just finished the PCI DSS
compliance project lead by Endava, a UK based Qualified Security Asessor. PCI DSS
stands for Payment Card Industry Data Security Standard.
Achieving this milestone is instrumental to amber.io as we focus on our user’s data safety and industry standards. While the PCI DSS standard is a fairly new development (version 1.0 was released in 2004), it quickly imposed itself as being the preferred framework for ensuring the safe handling of cardholder information within organisations.
According to Wikipedia “the standard was created to increase controls around cardholder data to reduce credit card fraud via its exposure”. The project took a few weeks to complete and we’d like to thank Endava LTD, our Qualified Security Assessor that was with us through this whole process.
We’re finally ready to touch credit card data and place orders on behalf of users on merchant websites. Let the journey begin.