PCI DSS is the international standard for merchants and vendors to ensure that cardholder data is safe when stored and transmitted. It contains 12 core requirements, each with multiple sub-requirements, covering areas such as hardware equipment and information management policies. Its latest version, v3.0, contains new sub-requirements, for instance uniquely linking tokens to whom they have been assigned and controlling physical access to sensitive data storage areas.
Twin Benefits to Customers – Safety and Simplicity
Having a compliant provider brings twin benefits to customers. It assures them of a secure infrastructure for hosting data as well as simplifies the process of attaining and maintaining compliance themselves. For example, since NTT Com has undergone PCI DSS assessment, its services need not be reviewed when a customer undergoes PCI DSS assessment. This saves time and effort for the customer and reduces the complexity of the assessment process.
Multi-pronged Approach to Security
NTT Com has also been ISO27001 certified for information security management since 2006 in Europe, and is externally audited every six months. This ensures that its information security processes evolve along with its infrastructure and services. NTT com also offers advice and consultation services on PCI DSS and other security practices, through NTT Com Security, an NTT Com group company.
