security and Encryption Guide for an overview.
See the Guidelines for Data Security in the Data Security and Encryption Guide for a checklist of recommended security settings.
