Bluefin is a provider of secure payment technologies for enterprises, financial institutions, and small-medium sized businesses. Bluefin's proprietary PayConex platform features PCI-validated Point-to-Point Encryption (P2PE), the QuickSwipe mobile POS system, tokenization, transparent redirect, and more. Bluefin is a Participating Organization of the PCI Security Standards Council (SSC) and is headquartered in Atlanta, with offices in New York, Chicago, and Tulsa.
ESPs containing Bluefin
The ESP matrix leverages data and analyst insight to identify and rank leading companies in a given technology landscape.
The omnichannel payments market refers to the integration of various payment methods and channels, including physical stores, online platforms, and mobile devices. This market aims to provide a seamless and convenient payment experience for customers while also improving efficiency for businesses. The market is driven by the increasing demand for flexibility and convenience in payment options, as …
Bluefin's Products & Differentiators
PayConex™ offers omnichannel payment processing backed by the highest level of security, including PCI-validated point-to-point encryption (P2PE) for point-of-sale (POS) payments, ShieldConex® for encrypted tokenization of online PII, PHI, payment and ACH account data, and chargeback / fraud management.
Research containing Bluefin
Get data-driven expert analysis from the CB Insights Intelligence Unit.
CB Insights Intelligence Analysts have mentioned Bluefin in 2 CB Insights research briefs, most recently on Jan 27, 2023.
Expert Collections containing Bluefin
Expert Collections are analyst-curated lists that highlight the companies you need to know in the most important technology spaces.
Bluefin is included in 6 Expert Collections, including Store tech (In-store retail tech).
Store tech (In-store retail tech)
Companies that make tech solutions to enable brick-and-mortar retail store operations.
Companies in this collection provide technology that enables consumers and businesses to pay, collect, automate, and settle transfers of currency, both online and at the physical point-of-sale.
Companies and startups in this collection provide technology to streamline, improve, and transform financial services, products, and operations for individuals and businesses.
The digital health collection includes vendors developing software, platforms, sensor & robotic hardware, health data infrastructure, and tech-enabled services in healthcare. The list excludes pureplay pharma/biopharma, sequencing instruments, gene editing, and assistive tech.
Bluefin has filed 43 patents.
Cryptography, Block ciphers, Disk encryption, Cryptographic protocols, Cryptographic attacks
Cryptography, Block ciphers, Disk encryption, Cryptographic protocols, Cryptographic attacks
Latest Bluefin News
Sep 19, 2023
Help Net Security Organizations are racing against time to meet the PCI DSS 4.0 deadline Payment data security concerns remain widespread as organizations undertake significant lift to meet the PCI DSS 4.0 deadline, according to Bluefin. 94% of survey respondents said they have significant or very significant concerns pertaining to payment data security. Additionally, only 21% indicate that they are very confident in their ability to protect customer data. As a result, breaches of financial data have become all too common – 98% of respondents indicate their organization experienced at least one data breach over the past 24 months and 50% have experienced a breach that created a significant disruption to business operations. While 58% of organizations place high importance on securing customer data , it’s evident that the challenges to do so remain persistent. Organizations have turned to the Payment Card Industry Data Security Standards (PCI DSS) for guidance in combating payment data threats for nearly two decades and should continue to do so with the latest requirements in PCI DSS 4.0, which organizations must adapt to before the March 2025 deadline. Enterprises view PCI DSS 4.0 in a positive light 93% of respondents indicate the changes required are significant. Further, 90% are concerned with meeting the PCI DSS 4.0 timeline with 64% saying they would be likely or very likely to accept a timeline extension. 31% of payment data security professionals have a strong understanding of all requirements associated with PCI DSS 4.0 and 49% indicate their organizations have yet to begin executing on PCI DSS 4.0 changes. 