All it takes is one security breach to lose customer trust. That’s why, as an event owner, handling your attendees’ credit card data is a critical task. Your reputation and financial responsibility are on the line as more and more U.S. states enact laws that place the burden of protecting financial data on businesses themselves. As an event owner, when you think about the sheer amount of data you collect from registrants, it’s important to know that the credit card information is secure.
Protecting sensitive customer data for processing registrant cardholder information over the Internet requires meeting stringent data security requirements. In response to the growing risks and propensity of credit card and data breaches, the PCI Security Standards Council was born in 2006 as an open global forum responsible for the development, management, education, and awareness of the PCI security standards. These standards help organizations ensure the safe handling of cardholder information at every step.
Thankfully, users of the Certain event management platform can rest easy.
Millions of transactions pass through the Certain SaaS platform and we take our responsibility as a provider of event management technology seriously. For the sixth consecutive year, Certain has achieved Payment Card Industry Data Security Standard (PCI-DSS) certification. This is the longest consistent PCI compliance and data protection of all event management providers.
The latest standard we reached, PCI-DSS 2.0, is the most rigorous to date and required extensive and thorough assessment of the technology and internal controls across our organization. We successfully passed not only on-site security audits but also control, hardware and software, process and procedures, HR, and IT audits.
Read more about Certain’s initiatives around privacy and security.