Let Your ID Lead the Way

CardExchange® Cloud Suite Family of Products

Available Anywhere You Are. All Your Devices. One Seamless Experience.

Imagine…a revolutionary SaaS product with a single eco-system for managing and using all your ID credentials and vertical applications. With a cloud solution keeping all your apps updated across all devices.

Imagine…a first of its kind payment plan that lets you use all of the features the system has to offer and only pay for what you us, leaving edition levels a thing of the past.

Introducing CardExchange® Cloud Suite, a suite of products bringing you a modernized approach to today’s ID management and security demand. By using a proven secure technology platform, a system trusted by leading companies worldwide, letting you focus on using innovative applications, instead of managing infrastructure.

CardExchange® Cloud Suite offers a suite of online products to create easy and efficient credential management solution to meet your ID and card issuance needs. With this centralized cloud-based solution you get full control anywhere in the world. The CardExchange® Cloud Suite offers six different SaaS products to choose from to create the ultimate solution for any organization. CardExchange® Cloud Suite is the first of its kind to offer an ID card management system that allows you all current industry standard functionalities while only paying for what you use. We offer a fully dedicated enterprise ID enrollment solution that is scalable to fit any organization. It is the first to offer an easy, online, subscription-based solution where you are not paying for an empty database, you simply pay for the records that you need...Thats it!

Our Available Products

Hosted on
Microsoft® Azure™

CardExchange® Cloud Suite is built on the trusted Microsoft's Azure infrastructure, using proven technologies offering the highest security standards. 

GDPR Compliant
Data Protection

Following the highest standards in data protection, our suite solution follows GDPR standards. Our hosting options are enclosed instances, no data travels to other hosting locations or shared.


CardExchange® Cloud Suite products allow you to personalize your system to meet your unique needs. From creating your own business rules and workflows to user profiles, you can make sure it meets every need.


CardExchange® Cloud Suite provides you with a go-anywhere Software as a Service (SaaS) solution, with ability to scale to meet your organizations needs.

Cloud Suite Highlights

Identity Management
for EVERY Organization

CardExchange® Cloud Suite offers powerful tools for secure ID management processes within your organization. Create consistency in your issuance, re-issuance, and renewal process with our custom-configured workflows.

Digital & Virtual ID's

Instant IDs are essential to most organizations. By adding a CardExchange® Stand subscription to your solution you can implement a Virtual or Digital ID into your organization. Instantly deliver branded Virtual or Digital IDs to our Stand App create a perfect mobile ID. Instantly block an ID to prevent unwanted entry at any of your locations.

Global Instant Issuance

Once your cardholder data is complete you can send production of cards to central or decentralized printing stations. With CardExchange® Press you can load on any computer with internet and connect to your cloud database to expedite delivery of your cards. Add Digital & Virtual IDs to get your IDs active and usable in minutes.

Connect and Synchronize Data

Easily synchronize your data from your current systems. Whether connecting to a database or an API, our CardExchange® Bridge offers and easy way to keep your data in all systems up-to-date.

Manage Card LifeCycle

Manage your card lifecycle from enrollment to end of use. Make sure at all times you have only one active physical card and immediately update your back offices if a card is lost or stolen with real time card status updates by your card holders.

Our Cloud Architecture

Microsoft Azure™

CardExchange® Cloud Suite is hosted on Microsoft Azure™ and is based on the structure as you can see in the presented diagram. The processes of authentication and data are running at your hosting location of your choice and all these services are offered via a single point of access called the Application Gateway.

Application Gateway

The Application Gateway receives the client request and directs them through the Web Application Firewall (WAF) to the correct service on Azure™. The Web Application Firewall analyzes the content and takes care that suspicious requests are being blocked, to avoid attaches that could compromise the system.

SaaS Solution

Hosted and built on Microsoft Azure™ we use their proven technologies to guarantee high level security, speed and productivity. With the ultimately flexibility in choice where your data is hosted, we offer hosting locations throughout the world for you to choose from when signing up.

Focused On Flexibility

To be able to respond quickly to specific customer needs and offer high speed, secure applications, the development platforms for CardExchange® Cloud Suite have been specifically choosen to do the job.

The front end development platform, CardExchange® Controller and CardExchange® Stand are built in Angular. As Angular is a JavaScript framework and CardExchange® Controller and The CardExchange® Stand are single-page applications, the client computer downloads the front-end code to the browser when initially accessing CardExchange® Controller or CardExchange® Stand. From then on, the browser communicates directly with the back end.

The CardExchange® Cloud Suite back end is a .NET Core web API. It translates requests from the client into SQL queries and sends them to the database, after which the results are sent back to the client in an appropriate format.

Cloud Suite Security

Azure™ Key Vault helps safeguard cryptographic keys and secrets that cloud applications and services use.

Without proper protection and management of the keys, encryption is rendered useless. Key Vault is the Microsoft-recommended solution for managing and controlling access to encryption keys used by cloud services. Permissions to access keys can be assigned to services or to users through Azure™ Active Directory accounts.

Key Vault relieves organizations of the need to configure, patch, and maintain hardware security modules (HSMs) and key management software. When you use Key Vault, you maintain control. Microsoft never sees your keys, and applications don’t have direct access to them. You can also import or generate keys in HSMs.

CardExchange® Cloud Suite only supports Https connections using TLS1.2 or higher.

Transparent Data Protection

Following the highest standards in data protection, our suite solution is based on GDPR, currently known as the highest protection regarding personal data. Our hosting options are enclosed instances, no data travels to other hosting locations.

Secure User Authentication

To offer the highest user authentication but at the same time flexibility for your users, CardExchange® Cloud Suite uses authentication based in IdentityServer4 for managing access to all our applications and offers authentication with your Microsoft, Google, Facebook, or any Open ID Connect supporting system.

Encryption Of Data in Transit

Microsoft® uses the Transport Layer Security (TLS) protocol to protect data when it’s traveling between the cloud services and customers. Microsoft datacenters negotiate a TLS connection with client systems that connect to Azure services. TLS provides strong authentication, message privacy, and integrity (enabling detection of message tampering, interception, and forgery), interoperability, algorithm flexibility, and ease of deployment and use.

Transparent Data Encryption

Transparent Data Encryption (TDE) is used to encrypt SQL Server, Azure™ SQL Database, and Azure SQL Data Warehouse data files in real time, using a Database Encryption Key (DEK), which is stored in the database boot record for availability during recovery. TDE protects data and log files, using AES and Triple Data Encryption Standard (3DES) encryption algorithms. Encryption of the database file is performed at the page level. The pages in an encrypted database is encrypted before they are written to disk and are decrypted when they’re read into memory.

Return to Top

Sign In

Welcome back!

Login to your account and get access to your Partner Benefits

US business only within scope

ISO/IEC 27001:2013 

United States

3381 Walnut Blvd., Suite 200-B
Brentwood, CA 94513

Monday – Friday
9am – 5pm (EST)
+1 (925) 529 4999


Smallepad 32
3811 MG Amersfoort

Monday – Friday
9am – 5pm (CET)
+31 (0)20 2251 447


Estrada Regional nº247 Edificio Jonobras 1C 2640-027 Ribamar Mafra

Monday – Friday
9am – 6pm (GMT)
+351 308 802 374

© 2024 CardExchange Solutions, Inc.