Vormetric Data Security Solutions

Data Security Compliance and Regulatory Solutions for Retail Pharmacies

Retail pharmacies are in the uncomfortable position of needing to comply not only with PCI DSS standards but also the need to:

  • Comply with HIPAA/HITECH security, privacy and mandatory data breach disclosure rules for compromise of electronic patient healthcare Information (EPHI)
  • Protect their organizations from violation of State, Federal and Local data breach statutes
  • Meet US Drug Enforcement Agencies (DEA) requirements for Electronic Prescriptions of Controlled Substances (EPCS)
  • Meet US Food and Drug Administration (FDA) requirements for ensuring the trustworthiness and reliability of electronic records and signatures

Consequently, retail pharmacies face not only the risk of financial forensic and credit monitoring costs and fines but also the likelihood of class-action lawsuits, new legal precedents and an extraordinarily negative impact on long-term reputation, customer trust and sales because of the very personal nature of patient healthcare information.

The Vormetric Approach

Vormetric Data Security solutions help retail pharmacy customers comply with all these requirements in individual stores, distribution centers and central data storehouses through data-at-rest encryption and secure access controls to the encrypted information. As an additional safeguard, Vormetric’s solution monitors access patterns to protected data by those who use it as part of their work.

Vormetric Data Security solutions are:

  • Effective
  • Quick to install
  • Easy to use
  • Easy to scale
  • Cost effective

And, they have little, if any, negative impact on customer system performance.

How Vormetric Solutions Work

The Vormetric Data Security Platform is the only solution with a single extensible framework for protecting data-at-rest under the diverse requirements of retail pharmacies across the broadest range of OS platforms, databases, cloud environments and big data implementations. The result is a low total cost of ownership, as well as simple, efficient deployment and operation.

  • Vormetric Transparent Encryption provides file and volume level data-at-rest encryption, secure key management and access controls required by regulation and compliance regimes. Data access monitoring information provides another level of protection from malicious insiders, privileged users, and attacks that compromise accounts - delivering the access pattern information that can identify an incident in progress.
  • Vormetric Application Encryption enables organizations to easily build encryption capabilities into internal applications at the field and column level.
  • Vormetric Key Management enables centralized management of encryption keys for other environments and devices including KMIP compatible hardware, Oracle and SQL Server TDE master keys and digital certificates.
  • Vormetric Tokenization with Dynamic Masking lets administrators establish policies to return an entire field tokenized or dynamically mask parts of a field. With the solution’s format-preserving tokenization capabilities, managers can restrict access to sensitive assets, yet at the same time, format the protected data in a way that enables many users to do their jobs.

Be Protected in Weeks not Months Whatever Your OS

Vormetric can work with you to install its Data Security solutions in weeks rather than months. Vormetric’s solutions work with most major operating systems, including Linux, UNIX and Windows servers in physical, virtual, cloud and big data Cardholder Data Environments (CDE).

Easy to Use and Won’t Hurt System Performance

Vormetric Data Security makes it simple to solve security and compliance concerns by simultaneously defending data in databases, files and Big Data nodes across public, private, hybrid clouds and traditional infrastructures. Central management of the entire data security platform makes it easy to extend data security protection and satisfy compliance requirements across the entire enterprise, growing as required, without adding new hardware or increasing operational burdens. Vormetric today is helping a major retail bank protect 10,000 servers and a major retailer protect over 15,000 servers.

Customers typically report no perceptible impact to end-user experience when using Vormetric solutions. Vormetric performs encryption and decryption operations at the optimal location of the files system or volume manager taking advantage of hardware cryptographic acceleration, such as Intel® Advanced Encryption Standard-New Instructions (Intel® AES-NI) and SPARC Niagara Crypto, to speed the encryption and decryption of data.

Collectively, this leads to the most cost-effective solution on the market.


Using Encryption and Access Control for PCI DSS 3.0 Compliance in AWS

Vormetric Data Security: Complying with PCI DSS 3.0 Encryption Rules

This white paper details PCI DSS 3.0 controls and describes how the Vormetric Data Security Platform deployed in a...

Download >>


Strong Security with High Performance for Real-Time, Big Data Deployments

Vormetric on cybersecurity

Security versus performance—that’s the tradeoff many businesses have had to make when deploying big data applications.  

Download >>

Customer and Partner Success

  • Rackspace Cloud Partners
  • McKesson
  • AWS
  • Google Compute Engine
  • Microsoft
  • IBM
  • CenturyLink
  • QTS
  • Teleperformance Secures
  • Delta Dental