PCI Compliance

Questions are commonly raised about the security of financial information hosted in cloud environments. In reality, the cloud can be a highly secure platform and in many cases more secure than an internal data centre alternative.

What is PCI?

Payment Card Industry Data Security Standards enforce compliance between consumers and business entities online. The standard was created to increase controls around cardholder data to reduce credit card fraud via its exposure online. Validation of compliance is performed annually by an external Qualified Security Assessor for organisations handling large volumes of transactions, or by Self-Assessment Questionnaire for companies handling smaller volumes.

PCI + AWS Cloud

Amazon Web Solutions offers PCI DSS validated tokenisation services which will wipe sensitive credit card data from the systems while maintaining analytics. Our consultants can ensure your systems are utilising these services to ensure PCI compliance for your business. This is particularly critical for businesses providing e-merchant facilities.

Your Responsibilities

ITOC Australia aims to guarantee that PCI compliance is adhered to with the highest of standards. However, it is important to note that it is ultimately an individuals responsibility to maintain PCI DSS, as a cloud integrator we cannot be responsible for any pitfalls. We recommend our clients dedicate time to understanding the PCI validation we offer and to perform their own due diligence.

Inquiries are welcome and we will do our best to provide you with the information you need surrounding PCI compliance.