Your responsibility for data protection
As a company that processes card data of international payment systems (e.g. credit card data), you are jointly responsible for data protection. As soon as you are responsible for large amounts of such payment card data, the payment systems require an annual PCI DSS audit by an accredited Qualified Security Assessor (QSA).
Analysis, documentation and recommendation
SRC’s QSAs perform this PCI DSS audit for you. In the PCI DSS audit, the QSA examines whether the requirements of the PCI DSS for card data security are being met. To this end, the QSA checks guidelines and procedures, can show processes and evidence, takes insight into system and network settings, and conducts interviews with responsible personnel.
Individual, customer-oriented approach
The experts at SRC are not concerned with the mere execution of a checklist, but with pursuing a customer-oriented approach. Our goal is to understand your business model and its environment and then, based on our extensive experience, contribute ideas on how processes or technical environments can be redesigned to facilitate compliance. We accompany you through the difficult task of mastering the constantly expanded requirements of PCI DSS.
Manifold regulated environments require manifold tests
Often an environment does not only consist of a subject to be examined. In such diversely regulated environments we use, if desired, the expenses arising for the PCI DSS audit and examine other topics, like PCI Card Production (PCI CP), ISO/IEC 27001 or data security.