M.Video-Eldorado certifies acquiring according to the international PCI DSS security standard
| Customers: M of Video El Dorado Product: IT and Security External Audit Projects (PCI DSS and ISMS) Project date: 2023/11 - 2023/11
|
2023: PCI DSS International Security Standard Acquiring Certification
M.Video-Eldorado Group, a Russian company in the field of e-commerce and retail electronics and household appliances, as part of the development of its own fintech direction, increased the reliability of the payment infrastructure and guaranteed the safe operation of the site and applications with payment cards. The Group received the PCI DSS (Payment Card Industry Data Security Standard) 4-0 International Card Security Certificate, which it intends to confirm annually. Representatives of the group reported this on December 22, 2023.
Buyers of M.Video Dorado annually perform more than 20 million bank card transactions. As part of the work to optimize the payment infrastructure, the company conducted an independent audit vulnerabilities of the system safety and brought it in line with international standards and requirements for the protection cryptographic of information, PIN codes and payment equipment. Since the beginning of the year, the company has fulfilled almost 300 security requirements developed by the five largest payment systems.
PCI DSS certification means that data centers, the cloud platform and the M.Video-Eldorado software stack ensure the proper level of protection of customer information from unauthorized access, theft, fraud and other types of threats.
According to M.Video-Eldorado, the company's IT specialists completely excluded the human factor, updated data centers, developed new security standards and introduced modern protocols, advanced solutions to combat vulnerabilities. Financial data is encrypted into a payment link to this payment information, which is processed automatically using a specialized infrastructure segment.
The company also scans and updates IT systems on a quarterly basis, ensures high security of internal networks. Incidents are monitored in real time, and when security threats are detected at each stage of tracking the status and elimination of vulnerabilities, employees are immediately notified. All relationships and responsibilities within the framework of PCI DSS requirements between the service providers, namely between the processing center and the data center, as well as banksacquirers-, are recorded in the responsibility matrices.
| The site content is translated by machine translation software powered by PROMT. The machine-translated articles are not always perfect and may contain errors in vocabulary, syntax or grammar. Read original article If you find inaccuracies or errors in the results of machine translation, please write to editor@tadviser.ru. We will make every effort to correct them as soon as possible. |