• Background Image

    Haventec Sanctum certified by PCI DSS to secure payment data

    July 6, 2018

July 6, 2018

Haventec Sanctum certified by PCI DSS to secure payment data

  • Haventec Sanctum, a decentralised data vault, has achieved PCI DSS 3.2 certification
  • Haventec Sanctum eliminates the need for organisations to store sensitive data on their networks
  • Haventec Sanctum is a viable replacement for expensive Hardware Security Module devices
  • Haventec’s Information Security Framework also meets the requirements of ISO-27001:2015 and the 2017 Australian Government Information Security Manual (ISM)

Sydney, Friday 6 July 2018: Haventec is pleased to announce that as of June 2018 we achieved certification as a PCI DSS 3.2 Level 1 Service Provider, the highest level of assessment available. The compliance assessment was conducted by Vectra Corporation Limited, an independent Qualified Security Assessor (QSA). The PCI DSS Attestation of Compliance (AOC) is available to customers.

Card Industry Data Security Standard (PCI DSS) is a proprietary information security standard administered by the PCI Security Standards Council and applies to all entities that store, process, or transmit cardholder data (CHD) or sensitive authentication data (SAD).

“AustCyber congratulates Haventec on achieving this significant certification, which will help propel their growth strategy and open up new business opportunities both domestically and abroad. The protection of identity and other sensitive information is of utmost importance, and Haventec has proven the calibre of its Authenticate and Sanctum solutions through this industry accreditation. We are hugely excited about their next phase as Australia continues to step up and project great cyber security capability into the world.”

Michelle Price, CEO AustCyber – the Australian Cyber Security Growth Network.

Haventec’s Authenticate and Sanctum solutions are built on the concepts of rolling key security and decentralization. Haventec Sanctum allows customers to securely store, process and transmit any type of sensitive data, including cardholder data.

Haventec Sanctum

Haventec Sanctum is a decentralised data vault system that eliminates the need for organisations to store sensitive data centrally on their networks. Removal of these centralised stores of critical information significantly reduces organisational exposure to the various regulatory and legislative liabilities that many businesses are currently struggling to address and manage.

Traditional approaches to sensitive data protection rely on expensive Hardware Security Module (HSM) devices designed to heavily encrypt and secure centralised stores of sensitive data on networks. This practice is commonly known as tokenization and presents many issues including inability to manage sustainable cost of operation and flexibility for business operations.

Haventec Sanctum is a viable replacement for expensive HSM devices. It provides a software-driven decentralised data vault that encrypts and deconstructs the data into a distributed cryptographic puzzle. The data is never held in a single location and the individual parts are non-exploitable and nonsensical.

We take information security very seriously

As a cybersecurity technology company with a suite of security solutions that protect identity and personal information transactions in the modern open digital economy Haventec takes information security very seriously. As well as having achieved PCI DSS v3.2 compliance Haventec has defined an Information Security Framework that meets the requirements of ISO-27001:2015 and the 2017 Australian Government Information Security Manual (ISM).

“Achieving PCI for Haventec is a huge step forward in our ability to deliver decentralised security innovations to the market. Achieving this certification enables organisations to instantly recognise that Haventec operates a trusted and independently verified information security management system. Ultimately this will help us in accelerating our journey to commercialisation.”

Robert Morrish, CEO of Haventec


Revolutionising online security and network trust.

Haventec helps organisations build trust by maintaining their customers’ privacy in every interaction. The Sydney-based company aims to disrupt the global cyber security market with a decentralised approach to authentication.

Haventec’s internationally patented technologies dramatically reduce cyber risk and enable pervasive trust services for organisations of all sizes. Haventec’s solutions empower each user to own and control their identity and personal data, while removing vulnerabilities that organisations spend millions trying to protect.

Haventec’s security products serve the following markets: digital banking, market exchange, payment platforms, blockchain & ICOs. Haventec’s portfolio of products includes Authenticate, Sanctum.

If you would like more information about Haventec, please contact [email protected].