We are delighted to announce that following a thorough assessment process, hi has been awarded certification for Payment Card Industry Data Security Standards.
What is PCI DSS?
PCI DSS is a set of requirements intended to ensure that all companies that process, store, or transmit credit card information maintain a secure environment. Essentially it aims to improve account security throughout the transaction process.
What does PCI compliance involve?
PCI assessment covers most areas of our business, not least technology, data and operations. The assessment is organised into 6 specific groups, known as control objectives:
- Build and Maintain a Secure Network and Systems
- Protect Cardholder Data
- Maintain a Vulnerability Management Program
- Implement Strong Access Control Measures
- Regularly Monitor and Test Networks
- Maintain an Information Security Policy
The Assessment is then broken down into a 12-point checklist looking at the following areas in particular:
Who administers PCI certification?
An independent body, the PCI Security Standards Council (PCI SSC) administers and manages the PCI DSS. It is a global forum that brings together payments industry stakeholders to develop and drive adoption of data security standards and resources for safe payments worldwide.
What are the benefits of PCI compliance?
According to PCI SSC, there are several major benefits of compliance:
- PCI Compliance means that your systems are secure, and your customers can trust you with their sensitive payment card information; trust leads to customer confidence and repeat customers.
- PCI Compliance improves your reputation with acquirers and payment brands – just the partners your business needs.
- PCI Compliance is an ongoing process that aids in preventing security breaches and payment card data theft in the present and in the future; PCI compliance means you are contributing to a global payment card data security solution.
- As you try to meet PCI Compliance, you’re better prepared to comply with additional regulations, such as HIPAA, SOX, and others.
- PCI Compliance contributes to corporate security strategies.
- PCI Compliance likely leads to improving IT infrastructure efficiency.
This is a significant milestone for our business, and recognition of our commitment to trust, security and safer payments.