81% of respondents agree or strongly agree that PCI DSS 4.0 is fair, necessary and for the better of the industry and consumers. “As payments stacks continue to evolve alongside customer needs and expectations, cybercriminals view this as a key opportunity to exploit emerging points of vulnerability and capture critical customer data,” said Brent Johnson , CISO at Bluefin. “In this environment, it’s not a matter of if an organization will experience attempts at being breached – it’s a matter of when. Businesses must ensure compliance with new PCI DSS 4.0 standards as part of a holistic approach to protecting customer data, and our new report serves as a guide for organizations as they look to meet these requirements ahead of the looming March 2025 deadline,” added Johnson. Organizations rely heavily on third-party vendors for PCI DSS 4.0 The report also found that there is a strong acknowledgment of the critical role of partners to support PCI DSS 4.0 readiness, with 86% percent of respondents indicating their organization will solely or mostly rely on third-party vendors for PCI DSS 4.0 in some capacity. Respondents place the highest prioritization on payment data security vendors that have an intimate knowledge of regulatory environments and PCI DSS compliance parameters, including expertise pertaining to the 4.0 updates. “While PCI DSS 4.0 presents an array of operational and resource hurdles for enterprises to overcome, those that approach it with a strategic mindset will differentiate themselves and ultimately deliver a superior customer experience,” said Jordan McKee , fintech research director at S&P Global Market Intelligence. “Developing an internal strategy, including the implementation of payment data security technologies like PCI-validated P2PE and tokenization, alongside working with trusted partners will be crucial for organizations to fully understand and address the required changes,” concluded McKee. More about
Bluefin Frequently Asked Questions (FAQ)
When was Bluefin founded?
Bluefin was founded in 2007.
Where is Bluefin's headquarters?
Bluefin's headquarters is located at 8200 Roberts Dr #400, Atlanta.
What is Bluefin's latest funding round?
Bluefin's latest funding round is Unattributed.
How much did Bluefin raise?
Bluefin raised a total of $31M.
Who are the investors of Bluefin?
Investors of Bluefin include Macquarie Capital, Camden Partners, Napier Park Global Capital, Jeff Liesendahl and Goldman Sachs.
Who are Bluefin's competitors?
Competitors of Bluefin include Soft Space and 7 more.
What products does Bluefin offer?
Bluefin's products include PayConex and 2 more.
Who are Bluefin's customers?
Customers of Bluefin include Childrens Healthcare of Atlanta, Two Men And A Truck and Springbrook Software.
Compare Bluefin to Competitors
Spreedly provides a cloud-based credit card vault that allows users to store cards independently from any gateway, integrate to a single API and work with one or all of the 50 different payment gateways the service supports.
PSCU is a credit union service organization. PSCU offers payment solutions for credit unions to optimize their member experience. PSCU's services include payment processing, risk management, data and analytics, loyalty programs, digital banking, marketing, strategic consulting and mobile platforms help.
FreedomPay delivers payments management solutions, enabling organizations to improve the way they send, receive, and settle payments. The FreedomPay Commerce Platform enables merchants to simplify complex payment environments. Validated by the PCI Security Standards Council for Point-to-Point Encryption (P2PE) along with EMV, NFC and DCC capabilities, global leaders in retail, hospitality, gaming, education, healthcare, and financial services trust FreedomPay to deliver unmatched security and advanced, value-added services.
Forage is a payment processor for authenticating and processing electronic benefits transfer (EBT) transactions. The platform is designed for government social programs. It was founded in 2020 and is based in San Francisco, California.
TokenEx is an enterprise data security company, providing unique solutions that couple tokenization and end-to-end encryption (E2EE). TokenEx has developed a new patent-pending solution for handling payment card transactions for merchants that will help them avoid a majority of, if not all of, PCI Compliance requirements and will secure payment card data from card swipe through authorization and settlement. The company was founded in 2010 and is based in Edmond, Oklahoma.
Stripe operates as a financial technology company. It offers an online payment processing platform that securely accepts credit card payments. It allows users to accept payments, send payouts, and manage businesses online. It offers solutions such as revenue and financial automation, Banking-as-a-service, and more for marketplaces, electronic commerce (e-commerce) companies, and more. Stripe was formerly known as DevPayments. The company was founded in 2010 and is based in South San Francisco, California.