 |
| |
|
|
| |
|
| |
|
|
| |
The VISA CISP (Cardholder Information Security Program) Payment Application Best Practices established a set of 13 best practices designed to protect sensitive information from being compromised. These best practices, which also include numerous sub-best practices, are directed to assist software vendors to create secure payment applications that help merchants and service providers comply with CISP. TPI Software is in full compliance with CISP. Ambiron, a firm specializing in data security and compliance validation conducted the audit.
"In April 2000, Visa announced the launch of its Cardholder Information Security Program (CISP). Approved in October 1999 and mandated June 2001. CISP defines a standard of due care for securing Visa cardholder data, wherever it is located. CISP compliance has been required of all entities storing, processing, or transmitting Visa cardholder data. Members must comply with CISP and are responsible for ensuring the compliance of their merchants and Agents---whether they support Issuing or Acquiring activity---for all payment channels, including retail (brick-and-mortar), mail/telephone-order, and e-commerce." |
|
| |
|
|
|
|
|
| |
Letter of acceptance of VISA U.S.A. Cardholder Information Security Program (CISP) Payment Application Validation for TPI Software.
Click here to visit VISA's site and get detailed information on CISP.
eWeek's article on Visa's Security Standards.
|
|