PAN Masking with anonym.plus

Finance Solution · Payments & Cards · PCI-DSS v4.0 Req. 3.4

PAN masking is the removal of the middle digits of a primary account number under PCI-DSS v4.0 Req. 3.4. The rule lets the first six and last four digits show. anonym.plus finds each long value on your device and reduces it to that allowed form.

When this applies

A display screen or report may print the whole string across several lines. You must cut each to the masked form under Requirement 3.4 before it shows.

How anonym.plus handles it

1. Open the report in anonym.plus on your device.
2. Local OCR reads scanned slips that print the digits.
3. The tool flags every full account value.
4. Apply Mask to keep the first six and last four digits.
5. Confirm no full number remains anywhere.
6. Save the cleaned copy locally.

What you need to provide

• The report or screen export (PDF, CSV, scan).
• The Mask operator set to the 6/4 display form.
• Optional batch for many statement pages at once.

PII & financial identifiers detected

Compliance achieved

• Meets PCI-DSS v4.0 Req. 3.4: only 6/4 digits show.
• Catches several brands of long number in the same pass.
• Offline work keeps the digits off any server.

Limitations & cautions

A spaced or hyphenated number on a faint scan can confuse OCR. Verify the flags on image pages so no middle digit slips through. The tool masks what it detects; check the result.