Skip to main content

A Suite of Identity Solutions

The CardExchange® Cloud Suite presents a comprehensive array of online solutions designed to facilitate simple and effective credential management, catering to your ID and card issuance requirements. With this centralized cloud-based platform, you gain complete control from anywhere across the globe.

Offering a range of Software as a Service (SaaS) products, the CardExchange® Cloud Suite empowers organizations to construct the ideal solution tailored to their needs. Setting a new benchmark in ID card management systems, our suite ensures access to all industry-standard functionalities while enabling you to pay only for the services utilized. Built on the robust infrastructure of Microsoft® Azure™, it guarantees reliability and scalability for your operations.

Contact Us

Thank you for reaching out to us! To better assist you, please provide your name, email address, and phone number in the fields provided. Next, select the reason for your contact from the options provided. Additionally, if possible, please provide a brief description of your needs or any specific inquiries you may have. This information will allow our sales team to respond to your inquiry as soon as possible and provide you with the assistance you require.

Please type your full name.
Invalid Input
Please provide a valid email address.
Please provide a phone number.
Please select a subject
Please provide a short description of the reason you are contacting us.
Invalid Input
Invalid Input

Identity Solutions for EVERY Organization


Our software solutions within the Cloud Suite span multiple portfolios, including ID Management, ID Production, Mobile, Integration, and Services. These portfolios work seamlessly together to streamline your operations and simplify your workflow. Whether you need to manage identities, produce ID cards, implement mobile solutions, integrate with other systems, or access additional services, our Cloud Suite offers comprehensive solutions to meet your needs.

ID Credential Management

CardExchange® Controller offers comprehensive ID credential management and lifecycle tracking solutions tailored to meet your organization's needs. With its intuitive interface and powerful features, Controller streamlines the entire process, from enrollment to end-of-life management. Whether you need to create, manage, or track IDs, Controller provides robust tools to ensure efficiency and security at every step.

Data Connectivity Plans

Data security is paramount, especially when it comes to managing sensitive information like ID credentials. With the Bridge solution in the CardExchange® Cloud Suite, you can rest assured that your data is securely transported over the internet and your network. The flexibility of choosing data plans ensures that you can tailor your data management approach to best fit the needs and security requirements of your organization.

ID Production for the Controller

Go beyond traditional ID card design software with CardExchange® Press, our secure, cloud-linked production software solution. Integrated seamlessly with your Controller ID management environment, CardExchange® Press revolutionizes the way you produce ID cards.

Mobile Solutions at Hand

Our offerings extend beyond traditional ID management to include virtual identification solutions, allowing you to stay ahead of the curve with integration capabilities for new mobile standards like HID® Mobile Access. Whether you're managing IDs or producing them, our mobile solutions seamlessly integrate with our ID management and production portfolios, providing you with a comprehensive and versatile solution for all your needs.

Secure Single Sign On Integrations

Single sign-on (SSO) has been prevalent in many organizations for years, but its importance is often overlooked and underappreciated. With many enterprises moving to the cloud and taking advantage of third-party services, seamless access to multiple applications from anywhere and on any device is essential for maintaining business efficiency and a seamless customer experience.

Offering One location to configure it all


CardExchange® Admin Center serves as the centralized hub for managing all your cloud applications. With Admin Center, you have the flexibility to customize your cloud products according to your organization's specific requirements. Whether you need to configure user settings, set up workflows, define system actions, or personalize features, Admin Center provides the tools and capabilities to streamline these processes. This centralized approach simplifies administration tasks and ensures consistency across your cloud applications, enhancing efficiency and enabling better control over your cloud environment.

Identity Solutions for EVERY Organization


CardExchange® Cloud Suite offers powerful tools for secure ID management processes within your organization. Create consistency in your issuance, re-issuance, and renewal process with our custom-configured workflows.

Hosted on
Microsoft® Azure™

CardExchange® Cloud Suite is built on the trusted Microsoft's Azure infrastructure, using proven technologies offering the highest security standards. 

GDPR Compliant
Data Protection

Following the highest standards in data protection, our suite solution follows GDPR standards. Our hosting options are enclosed instances, no data travels to other hosting locations or shared.

