REST API | Visa Platform Connect

Token Management Service

When using tokens, Personally Identifiable Information (PII) including the Payment Account Numbers (PANs) can be replaced with unique tokens. These tokens do not include the PII data, but act as a stand-in for the personal information that would otherwise need to be shared. By using tokens, businesses can provide a secure payment experience, reduce the risk of fraud, and comply with industry consumer security regulations such as PCI-DSS.
The
Token Management Service
(
TMS
) links tokens across service providers, payment types, and channels for sellers, acquirers, and technology partners.
TMS
tokenizes, securely stores, and manages the primary account number (PAN), the payment card expiration date,
electronic check details,
and customer data.
TMS
also enables you to create a network token of a customer's payment card.
IMPORTANT
Due to mandates from the Reserve Bank of India, Indian merchants cannot store PAN. Use network tokenization instead.
You can manage sensitive data securely by creating, retrieving, updating, and deleting tokens through the TMS API .
TMS
simplifies your PCI DSS compliance.
TMS
passes back to you tokens that represent this data. You then store these tokens in your environment and databases instead of storing customer payment details.
TMS
creates one unified token identifier, a token of tokens, to centralize management of all payment credentials:

Figure:

Unified Token Identifier
Diagram of the unified token identifier.
The unified token identifier protects sensitive customer payment data stored in secure Visa data centers.