About PCI DSS
The current payment card data security standard is a collection of 12 different security requirements sets.
PCI DSS certification is the International Payment Systems’ mandatory requirement (Visa, MasterCard, MIR, American Express, Discover, JCB) for companies, engaged in payment card data processing, transfer or storage. The current organizations are obliged to comply with the Payment Card Industry Data Security Standard (PCI DSS). Annual certification audit is deemed a confirmation of this fact.
Our audit methodology provides a great chance to minimize the time spent by your employees for interviews and audit evidence collection.
We’ll help you to prepare for a successful certification audit. Our experienced team will give you some tips on the way to reduce your project scope, modify the document base and develop a plan for making the document base to meet the standard requirements.
Compliance Control company is engaged in certification audits for compliance with the PCI DSS standard. Compliance Control was one of the first, which has got the Qualified Security Assessor (QSA) status and has been accredited by the PCI SSC.
Those organizations, engaged in storage, processing or transfer ring at least one payment transaction data or a payment card owner’s data during the year, are obliged to comply with the standard. Most often a certification audit for compliance with the standard is required for banks, retail stores and e-commerce websites, processing centers, payment gateways, backup media storage, card personalization organizations, etc.
Then we prepare a Report on Compliance, issue an Attestation of Compliance and a Certificate of Compliance on the audit results basis. The customer receives a Certificate of Conformity after the PCI SSC (PCI Security Standard Council) approval.
We send the Certificate of Conformity to the international payment systems’ representative office or to acquiring banks.