Customizable
Solution

CardExchange® Cloud Suite products allow you to personalize your system to meet your unique needs. From creating your own business rules and workflows to user profiles, you can make sure it meets every need.

SaaS
Solution

CardExchange® Cloud Suite provides you with a go-anywhere Software as a Service (SaaS) solution, with ability to scale to meet your organizations needs.

Digital & Virtual ID's

Instant IDs are essential to most organizations. By adding a CardExchange® Stand subscription to your solution you can implement a Virtual or Digital ID into your organization. Instantly deliver branded Virtual or Digital IDs to our Stand App create a perfect mobile ID. Instantly block an ID to prevent unwanted entry at any of your locations.

Global Instant Issuance

Once your cardholder data is complete you can send production of cards to central or decentralized printing stations. With CardExchange® Press you can load on any computer with internet and connect to your cloud database to expedite delivery of your cards. Add Digital & Virtual IDs to get your IDs active and usable in minutes.

Connect and Synchronize Data

Easily synchronize your data from your current systems. Whether connecting to a database or an API, our CardExchange® Bridge offers and easy way to keep your data in all systems up-to-date.

Manage Card LifeCycle

Manage your card lifecycle from enrollment to end of use. Make sure at all times you have only one active physical card and immediately update your back offices if a card is lost or stolen with real time card status updates by your card holders.

Our Cloud Architecture


Microsoft Azure™

CardExchange® Cloud Suite is hosted on Microsoft Azure™ and is based on the structure as you can see in the presented diagram. The processes of authentication and data are running at your hosting location of your choice and all these services are offered via a single point of access called the Application Gateway.

Application Gateway

The Application Gateway receives the client request and directs them through the Web Application Firewall (WAF) to the correct service on Azure™. The Web Application Firewall analyzes the content and takes care that suspicious requests are being blocked, to avoid attaches that could compromise the system.

SaaS Solution

Hosted and built on Microsoft Azure™ we use their proven technologies to guarantee high level security, speed and productivity. With the ultimately flexibility in choice where your data is hosted, we offer hosting locations throughout the world for you to choose from when signing up.

Cloud Suite Security


Azure™ Key Vault helps safeguard cryptographic keys and secrets that cloud applications and services use. Without proper protection and management of the keys, encryption is rendered useless. Key Vault is the Microsoft-recommended solution for managing and controlling access to encryption keys used by cloud services. Permissions to access keys can be assigned to services or to users through Azure™ Active Directory accounts.

Key Vault relieves organizations of the need to configure, patch, and maintain hardware security modules (HSMs) and key management software. When you use Key Vault, you maintain control. Microsoft never sees your keys, and applications don’t have direct access to them. You can also import or generate keys in HSMs. CardExchange® Cloud Suite only supports Https connections using TLS1.2 or higher.

Transparent Data Protection

Following the highest standards in data protection, our suite solution is based on GDPR, currently known as the highest protection regarding personal data. Our hosting options are enclosed instances, no data travels to other hosting locations.

Secure User Authentication

To offer the highest user authentication but at the same time flexibility for your users, CardExchange® Cloud Suite uses authentication based in IdentityServer4 for managing access to all our applications and offers authentication with your Microsoft, Google, Facebook, or any Open ID Connect supporting system.

Encryption Of Data in Transit

Microsoft® uses the Transport Layer Security (TLS) protocol to protect data when it’s traveling between the cloud services and customers. Microsoft datacenters negotiate a TLS connection with client systems that connect to Azure services. TLS provides strong authentication, message privacy, and integrity (enabling detection of message tampering, interception, and forgery), interoperability, algorithm flexibility, and ease of deployment and use.

Transparent Data Encryption

Transparent Data Encryption (TDE) is used to encrypt SQL Server, Azure™ SQL Database, and Azure SQL Data Warehouse data files in real time, using a Database Encryption Key (DEK), which is stored in the database boot record for availability during recovery. TDE protects data and log files, using AES and Triple Data Encryption Standard (3DES) encryption algorithms. Encryption of the database file is performed at the page level. The pages in an encrypted database is encrypted before they are written to disk and are decrypted when they’re read into memory.