Website Payment Card Industry Data Security Standard
We act as a service provider, we are directly involved in the processing, storage, and transmission of cardholder data on behalf of third parties. To do this, we have in place security controls required to achieve compliance with the Payment Card Industry Data Security Standard (PCI DSS), which is an international information security standard that has been designed to apply to all organisations that handle credit card data, including storage, processing and transmitting card holder data and sensitive authentication data, these types of organisations include data centres, merchants, processors, acquirers, issuers, and service providers. The PCI DSS also includes a minimum set of technical and organisational requirements which protects such data against fraud through robust payment security.
The PCI DSS is also applicable to service providers where they do not process card payments and do not have any access to credit card information.
Any organisation that outsources payment operations is responsible and accountable for ensuring that all account data processed is suitably protected by contracted third parties.
It is necessary for all businesses that accept and receive or processes credit card payments to carry out an annual PCI DSS audit of security controls and processes, covering areas of data security such as retention, encryption, physical security, authentication and access management.
As a service provider we can help your organisation to fulfil the PCI DSS compliance and security requirements by allowing us to process and store card data, in a tokenized method in line with a PCI DSS environment, design and deployment. We have specialist technologies, delivering security and compliance in this area, including a secure network and security systems to protect third party card holder data, organisations that can benefit from such services include highly regulated markets such as fintech organisations, payment providers and e-gaming (online gambling) providers.