List Of PCI DSS Compliant Service Providers - Strategic Merchant
1y ago
23 Views
1 Downloads
273.24 KB
23 Pages
Report/dmca
Download PDF

Transcription

List of PCI DSS Compliant Service ProvidersAs Of September 30, 2008The companies listed below successfully completed an assesssment based on the PCI Data Security Standard(PCI DSS).The "VALIDATION DATE" is the date of last compliance. PCI DSS assessments are valid for one year, with thenext annual report due to Visa one year from the "VALIDATION DATE". Reports that are from 1-60 days lateare noted in yellow and reports that are from 60-90 days late are noted in red. Entities with reports over 90 dayspast due are removed from this list.It is the client's responsibility to use compliant service providers and to follow up with service providers if thereare any questions about their compliance status.List of Compliant Service Providers - AllSERVICE PROVIDERVALIDATIONDATESERVICESCOVERED BY REVIEW (1)ASSESSOR1ShoppingCart.comJune 30, 2008Internet Payment ProcessingSecurity Metrics1st AmericardMarch 31, 2008Merchant Payment ServicesTrustwave3Delta SystemsSeptember 30, 2008Merchant Payment ServicesFortrex Technologies3Pea Technologies, IncMay 31, 2008Prepaid Card ProcessingSecurityMetricsA3 IT SolutionsNovember 30, 2007Managed HostingTrustwaveAAFESJuly 31, 2008Managed HostingPayment GatewayPayment ProcessingIBM Internet Security SystemsABC FinancialMay 31, 2008Account Billing ServicesTrustwaveAcademy Collection ServiceOctober 31, 2007Debt Collection AgencySelf-AssessmentAccel NetworksJanuary 31, 2008Wireless Payment ProcessingTrustwaveAccountNowJune 30, 2008Account Management ServicesTrustwaveAccounts ReceivableManagement (ARM)June 30, 2008Account CollectionsSelf-AssessmentACH DirectNovember 30, 2007Merchant Payment ProcessingRSM McGladreyACI WorldwideApril 30, 2008Merchant Payment ProcessingSolutionary, IncACI Worldwide - Winn-DixieEnvironmentSeptember 30, 2008Credit Card ServicesTrustwavePayment ProcessingACS Government and Community August 31, 2008SolutionsPayment ProcessingJefferson WellsAcxiom ICS/BNS Core & ISC/BNS August 31, 2008Bankruptcy Notification ServicesVerisignProprietary(1) PCI DSS assessments represent only a "snapshot" of security in place at the time of the review, and do not guarantee that those securitycontrols remain in place after the review is complete. These reviews did not cover proprietary software solutions that may be used or sold bythese service providers.Inclusion on this list indicates only that the service provider successfully completed a PCI DSS assessment for their validationlevel, based on the report of an independent Qualified Security Assessor (QSA). Visa does not endorse the service providers ortheir business processes or practices.Visa has no duty to clients, merchants, processors or other third parties to obtain or review reports from any party required tosubmit a report, and Visa is not responsible to any party for the timeliness, accuracy or completeness of any report. 2008 Visa Inc.1 of 23

