Discount Tire Case Study: Tokenizing and Safely Removing PII.

Case Studies

Discount Tire Case Study: Tokenizing PII, and the safe removal from internal systems.

Through honesty, service, and a willingness to pay it forward, Discount Tire has always strived to provide unexpected experiences that delight their customers to keep them coming back for automotive products and services. In fact, many of their customers have been buying and servicing their tires at Discount Tires retail outlets for literally generations. Valuing their customer base and working to improve the patron experience even more, Discount Tire wanted to drive a digital transformation to a paperless financial application process. The goal was to make applying for in-store credit and loans easy and fast for both customers and retail staff, while keeping both the payment card information (PCI) and customer personally identifiable information (PII) out of the point-of-sale and back office systems.

In addition to increasing customer satisfaction and sales, the initiative received C-level executive support from both a business and security standpoint. Keeping customers top of mind and in light of high-profile data breaches that have embarrassed major brand name retailers in recent years, Discount Tire’s founder, Bruce T. Halle, gave his executives two security directives: 1) Keep Discount Tire customer data safe, and 2) Keep Discount Tires out of the headlines about anything related to data breaches.

Like many organizations, Discount Tire was already securing payment data. PCI is usually the first data type to be secured by an organization that accepts payment cards and financial data, because when doing so, they must become compliant with the Payment Card Industry Data Security Standards (PCI DSS). The process of being PCI DSS compliant is costly, time consuming, and never-ending. However, by using encryption, tokenization, and cloud data vaulting, an organization can remove customers’ PCI data from their business systems, reducing the scope and cost of their PCI compliance efforts as well as the risk of data breaches that expose customer data, resulting in fines, lawsuits, and lost business. 

New Call-to-action