By Tom Jacob and Darryl Roots
Data integrity and security remains a key responsibility for many organisations dealing with highly sensitive business information especially where that includes data such as a customer’s payment details and in particular cardholder information.
In 2006 five global payment brands established the PCI Security Standards Council (SSC), which through their operating regulations require that any merchant and service provider that accepts scheme branded credit or debit cards for payment validate their compliance against a number of specific test points outlined in the PCI Data Security Standards (DSS).
Specifically, the PCI DSS is a set of requirements designed to ensure that all companies that process, store or transmit credit card information maintain a secure environment. As many of Datacom’s Orbit (Auckland based data centre facility) customers are dealing with financial transactions involving card scheme such as VISA or MasterCard, they must meet various degrees of compliance mandated by the PCI-DSS.
Over the past few months the Orbit and Kapua (Hamilton based data centre facility) teams have been working towards achieving this and in December and January we received notification that both facilities are now fully PCI compliant and meet the standard for a Level 1 Security Provider in restricting physical access to cardholder data.
Achieving PCI compliance in this way supports the requirements of our clients to be PCI accredited with various banking and financial institutions who provide them credit card merchant facilities and enable them to accept those cards as payment for goods and services.
Being able to provide data centre services that have already met PCI requirements reduces the overall cost of compliance for our clients and saves them from having to implement those stringent security measures within their own facilities, something that is often very difficult to achieve.
Datacom is committed to assisting clients in reducing the impact and costs of PCI compliance with our security consulting services, our own PCI compliant payments gateway and now the achievement of this milestone at Orbit and Kapua.
Tom Jacobs is Datacom’s General Manager of Data Centres.
Darryl Roots is Datacom’s Business Manager of Payment Services.