Infobip’s messaging service validated against Payments Card Industry security standards
Infobip, the global provider of mobile messaging and payments services announced that is has been credited with PCI DSS (Payment Card Industry Data Security Standard) compliance certification. This is confirmation that Infobip’s SSMS (Secure Smart Messaging Service) complies with the stringent data security standards set by the payment card industry for handling sensitive financial information.
Infobip works closely with financial institutions and banks. Its service platform processes over 1 billion transactions a month and complies with a wide range of global security requirements, offering VPN tunnelling, data masking, encryption and geo-redundancy to guarantee the highest possible levels of security and reliability.
Infobip was awarded the certificate by independent QSA organisation NTT Security in February 2014. Following an extensive testing process, Infobip was found to comply with all 12 PCI DSS requirements.
Infobip was validated as a Level 1 service provider, which is the highest security category in the PCI DSS standard. It means that compliance was validated by an external organisation, as required by PCI DSS for service providers that process more than 300,000 transactions per year.
The approval process included a detailed examination of Infobip’s global technical platform, departments and relevant processes, as well as the existing security features and strict data protocols. Infobip was found to be one of the few companies of its kind to fully comply with the PCI DSS requirements.
“Any company that stores, transmits or processes payment cards data must comply with PCI DSS standards, as this helps businesses and consumers know their details are being handled securely. From the day we first met Infobip we have seen their solution evolving towards PCI DSS compliance rapidly, which is a good indicator of how committed they are towards offering PCI DSS compliant services,” said NTT Managing Director Marco Borza.
“This certificate is a result of all the hard work Infobip has put into making its services secure. This is the latest step in our commitment to provide a safe environment for sending sensitive financial information such as credit card PINs via SMS,” said Izabel Jelenic, CTO of Infobip. “Our messaging platform has a global reach, serving a diverse range of customers from banks to retailers and even utility companies. Being PCI DSS compliant demonstrates the importance we place on securing our customer data.