List of Compliant Service Providers - AllSERVICE PROVIDERVALIDATIONDATESERVICESCOVERED BY REVIEW (1)ASSESSORAcxiom ICS/BNS Proprietary - 1 & August 31, 20082Bankruptcy Notification ServicesVerisignAdeptraDecember 31, 2007Call Center ServicesFraud and Chargeback ServicesTrustwaveAdteractive, Inc.February 28, 2008Merchant Digital MarketingDigital Resources Group (DRG)Aegis CommunicationsDecember 31, 2007Call Center ServicesK3DESAffinity SolutionsNovember 30, 2007Loyalty ProgramsSolutionaryAHT ServicesJuly 31, 2008Payment GatewayTrustwaveAirlines Reporting CorporationFebruary 28, 2008Payment ProcessingVerisignAlaska Option ServicesApril 30, 2008EFT ProcessingK3DESAliaswireSeptember 30, 2008Payment GatewayIGX GlobalAlliance Data - Network ServicesOctober 31, 2007Merchant Payment ProcessingCybertrustAlliance Data - RemittanceProcessingMay 31, 2008Remittance ProcessingCybertrustAlliance Data - Retail ServicesJanuary 31, 2008Back Office Services for marketingand collectionCybertrustAlliance Data - Utility ServicesJuly 31, 2008Internet Payment ProcessingManaged HostingSelf-AssessmentAlliance Entertainment CorpJune 30, 2008Payment GatewaySolutionaryAlta ResourcesApril 30, 2008Account Billing ServicesPayment ProcessingIBM Internet Security SystemsAmazon.comOctober 31, 2007Internet Payment ProcessingTrustwaveAmerican Data TechnologyApril 30, 2008Managed HostingSelf-AssessmentAmericaneagle.comNovember 30, 2007Co-Location HostingManaged HostingManaged Merchant HostingPhysical SecurityFortrex TechnologiesAndera, Inc.September 30, 2007 New Accounts OnlineSelf-AssessmentAngel.comOctober 31, 2007Account Management ServicesSelf-AssessmentAplus.NetJuly 31, 2008Internet Payment ProcessingSecurity MetricsApplied Card SystemsJuly 31, 2008Credit Card Account ServicingSelf-AssessmentAprivaJuly 31, 2008Merchant Payment ProcessingTrustwaveArcaneoDecember 31, 2007Web-based ReportingSelf-AssessmentAriba IncMay 31, 2008Expense ManagementPayment Software company (PSC)(1) PCI DSS assessments represent only a "snapshot" of security in place at the time of the review, and do not guarantee that those securitycontrols remain in place after the review is complete. These reviews did not cover proprietary software solutions that may be used or sold bythese service providers.Inclusion on this list indicates only that the service provider successfully completed a PCI DSS assessment for their validationlevel, based on the report of an independent Qualified Security Assessor (QSA). Visa does not endorse the service providers ortheir business processes or practices.Visa has no duty to clients, merchants, processors or other third parties to obtain or review reports from any party required tosubmit a report, and Visa is not responsible to any party for the timeliness, accuracy or completeness of any report. 2008 Visa Inc.2 of 23

List of Compliant Service Providers - AllSERVICE PROVIDERVALIDATIONDATESERVICESCOVERED BY REVIEW (1)ASSESSORArise Virtual SolutionsMay 31, 2008Payment Transmission ServicesVerisignArt Technology Group (ATG)November 30, 2007Payment GatewayPayment Software company (PSC)Arvato Finance Services LimitedJuly 31, 2008Payment ProcessingAcertigo AG - An EXCELSIS CompanyAsociación CIBAO (ACAP)September 30, 2008E-CommerceIBM Internet Security SystemsAT&T Managed Services - AT&TEnhanced VPN Services, AT&TVPN Services, AT&T PrivateNetwork Transport ServicesJuly 31, 2008Managed MPLS VPNTrustwaveAT&T Managed Services - AT&TNetwork Based IP VPN RemoteAccess Service / AT&T VPNTunneling ServiceMay 31, 2008Managed VPNTrustwaveAT&T Managed Services Endpoint SecurityJuly 31, 2008Managed SecurityTrustwaveAT&T Managed Services Intrusion Detection ServicesJuly 31, 2008Managed SecurityTrustwaveAT&T Managed Services Intrusion Prevention ServicesJuly 31, 2008Managed SecurityTrustwaveAT&T Managed Services - IPTelephony and LAN ServicesJuly 31, 2008Managed VPNTrustwaveAT&T Managed Services Managed Router ServicesJuly 31, 2008Managed VPNTrustwaveAT&T Managed Services Network Based FirewallJuly 31, 2008Managed SecurityTrustwaveAT&T Managed Services Premises FirewallJuly 31, 2008Managed SecurityTrustwaveAT&T Managed Services Transaction Routing ServiceJuly 31, 2008Payment Transmission ServiceTrustwaveAT&T Managed Services VoiceTonesJuly 31, 2008Data ServicesTrustwaveIVR ServicesAtlantech Online, IncJuly 31, 2008Data-Center HostingPhysical SecurityTrustWaveAuBeta Networks CorporationJune 30, 2008Payment Transmission ServicesTrustwaveAuthorize.NETNovember 30, 2007Internet Payment ProcessingTrustwaveBA Merchant ServicesMarch 31, 2008Payment ProcessingTrustwaveBank Card Services, IncMay 31, 2008Merchant Payment ProcessingTrustwaveBankersBank Card ServicesNovember 30, 2007Back Office Services for marketingand collectionSelf-Assessment(1) PCI DSS assessments represent only a "snapshot" of security in place at the time of the review, and do not guarantee that those securitycontrols remain in place after the review is complete. These reviews did not cover proprietary software solutions that may be used or sold bythese service providers.Inclusion on this list indicates only that the service provider successfully completed a PCI DSS assessment for their validationlevel, based on the report of an independent Qualified Security Assessor (QSA). Visa does not endorse the service providers ortheir business processes or practices.Visa has no duty to clients, merchants, processors or other third parties to obtain or review reports from any party required tosubmit a report, and Visa is not responsible to any party for the timeliness, accuracy or completeness of any report. 2008 Visa Inc.3 of 23

