As certification audit according to the PCI DSS standard affects the And 3 system

On September 28, 2015 it became known of compliance of the environment of data processing of payment cards of A 3 LLC to requirements of the PCI DSS 3.1 standard. Certification audit was booked by company "Andek"^[1].

Project Tasks

For payment processing using bank cards of international payment systems of MasterCard and Visa, And 3 company requirements of the standard of security of the industry of the PCI DSS payment cards need annual confirmation of conformity. The Andek company was To perform work elected.

Screenshot of the homepage of And 3 service (2015)

Project Progress

In course of execution of the project specialists of Andek company updated a scope of requirements of the PCI DSS standard, developed standards of safe configuring of systems in a scope of PCI DSS, updated current and developed additional regulating documents of And 3 company in the field of information security support. Besides, complex testing of a possibility of penetration into the environment of data processing of the payment cards "And 3" was held.

Project Results

According to the results of certification audit the staff of Andek company confirmed compliance of And 3 company to requirements of the PCI DSS standard.

Sergey Zemlyansky, the deputy CEO of A 3 LLC, noted: "Regular passing of the audit directed to check of compliance to requirements of PCI DSS allows to provide continual improvement of internal operating rooms and technical control procedures, to be convinced of the high level of security of the processed these payment cards and also to increase the level of a maturity of the company in general".

Notes