Ventus is a certified Level 1 PCI-DSS solutions provider. As such, we meet all Payment Card Industry’s highest Data Security Standards, created to protect customer account data on a global basis.
We comply with the requirements for security management, network architecture, software design and a broad range of other critical protective measures as established by PCI-DSS, the leading standards-setting body of the credit card and electronic payments industry.
The Payment Card Industry Data Security Standard (PCI DSS) is a comprehensive set of international security requirements for protecting cardholder data. The PCI DSS was developed by Visa and the founding payment brands of the PCI Security Standards Council to help facilitate the broad adoption of consistent data security measures on a global basis. These 12 requirements are the foundation of Visa’s data security compliance program known as the Account Information Security (AIS) Program. This program was formerly known as the Cardholder Information Security Program (CISP) in the U.S.
The PCI Security Standards Council offers robust and comprehensive standards and supporting materials to enhance payment card data security. These materials include a framework of specifications, tools, measurements and support resources to help organizations ensure the safe handling of cardholder information. Separate from the mandate to comply with PCI DSS is the validation of compliance. Validation identifies vulnerabilities and ensures that appropriate levels of cardholder information security are maintained. Visa has prioritized and defined validation levels based on the volume of transactions and the potential risk and exposure introduced into the payment card industry.