Case Study: Q2 achieves PCI DSS Level 1 compliance in 30 days with ALTR

How ALTR helped Q2’s Biller Direct offering become Level 1 PCI DSS certified in 30 days

Q2 Software, a financial experience company providing digital banking solutions, faced the challenge of rapidly achieving Level 1 PCI DSS certification for its new Biller Direct application. The application would handle over 250,000 sensitive credit card numbers, making Q2 responsible for securing this data. With a critical go-live date approaching, they needed a cloud-native, PCI-certified solution to isolate the data and remove compliance scope from their main data centers.

To solve this, ALTR deployed its cloud-native Data Security as a Service (DSaaS) platform, which used tokenization to remove all sensitive data from Q2's environment and securely store it. The solution was integrated quickly, allowing Q2 to reuse existing code. As a result, Q2 Biller Direct achieved Level 1 PCI DSS compliance in just 30 days. This enabled a successful cloud-only deployment, gave Q2 valuable control and insight into data access, and turned the application into a key market differentiator and a new revenue source.

Q2 Software

Adam Blue

Chief Technology Officer