List of Compliant Service Providers - AllSERVICE PROVIDERVALIDATIONDATESERVICESCOVERED BY REVIEW (1)ASSESSORBankservOctober 31, 2007Merchant Payment ProcessingPayment Software Company (PSC)Barr SecurityJuly 31, 2008School Lunch Merchant AccountSelf-AssessmentBeanstreamSeptember 30, 2008Internet Payment ProcessingSPIGuard Security Solutions IncBearingPoint ePayNovember 30, 2007Internet Payment ProcessingTrustwaveBillMatrixFebruary 28, 2008Bill Payment ProcessingTrustwaveBlackboardMay 31, 2008Merchant Payment ProcessingTrustwaveBluefin Payment SystemsOctober 31, 2007Merchant Payment Processing403 LabsBluePayMay 31, 2008Merchant Payment ProcessingTrustwaveBSG Payments (formerly BillingConcepts)November 30, 2007Merchant Payment ProcessingTrustwaveBusiness Data Record ServicesNovember 30, 2007Records ManagementTape StorageRSM McGladreyCaledon Card SystemsJune 30, 2008Payment ProcessingMTS AllstreamCapital Card ServicesApril 30, 2008Credit Card ServicesTrustwaveCard Management Corp.August 31, 2008Credit Card ServicesCrowe ChizekCard Services International (CSI),a First Data CompanySeptember 30, 2008Merchant Payment ProcessingTrustwaveCard Tranz, Inc.September 30, 2008Merchant Payment ProcessingTrustwaveCardholder Brokerage Services,Inc. (CBSI)July 31, 2008Account Management ServicesSelf-AssessmentCardinal Commerce Corp.December 31, 2007Verified by Visa Merchant ServicesPayment Software Company (PSC)Cardtronics EFTMay 31, 2008ATM ProcessingK3DESCardworks ProcessingAugust 31, 2008Payment ProcessingAccuvantCardworks Servicing LLCFebruary 28, 2008Account Management ServicesJefferson WellsCarlson Marketing Worldwide(Visa Data Track)March 31, 2008Visa Data TrackTrustwaveCarlson Marketing Worldwide(Visa Extras)June 30, 2008Visa ExtrasTrustwaveCartManagerFebruary 28, 2008Payment ProcessingTrustwaveCash SystemsNovember 30, 2007ATM ProcessingInformation ExchangeCashLINQ Group, LLCAugust 31, 2008Merchant Payment ServicesSecurityMetricsCatalyst PaymentsApril 30, 2008Merchant Payment ProcessingTrustwaveCbossNovember 30, 2007Payment ProcessingSecurityMetricsCCBillJanuary 31, 2008Internet Payment ProcessingChief Security Officers(1) PCI DSS assessments represent only a "snapshot" of security in place at the time of the review, and do not guarantee that those securitycontrols remain in place after the review is complete. These reviews did not cover proprietary software solutions that may be used or sold bythese service providers.Inclusion on this list indicates only that the service provider successfully completed a PCI DSS assessment for their validationlevel, based on the report of an independent Qualified Security Assessor (QSA). Visa does not endorse the service providers ortheir business processes or practices.Visa has no duty to clients, merchants, processors or other third parties to obtain or review reports from any party required tosubmit a report, and Visa is not responsible to any party for the timeliness, accuracy or completeness of any report. 2008 Visa Inc.4 of 23

