Payment security applies to the protection of CardHolder Data (CHD) centred around the Primary Account Number (PAN)and sensitive authentication data whenever it is processed, stored and/or transmitted.
If you accept, store, transmit and/or process payment cards, PCI DSS applies to you. This includes both Merchants and service providers to Merchants, providing services like Data Centre, Cloud services, Call centre, Storage services etc.
We are one of the few Australian companies approved by the Payment Card Industry (PCI) council as a Qualified Security Assessor (QSA) and Payment Application (QSA) company providing services to Australia, Central Europe, Middle East, and Africa (Latin America and the Caribbean) regions.
|•  Trustworthiness:||Gaining customers trust is the key to success, PCI compliance provides the level of trust to the customer on their data.|
|•  Security:||PCI compliance elevates the overall security posture of an organization in terms of infrastructure and environment itself.|
|•  Continuous Improvement:||On-going PCI compliance demonstrates a commitment to evolving the security important measure that is deemed necessary for the organization to prevent from security breaches.|
The following six goals and twelve standards cover technical and operational system components included in or connected to cardholder data.
The founding members of PCI SSC endorse the standard, promote use of validated payment applications, develop and and enforce compliance programs.
PA-DSS applies to third party applications that store, process and/or transmit payment CardHolder Data as part of authorisation and/or settlement process. To achieve PA-DSS compliance, software developers/providers must have their application audited by a Payment Application Qualified Security Assessor (PA-QSA) and revalidated whenever any major changes are made.
Our qualified assessors, PCI-QSA and PA-QSA, can assist in all aspects to ensue an effective security assessment of your Payment Applications.
Mandated by PCI-DSS Req.12 and an essential part of ensuring a security environment, Security Awareness Training will empower staff and understanding of the various attack strategies used by hackers to gain access and/or sensitive information. We can assist you in developing and implementing best practice behaviour for protecting cardholder data. Technology can go so far, people and their behaviour are essential in PCI security.
We offer the following services that can assist you with your compliance requirements.