All our transactions are in compliance with the PCI DSS Security Standard.
Secure Network and Systems
- 1. We have installed and maintain network security controls.
- 2. We apply secure configurations to all our system components.
Account Data Protections
- 3. We use our own technology to protect the temporarily stored cardholder data.
- 4. We protect cardholder data with standard strong cryptography during transmission over open, public networks, using at least SSL certificates with 4096-bit keys.
Vulnerability Management Program
- 5. Our systems and networks are continually protected from malicious software.
- 6. Our systems and software are developed and maintained on a secure basis.
Strong Access Control Measures
- 7. System components and cardholder data have restricted access.
- 8. All users and authenticate access to system components are identified.
- 9. All physical access to cardholder data is restricted at all times.
Monitor and Test Networks
- 10. We always log and monitor all access to system components and cardholder data.
- 11. We regularly test the security of systems and networks.
Information Security Policy
- 12. We have organizational policies and procedures that are oriented to support information security.