List of Compliant Service Providers - AllSERVICE PROVIDERVALIDATIONDATESERVICESCOVERED BY REVIEW (1)ASSESSORCenter PartnersOctober 31, 2007Call Center ServicesVerisignCentral Coast ProcessingApril 30, 2008Payment Processing403 LabsCentral States IndemnityNovember 30, 2007Payment ProcessingFishNet SecurityCentrix Bank – LockBox ServiceMay 31, 2008Payment GatewaySecurityMetricsCentury Bankcard ServicesMay 22, 2008Merchant POS ProcessingInformation ExchangeCertain SoftwareFebruary 28, 2008Web-based ReportingPayment Software Company (PSC)Certified PaymentsSeptember 30, 2008Payment ProcessingTrustwaveChase Loyalty SolutionsDecember 31, 2007Merchant Payment ProcessingTrustwaveChase Paymentech Solutions,LLC.January 31, 2008Gift Card ProcessingTrustwaveInternet Payment ProcessingPayment ProcessingCheckFree PayByPhoneJune 30, 2008Phone PaymentsTrustwaveChockStoneSeptember 30, 2008Gift Card ProcessingMerchant Payment ProcessingStored Value Card ProcessingTrustwaveChoicePayOctober 01, 2008Internet Payment GatewayK3DESChrislands, IncNovember 30, 2007Managed Merchant HostingRaven EyeCintas Document ManagementShreddingJune 30, 2008Off Site Data ProtectionSecureState ConsultingCintas Document ManagementStorageJune 30, 2008Off Site Data ProtectionSecureState ConsultingCityXpressFebruary 28, 2008Internet Payment GatewayTrustwaveClearCommerceMay 31, 2008Internet Payment ProcessingVerified by Visa Hosted PayerAuthenticationTrustwaveClearentApril 30, 2008New Merchant AccountsReport ProcessingTrustwaveClearTranJanuary 31, 2008Merchant Payment ProcessingSecurityMetricsColumbus DataJanuary 31, 2008ATM ProcessingInformation ExchangeComdata Processing SystemsAugust 31, 2007Payment ProcessingK3DESCommerciantOctober 31, 2007Payment ProcessingTrustwaveCommunications Data ServicesMay 31, 2007Order FulfillmentRSM McGladreyComplianthost.com, a GSIService OfferingJuly 31, 2008Data-Center HostingSolutionaryManaged Hosting(1) PCI DSS assessments represent only a "snapshot" of security in place at the time of the review, and do not guarantee that those securitycontrols remain in place after the review is complete. These reviews did not cover proprietary software solutions that may be used or sold bythese service providers.Inclusion on this list indicates only that the service provider successfully completed a PCI DSS assessment for their validationlevel, based on the report of an independent Qualified Security Assessor (QSA). Visa does not endorse the service providers ortheir business processes or practices.Visa has no duty to clients, merchants, processors or other third parties to obtain or review reports from any party required tosubmit a report, and Visa is not responsible to any party for the timeliness, accuracy or completeness of any report. 2008 Visa Inc.5 of 23

List of Compliant Service Providers - AllSERVICE PROVIDERVALIDATIONDATESERVICESCOVERED BY REVIEW (1)ASSESSORComplianthost.com, a GSIService OfferingJuly 31, 2008Physical SecuritySolutionaryComputer Services, Inc.September 30, 2008Payment ProcessingCrowe ChizekComstar InteractiveApril 30, 2008Internet Payment ProcessingMobile Payment ProcessingWireless Payment ProcessingTrustwaveConcord Electronic FinancialSystems (CEFS), a First DataCompanySeptember 30, 2008Payment ProcessingTrustwaveConcord Emerging Technologies,a First Data CompanySeptember 30, 2008Merchant Payment ProcessingTrustwaveConcord Financial Technologies(CFT), a First Data CompanySeptember 30, 2008Merchant Payment ProcessingTrustwaveConcord Payment Services(CPS), First Data CompanySeptember 30, 2008Payment ProcessingTrustwaveConcurFebruary 28, 2008Travel Profile ServicesSelf-AssessmentConnexions Loyalty TravelSolutionsJune 30, 2008Call Center ServicesSelf-AssessmentOrder FulfillmentConsumer Benefit ServicesMarch 31, 2008Loyalty ProgramsTrustwaveConvergys CCMSApril 30, 2008Customer Relationship ManagementFortrex TechnologiesConvergys EncoreMarch 31, 2008Account Billing ServicesFortrex TechnologiesConvergys SpeechportApril 30, 2008IVR Payment ProcessingFortrex TechnologiesCO-OP Financial ServicesApril 30, 2008ATM ProcessingDispute ResolutionTevora Business Solutions IncCredit DiscoveryDecember 31, 2007Report ProcessingK3DESCredit Management GroupNovember 30, 2007Rewards 660Self-AssessmentCredit Union Card Center (ICULServices Corporation)November 30, 2007Credit Card ServicesSelf-AssessmentCreditCall Communications Ltd.January 31, 2008Internet Payment ProcessingTrustwaveCROEMOctober 31, 2008Merchant Payment ProcessingTrustwaveCSG SystemsMarch 31, 2008Account Billing ServicesSolutionaryCSI SoftwareOctober 31, 2007Account Billing ServicesTrustwaveCyber City TeleservicesSeptember 30, 2008Call Center ServicesCrimsonSecurityCyberaApril 30, 2008Data TransmissionIBM Internet Security SystemsCyberSource CorporationAugust 31, 2008Internet Payment ProcessingCyberTrust(1) PCI DSS assessments represent only a "snapshot" of security in place at the time of the review, and do not guarantee that those securitycontrols remain in place after the review is complete. These reviews did not cover proprietary software solutions that may be used or sold bythese service providers.Inclusion on this list indicates only that the service provider successfully completed a PCI DSS assessment for their validationlevel, based on the report of an independent Qualified Security Assessor (QSA). Visa does not endorse the service providers ortheir business processes or practices.Visa has no duty to clients, merchants, processors or other third parties to obtain or review reports from any party required tosubmit a report, and Visa is not responsible to any party for the timeliness, accuracy or completeness of any report. 2008 Visa Inc.6 of 23

