RightFax & Fax Encryption for PCI Fax Compliance

Fax is inherently secure in transmission. However, if your organization is subject to Payment Card Industry Data Security Standard, then additional measures are needed to keep documents secure at rest on your fax server(s).

The RightFax Encryption module provides a sophisticated yet highly usable means of keeping faxes secure, and is also fully compliant with standards like:

PCI CDSS ompliance with the RightFax Encryption Module

The Encryption Module uses 192-bit Triple DES to bring industry-standard security to any RightFax server license. By using three digital “keys” to consecutively encrypt, decrypt, and re-encrypt fax images, it offers assurance that confidential data remains safe.

In addition to preventing unwanted access, the Encryption Module enhances audit readiness by logging legitimate access, as well.

PCI DSS Fax Rules

Fax is implicit throughout the PCI standards. As of the latest version (4.0), fax-capable devices are listed among "system components" (p. 9) that PCI rules apply to.

In prior versions (through 3.2.1), fax was directly mentioned in two places, giving slightly more context around specific security concerns:

  • "The display of full PAN [primary account numbers] on items such as computer screens, payment card receipts, faxes, or paper reports can result in this data being obtained by unauthorized individuals and used fraudulently.” (§3.3, Guidance)

PANs are often truncated for security purposes (to something like ****2468, for example), but full numbers are sometimes still required for processing or other purposes. In these cases, the best option is to restrict fax (and other media) access to authorized parties. RightFax's nuanced security options make this process straightforward and reliable.

  • “Verify that procedures for protecting cardholder data include controls for physically securing all media (including but not limited to computers, removable electronic media, paper receipts, paper reports, and faxes).” (§9.5, Testing Procedures)

The ease of leaving a printed fax in plain sight has made these devices the bane of many compliance departments. That’s why the best way to “physically secure” a fax machine is simply to remove it!

Between the RightFax server which eliminates the physical documents, and the Encryption Module which keeps their digital forms safe, it has never been simpler to address this aspect of PCI compliance.

To minimize your legal risks and maximize the ease of PCI DSS fax compliance, contact the team at Paperless Productivity® today. With years of experience in healthcare, financial services, and other highly regulated industries, we look forward to helping you meet and exceed your regulatory objectives. For a complimentary consultation, please contact us today online or at 888-838-0042.

Contact us

Request Consultation
Close