WL Tokenisation Solution

Make your business more secure and future ready with Worldline Tokenisation Solution

Worldline Tokenisation solution is tailor-made for businesses like yours. It has the highest coverage as you can integrate all payment networks and issuers directly. You can provision, manage tokens and customer’s consent from a single interface. Worldline’s Full-Service Tokenisation Solution offers a holistic solution covering both pass-through and bundled mode of operations. Pass through mode supports interoperability, and bundled offering provides end to end service coverage including token provisioning, management and not limited to tokenised transaction processing.

WL Tokenisation Solution
Key Advantages of Worldline Tokenisation Solution

Highest Coverage across payment networks and issuing banks

Worldline Tokenisation solution is tailor-made for businesses like yours. It has the highest coverage as you can integrate all payment networks and issuers directly. You can provision, manage tokens and customer’s consent from a single interface. Worldline’s Full-Service Tokenisation Solution offers a holistic solution covering both pass-through and bundled mode of operations. Pass through mode supports interoperability, and bundled offering provides end to end service coverage including token provisioning, management and not limited to tokenised transaction processing.

Single Solution That Connects To Different Networks - Visa, Mastercard, Rupay, Amex

It is a single solution that connects to different networks viz. Visa, MasterCard, RuPay, and Amex.
A full-stack solution with token provisioning and authorisation support with very few modification/development efforts in existing integration. The solution comes with both immediate/one-time payments and recurring payments (SI on cards) support. Thus, ensuring an end-to-end frictionless payment journey and enhanced customer experience.

Future-ready solution

Worldline Tokenisation Solution is an advanced/state-of-the-art solution that is fully compliant to the new COF guidelines and will ensure highest degree of data security and protection. It will also ensure continuity for your business growth without a glitch, making your business safe, secure and future-ready.

Card Tokenisation Explained

Read our blog on Tokenisation to understand more on the latest Reserve Bank Of India guidelines, click here

Added benefits with Worldline Tokenisation Solution
  • Robust tracking and reporting
    Robust tracking and reporting

    Track and control token requests and create custom reports.

  • Flexible across payment systems
    Flexible across payment systems

    Integrate with us and seamlessly create and use tokens across all payment gateways.

  • Highly scalable APIs
    Highly scalable APIs

    Scalable and developer-friendly APIs capable of supporting high traffic volumes.

Frequently Asked Questions

The Reserve Bank of India (RBI) on September 7th, 2021, announced new digital payment guidelines to card-on-file tokenisation services. Apart from building customer confidence in card as a payment method, these guidelines will also help to prevent online fraud by helping keep the critical financial information of customers secure from card data breaches.

Here are the new guidelines –

  • The new guidelines restrict any merchant/Payment Aggregator/Payment Gateway from vaulting card data at their end except for the limited purpose of transaction tracking.
  • All existing card vaults would need to be purged, by June 30th, 2022. (extended deadline, as per the new circular issued by RBI on December 23rd, 2021).
  • The alternative to Card On File (COF) is the Card On File Tokenisation (COFT) solution.
  • Only Card Schemes and Card Issuers would be allowed to offer CoFT
  • Card Schemes or Issuers are only allowed to offer Tokenisation services for their own set of cards, and hence to tokenise the entire card base multiple tie-ups are required.

Tokenisation is the process of protecting sensitive data by replacing it with an algorithmically generated surrogate number called a token. These tokens are issued and utilized subsequently to safeguard real card credentials. It is passed through the internet or the various wireless networks to process the payment without actual card details getting exposed. The card number is held safe in a secure network token vault.

The process of tokenisation -

  1. The cardholder can get the card tokenised by initiating a request on the merchant application, and explicitly providing their consent for tokenisation.
  2. The tokens are generated and issued by card schemes/issuers. They will act like Token Service Providers (TSPs) and will facilitate card data protection and security. The tokens are mapped with underlying card credentials and stored in a secured card vault at TSP’s end.
  3. The token requestor will forward the request to the card network, and with the consent of the card issuer, the TSP will provision and issue a token for the combination of a card/token requestor.
  4. When users enter their card details on the merchant payment page, the Merchant/TR sends a request for Token provisioning. The TSP on receipt will first request verification of the data from the customer’s bank. When the data gets verified, a token unique reference number gets generated and is sent back to the TR/Merchant.
  5. Tokenisation of card data will be done with explicit customer consent requiring Additional Factor of Authentication (AFA) validation by the card issuer.

All businesses have to migrate to a compliant solution by 30th June 2022 (extended deadline), and not store this data from 1st July 2022 onwards. Only card data obtained after due customer consent and Additional Factor Authentication (AFA) can be kept with a compliant partner from 1st July 2022 onwards.

Card Tokenisation safeguards customers’ card data, thereby reducing the possibility of data breaches or card frauds.
With lesser instances of card fraud will boost customer confidence in cards as a payment method and in digital payments. From a long-term perspective, these guidelines are very beneficial.

Merchants can continue to store the last 4 digits of the actual card number and a card issuer name for tracking/analytical purposes.

Yes, Customer consent and additional factor of authentication (AFA) is required for saving a card / creating a token. This can be the same 2FA used during the first transaction.

The tokens provisioned through Worldline tokenisation solution can be used for processing payments via other Payment Aggregators/Gateways as well without any change in integrations.

Both payment networks and issuing banks are permitted to tokenise cards going forward from 1st July, 2022. For example, if a customer has an HDFC Visa credit card, either Visa or HDFC can tokenize the card- both are permitted to do so. However, Visa cannot tokenize a MasterCard, and HDFC cannot tokenize cards issued by other banks.

Success Stories

Here’s how convenience of Digital Payments helped HDFC Life Insurance with seamless customer experience!
Now there is no stopping to your business with Worldline
Innovative Payment Solutions Customised to your Requirements
Robust and Scalable Technology Infrastructure
24 x 7 Support