List of Compliant Service Providers - AllSERVICE PROVIDERVALIDATIONDATESERVICESCOVERED BY REVIEW (1)ASSESSORCyberSource CorporationAugust 31, 2008Verified by Visa Hosted PayerAuthenticationCyberTrustCygnusFebruary 28, 2008Payment GatewayTrustwaveCynergy DataAugust 31, 2008Merchant Payment ServicesInformation ExchangeData Center of ArizonaDecember 31, 2007Call Center ServicesSelf-AssessmentData Delivery ServicesJuly 31, 2008Web-based ReportingTrustwaveData StreamFebruary 28, 2008ATM ProcessingInformation ExchangeDataCoMay 31, 2008Credit Card ServicesBT INSDataline SystemsDecember 31, 2007Affinity Card ServicesTrustwaveDataPipeSeptember 30, 2007 Co-Location HostingManaged HostingPhysical SecurityTrustwaveDataproseJanuary 31, 2008Bill Payment ProcessingBackbone Security.com, IncDatawire CommunicationNetwork, a First Data CompanyDecember 31, 2007Payment Transmission ServicesTrustwaveDebit Technologies, IncMay 31, 2008Customer Relationship ManagementInformation ExchangeDelphis SoftwareNovember 30, 2007Managed HostingPayment Software company (PSC)DemandwareJune 30, 2008Managed HostingSecurityMetricsDeposit Computer Services, IncJuly 31, 2008Account Billing ServicesDispute ResolutionSelf-AssessmentDHD MediaJune 30, 2008Internet Payment ProcessingTrustwaveDigital Payment TechnologiesMay 31, 2008Payment ProcessingPayment Software company (PSC)Digital RiverJuly 31, 2008Internet Payment ProcessingCyberTrustDirect Mail ProcessorsFebruary 28, 2008Merchant Payment ServicesFortrex TechnologiesDST Output, LLCJanuary 31, 2008Payment ProcessingFishNet SecurityEbocom, LLCApril 30, 2008Payment ProcessingCyberTrustEchoSat CommunicationsSeptember 30, 2008Payment Transmission ServicesSecurity InnovationeCommLinkNovember 30, 2007Debit Card ProcessingStored Value Card ProcessingRSM McGladreyECS/PayByComputerAugust 31, 2007Internet Payment GatewayIGX GlobalEDS Commercial CardMay 31, 2008Payment ProcessingTrustwaveEDS Consumer Card ServicesSeptember 30, 2007 Payment ProcessingTrustwaveEDS Consumer DirectAugust 31, 2008TrustwaveEDS Deposit SystemsSeptember 30, 2007 Payment ProcessingOrder FulfillmentTrustwave(1) PCI DSS assessments represent only a "snapshot" of security in place at the time of the review, and do not guarantee that those securitycontrols remain in place after the review is complete. These reviews did not cover proprietary software solutions that may be used or sold bythese service providers.Inclusion on this list indicates only that the service provider successfully completed a PCI DSS assessment for their validationlevel, based on the report of an independent Qualified Security Assessor (QSA). Visa does not endorse the service providers ortheir business processes or practices.Visa has no duty to clients, merchants, processors or other third parties to obtain or review reports from any party required tosubmit a report, and Visa is not responsible to any party for the timeliness, accuracy or completeness of any report. 2008 Visa Inc.7 of 23

