01 Feb DATAMATX Meets Upgraded PCI DSS 3.2 Standards Ahead of Required Date
ATLANTA, Ga, February 1, 2017—DATAMATX, a national outsourcing provider and leader in the distribution of critical business communications and payment services, announced it has successfully met the requirements for the newest Payment Card Industry Data Security Standard (PCI DSS) version 3.2 well ahead of the mandated February 1, 2018 date. PCI DSS version 3.2 has been strengthened from PCI DSS version 3.1 to further ensure the safeguard of payment data before, during and after purchase.
PCI DSS version 3.2 includes clarifications to existing requirements, new or evolving requirements and provides additional guidance to address the ever-growing threats to customer payment information. Notable changes include multi-factor authentication requirements for accessing the cardholder data environment, these are already in place for remote access scenarios, and now will be extended to include local access. Secondly, service providers will undergo added scrutiny of their change management processes, and penetration testing will be required on a more frequent basis among other new requirements.
The requirements in the new revision are considered best practices until January 31, 2018 for companies that accept, process or receive payments. Starting February 1, 2018 they will become effective and must be used to maintain PCI DSS compliance.
“As one of the first companies to achieve PCI-DSS in our industry several years ago, we continue to strive to stay ahead of the curve when it comes to security compliance to provide our customers the best possible protection available. We are very pleased to have met the PCI DSS v3.2 standards ahead of schedule, ensuring as a company we are continuing to implement best practices in safeguarding payment data,” said Scott Stephens, COO of DATAMATX.