In today’s credit card processing environment, it is critical to make sure our business is Payment Card Industry Data Security Standard (PCI DSS) compliant. PCI DSS compliance helps protect our customers and our business from a cardholder data breach.
SBS uses FastSpring as our Merchant of Record to process all credit card payments. We do not accept credit card information over the phone or via emails. This may, at times, seem inconvenient, but it is an important step in ensuring customer data security.
The PCI DSS is a proprietary information security standard designed to ensure that companies processing, storing or transmitting payment card information maintain a secure environment. The PCI DSS applies to credit cards from the major card brands, including Visa, MasterCard, American Express, Discover and JCB. A third-party PCI Qualified Security Assessor (QSA) assesses company systems and processes on an annual basis and issues an Attestation of Compliance (AOC). Additional information can be found at https://www.pcisecuritystandards.org.
FastSpring complies to the highest standard as a Level 1 Service Provider and Merchant. They undergo exhaustive annual audits and monthly scans by qualified assessors. To ensure compliance requirements and protect our customers, FastSpring:
- Builds and maintains a secure network and systems
- Tokenizes and protects cardholder data
- Maintains a vulnerability management program
- Implements strong access control measures
- Regularly monitors and tests networks
- Maintains an information security policy
Sunday Business Systems utilizes reputable and PCI compliant service providers to minimize risk to our customers’ financial transactions. Customers can have confidence that financial transactions are safe and secure.
To learn more about our service provider, click here.