List of Compliant Service Providers - AllSERVICE PROVIDERVALIDATIONDATESERVICESCOVERED BY REVIEW (1)ASSESSOREDS GM Card Vehicle RewardsProgramJune 30, 2008Rewards/Gift Card ProgramsTrustwaveEDS Guidance AuthorizationNovember 30, 2007Payment ProcessingTrustwaveEDS Merchant Acquirer ServicesSeptember 30, 2007 Payment ProcessingTrustwaveEDS Oregon eGovernmentApril 30, 2008Managed Merchant HostingTrustwaveEDS Pay for ConvenienceApril 30, 2008Internet Payment ProcessingTrustwaveEDS SurveyorJune 30, 2008Report ProcessingTrustwaveeFunds Electronic PaymentsSeptember 30, 2008Payment ProcessingTrustwaveEFXMarch 31, 2008Payment ProcessingT3iElan Financial ServicesApril 30, 2008Payment ProcessingK3DESElan Financial Services (formerlyGenPass)June 30, 2008Payment ProcessingK3DESElan Financial Services CreditCard IssuingNovember 30, 2007Payment ProcessingTrustwaveElavon (formerly NOVA)May 31, 2008MerchantConnect/DMRPayment ProcessingviKLIXVirtual MerchantVerisignElectronic Clearing House (ECHO) September 30, 2007 Payment Processing403 LabsElectronic Merchant SystemsApril 30, 2008Merchant Payment ProcessingTrustwaveElectronic Payment Exchange(EPX)April 30, 2008Merchant Payment ProcessingPayment Software Company (PSC)Electronic Payments IncJuly 31, 2008Credit Card ServicesInformation ExchangeElectronic Processing ServicesJanuary 31, 2008Merchant Payment ProcessingInformation ExchangeElectronic Transaction SystemsCorporation (ETS Corp.)September 30, 2008Merchant Payment ProcessingFortrex TechnologiesElement Payment ServicesNovember 30, 2007Payment ProcessingInformation ExchangeEmergisJune 30, 2008Internet Payment GatewayTrustwaveEMS Holland, a First DataCompanyDecember 31, 2007Payment ProcessingTrustwaveEncircleJuly 31, 2008Payment ProcessingK3DESEperformax CentersMay 31, 2008Call Center ServicesHill & AssociatesEpicenter TechnologiesFebruary 28, 2008Call Center ServicesControlcaseEpoch (a dba of Paycom.net)November 30, 2007Internet Payment ProcessingProtivitieProcessing NetworkApril 30, 2008Internet Payment ProcessingTrustwave(1) PCI DSS assessments represent only a "snapshot" of security in place at the time of the review, and do not guarantee that those securitycontrols remain in place after the review is complete. These reviews did not cover proprietary software solutions that may be used or sold bythese service providers.Inclusion on this list indicates only that the service provider successfully completed a PCI DSS assessment for their validationlevel, based on the report of an independent Qualified Security Assessor (QSA). Visa does not endorse the service providers ortheir business processes or practices.Visa has no duty to clients, merchants, processors or other third parties to obtain or review reports from any party required tosubmit a report, and Visa is not responsible to any party for the timeliness, accuracy or completeness of any report. 2008 Visa Inc.8 of 23

