PCI-DSS Compliance Platform

You process payment card holders’ data and you need to do what is necessary to keep that data safe.

You would like to assess your level of compliance and automate your organization’s risk-remediation solutions.

You value the reputation of your organization and the trust of your customers.

You want to let your customers know that your organization has taken appropriate steps to protect their data and ensure the security of their accounts from online fraud or fraudulent use of their payment cards.

What is PCI DSS ?

The Payment Card Industry Data Security Standard (PCI DSS) is an information security standard for organizations that handle branded credit cards from the major card schemes. It was developed to encourage and enhance cardholder data security and facilitate the broad adoption of consistent data security measures globally. PCI DSS provides a baseline of technical and operational requirements designed to protect account data.  

PCI DSS applies to all entities involved in payment card processing, including merchants, processors, acquirers, issuers, and service providers. PCI DSS also applies to all other entities that store, process or transmit cardholder data (CHD) and/or sensitive authentication data (SAD). 

The PCI DSS is administered and managed by the PCI Security Standards Council (PCI SSC), an independent body that was created by the major payment card brands (Visa, MasterCard, American Express, Discover and JCB.)  

This solution will help your company to adopt PCI DSS and fulfill the requirements of this standard. 

Use our software solution to prepare for PCI-DSS certification

To be compliant and obtain PCI-DSS certification, organizations need to understand how your customers data is retrieved, stored and organized.

1. Managing responsible governance for compliance with your structure

  • Ready to use or fully customizable: be operational in one to thirty days.
  • Friendly interfaces.
  • Coverage of all your current and future compliance needs.
  • Step-by-step adapted from beginner to expert.
  • Unlimited users.
  • Tutorials for self-learning the solution.
  • Premium online support.
  • A global and instantaneous view of the state of data compliance in the information system and compliance with PCI-DSS requirements.
  • Performance indicators.
  • Dashboards and custom reports.
  • Harmonized working methods.

2. Identifying your compliance with the requirements for your structure

  • Clarify complexities by reconciling requirements, checkpoints and compliance actions common to your obligations.
  • Pre-identification of requirements applied by granularity (Organization, Subcontractor, …).
  • Proof of compliance, non-applicability required for each point of requirement.
  • Collaborative audits and controls.

3. Creating and prioritizing actions to be carried out if non-compliant

  • A structured, intuitive and collaborative framework for continuous improvement.
  • Single entry.
  • Automated action plan with pre- populated modifiable recommendations.
  • Managing collaborative compliance actions.
  • Action accountability.

4. Risk management with a regularly reviewed and updated best practice implementation guide

  • Implementation guide provided for each requirement point.

5. Compliance Documentation to Prove Your Compliance

  • Mandatory documentation as part of the implementation and certification.
  • Training of a proof base for audit and/or certification track.
  • Documentary Management Centre.
  • Consistency of documentation.

6. Training and Awareness

  • Integrated training registry.

7. Compliance Checks and Audits

  • Preparing your audits and/or certification.
  • Collaborative questionnaires.
  • Automatic analysis of results.

Smart Global Governance solutions can be activated independently of each other depending on the level of compliance you want to address.

Additional benefits

Smart Global Governance  is the operational software solution to automate key processes in Ethics,Compliance and Controls. It can be used for implementation and compliance management with all local and international regulations as well as internal controls and procedures.

As a reminder: Online fraud figures – Observatory for the security of means of payment – Bank of France 2020 report

  • Scriptural payment transactions carried out by individuals, businesses and administrations represent a volume of 26 billion transactions in 2019 for a total amount of 28,658 billion euros.
  • In 2019, scriptural transaction fraud represents a total amount of 1.182 billion euros for nearly 7.5 million fraudulent transactions, an increase of 13% in amount and 11% in number over one year.
  • Fraud on payment and withdrawal transactions carried out in France and abroad with French cards is on the rise in 2019 (up 7.1% compared to 2018) and amounts to 470 million euros for a total amount of transactions of 736 billion euros (up 4.5% compared to 2018).