List of Compliant Service Providers - AllSERVICE PROVIDERVALIDATIONDATESERVICESCOVERED BY REVIEW (1)ASSESSOReProcessing NetworkApril 30, 2008Mobile Payment ProcessingPOS Payment ProcessingTrustwaveEpsilon Data ManagementAugust 31, 2008Loyalty ProgramsCyberTrustEVO Merchant ServicesJuly 31, 2007Merchant Payment ProcessingTrustwaveEvolution BenefitsDecember 31, 2007Account Billing ServicesSelf-AssessmentE-xact TransactionsMay 31, 2008Merchant Payment ProcessingEmergisExcellence in MotivationNovember 30, 2007Rewards/Gift Card ProgramsInformation ExchangeExperian Information SolutionsSeptember 30, 2008Credit ReportingCyberTrustExtraMeasuresMay 31, 2008Fraud and Risk AnalysisPSCEzGovNovember 30, 2007Managed Merchant HostingIBM Internet Security SystemsEzic, Inc.July 31, 2008Payment ProcessingInformation ExchangeFair Isaac - Card AlertSeptember 30, 2008Credit ReportingTrustwaveFaith DirectJuly 31, 2008Account Billing ServicesCrimsonSecurityFarelogixApril 30, 2008Travel Profile ServicesSelf-AssessmentFast Transact IncMay 31, 2008Merchant Payment ProcessingContronl CaseFidelity Information Services Card Loyalty ProgramJune 30, 2008Loyalty ProgramsIBM Internet Security SystemsFidelity Information Services Certegy UK, BirminghamSeptember 30, 2008Authorization and SettlementIBM Internet Security SystemsPayment GatewayFidelity Information Services ChicagoNovember 30, 2007Debit Card ProcessingIBM Internet Security SystemsPayment ProcessingFidelity Information Services eFunds Prepaid SolutionsApril 30, 2008Payment ProcessingTrustwaveFidelity Information Services India BPOSeptember 30, 2008Billing and Customer SupportIBM Internet Security SystemsFidelity Information Services Little RockMay 31, 2008Debit Card ProcessingIBM Internet Security SystemsPayment ProcessingFidelity Information Services Norcross GAApril 30, 2008Payment ProcessingIBM Internet Security SystemsFidelity Information Services PlainviewSeptember 30, 2008Remittance ProcessingIBM Internet Security SystemsFidelity Information Services - St.PetersburgSeptember 30, 2008Remittance ProcessingIBM Internet Security Systems(1) PCI DSS assessments represent only a "snapshot" of security in place at the time of the review, and do not guarantee that those securitycontrols remain in place after the review is complete. These reviews did not cover proprietary software solutions that may be used or sold bythese service providers.Inclusion on this list indicates only that the service provider successfully completed a PCI DSS assessment for their validationlevel, based on the report of an independent Qualified Security Assessor (QSA). Visa does not endorse the service providers ortheir business processes or practices.Visa has no duty to clients, merchants, processors or other third parties to obtain or review reports from any party required tosubmit a report, and Visa is not responsible to any party for the timeliness, accuracy or completeness of any report. 2008 Visa Inc.9 of 23

List of Compliant Service Providers - AllSERVICE PROVIDERVALIDATIONDATESERVICESCOVERED BY REVIEW (1)ASSESSORFidelity Information ServicesLisle - Remittance ProcessingNovember 30, 2007Remittance ProcessingIBM Internet Security SystemsFifth Third Processing Solutions Issuing and Switch-ProvidingSystemsJune 30, 2008Payment ProcessingTrustwaveFifth Third Processing SolutionsAcquiring SystemsJune 30, 2008Payment ProcessingTrustwaveFirst American Payment SystemsJune 30, 2008Merchant Payment ProcessingIBM Internet Security SystemsFirst Data Government SolutionsDecember 31, 2007Merchant Payment ProcessingTrustwaveFirst Data International-ChinaSeptember 30, 2008Merchant Payment ProcessingTrustwaveFirst Data InternationalDeutschland (Germany)October 31, 2007Merchant Payment ProcessingTrustwaveFirst Data International-Hellas(Greece)December 31, 2007Merchant Payment ProcessingTrustwaveFirst Data International-LAC (Latin December 31, 2007American & Canada)Merchant Payment ProcessingTrustwaveFirst Data International-LatviaDecember 31, 2007Merchant Payment ProcessingTrustwaveFirst Data International-LithuaniaDecember 31, 2007Merchant Payment ProcessingTrustwaveFirst Data International-OmniPayLimitedDecember 31, 2007Payment ProcessingTrustwaveFirst Data International-TeleCash(Germany)October 31, 2007Merchant Payment ProcessingTrustwaveFirst Data International-UK(Basildon)December 31, 2007Merchant Payment ProcessingTrustwaveFirst Data International-UK(Hellaby, formerly ActiveResources)December 31, 2007Merchant Payment ProcessingTrustwaveFirst Data Merchant ServicesDecember 31, 2007Payment ProcessingTrustwaveFirst Data ResourcesJanuary 31, 2008Payment ProcessingTrustwaveFirst Data Retail ATM Services(formerly known as ConcordProcessing)September 30, 2008ATM ProcessingTrustwaveFirst Hawaiian BankJuly 31, 2008Payment ProcessingTrustwaveFirst Horizon Merchant ServicesOctober 31, 2007Payment ProcessingCyberTrustFirst National Bank of OmahaJanuary 31, 2008Payment ProcessingTrustwaveFirst National Merchant SolutionsJanuary 31, 2008Payment ProcessingTrustwaveFirst National TechnologySolutionsMarch 31, 2008Co-Location HostingTrustwaveManaged Hosting(1) PCI DSS assessments represent only a "snapshot" of security in place at the time of the review, and do not guarantee that those securitycontrols remain in place after the review is complete. These reviews did not cover proprietary software solutions that may be used or sold bythese service providers.Inclusion on this list indicates only that the service provider successfully completed a PCI DSS assessment for their validationlevel, based on the report of an independent Qualified Security Assessor (QSA). Visa does not endorse the service providers ortheir business processes or practices.Visa has no duty to clients, merchants, processors or other third parties to obtain or review reports from any party required tosubmit a report, and Visa is not responsible to any party for the timeliness, accuracy or completeness of any report. 2008 Visa Inc.10 of 23

List of Compliant Service Providers - AllSERVICE PROVIDERVALIDATIONDATESERVICESCOVERED BY REVIEW (1)ASSESSORFirst National TechnologySolutionsMarch 31, 2008Physical SecurityTrustwaveFirstBank Data CorporationAugust 31, 2008Payment ProcessingCyberTrustFiserv Credit Processing Services July 31, 2007Payment ProcessingPayment Software Company (PSC)Fiserv EFTMarch 31, 2008Payment ProcessingPayment Software Company (PSC)Florida Credit Union LeagueApril 30, 2008Back Office Charge-backsSelf-AssessmentFlorists’ Transworld Delivery Inc.March 31, 2008Merchant Payment ProcessingHALOCK Security LabsFMS Inc.May 31, 2008Debt Collection AgencySelf-AssessmentFort Knox National CompanyMay 31, 2008Internet Payment GatewayCyberTrustFosdick FulfillmentJuly 31, 2008Order FulfillmentTrustwaveFour51February 29, 2008Merchant Payment Process

American Data Technology April 30, 2008 Managed Hosting Self-Assessment Americaneagle.com November 30, 2007 Co-Location Hosting Fortrex Technologies Managed Hosting Managed Merchant Hosting Physical Security Andera, Inc. September 30, 2007 New Accounts Online Self-Assessment Angel.com October 31, 2007 Account Management Services Self-Assessment

Related Books

Secured hosting of a PCI DSS Compliant web application on Aws

Secured hosting of a PCI DSS Compliant web application on Aws

The Ultimate Guide to Pci Dss Cloud Hosting

The Ultimate Guide to Pci Dss Cloud Hosting

Cal Poly PCI DSS Compliance Training and Information

Cal Poly PCI DSS Compliance Training and Information

Reducing PCI DSS Scope with the TransArmor First Data .

Reducing PCI DSS Scope with the TransArmor First Data .

Payment Card Industry (PCI) Data Security Standard - Wired

Payment Card Industry (PCI) Data Security Standard - Wired

An Integrated Knowledge Graph to Automate GDPR and PCI DSS Compliance

An Integrated Knowledge Graph to Automate GDPR and PCI DSS Compliance

Achieving PCI Compliance with Postgres

Achieving PCI Compliance with Postgres

SECURE PAYMENT SOLUTIONS PCI-DSS v3.2 Level 1 Compliance across a range .

SECURE PAYMENT SOLUTIONS PCI-DSS v3.2 Level 1 Compliance across a range .

PCI Add-on User's Guide - HCL Product Documentation

PCI Add-on User's Guide - HCL Product Documentation

Red Hat Product Applicability Guide for PCI DSS version 3

Red Hat Product Applicability Guide for PCI DSS version 3

CODE NO. 101 - cms.nova.edu

CODE NO. 101 - cms.nova.edu

PCI Compliant - but are we secure -- FOR PRINTING IN GRAYSCALE [Read-Only]

PCI Compliant - but are we secure -- FOR PRINTING IN GRAYSCALE [Read-Only]

PopularTags

Recent Views